last executing test programs:

3.290676887s ago: executing program 1 (id=431):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000008500000073000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r1}, 0x10)
r2 = io_uring_setup(0x1dde, &(0x7f0000000440)={0x0, 0xfffffffd, 0x400, 0xfffffffe})
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x402c560b, &(0x7f00000003c0)={0x80, 0x29, &(0x7f00000004c0)="86fe9ee2dab6480b5cbe81589633ba85e971e410f2051af072a81d73c432ea5327f101255e65bfc50e722da1bab90e19f287382105a6135850b832c73c3997c2d94e4f04b6004751b794dab20c1067d6c450c1066dacdb1f3f5892511cfe91539450d0fbd68da47b0c5223e954ba62da64a9bf0b10bd8b9e78ceeeed9da4906c066613d58f6f8fc7137ce57972054d", {0x6, 0x89b, 0x30314247, 0x2, 0xfa, 0x7, 0x9, 0x57d60f3f}})
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='fd/4\x00')
ioctl$EXT4_IOC_GROUP_EXTEND(r5, 0x40305839, &(0x7f0000000240))
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
move_pages(0x0, 0x1, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001180), &(0x7f0000000000), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_setup(0x113, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000240)=<r6=>0x0, &(0x7f0000000300)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index})
r8 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r8, 0xc0045627, &(0x7f0000000000)=0x2)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$netlink(0x10, 0x3, 0x4)

2.200495056s ago: executing program 1 (id=436):
mount_setattr(0xffffffffffffff9c, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x2}, 0x20)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000480), 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

2.141273966s ago: executing program 1 (id=437):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02002d000b0bd25a806f8c6394f90b24fc602f1a04a60a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) (fail_nth: 4)

2.060658717s ago: executing program 1 (id=438):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x205, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xbc}}, 0x0)

1.970125537s ago: executing program 1 (id=439):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r2, 0x0)
syz_emit_ethernet(0x8e, &(0x7f00000000c0)=ANY=[@ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="64c20000907000001e0401a11e0c1607ffffffffff07000005120000000000000000000000000000000022034913127224407c80fe003616b4bf3400006cc81e0a00405882a08027c100000025b715047bbee8381096b5784f71a6f6735f87a3760b140899"], 0x0)
keyctl$setperm(0x5, r0, 0x1c243811)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, 0x0)
r5 = openat$full(0xffffffffffffff9c, 0x0, 0x222080, 0x0)
preadv2(r5, &(0x7f0000001540)=[{0x0}, {&(0x7f0000001380)=""/129, 0x7ffff000}], 0x2, 0x0, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCXONC(r6, 0x540a, 0x3)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x20000801)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
sigaltstack(0x0, 0x0)
sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)=@in6={0xa, 0x4e1c, 0x8, @dev={0xfe, 0x80, '\x00', 0x12}, 0x5}, 0x1c, 0x0}], 0x1, 0x20048000)
keyctl$chown(0x4, r0, 0xee00, 0x0)
getgroups(0x2, &(0x7f0000000040)=[0x0, 0xee00])

1.693491689s ago: executing program 2 (id=445):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000008500000073000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r1}, 0x10)
r2 = io_uring_setup(0x1dde, &(0x7f0000000440)={0x0, 0xfffffffd, 0x400, 0xfffffffe})
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x402c560b, &(0x7f00000003c0)={0x80, 0x29, &(0x7f00000004c0)="86fe9ee2dab6480b5cbe81589633ba85e971e410f2051af072a81d73c432ea5327f101255e65bfc50e722da1bab90e19f287382105a6135850b832c73c3997c2d94e4f04b6004751b794dab20c1067d6c450c1066dacdb1f3f5892511cfe91539450d0fbd68da47b0c5223e954ba62da64a9bf0b10bd8b9e78ceeeed9da4906c066613d58f6f8fc7137ce57972054d", {0x6, 0x89b, 0x30314247, 0x2, 0xfa, 0x7, 0x9, 0x57d60f3f}})
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='fd/4\x00')
ioctl$EXT4_IOC_GROUP_EXTEND(r5, 0x40305839, &(0x7f0000000240))
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
move_pages(0x0, 0x1, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001180), &(0x7f0000000000), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_setup(0x113, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000240)=<r6=>0x0, &(0x7f0000000300)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index})
r8 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r8, 0xc0045627, &(0x7f0000000000)=0x2)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$netlink(0x10, 0x3, 0x4)

1.636416158s ago: executing program 0 (id=446):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r1=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', r1, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @broadcast}}}})

1.629886264s ago: executing program 0 (id=447):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x205, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xbc}}, 0x0)

1.561043903s ago: executing program 0 (id=448):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(0x0)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8000f28, 0x0)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x7f, 0xe)
write(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
r2 = memfd_create(&(0x7f0000000540)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea', 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, 0x0)
ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f00000000c0)={0x2, 0x1, 0x3})
r4 = fcntl$dupfd(r2, 0x0, r2)
syz_emit_ethernet(0x4a, &(0x7f0000000040)={@local, @random="7f0a00034011", @val={@void, {0x8100, 0x6, 0x1, 0x3}}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x3, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2f, 0x0, @loopback, @private}, "000088beffff0000"}}}}}, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, r4, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1600000008000000040000000100000000000000e85a4ab90379100f425f34c44a05e2ff1a878e61c3bfc69bfc679efe418bc07b339666e1d775adf42b1307c0e95e37298435cb23df836a273aee08df79dcbd1e83afcc783421d8af07e37e0c43b20bdf41d511ffbab6945d0b6effa2a311e00e69b7d600aa90ce8bfe2a6cb951031e6541dbc1f781f527e487c2f6a8b15c95f3970567", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r5 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000))
ioctl$PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f00001b8000/0x2000)=nil, &(0x7f000064f000/0x3000)=nil, 0x0, &(0x7f0000000240)=[{}], 0x1, 0x0, 0x0, 0x28})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1.356714744s ago: executing program 0 (id=449):
mkdirat(0xffffffffffffff9c, 0x0, 0x10)
mount$tmpfs(0x0, 0x0, &(0x7f0000000280), 0x1170006, 0x0)
r0 = gettid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8, @ANYRES16=<r3=>r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa2000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="02c90012000e000500142f0a0018f719bf9adab7"], 0x17)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00'})
r5 = syz_open_procfs(r0, &(0x7f0000000340)='net/ip_tables_targets\x00')
recvmmsg(r5, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}, 0x3713838}], 0x1, 0x0, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{}, {0x0, 0x989680}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/fscaps', 0x0, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000a40)={{r5}, "d96b65428b0688e513f3095d798bb1cfcd7005cb6b5c3f0738069f418898ee84702b49e04a77d20a064eedf7d297f480a067fd71af0d8eeeb7cb8d518f13c584bed7c016d877fbc24f942a8aa12d65acaf3b7610e52a03c89df6e72bb320d54f830440f6457f0af5126c67005dcfb8c4c023635f64f935955adf38fe14203963b20eb7adb8e583a351867d0f228ff008fafc534df3009ed61e82a88bd57a9fc710c4e25cf88254f872765a766518808feb8b2b68932b8f4d3bbabf7db8b17a25ff28bd45c504ad7fc2bb38d66d8da24bd9b91fc867f8dcf090f7ed2e0fb386ece75534a2c489b07bc1e5cf5e4cee3370eac837b89ff952068e6a237095a1a6acee49db941174d5e3cde349646432f6f85e2da67a7f15d9a1b01e3eb93d39bfa4d108edc0f0eb5eaaceff475ed9b25586e455ae71f373c8071933618fd717ca5ccae8a525825a3d29e6251be3cd7baf3f633163e7313a5980fbc414c14b76ca7dfc2fef315d83beb68389f58e11b64399d21e775afbe9f4e11cc0aa335158bd535023ef9edd045226f0c26ac9a80158a183cbce3dabcdb017fb35c449a61eee3070e2d1306380ca266fd891fdbcde49947de54d3807d2f05aaf3f50533918b5a101c6a28a7f44db23ba122358d170b099aef2f497c96a34f59acea49a1319276992a3b8a5dedbe6b8beca61283660a483d38d8ce044dbf1e7c6718e7c3dfa4084ae3e6e6a586efdb843bf54e53ce0af891d01d9df3665dbf22a6202527545f2752f8cf7c4fd0d11437dc69d3bacee4bfad30ed56a7e74056b53a95ec1cdf4b4ae5635948dffaca615f13f0ea87452ae3728486a12eb91699ccf6186fc73a45288abc874eeeeb9206c7405218d4dfc4597ed02fa5a8e9c8af7bc22ca7e26003bb3c41cfec1d1cef3fb300ab87dcb46d95dba4d959eab6cf30af17e14fadc6d86177943e1a7b5a790ffab26bf65770bcb9e6ce6f3b75b6749681d5704451d922dcc99bedc93b812c702c7173fae22f1dc76c465260783b5d93503f21037780bd462a765a0ad7c4c0d867c17ddc72903212265e6f1aca67cb1053a675637a2d627b448b6ea856298d3635e20e7f494be892b10d9a60195e7bc3972023d0c96b706aeb2da469ee4e4e49dad63396fe01790cb2e4e545ebcd9fea13a6bf4acef32db324f08b09af32ef0c6502208aaaf01659e768dee338752b3357f15b0a4491afe9d8004dc7b86c174378018c5ea2f699db0b55243f403c75bd08ab2be5fc70da117a0dbc2eb46ed4759f60381a3307c861f09728df1359ad50d2e91998f9496a2a446607218f9e996d9300d61e2758cade949dc2b13e20e288bc4bfe80bdb4189c8cd5c18503a1a1dccf113e515fc612bffea1118d87cacf4e4c2714a9106df442c9ab404030bd6dbc9f86dbcb939d1ad572e76a34c7b2d6309bc406183e6183491043717542c71a321decc651215ec6aa59a96eff15752f283a3af73200d4a5f8bf2b3632646700b764b955a0f7d4650b5a1a7720f0818d97f6c51fd4c880880236fe7f4333aa292bd6c9c932b0d93b5aebfdce9f475e516b638df9f45a4ef8613dce4f746a1850af6f5d4faed85f8a41c9e5ae313e162b39f9a826b3a2f21decd3cad164001150bd89728ee6a4d120775257545415f4b589a0354c54e98e42add559d008c9ddcafc64c3d3a0de142cdcbecb1725ea96286653bb60ad586c71459b2bdcb19cc027a9c90e64c350821d977cac7b7a6edc411d9efbc910b153715f01be8d2eaa670a824ee7bee15d8e03dff7a3052b070ffe1cd470c679927bfe8269b0f1e58f30b2d0e2f7ba6d88fb1b6a077f7ee72bb76d9c079e21282a543b804637629a7041e55b99be35d9612e9c124f118bbe7db1fa50e695ccdd31a51a9f81b4154ef5c169f56974919274fa92ae60960939bafeca8cc24c2d436013548fe65a9624c8d494874d71fd433042e1b97ec83e68d2e5dbe7df832e190a48ba656f7e4f9c7f7c6006102d3f14b52c0ed0d1b910cd21a00b646438cd4dd9c2944577dd610396f5012a9bd0bff7450fd83a06b43d087df51122fdbfde28328e0df4ecfc92df91f1d9a067d00a0393e2378caabf5b1cee128d2054f4e461342a9397a528db3fd94341e07dd705fc1889c571f63a8d908857c7dd7b6870a83ab7b84845fec484b9906d911dba9eedd25d4a83102c62300661c96f2cd1886821a197984fc9047298cd942cbd35ef70ee4d042a2157c4fa654f802182be574647657165bd8f51cc6bdb7e99d7c251506a4c8a9d86fbe8dd01dbf205b96f8cdff3f843b2e1e20b4c00c520e869989d5ea226cdae294549bb99f80cdec234b3fe17e63b90e4a50a92cfd39d4091353425ed7f54047fd69f402e0d1456cb3ff207a53d3e45cf410c44775acbd23e3d7b7e27152d7043466cb851e86064a885c51a464d7116085628a720cea470703d6ea677cccfd7ea9b3dc0e5cd3bd3488e83bd05b1df1b478c236b3e4ed006a2d3db893264a1e5ff098cf1349eccf215ca3bff8a5b279adbc633577e43443ca14f095ecc679477035d24bf1ae1f6c14c7e57e75a53a2e5beecee0ef02e1b827d91a4d8ea4f490434cb33634ee9db33287646a0d46f9c15e8be866f516fc1cf0931afb4d44b456908c2ba68dc69e8531aae4bf3cc68dee44e88d1681db4ace50d73cd15db0f624b2250c937036e6138768ac0c7a2ddb713d59befb9fd7f43968cf81e151cb3f87aa260637854ba3483d66e0265db081ed5c89525851197f27dcb5cc2670247db9eebc87ab74341d79e2e5b70db917b9503dae96b258ce67fbdd6a5d9055d2806efde36befb9d0cb67403ae4668ff32223f462a27bd3d45c34bf087a348d90482b0d46849450b39b3344f6021b55bd6ba19c3500d23e635b958c2d5b1710f62953e4f18deb15c8f6641fc8f774bdcda5c7173962cc6b0f4826ea15671ebd991d05d951a09cc117d5e608761f2e9038dd6ee2d1ffb1ca690ca590a3e726f2a99e18240765f0ec7294d3d2789d9ea6c9c938b67dd47740949faf60db99c1e4116fbef10b0b8d7d9d723d9c685ebeec76297b21426d35204979b1e6e560baf04b6f7d86b9a8644f98da0c654d44e558a8e19b5fa043ccf53d3541c5637ce7cb2559595d1a1622751039dbbdd583cb66f45facd70e7147b8c642a4126bbba23026f19ce5914a4f52d89b531f29a93e0eb98c8eb94e8d97edf2a4d57b947c433e84336a205e57a55ba419c8e7be28f5876074a51f1d0bcc0afd70be161caee48ca7946fd5020085f0c56aa61ee97eff7be70789d8477bfff7ff10fe67f5b25ef08aca2471ca1671283ecd7dafd3513879db8ad27d9b875381ae183f13452eb354da563c5f7ba012fab7382d013363dfcca5234bd5873cddd421b55fe8c30e8a6420103a6e89c9c6256000b47746590e671e3fcaadbfebfb905e569916b7b5ed62e0066dc7d579a223befcab384b506d01ea0cce096e209e7a4cb4cba08048912a0cff72278a46d09394c266ebaa23b8ad58149e41ea3098fec0df89b2faa7e07b5d1812d1e4a2e17d9edaca0dbe7836cf0b972ff5a38dea2746120322a00afb0a4e4037b5bf8513e3903be23b5cbbd9f3c0728ff373b6a8bedbcbf67db4e5991a041a6261a7c97f00287652a4ce2968fb46f8d21e6bb5595458c047107c79d4d2fc56056d443735d0c26751394c5c415113adbf871345e94584738c852a07dfc8c20697180230d8061ce25d3616618470bf7cf2715f4ddf76564dc55a5d4b74d6f5f9083c627351a6cb85d427df37cc570ae82774d15534d66e86ebc9df6417a78423191b4d5cad1365445e0f35e54625404fe83fc786440b30638d4f207143179f0230d56e5f0d100f1f87443d1eef5af344b5f0fc01866432432341846b07ca1d1706a94d78ae3570fd7bf210b89356a5d83a553f1ac22bf750c1af6d7969813f891ee99e07dd8202537851678662a4ebe9a0d7f88c7a5018d10046b74386ff4c1acfaa0a962cb9f8b688cb007f4b8d79b1f271d3ef824642cc89be5f70598eede2dd6368bb0732eface070babb888d5e8a1053fbdb24277498e2e5b6909bc5857dce1ddeb9a18d5f4c5b4bad1f8e403d6725b424ce3ad577daf979e4faee2b052f51f572e53ea5e0fc6caed95dc75cdd7ed24fb8626b51b6caedcada3e2756222e59f28a427e73a3eb35be1a17def23156a1b5a3a0de5c2ba558a43ee83a207c7cae64dfda80fc445e65c1b3003de83aebd8b8124b342ec66e074a52c782106b2db33eb9c327e665e6bb699b93d3260ae7c4c69548080c8b091433a7fd1b745c139f0fcfe13e8028a3890c00db7b538e0d928c093c822937cdf3f89af8b06ea35e112a1ec91f0e137fbcaa6970f1df13eb5bb9dba394ec9982688272e1fba9a68c82d614b46d20200cd94837954065251dd780f153e24e45f3cf807bb5c5d6ce953fd0d90ebfb46356d33ea08f835b38157142d487777c5955ca0f304639935aa0c9cc7ea3ce624bc97ec7a34cf63424d74ebdabcc399666280de827ad2fc3b2e3ec1687ed322db8070339261b8f3a03e1b56d38738803e7307060c5f9e0a1f8c86ea3e67ba7fa3e89dc6e05c259fa9c6eee0eb1bf50d64909b8c20c27d633e242283b2b63f1ffb39b95e6821e1f8cf893a18494ed9a956d50b09aceb33a574a24031223425b6e51ea194a18ed225bc34552669514ec6ee4b5f2a97e43f21b56bee201ec174d9149be1231178a53a3b3594e0e2ca52e525237c14116713b0ff61994a83289d905ea1574783b0637a181e0e2c2f0d7e06471e1bc47c1a01780ee43067688cfd5e4a1bd443607de59b1c06e6d375c535fd885649d8a82278fd07507c07cd800416f33e221cb8f7cd4b3444c129cbc00ea112fd488de38fddbe416013bb778b2ff29424699c7a3af3b8d4dc237e7f2ab15a7c69aedb9cac1e115b8d2ff9426d901e750427b1e7f53391d081e7d937221511ed53702c069f3ee5e2aee6460f3ef6430d2b5b7921fd483b4b2b492e09d96b5a8c9a0656f24a97541bb51852bc613603d80a30ecab1aca56cadecd9a6b2019e8614a98e5733530e9ed772a93240151031cc4a77a5a9bc2c2d062e77f44c204514ff500965f8999abed1669707d1538c93390ea05dd4e99845f6bbdf29f13a95640fff481b76577a94b421efb2a32f580807faeebd223df3a58d80d010b30af90cb294b6de2fb74dfd0fd1998c017c627257420f06fb7406a2bbd1c19b1f6deddaf19b6594ac8b257a40c723275129210b1e081cbf7478620001ee822c0a5b01441c11c7147d698609238d9210f6b16078fe99d98d494d1c192b2a14d41b9e565b3d1a52ac65b9e794bed2ebfc3640839ce853ffa50d6027133578ab0f2d2d86ca58e09edf404f9735979ecb19ced0c46db0cdda8c8bb4e4792370bfbe9f4e16486ef103d4c4924d9e351c8fbf2259fbdd10f018931a8c4daa0dc5805af191ec593a850c84cd7fef0e702e69a3583e20f8af95378c841826925173eb2cf56be9f9e4e9a86e100f41e269facd026c4ca9e64e2849600999b23ed9068784c6909d3cbef9a46d00155849647081bc27009b42cbc4c5cd68825b01565edfc5312fcfb5a9198426773683fcbc507af324f873d8ef6614a19be42da75b238913fe328d92edda50de608bf9504407640afce03fa2026048cef3d71a467891c5ef645589e5dd9b245cb4d81e9221eba7edd55c0d893d5fe6e229396d2be1d16fa7fc2152b371713237a3e8443e15702f24c22c56c811f2a742"})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000010000000020001000000000000000000d32c84ed56c1984eeeac3d3e23152e4039533162de49556ecd0f4ce84497e5cd7be8abc3338012550df4928556c07a247b79be2f8e7f503b40edb95da070d32b8e361d7e2fa71e8dcf0720cb88608afbc0a794b3c7df3f92d3d1255b6263784fd46e7bb471bc705785ba3e3f960ead4ab207c2f592f7b1cbe110f49a", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYRESHEX=r3], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000c500000005000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58)
r8 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
r9 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_inet_SIOCSIFFLAGS(r9, 0x8914, &(0x7f0000000700)={'veth1_macvtap\x00', 0x8000})
socket(0x10, 0x3, 0x0)

1.290757184s ago: executing program 0 (id=450):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), 0xffffffffffffffff)
r1 = socket$packet(0x11, 0x2, 0x300)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000003000000580001"], 0x6c}}, 0x0)
r5 = socket$xdp(0x2c, 0x3, 0x0)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000280)={'batadv_slave_0\x00'})
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r7, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r8 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r8, &(0x7f00000000c0)={0x18, 0x0, {0x4, @local, 'vlan0\x00'}}, 0x1e)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001380)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000600), 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r9, 0x0)
ioctl$PPPOEIOCSFWD(r8, 0x40047452, &(0x7f0000000040)={0x18, 0x0, {0x0, @local, 'vlan0\x00'}})
bind$bt_hci(r9, &(0x7f00000002c0)={0x1f, 0x4, 0x2}, 0x6)
setsockopt$XDP_RX_RING(r7, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r10=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r7, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r7, &(0x7f0000000100)={0x2c, 0x0, r10}, 0x10)

1.2407265s ago: executing program 0 (id=451):
syz_emit_vhci(0x0, 0x21)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x1, 0x0)
shutdown(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000080)={0x3, 0x9, 0x8003, 0x7ff, 0xdcf, 0x9, 0x5e, 0x7, <r0=>0x0}, &(0x7f0000000140)=0x20)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000100)={<r1=>r0, 0x1c, &(0x7f0000000280)=[@in6={0xa, 0x0, 0x0, @remote, 0xfffffffe}]}, &(0x7f0000000000)=0xc)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>r1}, &(0x7f0000000040)=0x20)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000a40)={r2, 0x0, 0x30}, &(0x7f0000000a80)=0x18)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000000c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_usb_connect(0x0, 0x52, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
add_key$user(0x0, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'ip_vti0\x00', 0x0})
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r6)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a"], 0x50}}, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = inotify_init1(0x0)
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
fcntl$getownex(r7, 0x10, &(0x7f0000000140)={0x0, <r8=>0x0})
r9 = syz_open_procfs(r8, &(0x7f0000000600)='fd/4\x00')
openat$ipvs(0xffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r9, 0x4030582a, &(0x7f0000000240))
write$cgroup_pid(r5, &(0x7f00000000c0), 0x12)

801.150472ms ago: executing program 3 (id=453):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r1=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', r1, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @broadcast}}}})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000040)=[@window={0x3, 0x5, 0x4}, @window={0x3, 0x7c1}, @sack_perm, @window={0x3, 0x1400, 0x5}], 0x4)

800.621825ms ago: executing program 1 (id=454):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet6(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0xfffffeffffff7f7e, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)='jG', 0x2}], 0x1}}], 0x1, 0x400c081)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000340)={&(0x7f0000c2b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000005380)=""/226, 0x12c, 0x1, 0x0}, &(0x7f0000000380)=0x40)
setsockopt$packet_int(r1, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect(r3, &(0x7f00000004c0)=@rc={0x1f, @none, 0x8}, 0x80)
recvmmsg(r1, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x17}}], 0x400000000000179, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x26, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000009000000000000000800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b74df75034637f733c8ad1428aed3ea13757b0f6823c000014000000b7030000000000d06d00000083000000bf0900000000000055090100009500000000603aad57aa2bc9941ee01c0000009520000000000000182500000d13f9ac65cc706a3d08ea8fa4ff042a4002cb44f5ade85c134a8d316ee8fb29de56dc82278c5e80b80bb6d0ad8930bf1d5e3742f28d5a9fd551c30edfce3c373c5099ddfb33ea000000", @ANYRES32, @ANYBLOB="000000000800000085100000faffffff850000005a0000009500000000000000b7080000000000007b8af8ff00000000b7080000050000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000950000000000000018310000030000000000000000000000bf91000000000000b7020000030000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$FBIOPUTCMAP(r5, 0x4605, &(0x7f00000002c0)={0x0, 0x1, &(0x7f00000001c0)=[0x0], &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)})
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r4}, 0x10)
r7 = open(0x0, 0x0, 0x146)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800007, 0x12, r7, 0x0)
connect$pppl2tp(r7, &(0x7f0000000540)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e21, @multicast2}, 0x3, 0x2, 0x4, 0x3}}, 0x26)
r8 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r9 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r10 = socket$nl_rdma(0x10, 0x3, 0x14)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001c80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000001cc0)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r11, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000001d00)={0x24, r12, 0x1, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r13}, @void}}, [@NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x1000}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x400c0)
sendmsg$NL80211_CMD_SET_WIPHY(r11, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r12, @ANYRESDEC=r7], 0x44}, 0x1, 0x0, 0x0, 0x20004000}, 0x4004800)
r14 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r14, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYRESHEX=r6, @ANYRES32=r14, @ANYRESHEX=r9, @ANYRESDEC=r8, @ANYRES64, @ANYRESDEC=r14], 0x5c}}, 0x20008000)
sendmsg$SMC_PNETID_DEL(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x14, r8, 0x1, 0x0, 0x25dfdbfb, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x2000000, @private2={0xfc, 0x2, '\x00', 0x1}, 0x46dd}, 0x1c)

671.045512ms ago: executing program 3 (id=455):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETTRIGGER(r0, 0x80045010, &(0x7f0000000100))
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x50009405, &(0x7f0000000180))
syz_genetlink_get_family_id$team(&(0x7f0000000140), r0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000c40)="c10e020022003505d25a806f8c6394f90435fc60040011000a740100053582c137153e37024801", 0x27}], 0x1}, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'gre0\x00', <r4=>0x0})
sendto$packet(r2, &(0x7f0000000180)="0b041400e0ffe2ff02004788001ca13bb100000208007f604803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r4}, 0x14)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r5, &(0x7f0000000200)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r5, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
bind$inet(r5, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000940)="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", 0x66d}, {0x0}, {0x0}], 0x3, 0x1000000}, 0x0)
sendmsg$alg(r5, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = getpid()
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}], 0x1, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
sched_rr_get_interval(r6, &(0x7f0000000200))
pivot_root(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)='./file0\x00')
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)

210.763933ms ago: executing program 2 (id=456):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x205, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb0}}, 0x0)

210.474658ms ago: executing program 3 (id=457):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r1, 0x0, 0x0)

210.035475ms ago: executing program 2 (id=458):
mkdirat(0xffffffffffffff9c, 0x0, 0x10)
mount$tmpfs(0x0, 0x0, &(0x7f0000000280), 0x1170006, 0x0)
r0 = gettid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8, @ANYRES16=<r3=>r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa2000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="02c90012000e000500142f0a0018f719bf9adab7"], 0x17)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00'})
r5 = syz_open_procfs(r0, &(0x7f0000000340)='net/ip_tables_targets\x00')
recvmmsg(r5, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}, 0x3713838}], 0x1, 0x0, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{}, {0x0, 0x989680}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/fscaps', 0x0, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000a40)={{r5}, "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"})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000010000000020001000000000000000000d32c84ed56c1984eeeac3d3e23152e4039533162de49556ecd0f4ce84497e5cd7be8abc3338012550df4928556c07a247b79be2f8e7f503b40edb95da070d32b8e361d7e2fa71e8dcf0720cb88608afbc0a794b3c7df3f92d3d1255b6263784fd46e7bb471bc705785ba3e3f960ead4ab207c2f592f7b1cbe110f49a", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYRESHEX=r3], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000c500000005000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58)
r8 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
r9 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_inet_SIOCSIFFLAGS(r9, 0x8914, &(0x7f0000000700)={'veth1_macvtap\x00', 0x8000})
socket(0x10, 0x3, 0x0)

148.607658ms ago: executing program 3 (id=459):
mount_setattr(0xffffffffffffff9c, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x2}, 0x20)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

148.29407ms ago: executing program 3 (id=460):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000280), 0x80a00, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000080)={0x1, "0600000000000000c64c3b6e6ff82a75e5318fca4288c2ffbdbec772020acd2c", <r2=>0xffffffffffffffff})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000000)={0x280000, "421a051200000009001505003ab4c90100cc026411ec941ebfdd3700", <r3=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r2, 0xc0303e03, &(0x7f00000000c0)={"e50d1af80100007ea25edd00ff000000080000f6907ff16b7e00", r2, <r4=>0xffffffffffffffff})
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000001c0))
dup3(r3, r1, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000140)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x5, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x1000c}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x58}}, 0x4000)

147.36594ms ago: executing program 2 (id=461):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNISCRNMAP(r0, 0x4b48, &(0x7f0000003d40)=""/175)
r1 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x40, &(0x7f0000000000)=0x8, 0x4)
getsockopt$SO_TIMESTAMP(r1, 0x1, 0x40, 0x0, &(0x7f0000000080))
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x4, &(0x7f00000000c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x8c}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = socket(0x15, 0x5, 0x0)
getsockopt$nfc_llcp(r2, 0x114, 0x2720, 0x0, 0x20000008)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r3, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000013c0)=ANY=[], 0x38}}, 0x0)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000340)=ANY=[@ANYBLOB="b4bb000000000000ba73114100000000008510000002000000b70000000000000095d5e2bb7900c2"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000200)={r6, 0xe0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000f, 0x0, &(0x7f0000001640)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$nl_route_sched(r5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000380)={'syztnl1\x00', 0x0, 0x10, 0x0, 0x82, 0x7f, {{0x13, 0x4, 0x1, 0xd, 0x4c, 0x65, 0x0, 0x86, 0x7d, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x1}, {[@ssrr={0x89, 0x13, 0xcf, [@empty, @multicast2, @multicast1, @remote]}, @ssrr={0x89, 0xf, 0xba, [@remote, @private=0xa010100, @broadcast]}, @generic={0x94, 0x9, "e4cb120e99de81"}, @generic={0x7, 0xc, "5f4300ab22ec5ea71504"}]}}}}})
ioctl$sock_bt_hci(r5, 0x400448ca, &(0x7f00000000c0)="3db872ec44c6d3ee4c9e7cc7c55776a0dd70f1863daf9502713611e727672484ad66bdfa3db33be9a0bd1228144021b1c9c101")
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000080)=0x125, 0x4)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r8=>0x0})
sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="10031400e0ff020002004788aa96a13bb100001100007fca1a00", 0x1000a, 0x0, &(0x7f0000000140)={0x11, 0x0, r8}, 0x14)
poll(&(0x7f0000000100)=[{}, {}], 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

70.758551ms ago: executing program 3 (id=462):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r2, 0x0)
syz_emit_ethernet(0x8e, &(0x7f00000000c0)=ANY=[@ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="64c20000907000001e0401a11e0c1607ffffffffff07000005120000000000000000000000000000000022034913127224407c80fe003616b4bf3400006cc81e0a00405882a08027c100000025b715047bbee8381096b5784f71a6f6735f87a3760b140899"], 0x0)
keyctl$setperm(0x5, r0, 0x1c243811)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, 0x0)
r5 = openat$full(0xffffffffffffff9c, 0x0, 0x222080, 0x0)
preadv2(r5, &(0x7f0000001540)=[{0x0}, {&(0x7f0000001380)=""/129, 0x7ffff000}], 0x2, 0x0, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCXONC(r6, 0x540a, 0x3)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x20000801)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
sigaltstack(0x0, 0x0)
sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)=@in6={0xa, 0x4e1c, 0x8, @dev={0xfe, 0x80, '\x00', 0x12}, 0x5}, 0x1c, 0x0}], 0x1, 0x20048000)
keyctl$chown(0x4, r0, 0xee00, 0x0)
getgroups(0x2, &(0x7f0000000040)=[0x0, 0xee00])

70.357053ms ago: executing program 2 (id=463):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0xa34840, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(0xffffffffffffffff, 0x2def, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x2000000)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)

0s ago: executing program 2 (id=464):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000008500000073000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r1}, 0x10)
r2 = io_uring_setup(0x1dde, &(0x7f0000000440)={0x0, 0xfffffffd, 0x400, 0xfffffffe})
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$VIDIOC_S_FBUF(0xffffffffffffffff, 0x402c560b, &(0x7f00000003c0)={0x80, 0x29, &(0x7f00000004c0)="86fe9ee2dab6480b5cbe81589633ba85e971e410f2051af072a81d73c432ea5327f101255e65bfc50e722da1bab90e19f287382105a6135850b832c73c3997c2d94e4f04b6004751b794dab20c1067d6c450c1066dacdb1f3f5892511cfe91539450d0fbd68da47b0c5223e954ba62da64a9bf0b10bd8b9e78ceeeed9da4906c066613d58f6f8fc7137ce57972054d", {0x6, 0x89b, 0x30314247, 0x2, 0xfa, 0x7, 0x9, 0x57d60f3f}})
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, <r5=>0x0})
r6 = syz_open_procfs(r5, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40305839, &(0x7f0000000240))
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
move_pages(0x0, 0x1, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001180), &(0x7f0000000000), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_setup(0x113, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000240)=<r7=>0x0, &(0x7f0000000300)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index})
r9 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r9, 0xc0045627, &(0x7f0000000000)=0x2)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$netlink(0x10, 0x3, 0x4)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:57235' (ED25519) to the list of known hosts.
[   35.284135][ T5269] cgroup: Unknown subsys name 'net'
[   35.394031][ T5269] cgroup: Unknown subsys name 'cpuset'
[   35.397430][ T5269] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   36.648749][ T5269] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   38.898396][ T5340] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   38.906239][   T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   38.920572][ T5349] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   38.925339][ T5349] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   38.928072][ T5349] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   38.931261][ T5349] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   38.934802][ T5349] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   38.937744][ T5349] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   38.940229][ T5349] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   38.948081][ T5351] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   38.949750][ T5347] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   38.950816][ T5351] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   38.953122][ T5347] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   38.954883][ T5351] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   38.957143][ T5355] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   38.958846][ T5351] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   38.964183][ T5355] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   38.965253][ T5351] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   38.969961][ T5355] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   38.982052][ T5347] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   38.986113][ T5347] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   38.997284][   T63] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   39.007817][   T63] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   39.012807][   T63] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   39.177653][ T5339] chnl_net:caif_netlink_parms(): no params data found
[   39.235595][ T5343] chnl_net:caif_netlink_parms(): no params data found
[   39.325416][ T5345] chnl_net:caif_netlink_parms(): no params data found
[   39.359811][ T5339] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.363075][ T5339] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.365680][ T5339] bridge_slave_0: entered allmulticast mode
[   39.368632][ T5339] bridge_slave_0: entered promiscuous mode
[   39.417398][ T5339] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.419883][ T5339] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.422626][ T5339] bridge_slave_1: entered allmulticast mode
[   39.424894][ T5339] bridge_slave_1: entered promiscuous mode
[   39.463647][ T5343] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.465556][ T5343] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.467444][ T5343] bridge_slave_0: entered allmulticast mode
[   39.470315][ T5343] bridge_slave_0: entered promiscuous mode
[   39.488416][ T5353] chnl_net:caif_netlink_parms(): no params data found
[   39.505619][ T5343] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.507533][ T5343] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.510166][ T5343] bridge_slave_1: entered allmulticast mode
[   39.513965][ T5343] bridge_slave_1: entered promiscuous mode
[   39.518460][ T5339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.524080][ T5339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.575124][ T5345] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.577604][ T5345] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.580046][ T5345] bridge_slave_0: entered allmulticast mode
[   39.586025][ T5345] bridge_slave_0: entered promiscuous mode
[   39.590179][ T5343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.604165][ T5345] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.606646][ T5345] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.608599][ T5345] bridge_slave_1: entered allmulticast mode
[   39.611017][ T5345] bridge_slave_1: entered promiscuous mode
[   39.624614][ T5343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.631362][ T5339] team0: Port device team_slave_0 added
[   39.634458][ T5339] team0: Port device team_slave_1 added
[   39.645605][ T5345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.649017][ T5345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.707795][ T5343] team0: Port device team_slave_0 added
[   39.710658][ T5343] team0: Port device team_slave_1 added
[   39.724273][ T5353] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.726109][ T5353] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.727954][ T5353] bridge_slave_0: entered allmulticast mode
[   39.730404][ T5353] bridge_slave_0: entered promiscuous mode
[   39.742442][ T5339] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.744257][ T5339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.750385][ T5339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.780253][ T5353] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.782893][ T5353] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.784807][ T5353] bridge_slave_1: entered allmulticast mode
[   39.786771][ T5353] bridge_slave_1: entered promiscuous mode
[   39.788943][ T5339] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.790753][ T5339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.797411][ T5339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.802451][ T5345] team0: Port device team_slave_0 added
[   39.804529][ T5343] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.806790][ T5343] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.816079][ T5343] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.837532][ T5345] team0: Port device team_slave_1 added
[   39.840173][ T5343] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.842654][ T5343] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.851219][ T5343] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.872467][ T5353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.907220][ T5353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.910231][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.914226][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.923392][ T5345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.928800][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.931123][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.940096][ T5345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.982480][ T5353] team0: Port device team_slave_0 added
[   39.987197][ T5339] hsr_slave_0: entered promiscuous mode
[   39.989839][ T5339] hsr_slave_1: entered promiscuous mode
[   40.012496][ T5343] hsr_slave_0: entered promiscuous mode
[   40.015103][ T5343] hsr_slave_1: entered promiscuous mode
[   40.017733][ T5343] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   40.020375][ T5343] Cannot create hsr debugfs directory
[   40.038538][ T5353] team0: Port device team_slave_1 added
[   40.073585][ T5345] hsr_slave_0: entered promiscuous mode
[   40.076660][ T5345] hsr_slave_1: entered promiscuous mode
[   40.079936][ T5345] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   40.083865][ T5345] Cannot create hsr debugfs directory
[   40.101029][ T5353] batman_adv: batadv0: Adding interface: batadv_slave_0
[   40.104491][ T5353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   40.113980][ T5353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   40.160368][ T5353] batman_adv: batadv0: Adding interface: batadv_slave_1
[   40.167199][ T5353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   40.176380][ T5353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   40.330868][ T5353] hsr_slave_0: entered promiscuous mode
[   40.332895][ T5353] hsr_slave_1: entered promiscuous mode
[   40.334665][ T5353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   40.336641][ T5353] Cannot create hsr debugfs directory
[   40.486655][ T5339] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   40.494994][ T5339] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   40.504161][ T5339] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   40.509047][ T5339] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   40.512490][ T5353] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   40.516968][ T5353] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   40.525255][ T5353] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   40.529196][ T5353] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   40.547203][ T5343] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   40.556359][ T5343] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   40.560406][ T5343] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   40.565975][ T5343] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   40.617437][ T5345] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   40.621964][ T5345] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   40.629640][ T5345] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   40.637475][ T5345] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   40.677784][ T5339] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.706233][ T5339] 8021q: adding VLAN 0 to HW filter on device team0
[   40.718896][ T4309] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.721412][ T4309] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.725283][ T4309] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.727634][ T4309] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.760947][ T5353] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.767063][ T5345] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.774414][ T5343] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.790753][ T5353] 8021q: adding VLAN 0 to HW filter on device team0
[   40.804620][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.807153][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.816766][ T5345] 8021q: adding VLAN 0 to HW filter on device team0
[   40.823660][ T5343] 8021q: adding VLAN 0 to HW filter on device team0
[   40.828385][ T4309] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.830167][ T4309] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.846991][ T4309] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.849474][ T4309] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.855070][ T4309] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.857018][ T4309] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.860480][ T4309] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.862496][ T4309] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.866463][ T4309] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.868779][ T4309] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.892510][ T5353] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   40.917669][ T5343] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   40.923870][ T5345] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   40.926543][ T5345] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   40.969370][ T5339] 8021q: adding VLAN 0 to HW filter on device batadv0
[   41.012718][ T5339] veth0_vlan: entered promiscuous mode
[   41.018541][ T5353] 8021q: adding VLAN 0 to HW filter on device batadv0
[   41.022846][ T5339] veth1_vlan: entered promiscuous mode
[   41.036899][ T5339] veth0_macvtap: entered promiscuous mode
[   41.042792][   T63] Bluetooth: hci3: command tx timeout
[   41.044303][ T5349] Bluetooth: hci0: command tx timeout
[   41.044831][   T63] Bluetooth: hci1: command tx timeout
[   41.046918][ T5349] Bluetooth: hci2: command tx timeout
[   41.057381][ T5339] veth1_macvtap: entered promiscuous mode
[   41.069021][ T5345] 8021q: adding VLAN 0 to HW filter on device batadv0
[   41.088418][ T5353] veth0_vlan: entered promiscuous mode
[   41.091978][ T5339] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.097334][ T5343] 8021q: adding VLAN 0 to HW filter on device batadv0
[   41.107041][ T5339] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.115550][ T5353] veth1_vlan: entered promiscuous mode
[   41.118566][ T5339] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.120913][ T5339] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.123766][ T5339] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.126022][ T5339] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.153783][ T5353] veth0_macvtap: entered promiscuous mode
[   41.157414][ T5353] veth1_macvtap: entered promiscuous mode
[   41.167575][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.172944][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.178040][ T5353] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.198507][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.204848][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.210760][ T5353] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.222005][ T5343] veth0_vlan: entered promiscuous mode
[   41.228947][ T5345] veth0_vlan: entered promiscuous mode
[   41.231843][ T5343] veth1_vlan: entered promiscuous mode
[   41.243317][ T5353] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.245526][ T5353] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.247725][ T5353] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.249903][ T5353] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.257938][ T1186] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.260101][ T1186] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.264632][ T5345] veth1_vlan: entered promiscuous mode
[   41.293392][ T4309] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.295936][ T4309] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.300775][ T5343] veth0_macvtap: entered promiscuous mode
[   41.308373][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.311154][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.312400][ T5343] veth1_macvtap: entered promiscuous mode
[   41.330563][ T5345] veth0_macvtap: entered promiscuous mode
[   41.330973][ T1101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.334876][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.335029][ T1101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.338166][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.343493][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.345963][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.349354][ T5343] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.352538][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.353992][ T5339] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   41.355164][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.355174][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.355182][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.368795][ T5343] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.376633][ T5345] veth1_macvtap: entered promiscuous mode
[   41.379641][ T5343] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.382522][ T5343] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.384838][ T5343] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.387100][ T5343] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.410889][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.416738][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.419240][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.422678][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.425221][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.427919][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.433697][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.450957][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.454517][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.457075][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.459776][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.467170][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.470883][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.475792][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.482519][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.485124][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.494070][ T5345] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.496384][ T5345] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.498617][ T5345] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.500956][ T5345] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.514535][ T1097] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.517281][ T1097] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.538196][ T1186] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.540329][ T1186] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.541578][ T1101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.544926][ T1101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.645045][ T5411] netlink: 124 bytes leftover after parsing attributes in process `syz.3.4'.
[   41.672037][ T5413] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3'.
[   41.746946][ T5408] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2'.
[   41.752981][ T5408] openvswitch: netlink: Tunnel attr 0 has unexpected len 13 expected 8
[   42.063156][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   42.451964][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   42.844748][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   42.847014][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   42.850577][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   42.853661][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   42.858782][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   42.917921][ T5439] overlayfs: missing 'lowerdir'
[   43.122749][ T5349] Bluetooth: hci1: command tx timeout
[   43.124255][ T5349] Bluetooth: hci0: command tx timeout
[   43.125597][ T5349] Bluetooth: hci3: command tx timeout
[   43.132139][ T5340] Bluetooth: hci2: command tx timeout
[   43.223410][ T5446] netlink: 124 bytes leftover after parsing attributes in process `syz.2.13'.
[   43.291989][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   43.336336][ T5451] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14'.
[   43.497005][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   43.723415][ T5456] netlink: 'syz.2.15': attribute type 4 has an invalid length.
[   43.977319][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   45.213136][ T5340] Bluetooth: hci2: command tx timeout
[   45.214905][ T5340] Bluetooth: hci3: command tx timeout
[   45.216450][ T5340] Bluetooth: hci0: command tx timeout
[   45.218305][ T5340] Bluetooth: hci1: command tx timeout
[   45.433154][ T5478] netlink: 'syz.0.20': attribute type 4 has an invalid length.
[   45.459794][ T5478] netlink: 'syz.0.20': attribute type 4 has an invalid length.
[   46.182856][ T5488] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24'.
[   46.194267][ T5488] Invalid ELF header len 18
[   46.291301][ T5491] lo speed is unknown, defaulting to 1000
[   46.293730][ T5491] lo speed is unknown, defaulting to 1000
[   46.298507][ T5491] lo speed is unknown, defaulting to 1000
[   46.304207][ T5491] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   46.310105][ T5491] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   46.325754][ T5491] lo speed is unknown, defaulting to 1000
[   46.327977][ T5491] lo speed is unknown, defaulting to 1000
[   46.330228][ T5491] lo speed is unknown, defaulting to 1000
[   46.333973][ T5491] lo speed is unknown, defaulting to 1000
[   46.415001][ T5496] capability: warning: `syz.1.25' uses deprecated v2 capabilities in a way that may be insecure
[   47.282082][ T5340] Bluetooth: hci1: command tx timeout
[   47.283616][ T5340] Bluetooth: hci0: command tx timeout
[   47.285032][ T5340] Bluetooth: hci3: command tx timeout
[   47.286699][ T5340] Bluetooth: hci2: command tx timeout
[   47.386378][ T5509] netlink: 124 bytes leftover after parsing attributes in process `syz.2.32'.
[   48.170081][  T979] libceph: connect (1)[c::]:6789 error -101
[   48.173261][  T979] libceph: mon0 (1)[c::]:6789 connect error
[   48.176671][  T979] libceph: connect (1)[c::]:6789 error -101
[   48.179026][  T979] libceph: mon0 (1)[c::]:6789 connect error
[   48.332901][ T5535] hfs: unable to parse mount options
[   48.397442][ T5522] ceph: No mds server is up or the cluster is laggy
[   48.442913][ T5536] netlink: 124 bytes leftover after parsing attributes in process `syz.1.39'.
[   48.696174][ T5548] netlink: 40 bytes leftover after parsing attributes in process `syz.1.42'.
[   48.775461][ T5550] netlink: 'syz.1.43': attribute type 4 has an invalid length.
[   48.777406][ T5550] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.43'.
[   48.909158][ T5553] netlink: 'syz.1.44': attribute type 11 has an invalid length.
[   48.913423][ T5553] netlink: 'syz.1.44': attribute type 11 has an invalid length.
[   48.916074][ T5553] netlink: 209800 bytes leftover after parsing attributes in process `syz.1.44'.
[   49.272508][ T5560] netlink: 124 bytes leftover after parsing attributes in process `syz.3.45'.
[   50.253380][ T5576] Driver unsupported XDP return value 0 on prog  (id 9) dev N/A, expect packet loss!
[   50.305693][ T5577] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   50.552435][ T5340] Bluetooth: hci3: command 0x0405 tx timeout
[   50.966290][ T5581] netlink: 32 bytes leftover after parsing attributes in process `syz.1.51'.
[   51.143216][   T63] Bluetooth: hci3: unexpected cc 0x1408 length: 57 > 4
[   51.145757][   T63] Bluetooth: hci3: unexpected event for opcode 0x1408
[   51.155786][ T5586] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   51.164216][ T5586] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   51.214741][ T5581] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[   51.234880][ T5581] CIFS: Unable to determine destination address
[   51.379925][   T63] Bluetooth: hci1: unexpected subevent 0x01 length: 59 > 18
[   51.382787][   T63] Bluetooth: hci1: Invalid handle: 0x91c7 > 0x0eff
[   52.282270][ T5600] netlink: 124 bytes leftover after parsing attributes in process `syz.0.56'.
[   52.404034][ T5606] netlink: 16 bytes leftover after parsing attributes in process `syz.0.58'.
[   52.415377][ T5606] netlink: 24 bytes leftover after parsing attributes in process `syz.0.58'.
[   52.584829][ T5611] netlink: 124 bytes leftover after parsing attributes in process `syz.0.60'.
[   52.898520][ T5624] nvme_fabrics: missing parameter 'transport=%s'
[   52.900906][ T5624] nvme_fabrics: missing parameter 'nqn=%s'
[   52.913750][ T5621] netlink: 124 bytes leftover after parsing attributes in process `syz.1.64'.
[   53.201804][ T5633] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   53.442461][   T63] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   53.446146][   T63] Bluetooth: hci1: Injecting HCI hardware error event
[   53.450650][ T5340] Bluetooth: hci1: hardware error 0x00
[   53.754242][ T5639] syz.1.67 uses obsolete (PF_INET,SOCK_PACKET)
[   54.912195][ T5650] 9pnet_fd: Insufficient options for proto=fd
[   55.201665][   T63] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   55.204980][   T63] Bluetooth: hci3: Injecting HCI hardware error event
[   55.207747][ T5349] Bluetooth: hci3: hardware error 0x00
[   55.259932][ T5655] netlink: 124 bytes leftover after parsing attributes in process `syz.3.73'.
[   55.524776][ T5660] netlink: 6 bytes leftover after parsing attributes in process `syz.3.74'.
[   55.531631][ T5340] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   55.639344][ T5662] netlink: 124 bytes leftover after parsing attributes in process `syz.0.75'.
[   57.282192][ T5349] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[   58.129275][ T5704] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[   58.137268][ T5704] trusted_key: encrypted_key: insufficient parameters specified
[   58.213565][ T5706] mmap: syz.0.88 (5706): VmData 37404672 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[   58.234451][   T40] audit: type=1326 audit(1728131284.976:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5705 comm="syz.0.88" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[   58.612329][ T5714] Process accounting resumed
[   58.614579][ T5714] kernel write not supported for file /asound/timers (pid: 5714 comm: syz.0.89)
[   58.749071][ T5717] nvme_fabrics: unknown parameter or missing value '#! ./file0' in ctrl creation request
[   58.868945][ T5720] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   58.871564][ T5349] Bluetooth: hci0: unexpected cc 0x1408 length: 57 > 4
[   59.073045][ T5724] mkiss: ax0: crc mode is auto.
[   59.525203][ T5736] netlink: 'syz.1.97': attribute type 1 has an invalid length.
[   60.061407][ T5743] FAULT_INJECTION: forcing a failure.
[   60.061407][ T5743] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   60.068533][ T5743] CPU: 1 UID: 0 PID: 5743 Comm: syz.1.99 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[   60.072325][ T5743] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.076406][ T5743] Call Trace:
[   60.077907][ T5743]  <TASK>
[   60.079316][ T5743]  dump_stack_lvl+0x16c/0x1f0
[   60.081385][ T5743]  should_fail_ex+0x497/0x5b0
[   60.083308][ T5743]  _copy_to_user+0x30/0xc0
[   60.084922][ T5743]  simple_read_from_buffer+0xd0/0x160
[   60.086757][ T5743]  proc_fail_nth_read+0x198/0x270
[   60.088647][ T5743]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   60.090627][ T5743]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   60.092843][ T5743]  vfs_read+0x1ce/0xbd0
[   60.094368][ T5743]  ? __fget_files+0x23a/0x3f0
[   60.096370][ T5743]  ? fdget_pos+0x24c/0x360
[   60.098472][ T5743]  ? __pfx_lock_release+0x10/0x10
[   60.100506][ T5743]  ? trace_lock_acquire+0x14a/0x1d0
[   60.102037][ T5743]  ? __pfx_vfs_read+0x10/0x10
[   60.103337][ T5743]  ? __pfx___mutex_lock+0x10/0x10
[   60.104698][ T5743]  ? __fget_files+0x244/0x3f0
[   60.106191][ T5743]  ksys_read+0x12f/0x260
[   60.107807][ T5743]  ? __pfx_ksys_read+0x10/0x10
[   60.109618][ T5743]  __do_fast_syscall_32+0x73/0x120
[   60.111559][ T5743]  do_fast_syscall_32+0x32/0x80
[   60.113421][ T5743]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   60.115851][ T5743] RIP: 0023:0xf7faf579
[   60.117431][ T5743] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   60.124819][ T5743] RSP: 002b:00000000f57365a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   60.128065][ T5743] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5736620
[   60.131214][ T5743] RDX: 000000000000000f RSI: 00000000f743bff4 RDI: 0000000000000000
[   60.134305][ T5743] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[   60.137355][ T5743] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   60.140592][ T5743] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   60.143752][ T5743]  </TASK>
[   60.450541][ T5750] netlink: 124 bytes leftover after parsing attributes in process `syz.1.101'.
[   60.925508][ T5764] netlink: 8 bytes leftover after parsing attributes in process `syz.3.106'.
[   60.974135][ T5763] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   61.956649][ T5778] netlink: 'syz.3.111': attribute type 4 has an invalid length.
[   62.017527][ T5776] netlink: 124 bytes leftover after parsing attributes in process `syz.1.110'.
[   62.043179][ T5781] fuse: Bad value for 'fd'
[   62.064469][ T5783] can0: slcan on ttyS3.
[   62.341837][ T1991] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   62.491731][ T1991] usb 6-1: Using ep0 maxpacket: 32
[   62.496095][ T1991] usb 6-1: config 0 has no interfaces?
[   62.497543][ T1991] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[   62.500023][ T1991] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.503543][ T1991] usb 6-1: config 0 descriptor??
[   62.613444][ T5798] FAULT_INJECTION: forcing a failure.
[   62.613444][ T5798] name failslab, interval 1, probability 0, space 0, times 0
[   62.617082][ T5798] CPU: 1 UID: 0 PID: 5798 Comm: syz.2.113 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[   62.619848][ T5798] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.622936][ T5798] Call Trace:
[   62.623834][ T5798]  <TASK>
[   62.624623][ T5798]  dump_stack_lvl+0x16c/0x1f0
[   62.625938][ T5798]  should_fail_ex+0x497/0x5b0
[   62.627218][ T5798]  should_failslab+0xc2/0x120
[   62.628468][ T5798]  __kmalloc_cache_noprof+0x6b/0x310
[   62.629853][ T5798]  ? sctp_add_bind_addr+0x9d/0x3e0
[   62.631641][ T5798]  sctp_add_bind_addr+0x9d/0x3e0
[   62.633020][ T5798]  sctp_copy_local_addr_list+0x39e/0x5a0
[   62.634502][ T5798]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[   62.636137][ T5798]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[   62.637728][ T5798]  ? sctp_bind_addr_copy+0xe0/0x530
[   62.639108][ T5798]  sctp_bind_addr_copy+0xe0/0x530
[   62.640488][ T5798]  sctp_connect_new_asoc+0x1d8/0x790
[   62.642041][ T5798]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[   62.644204][ T5798]  ? lock_acquire+0x2f/0xb0
[   62.645497][ T5798]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[   62.647034][ T5798]  __sctp_connect+0x3f5/0xc60
[   62.648303][ T5798]  ? __pfx___sctp_connect+0x10/0x10
[   62.649716][ T5798]  ? __might_fault+0xe3/0x190
[   62.651308][ T5798]  ? __might_fault+0xe3/0x190
[   62.652881][ T5798]  __sctp_setsockopt_connectx+0xfc/0x170
[   62.654357][ T5798]  sctp_getsockopt+0x2e9f/0x7ae0
[   62.655669][ T5798]  ? __lock_acquire+0x163e/0x3ce0
[   62.656948][ T5798]  ? aa_label_sk_perm+0x19d/0x5a0
[   62.658251][ T5798]  ? __pfx_sctp_getsockopt+0x10/0x10
[   62.659649][ T5798]  ? hlock_class+0x4e/0x130
[   62.660880][ T5798]  ? hlock_class+0x4e/0x130
[   62.662082][ T5798]  ? __pfx___might_resched+0x10/0x10
[   62.663487][ T5798]  ? find_held_lock+0x2d/0x110
[   62.664769][ T5798]  ? __pfx___lock_acquire+0x10/0x10
[   62.666130][ T5798]  ? aa_sk_perm+0x2f5/0xb20
[   62.667342][ T5798]  ? __pfx_aa_sk_perm+0x10/0x10
[   62.668621][ T5798]  ? find_held_lock+0x2d/0x110
[   62.669885][ T5798]  ? __pfx_sock_common_getsockopt+0x10/0x10
[   62.671963][ T5798]  ? do_sock_getsockopt+0x3fe/0x870
[   62.673855][ T5798]  do_sock_getsockopt+0x3fe/0x870
[   62.675276][ T5798]  ? __pfx_do_sock_getsockopt+0x10/0x10
[   62.676735][ T5798]  ? __fget_files+0x244/0x3f0
[   62.677984][ T5798]  __sys_getsockopt+0x1a1/0x270
[   62.679264][ T5798]  ? __pfx___sys_getsockopt+0x10/0x10
[   62.680899][ T5798]  ? fput+0x30/0x390
[   62.681948][ T5798]  ? ksys_write+0x1ad/0x260
[   62.683217][ T5798]  __ia32_sys_getsockopt+0xbc/0x160
[   62.684592][ T5798]  ? lockdep_hardirqs_on+0x7c/0x110
[   62.685996][ T5798]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   62.687735][ T5798]  __do_fast_syscall_32+0x73/0x120
[   62.689118][ T5798]  do_fast_syscall_32+0x32/0x80
[   62.690675][ T5798]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   62.692445][ T5798] RIP: 0023:0xf7f08579
[   62.693591][ T5798] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   62.698672][ T5798] RSP: 002b:00000000f566556c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[   62.701152][ T5798] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000084
[   62.703422][ T5798] RDX: 000000000000006f RSI: 00000000200000c0 RDI: 0000000020000100
[   62.705523][ T5798] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   62.707622][ T5798] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   62.709750][ T5798] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   62.712258][ T5798]  </TASK>
[   62.838626][ T5806] warning: `syz.0.115' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   62.881976][ T5349] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   62.885852][ T5349] Bluetooth: hci0: Injecting HCI hardware error event
[   62.889801][ T5349] Bluetooth: hci0: hardware error 0x00
[   63.216588][ T5820] netlink: 4 bytes leftover after parsing attributes in process `syz.2.118'.
[   64.059229][ T5825] netlink: 124 bytes leftover after parsing attributes in process `syz.2.120'.
[   64.401559][ T5383] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   64.490402][ T5831] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   64.573146][ T5831] syzkaller0: entered promiscuous mode
[   64.575368][ T5831] syzkaller0: entered allmulticast mode
[   64.584427][ T5383] usb 8-1: New USB device found, idVendor=0403, idProduct=da73, bcdDevice=dc.8d
[   64.588125][ T5383] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.599252][ T5383] usb 8-1: config 0 descriptor??
[   64.607352][ T5383] usb 8-1: NDI device with a latency value of 1
[   64.835813][ T5383] ftdi_sio 8-1:0.0: FTDI USB Serial Device converter detected
[   64.842801][ T5383] ftdi_sio ttyUSB0: unknown device type: 0xdc8d
[   64.850456][ T5383] usb 8-1: USB disconnect, device number 2
[   64.858911][ T5383] ftdi_sio 8-1:0.0: device disconnected
[   64.971597][ T5349] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[   65.088771][ T5383] usb 6-1: USB disconnect, device number 2
[   65.192870][ T5783] can0 (unregistered): slcan off ttyS3.
[   65.326836][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x1
[   65.329462][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.351521][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.353947][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.356556][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.359149][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.383388][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x4
[   65.385906][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.388398][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[   65.395099][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.397898][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.400700][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.404285][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.408403][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x4
[   65.410652][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.414555][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.416641][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.418641][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.420624][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.422979][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.424940][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.426854][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.428804][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.430717][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.433029][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.434943][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.437003][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.438915][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.440894][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.443605][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.446134][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.448724][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.451103][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.453416][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.455301][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.459520][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.461484][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.463438][ T1991] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.468082][ T1991] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   66.721402][ T5890] netlink: 40 bytes leftover after parsing attributes in process `syz.1.137'.
[   66.751566][ T5384] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   66.923354][ T5384] usb 8-1: New USB device found, idVendor=0403, idProduct=da73, bcdDevice=dc.8d
[   66.926640][ T5384] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.944538][ T5384] usb 8-1: config 0 descriptor??
[   66.949422][ T5384] usb 8-1: NDI device with a latency value of 1
[   67.176508][ T5384] ftdi_sio 8-1:0.0: FTDI USB Serial Device converter detected
[   67.180161][ T5384] ftdi_sio ttyUSB0: unknown device type: 0xdc8d
[   67.185886][ T5384] usb 8-1: USB disconnect, device number 3
[   67.189676][ T5384] ftdi_sio 8-1:0.0: device disconnected
[   67.446255][ T5897] e1000e 0000:00:02.0 eth1: NIC Link is Down
[   67.786416][ T5924] netlink: 4 bytes leftover after parsing attributes in process `syz.1.141'.
[   67.789660][ T5924] netlink: 'syz.1.141': attribute type 7 has an invalid length.
[   67.804018][ T5924] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   67.807378][ T5924] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   67.810466][ T5924] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   67.813966][ T5924] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   67.817559][ T5924] vxlan0: entered promiscuous mode
[   67.837513][ T5922] netlink: 124 bytes leftover after parsing attributes in process `syz.3.142'.
[   67.904801][ T5936] netlink: 40 bytes leftover after parsing attributes in process `syz.3.146'.
[   67.983784][   T40] audit: type=1326 audit(1728131294.726:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5937 comm="syz.0.147" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[   68.078717][ T5959] netlink: 8 bytes leftover after parsing attributes in process `syz.2.150'.
[   68.230773][ T5968] serio: Serial port pts0
[   68.609989][ T5972] netlink: 'syz.1.152': attribute type 4 has an invalid length.
[   68.848640][ T5978] netlink: 124 bytes leftover after parsing attributes in process `syz.0.155'.
[   69.152786][ T5990] netlink: 40 bytes leftover after parsing attributes in process `syz.3.159'.
[   69.414434][ T6007] netlink: 124 bytes leftover after parsing attributes in process `syz.3.164'.
[   69.480446][ T6012] FAULT_INJECTION: forcing a failure.
[   69.480446][ T6012] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.484152][ T6012] CPU: 1 UID: 0 PID: 6012 Comm: syz.3.166 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[   69.486898][ T6012] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.489612][ T6012] Call Trace:
[   69.490468][ T6012]  <TASK>
[   69.491277][ T6012]  dump_stack_lvl+0x16c/0x1f0
[   69.492510][ T6012]  should_fail_ex+0x497/0x5b0
[   69.493773][ T6012]  _copy_from_user+0x30/0xf0
[   69.495053][ T6012]  get_compat_msghdr+0xa8/0x170
[   69.496332][ T6012]  ? __pfx_get_compat_msghdr+0x10/0x10
[   69.497755][ T6012]  ? __pfx___lock_acquire+0x10/0x10
[   69.499111][ T6012]  ___sys_sendmsg+0x1b0/0x1e0
[   69.500358][ T6012]  ? __pfx____sys_sendmsg+0x10/0x10
[   69.501686][ T6012]  ? lock_acquire+0x2f/0xb0
[   69.502913][ T6012]  ? __fget_files+0x40/0x3f0
[   69.504190][ T6012]  ? fdget+0x176/0x210
[   69.505263][ T6012]  __sys_sendmsg+0x117/0x1f0
[   69.506443][ T6012]  ? __pfx___sys_sendmsg+0x10/0x10
[   69.507728][ T6012]  ? __fget_files+0x244/0x3f0
[   69.508924][ T6012]  __do_fast_syscall_32+0x73/0x120
[   69.510212][ T6012]  do_fast_syscall_32+0x32/0x80
[   69.511507][ T6012]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   69.513235][ T6012] RIP: 0023:0xf748e579
[   69.514300][ T6012] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   69.519119][ T6012] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   69.521273][ T6012] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001500
[   69.523364][ T6012] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   69.525374][ T6012] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   69.527383][ T6012] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   69.529427][ T6012] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   69.531512][ T6012]  </TASK>
[   69.532512][ T5402] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   69.691540][ T5402] usb 6-1: Using ep0 maxpacket: 8
[   69.696213][ T5402] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   69.698541][ T5402] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   69.701081][ T5402] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   69.703932][ T5402] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   69.706959][ T5402] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   69.710442][ T5402] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   69.715630][ T5402] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.846459][ T6025] netlink: 12 bytes leftover after parsing attributes in process `syz.3.170'.
[   69.939178][ T5402] usb 6-1: usb_control_msg returned -32
[   69.940720][ T5402] usbtmc 6-1:16.0: can't read capabilities
[   70.266318][ T6028] netlink: 'syz.2.171': attribute type 1 has an invalid length.
[   70.268313][ T6028] netlink: 9396 bytes leftover after parsing attributes in process `syz.2.171'.
[   70.601987][ T6023] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   70.645075][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[   70.647419][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[   71.201557][ T5340] Bluetooth: hci4: command 0x1003 tx timeout
[   71.201612][ T5349] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   71.213978][ T5402] usb 6-1: USB disconnect, device number 3
[   74.852443][ T6038] netlink: 124 bytes leftover after parsing attributes in process `syz.1.174'.
[   75.666580][ T6062] netlink: 40 bytes leftover after parsing attributes in process `syz.1.182'.
[   75.787097][    T8] cfg80211: failed to load regulatory.db
[   76.006291][ T6074] mkiss: ax0: crc mode is auto.
[   76.026003][ T6074] netlink: 4 bytes leftover after parsing attributes in process `syz.3.187'.
[   76.269801][ T6083] Zero length message leads to an empty skb
[   76.276543][ T6083] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   76.279456][ T6083] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   76.282106][ T6083] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   77.179202][ T6100] netlink: 68 bytes leftover after parsing attributes in process `syz.0.195'.
[   77.483431][ T6111] netlink: 12 bytes leftover after parsing attributes in process `syz.0.198'.
[   80.918840][ T6148] netlink: 24 bytes leftover after parsing attributes in process `syz.2.209'.
[   81.418678][ T6177] netlink: 40 bytes leftover after parsing attributes in process `syz.1.216'.
[   81.419628][   T40] audit: type=1326 audit(1728131308.156:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.451414][   T40] audit: type=1326 audit(1728131308.156:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.456924][   T40] audit: type=1326 audit(1728131308.156:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.481549][   T40] audit: type=1326 audit(1728131308.156:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.497640][   T40] audit: type=1326 audit(1728131308.156:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.509916][   T40] audit: type=1326 audit(1728131308.186:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=449 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.518554][   T40] audit: type=1326 audit(1728131308.186:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.530256][   T40] audit: type=1326 audit(1728131308.186:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.544547][   T40] audit: type=1326 audit(1728131308.186:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.549978][   T40] audit: type=1326 audit(1728131308.186:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6175 comm="syz.0.215" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[   81.801703][ T1281] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   81.952874][ T1281] usb 6-1: Using ep0 maxpacket: 8
[   81.956271][ T1281] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   81.958984][ T1281] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[   81.961296][ T1281] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   81.964294][ T1281] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   81.967563][ T1281] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   81.969991][ T1281] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.975001][ T1281] hub 6-1:1.0: bad descriptor, ignoring hub
[   81.976613][ T1281] hub 6-1:1.0: probe with driver hub failed with error -5
[   81.979091][ T1281] cdc_wdm 6-1:1.0: skipping garbage
[   81.980491][ T1281] cdc_wdm 6-1:1.0: skipping garbage
[   81.983935][ T1281] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[   81.985551][ T1281] cdc_wdm 6-1:1.0: Unknown control protocol
[   82.386213][ T6195] netlink: 124 bytes leftover after parsing attributes in process `syz.0.224'.
[   82.682725][ T6204] lo speed is unknown, defaulting to 1000
[   82.687121][ T6204] lo speed is unknown, defaulting to 1000
[   82.689001][ T6204] lo speed is unknown, defaulting to 1000
[   82.695110][ T6204] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   82.705751][ T6204] lo speed is unknown, defaulting to 1000
[   82.707671][ T6204] lo speed is unknown, defaulting to 1000
[   82.709752][ T6204] lo speed is unknown, defaulting to 1000
[   82.717604][ T6204] lo speed is unknown, defaulting to 1000
[   82.890462][ T6207] netlink: 124 bytes leftover after parsing attributes in process `syz.0.227'.
[   83.127848][ T6180] usb 6-1: reset high-speed USB device number 4 using dummy_hcd
[   83.331638][ T6180] usb 6-1: device descriptor read/64, error -71
[   83.431708][ T6187] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   83.581542][ T6187] usb 5-1: Using ep0 maxpacket: 8
[   83.581859][ T6180] usb 6-1: reset high-speed USB device number 4 using dummy_hcd
[   83.593747][ T6187] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   83.596255][ T6187] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   83.598643][ T6187] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   83.601052][ T6187] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   83.604474][ T6187] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   83.606762][ T6187] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.713361][ T6180] usb 6-1: device descriptor read/64, error -71
[   83.850172][ T6221] program syz.3.231 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   83.875255][ T6187] usb 5-1: GET_CAPABILITIES returned 0
[   83.876646][ T6187] usbtmc 5-1:16.0: can't read capabilities
[   83.961714][ T6180] usb 6-1: reset high-speed USB device number 4 using dummy_hcd
[   83.992983][ T6180] usb 6-1: device descriptor read/8, error -71
[   84.043683][ T6230] netlink: 124 bytes leftover after parsing attributes in process `syz.3.234'.
[   84.241986][ T6180] usb 6-1: reset high-speed USB device number 4 using dummy_hcd
[   84.263910][ T6180] usb 6-1: device descriptor read/8, error -71
[   84.361624][  T979] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   84.373679][ T6180] cdc_wdm 6-1:1.0: Error autopm - -16
[   84.373770][   T71] usb 6-1: USB disconnect, device number 4
[   84.378065][ T6214] cdc_wdm 6-1:1.0: Error autopm - -16
[   84.383197][    T8] usb 5-1: USB disconnect, device number 2
[   84.521600][   T71] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   84.531636][  T979] usb 8-1: Using ep0 maxpacket: 32
[   84.535188][  T979] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[   84.538078][  T979] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[   84.542170][  T979] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[   84.546144][  T979] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[   84.550958][  T979] usb 8-1: config 0 interface 0 has no altsetting 0
[   84.557188][  T979] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[   84.560791][  T979] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[   84.564221][  T979] usb 8-1: Product: syz
[   84.565739][  T979] usb 8-1: Manufacturer: syz
[   84.567435][  T979] usb 8-1: SerialNumber: syz
[   84.577428][  T979] usb 8-1: config 0 descriptor??
[   84.582866][  T979] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[   84.587585][  T979] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[   84.786984][    T8] usb 8-1: USB disconnect, device number 4
[   84.790457][    T8] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[   85.431078][ T6249] nbd: must specify a device to reconfigure
[   86.160091][ T6259] netlink: 124 bytes leftover after parsing attributes in process `syz.0.243'.
[   86.495450][ T6270] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   86.497046][ T6272] netlink: 40 bytes leftover after parsing attributes in process `syz.3.247'.
[   86.721884][ T5384] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   86.883825][ T5384] usb 5-1: Using ep0 maxpacket: 8
[   86.887841][ T5384] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   86.891287][ T5384] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   86.907427][ T5384] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.915149][ T5384] usb 5-1: config 0 descriptor??
[   87.128653][ T5384] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   87.405472][    T8] kernel read not supported for file inotify (pid: 8 comm: kworker/0:0)
[   87.470959][    T8] usb 5-1: USB disconnect, device number 3
[   87.472623][    C0] iowarrior 5-1:0.0: iowarrior_callback - usb_submit_urb failed with result -19
[   87.499268][    T8] iowarrior 5-1:0.0: I/O-Warror #0 now disconnected
[   87.860856][ T6318] netlink: 124 bytes leftover after parsing attributes in process `syz.3.252'.
[   87.922387][ T6325] netlink: 40 bytes leftover after parsing attributes in process `syz.3.255'.
[   88.464665][ T6337] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   88.790238][ T6339] lo speed is unknown, defaulting to 1000
[   88.794580][ T6339] lo speed is unknown, defaulting to 1000
[   88.842432][ T6342] fuse: Unknown parameter 'group_ixM—°æ.ï+ˆ…d'
[   88.866474][ T6339] futex_wake_op: syz.1.260 tries to shift op by -1; fix this program
[   88.953203][ T6345] netlink: 124 bytes leftover after parsing attributes in process `syz.3.263'.
[   89.076884][ T6360] netlink: 40 bytes leftover after parsing attributes in process `syz.1.269'.
[   90.133880][ T6375] netlink: 124 bytes leftover after parsing attributes in process `syz.3.275'.
[   90.200963][ T6382] netlink: 40 bytes leftover after parsing attributes in process `syz.1.278'.
[   90.291885][ T6390] capability: warning: `syz.1.282' uses 32-bit capabilities (legacy support in use)
[   90.353953][ T6393] netlink: 20 bytes leftover after parsing attributes in process `syz.1.282'.
[   90.379926][ T6394] overlayfs: failed to resolve './file0/file0': -2
[   90.679692][ T6398] netlink: 124 bytes leftover after parsing attributes in process `syz.1.284'.
[   91.349355][ T6411] netlink: 40 bytes leftover after parsing attributes in process `syz.0.289'.
[   91.604764][ T6420] lo speed is unknown, defaulting to 1000
[   91.607768][ T6420] lo speed is unknown, defaulting to 1000
[   92.357811][ T6428] FAULT_INJECTION: forcing a failure.
[   92.357811][ T6428] name failslab, interval 1, probability 0, space 0, times 0
[   92.361094][ T6428] CPU: 2 UID: 0 PID: 6428 Comm: syz.3.296 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[   92.363836][ T6428] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.366606][ T6428] Call Trace:
[   92.367495][ T6428]  <TASK>
[   92.368280][ T6428]  dump_stack_lvl+0x16c/0x1f0
[   92.369527][ T6428]  should_fail_ex+0x497/0x5b0
[   92.370766][ T6428]  ? fs_reclaim_acquire+0xae/0x160
[   92.372134][ T6428]  should_failslab+0xc2/0x120
[   92.373375][ T6428]  __kmalloc_noprof+0xcb/0x410
[   92.374651][ T6428]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   92.376149][ T6428]  tomoyo_realpath_from_path+0xbf/0x710
[   92.377619][ T6428]  ? tomoyo_path_number_perm+0x232/0x5b0
[   92.379119][ T6428]  tomoyo_path_number_perm+0x245/0x5b0
[   92.380680][ T6428]  ? tomoyo_path_number_perm+0x232/0x5b0
[   92.382183][ T6428]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   92.383796][ T6428]  ? trace_lock_acquire+0x14a/0x1d0
[   92.385173][ T6428]  ? lock_acquire+0x2f/0xb0
[   92.386372][ T6428]  ? __fget_files+0x40/0x3f0
[   92.387603][ T6428]  ? __fget_files+0x244/0x3f0
[   92.388836][ T6428]  security_file_ioctl_compat+0x9b/0x240
[   92.390329][ T6428]  __do_compat_sys_ioctl+0x52/0x2b0
[   92.391702][ T6428]  __do_fast_syscall_32+0x73/0x120
[   92.393055][ T6428]  do_fast_syscall_32+0x32/0x80
[   92.394344][ T6428]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   92.396003][ T6428] RIP: 0023:0xf748e579
[   92.397075][ T6428] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   92.402056][ T6428] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   92.404255][ T6428] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000088044d0a
[   92.406300][ T6428] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   92.408370][ T6428] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   92.410416][ T6428] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   92.412466][ T6428] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   92.414523][ T6428]  </TASK>
[   92.465987][ T6428] ERROR: Out of memory at tomoyo_realpath_from_path.
[   92.476811][ T5340] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   92.479492][ T5340] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   92.482779][ T5340] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   92.486272][ T5340] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   92.488601][ T5340] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   92.490739][ T5340] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   92.518851][ T6433] netlink: 40 bytes leftover after parsing attributes in process `syz.3.298'.
[   92.520075][ T6430] lo speed is unknown, defaulting to 1000
[   92.568393][ T6430] lo speed is unknown, defaulting to 1000
[   92.638180][ T6438] netlink: 124 bytes leftover after parsing attributes in process `syz.0.301'.
[   92.650996][ T6430] chnl_net:caif_netlink_parms(): no params data found
[   92.700502][ T6430] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.709693][ T6430] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.711864][ T6430] bridge_slave_0: entered allmulticast mode
[   92.714321][ T6430] bridge_slave_0: entered promiscuous mode
[   92.718927][ T6430] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.721748][ T6430] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.723696][ T6430] bridge_slave_1: entered allmulticast mode
[   92.741807][ T6430] bridge_slave_1: entered promiscuous mode
[   92.779519][ T6430] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.783888][ T6430] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.806583][ T6430] team0: Port device team_slave_0 added
[   92.809142][ T6430] team0: Port device team_slave_1 added
[   92.857717][ T6430] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.859544][ T6430] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.871496][ T6430] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.875087][ T6430] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.876890][ T6430] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.884045][ T6430] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.919603][ T6430] hsr_slave_0: entered promiscuous mode
[   92.921718][ T6430] hsr_slave_1: entered promiscuous mode
[   92.923548][ T6430] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   92.925947][ T6430] Cannot create hsr debugfs directory
[   92.987180][ T6430] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.295063][ T6430] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.378313][ T6430] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.437965][ T6430] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.535297][ T4309] bridge_slave_1: left allmulticast mode
[   93.536912][ T4309] bridge_slave_1: left promiscuous mode
[   93.538979][ T4309] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.553235][ T4309] bridge_slave_0: left allmulticast mode
[   93.559861][ T4309] bridge_slave_0: left promiscuous mode
[   93.563633][ T4309] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.585534][ T6465] netlink: 40 bytes leftover after parsing attributes in process `syz.0.308'.
[   93.679646][ T6469] netlink: 124 bytes leftover after parsing attributes in process `syz.3.309'.
[   93.855903][ T4309] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   93.860627][ T4309] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   93.864652][ T4309] bond0 (unregistering): Released all slaves
[   93.909049][ T6430] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   93.914632][ T6430] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   93.918017][ T6430] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   93.930852][ T6430] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   94.032285][ T6430] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.039108][ T6430] 8021q: adding VLAN 0 to HW filter on device team0
[   94.043153][ T1186] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.045018][ T1186] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.052181][ T1186] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.054012][ T1186] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.069655][ T6430] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   94.073708][ T6430] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   94.187569][ T6430] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.206867][ T6430] veth0_vlan: entered promiscuous mode
[   94.213265][ T6430] veth1_vlan: entered promiscuous mode
[   94.245041][ T6430] veth0_macvtap: entered promiscuous mode
[   94.247987][ T6430] veth1_macvtap: entered promiscuous mode
[   94.254615][ T6430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.257365][ T6430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.259868][ T6430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.262705][ T6430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.265212][ T6430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.267877][ T6430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.270346][ T6430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.273218][ T6430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.277698][ T6430] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.280591][ T6430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.284696][ T6430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.287437][ T6430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.290110][ T6430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.292775][ T6430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.294026][ T6487] ptrace attach of "/syz-executor exec"[5343] was attempted by "/syz-executor exec"[6487]
[   94.295434][ T6430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.295442][ T6430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.295449][ T6430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.307105][ T6430] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.323201][ T4309] hsr_slave_0: left promiscuous mode
[   94.325934][ T4309] hsr_slave_1: left promiscuous mode
[   94.328640][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   94.330930][ T6490] ptrace attach of "/syz-executor exec"[5339] was attempted by "/syz-executor exec"[6490]
[   94.331321][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_0
[   94.337471][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   94.340082][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_1
[   94.366296][ T4309] veth0_macvtap: left promiscuous mode
[   94.368525][ T4309] veth1_vlan: left promiscuous mode
[   94.370656][ T4309] veth0_vlan: left promiscuous mode
[   94.571594][ T5340] Bluetooth: hci4: command tx timeout
[   94.747877][ T6501] netlink: 124 bytes leftover after parsing attributes in process `syz.3.318'.
[   94.806403][ T6505] netlink: 40 bytes leftover after parsing attributes in process `syz.3.319'.
[   95.073892][ T4309] team0 (unregistering): Port device team_slave_1 removed
[   95.169381][ T4309] team0 (unregistering): Port device team_slave_0 removed
[   95.647101][ T6430] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.649401][ T6430] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.651935][ T6430] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.654184][ T6430] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.707117][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.709194][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.723209][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.725273][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.819414][ T6529] netlink: 40 bytes leftover after parsing attributes in process `syz.2.327'.
[   95.854696][ T6527] netlink: 124 bytes leftover after parsing attributes in process `syz.1.326'.
[   95.977426][ T5340] Bluetooth: hci4: unexpected cc 0x1408 length: 57 > 4
[   95.982716][ T6538] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   96.842532][ T6557] netlink: 4 bytes leftover after parsing attributes in process `syz.2.333'.
[   96.853011][ T6559] 9pnet_fd: Insufficient options for proto=fd
[   97.900878][ T6580] netlink: 124 bytes leftover after parsing attributes in process `syz.3.343'.
[   98.055433][ T6586] netlink: 4 bytes leftover after parsing attributes in process `syz.2.345'.
[   98.277501][ T6604] binder: 6601:6604 ioctl c018620c 20000140 returned -22
[   98.381775][ T6608] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   98.453492][ T6610] netlink: 40 bytes leftover after parsing attributes in process `syz.2.353'.
[   98.985830][ T6640] netlink: 40 bytes leftover after parsing attributes in process `syz.3.362'.
[   99.189909][ T6645] FAULT_INJECTION: forcing a failure.
[   99.189909][ T6645] name failslab, interval 1, probability 0, space 0, times 0
[   99.193433][ T6645] CPU: 1 UID: 0 PID: 6645 Comm: syz.3.363 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[   99.196233][ T6645] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   99.199062][ T6645] Call Trace:
[   99.199948][ T6645]  <TASK>
[   99.200731][ T6645]  dump_stack_lvl+0x16c/0x1f0
[   99.202000][ T6645]  should_fail_ex+0x497/0x5b0
[   99.203272][ T6645]  ? fs_reclaim_acquire+0xae/0x160
[   99.204628][ T6645]  should_failslab+0xc2/0x120
[   99.205882][ T6645]  __kmalloc_noprof+0xcb/0x410
[   99.207159][ T6645]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   99.208646][ T6645]  tomoyo_realpath_from_path+0xbf/0x710
[   99.210110][ T6645]  tomoyo_check_open_permission+0x2a7/0x3b0
[   99.211679][ T6645]  ? __lock_acquire+0x163e/0x3ce0
[   99.213271][ T6645]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[   99.214960][ T6645]  ? __pfx___lock_acquire+0x10/0x10
[   99.216360][ T6645]  ? __pfx_hook_file_open+0x10/0x10
[   99.217738][ T6645]  ? path_get+0x61/0x80
[   99.218849][ T6645]  tomoyo_file_open+0xcf/0x100
[   99.220115][ T6645]  security_file_open+0x64c/0x9d0
[   99.221443][ T6645]  do_dentry_open+0x57c/0x1530
[   99.222717][ T6645]  ? inode_permission+0xdd/0x5f0
[   99.224039][ T6645]  vfs_open+0x82/0x3f0
[   99.225123][ T6645]  ? may_open+0x1f2/0x400
[   99.226269][ T6645]  path_openat+0x1e6a/0x2d60
[   99.227500][ T6645]  ? __pfx_path_openat+0x10/0x10
[   99.228803][ T6645]  ? __pfx___lock_acquire+0x10/0x10
[   99.230173][ T6645]  do_filp_open+0x1dc/0x430
[   99.231378][ T6645]  ? __pfx_do_filp_open+0x10/0x10
[   99.232732][ T6645]  ? find_held_lock+0x2d/0x110
[   99.234007][ T6645]  ? _raw_spin_unlock+0x28/0x50
[   99.235304][ T6645]  ? alloc_fd+0x2d7/0x6c0
[   99.236451][ T6645]  do_sys_openat2+0x17a/0x1e0
[   99.237698][ T6645]  ? __pfx_do_sys_openat2+0x10/0x10
[   99.239075][ T6645]  ? __fget_files+0x244/0x3f0
[   99.240319][ T6645]  __ia32_compat_sys_openat+0x16e/0x210
[   99.241774][ T6645]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[   99.243387][ T6645]  ? ksys_write+0x1ad/0x260
[   99.244595][ T6645]  __do_fast_syscall_32+0x73/0x120
[   99.245953][ T6645]  do_fast_syscall_32+0x32/0x80
[   99.247246][ T6645]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   99.248907][ T6645] RIP: 0023:0xf748e579
[   99.249985][ T6645] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   99.254977][ T6645] RSP: 002b:00000000f575556c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[   99.257109][ T6645] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000140
[   99.259188][ T6645] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[   99.261391][ T6645] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   99.263577][ T6645] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   99.265666][ T6645] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   99.267752][ T6645]  </TASK>
[   99.268931][ T6645] ERROR: Out of memory at tomoyo_realpath_from_path.
[   99.286614][ T6645] input: syz1 as /devices/virtual/input/input5
[   99.290592][ T6651] fuse: Unknown parameter 'ÿ0x0000000000000008'
[   99.329902][ T6645] netlink: 4 bytes leftover after parsing attributes in process `syz.3.363'.
[   99.677847][ T6660] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[   99.680266][ T6660] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  100.001643][ T5349] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  100.004345][ T5349] Bluetooth: hci4: Injecting HCI hardware error event
[  100.289465][ T6677] process 'syz.0.376' launched './file2' with NULL argv: empty string added
[  100.371731][ T6677] vivid-001: =================  START STATUS  =================
[  100.374018][ T6677] vivid-001: Radio HW Seek Mode: Bounded
[  100.376840][ T6677] vivid-001: Radio Programmable HW Seek: false
[  100.385334][ T6677] vivid-001: RDS Rx I/O Mode: Block I/O
[  100.388449][ T6677] vivid-001: Generate RBDS Instead of RDS: false
[  100.390904][ T6677] vivid-001: RDS Reception: true
[  100.393215][ T6677] vivid-001: RDS Program Type: 0 inactive
[  100.395332][ T6677] vivid-001: RDS PS Name:  inactive
[  100.397525][ T6677] vivid-001: RDS Radio Text:  inactive
[  100.399183][ T6677] vivid-001: RDS Traffic Announcement: false inactive
[  100.403753][ T6677] vivid-001: RDS Traffic Program: false inactive
[  100.405752][ T6677] vivid-001: RDS Music: false inactive
[  100.408916][ T6677] vivid-001: ==================  END STATUS  ==================
[  101.127805][ T6699] netlink: 8 bytes leftover after parsing attributes in process `syz.3.382'.
[  101.454958][ T6706] netlink: 124 bytes leftover after parsing attributes in process `syz.1.384'.
[  101.591216][ T6709] netlink: 40 bytes leftover after parsing attributes in process `syz.3.385'.
[  101.740716][ T6714] netlink: 40 bytes leftover after parsing attributes in process `syz.0.387'.
[  102.625980][ T6738] netlink: 40 bytes leftover after parsing attributes in process `syz.0.394'.
[  103.365143][ T6748] netlink: 124 bytes leftover after parsing attributes in process `syz.2.398'.
[  103.975311][ T6771] netlink: 124 bytes leftover after parsing attributes in process `syz.3.407'.
[  105.281812][ T6803] FAULT_INJECTION: forcing a failure.
[  105.281812][ T6803] name failslab, interval 1, probability 0, space 0, times 0
[  105.285467][ T6803] CPU: 1 UID: 0 PID: 6803 Comm: syz.0.417 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[  105.288250][ T6803] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.291072][ T6803] Call Trace:
[  105.291981][ T6803]  <TASK>
[  105.292778][ T6803]  dump_stack_lvl+0x16c/0x1f0
[  105.294106][ T6803]  should_fail_ex+0x497/0x5b0
[  105.295417][ T6803]  ? fs_reclaim_acquire+0xae/0x160
[  105.296776][ T6803]  should_failslab+0xc2/0x120
[  105.298030][ T6803]  kmem_cache_alloc_node_noprof+0x71/0x310
[  105.299586][ T6803]  ? __alloc_skb+0x2b3/0x380
[  105.300832][ T6803]  __alloc_skb+0x2b3/0x380
[  105.302218][ T6803]  ? __pfx___alloc_skb+0x10/0x10
[  105.303688][ T6803]  ? lock_acquire+0x2f/0xb0
[  105.304902][ T6803]  netlink_alloc_large_skb+0x69/0x130
[  105.306337][ T6803]  netlink_sendmsg+0x689/0xd70
[  105.307637][ T6803]  ? __pfx_netlink_sendmsg+0x10/0x10
[  105.309043][ T6803]  ? lock_acquire+0x2f/0xb0
[  105.310264][ T6803]  ____sys_sendmsg+0x9ae/0xb40
[  105.311550][ T6803]  ? __pfx_____sys_sendmsg+0x10/0x10
[  105.312962][ T6803]  ? get_compat_msghdr+0x11b/0x170
[  105.314322][ T6803]  ? __pfx___lock_acquire+0x10/0x10
[  105.315714][ T6803]  ___sys_sendmsg+0x135/0x1e0
[  105.316967][ T6803]  ? __pfx____sys_sendmsg+0x10/0x10
[  105.318386][ T6803]  ? lock_acquire+0x2f/0xb0
[  105.319610][ T6803]  ? __fget_files+0x40/0x3f0
[  105.320844][ T6803]  ? fdget+0x176/0x210
[  105.321806][ T6803]  __sys_sendmsg+0x117/0x1f0
[  105.322991][ T6803]  ? __pfx___sys_sendmsg+0x10/0x10
[  105.324350][ T6803]  ? __fget_files+0x244/0x3f0
[  105.325613][ T6803]  __do_fast_syscall_32+0x73/0x120
[  105.326983][ T6803]  do_fast_syscall_32+0x32/0x80
[  105.328281][ T6803]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  105.329964][ T6803] RIP: 0023:0xf7fb7579
[  105.331061][ T6803] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  105.336132][ T6803] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  105.338306][ T6803] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000180
[  105.340400][ T6803] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  105.342486][ T6803] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  105.344579][ T6803] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  105.346651][ T6803] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  105.348737][ T6803]  </TASK>
[  105.548860][ T6187] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  105.661610][   T71] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  105.691604][ T6187] usb 7-1: device descriptor read/64, error -71
[  105.826698][   T71] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  105.829694][   T71] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  105.834125][   T71] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  105.838255][   T71] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  105.847181][   T71] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  105.850596][   T71] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.856638][   T71] usb 5-1: config 0 descriptor??
[  105.865002][ T6811] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  105.956304][ T6187] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  106.079263][   T71] plantronics 0003:047F:FFFF.0003: unknown main item tag 0xd
[  106.090582][   T71] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  106.094511][ T6187] usb 7-1: device descriptor read/64, error -71
[  106.119316][   T71] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  106.212665][ T6187] usb usb7-port1: attempt power cycle
[  106.336189][   T71] usb 5-1: USB disconnect, device number 4
[  106.461339][   T40] kauditd_printk_skb: 58 callbacks suppressed
[  106.461351][   T40] audit: type=1326 audit(1728131333.196:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.469555][   T40] audit: type=1326 audit(1728131333.196:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.480539][   T40] audit: type=1326 audit(1728131333.206:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.488250][   T40] audit: type=1326 audit(1728131333.206:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.498828][   T40] audit: type=1326 audit(1728131333.206:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.506437][   T40] audit: type=1326 audit(1728131333.206:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.514137][   T40] audit: type=1326 audit(1728131333.206:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.519520][   T40] audit: type=1326 audit(1728131333.216:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.524964][   T40] audit: type=1326 audit(1728131333.216:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.530241][   T40] audit: type=1326 audit(1728131333.216:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.3.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  106.561584][ T6187] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  106.582720][ T6187] usb 7-1: device descriptor read/8, error -71
[  106.831599][ T6187] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  106.852010][ T6187] usb 7-1: device descriptor read/8, error -71
[  106.971837][ T6187] usb usb7-port1: unable to enumerate USB device
[  108.430681][ T6856] FAULT_INJECTION: forcing a failure.
[  108.430681][ T6856] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.440442][ T6856] CPU: 2 UID: 0 PID: 6856 Comm: syz.1.437 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[  108.444420][ T6856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.447777][ T6856] Call Trace:
[  108.448637][ T6856]  <TASK>
[  108.449408][ T6856]  dump_stack_lvl+0x16c/0x1f0
[  108.450657][ T6856]  should_fail_ex+0x497/0x5b0
[  108.451895][ T6856]  _copy_from_iter+0x29b/0x13e0
[  108.453181][ T6856]  ? __pfx__copy_from_iter+0x10/0x10
[  108.454665][ T6856]  ? __virt_addr_valid+0x1a4/0x590
[  108.456008][ T6856]  ? __virt_addr_valid+0x5e/0x590
[  108.457321][ T6856]  ? const_folio_flags.constprop.0+0x56/0x150
[  108.458909][ T6856]  ? __phys_addr_symbol+0x30/0x80
[  108.460220][ T6856]  ? __check_object_size+0x488/0x710
[  108.461592][ T6856]  netlink_sendmsg+0x813/0xd70
[  108.462883][ T6856]  ? __pfx_netlink_sendmsg+0x10/0x10
[  108.464251][ T6856]  ? lock_acquire+0x2f/0xb0
[  108.465442][ T6856]  ____sys_sendmsg+0x9ae/0xb40
[  108.466700][ T6856]  ? __pfx_____sys_sendmsg+0x10/0x10
[  108.468066][ T6856]  ? get_compat_msghdr+0x11b/0x170
[  108.469395][ T6856]  ? __pfx___lock_acquire+0x10/0x10
[  108.470747][ T6856]  ___sys_sendmsg+0x135/0x1e0
[  108.471949][ T6856]  ? __pfx____sys_sendmsg+0x10/0x10
[  108.473285][ T6856]  ? lock_acquire+0x2f/0xb0
[  108.474465][ T6856]  ? __fget_files+0x40/0x3f0
[  108.475665][ T6856]  ? fdget+0x176/0x210
[  108.476671][ T6856]  __sys_sendmsg+0x117/0x1f0
[  108.477837][ T6856]  ? __pfx___sys_sendmsg+0x10/0x10
[  108.479170][ T6856]  ? __fget_files+0x244/0x3f0
[  108.480383][ T6856]  __do_fast_syscall_32+0x73/0x120
[  108.481701][ T6856]  do_fast_syscall_32+0x32/0x80
[  108.482969][ T6856]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.484574][ T6856] RIP: 0023:0xf7faf579
[  108.485615][ T6856] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.490490][ T6856] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  108.492642][ T6856] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  108.494639][ T6856] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  108.496621][ T6856] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  108.498594][ T6856] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  108.500641][ T6856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.502728][ T6856]  </TASK>
[  109.252300][ T6894] netlink: 12 bytes leftover after parsing attributes in process `syz.0.450'.
[  109.263311][ T6894] netlink: 84 bytes leftover after parsing attributes in process `syz.0.450'.
[  109.652244][ T6901] FAULT_INJECTION: forcing a failure.
[  109.652244][ T6901] name failslab, interval 1, probability 0, space 0, times 0
[  109.655519][ T6901] CPU: 2 UID: 0 PID: 6901 Comm: syz.3.452 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[  109.658211][ T6901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.660944][ T6901] Call Trace:
[  109.661835][ T6901]  <TASK>
[  109.662619][ T6901]  dump_stack_lvl+0x16c/0x1f0
[  109.663827][ T6901]  should_fail_ex+0x497/0x5b0
[  109.665029][ T6901]  ? fs_reclaim_acquire+0xae/0x160
[  109.666351][ T6901]  should_failslab+0xc2/0x120
[  109.667589][ T6901]  __kmalloc_noprof+0xcb/0x410
[  109.668848][ T6901]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  109.670278][ T6901]  tomoyo_realpath_from_path+0xbf/0x710
[  109.671709][ T6901]  ? tomoyo_path_number_perm+0x232/0x5b0
[  109.673009][ T6901]  tomoyo_path_number_perm+0x245/0x5b0
[  109.674402][ T6901]  ? tomoyo_path_number_perm+0x232/0x5b0
[  109.675871][ T6901]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  109.677324][ T6901]  ? trace_lock_acquire+0x14a/0x1d0
[  109.678614][ T6901]  ? lock_acquire+0x2f/0xb0
[  109.679715][ T6901]  ? __fget_files+0x40/0x3f0
[  109.680882][ T6901]  ? __fget_files+0x244/0x3f0
[  109.682028][ T6901]  security_file_ioctl_compat+0x9b/0x240
[  109.683583][ T6901]  __do_compat_sys_ioctl+0x52/0x2b0
[  109.684956][ T6901]  __do_fast_syscall_32+0x73/0x120
[  109.686232][ T6901]  do_fast_syscall_32+0x32/0x80
[  109.687464][ T6901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.689004][ T6901] RIP: 0023:0xf748e579
[  109.690063][ T6901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.695060][ T6901] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  109.697213][ T6901] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000089f1
[  109.699264][ T6901] RDX: 0000000020000440 RSI: 0000000000000000 RDI: 0000000000000000
[  109.701308][ T6901] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  109.703664][ T6901] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  109.705721][ T6901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  109.707783][ T6901]  </TASK>
[  109.715402][ T6901] ERROR: Out of memory at tomoyo_realpath_from_path.
[  109.906453][ T6907] skbuff: bad partial csum: csum=65506/2 headroom=168 headlen=65526
[  110.686763][ T6903] 
[  110.687650][ T6903] ======================================================
[  110.689936][ T6903] WARNING: possible circular locking dependency detected
[  110.692247][ T6903] 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 Not tainted
[  110.696327][ T6903] ------------------------------------------------------
[  110.698596][ T6903] syz.1.454/6903 is trying to acquire lock:
[  110.700578][ T6903] ffff88805aaae258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sk_state_change+0x6d/0x3b0
[  110.704375][ T6903] 
[  110.704375][ T6903] but task is already holding lock:
[  110.706824][ T6903] ffff88802a986928 (&d->lock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x235/0x700
[  110.709771][ T6903] 
[  110.709771][ T6903] which lock already depends on the new lock.
[  110.709771][ T6903] 
[  110.713057][ T6903] 
[  110.713057][ T6903] the existing dependency chain (in reverse order) is:
[  110.715928][ T6903] 
[  110.715928][ T6903] -> #3 (&d->lock){+.+.}-{3:3}:
[  110.718188][ T6903]        __mutex_lock+0x175/0x9c0
[  110.719844][ T6903]        __rfcomm_dlc_close+0x235/0x700
[  110.721591][ T6903]        rfcomm_dlc_close+0x1eb/0x240
[  110.723350][ T6903]        __rfcomm_sock_close+0xa7/0x230
[  110.725123][ T6903]        rfcomm_sock_shutdown+0xd5/0x230
[  110.726941][ T6903]        rfcomm_sock_release+0x5d/0x140
[  110.728732][ T6903]        __sock_release+0xb0/0x270
[  110.730376][ T6903]        sock_close+0x1c/0x30
[  110.731902][ T6903]        __fput+0x3f6/0xb60
[  110.733367][ T6903]        task_work_run+0x14e/0x250
[  110.735026][ T6903]        get_signal+0x1d3/0x26d0
[  110.736617][ T6903]        arch_do_signal_or_restart+0x90/0x7e0
[  110.738576][ T6903]        syscall_exit_to_user_mode+0x150/0x2a0
[  110.740565][ T6903]        __do_fast_syscall_32+0x80/0x120
[  110.742419][ T6903]        do_fast_syscall_32+0x32/0x80
[  110.744141][ T6903]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.746298][ T6903] 
[  110.746298][ T6903] -> #2 (rfcomm_mutex){+.+.}-{3:3}:
[  110.748616][ T6903]        __mutex_lock+0x175/0x9c0
[  110.750256][ T6903]        rfcomm_dlc_exists+0x5f/0x1a0
[  110.752031][ T6903]        rfcomm_dev_ioctl+0xabc/0x1e70
[  110.753821][ T6903]        rfcomm_sock_compat_ioctl+0xba/0xe0
[  110.755754][ T6903]        compat_sock_ioctl+0x17b/0x7e0
[  110.757466][ T6903]        __do_compat_sys_ioctl+0x259/0x2b0
[  110.759330][ T6903]        __do_fast_syscall_32+0x73/0x120
[  110.761138][ T6903]        do_fast_syscall_32+0x32/0x80
[  110.762888][ T6903]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.765059][ T6903] 
[  110.765059][ T6903] -> #1 (rfcomm_ioctl_mutex){+.+.}-{3:3}:
[  110.767622][ T6903]        __mutex_lock+0x175/0x9c0
[  110.769259][ T6903]        rfcomm_dev_ioctl+0x9db/0x1e70
[  110.771018][ T6903]        rfcomm_sock_compat_ioctl+0xba/0xe0
[  110.772984][ T6903]        compat_sock_ioctl+0x17b/0x7e0
[  110.774778][ T6903]        __do_compat_sys_ioctl+0x259/0x2b0
[  110.776640][ T6903]        __do_fast_syscall_32+0x73/0x120
[  110.778454][ T6903]        do_fast_syscall_32+0x32/0x80
[  110.780193][ T6903]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.782373][ T6903] 
[  110.782373][ T6903] -> #0 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}:
[  110.785153][ T6903]        __lock_acquire+0x250b/0x3ce0
[  110.786871][ T6903]        lock_acquire.part.0+0x11b/0x380
[  110.788658][ T6903]        lock_sock_nested+0x3a/0xf0
[  110.790311][ T6903]        rfcomm_sk_state_change+0x6d/0x3b0
[  110.792184][ T6903]        __rfcomm_dlc_close+0x28c/0x700
[  110.793967][ T6903]        rfcomm_dlc_close+0x1eb/0x240
[  110.795694][ T6903]        __rfcomm_sock_close+0xa7/0x230
[  110.797460][ T6903]        rfcomm_sock_shutdown+0xd5/0x230
[  110.799297][ T6903]        rfcomm_sock_release+0x5d/0x140
[  110.801059][ T6903]        __sock_release+0xb0/0x270
[  110.802710][ T6903]        sock_close+0x1c/0x30
[  110.804224][ T6903]        __fput+0x3f6/0xb60
[  110.805684][ T6903]        task_work_run+0x14e/0x250
[  110.807332][ T6903]        get_signal+0x1d3/0x26d0
[  110.808881][ T6903]        arch_do_signal_or_restart+0x90/0x7e0
[  110.810840][ T6903]        syscall_exit_to_user_mode+0x150/0x2a0
[  110.812784][ T6903]        __do_fast_syscall_32+0x80/0x120
[  110.814561][ T6903]        do_fast_syscall_32+0x32/0x80
[  110.816263][ T6903]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.818417][ T6903] 
[  110.818417][ T6903] other info that might help us debug this:
[  110.818417][ T6903] 
[  110.821667][ T6903] Chain exists of:
[  110.821667][ T6903]   sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM --> rfcomm_mutex --> &d->lock
[  110.821667][ T6903] 
[  110.826121][ T6903]  Possible unsafe locking scenario:
[  110.826121][ T6903] 
[  110.828497][ T6903]        CPU0                    CPU1
[  110.830219][ T6903]        ----                    ----
[  110.831954][ T6903]   lock(&d->lock);
[  110.833254][ T6903]                                lock(rfcomm_mutex);
[  110.834946][ T6903]                                lock(&d->lock);
[  110.836483][ T6903]   lock(sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM);
[  110.837988][ T6903] 
[  110.837988][ T6903]  *** DEADLOCK ***
[  110.837988][ T6903] 
[  110.840071][ T6903] 3 locks held by syz.1.454/6903:
[  110.841357][ T6903]  #0: ffff888024393808 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: __sock_release+0x86/0x270
[  110.844523][ T6903]  #1: ffffffff8fd51e28 (rfcomm_mutex){+.+.}-{3:3}, at: rfcomm_dlc_close+0x33/0x240
[  110.847632][ T6903]  #2: ffff88802a986928 (&d->lock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x235/0x700
[  110.850252][ T6903] 
[  110.850252][ T6903] stack backtrace:
[  110.852192][ T6903] CPU: 3 UID: 0 PID: 6903 Comm: syz.1.454 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0
[  110.855838][ T6903] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.859253][ T6903] Call Trace:
[  110.860102][ T6903]  <TASK>
[  110.860856][ T6903]  dump_stack_lvl+0x116/0x1f0
[  110.862017][ T6903]  print_circular_bug+0x419/0x5d0
[  110.863284][ T6903]  check_noncircular+0x31a/0x400
[  110.864531][ T6903]  ? __pfx_check_noncircular+0x10/0x10
[  110.865876][ T6903]  ? lockdep_lock+0xc6/0x200
[  110.867028][ T6903]  ? __pfx_lockdep_lock+0x10/0x10
[  110.868259][ T6903]  __lock_acquire+0x250b/0x3ce0
[  110.869526][ T6903]  ? __pfx___lock_acquire+0x10/0x10
[  110.870844][ T6903]  ? __mutex_trylock_common+0xea/0x250
[  110.872184][ T6903]  ? __pfx___mutex_trylock_common+0x10/0x10
[  110.873652][ T6903]  ? __rfcomm_dlc_close+0x235/0x700
[  110.874957][ T6903]  lock_acquire.part.0+0x11b/0x380
[  110.876236][ T6903]  ? rfcomm_sk_state_change+0x6d/0x3b0
[  110.877577][ T6903]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  110.878995][ T6903]  ? rcu_is_watching+0x12/0xc0
[  110.880162][ T6903]  ? trace_lock_acquire+0x14a/0x1d0
[  110.881443][ T6903]  ? rfcomm_sk_state_change+0x6d/0x3b0
[  110.882856][ T6903]  ? lock_acquire+0x2f/0xb0
[  110.884027][ T6903]  ? rfcomm_sk_state_change+0x6d/0x3b0
[  110.885417][ T6903]  lock_sock_nested+0x3a/0xf0
[  110.886640][ T6903]  ? rfcomm_sk_state_change+0x6d/0x3b0
[  110.887999][ T6903]  rfcomm_sk_state_change+0x6d/0x3b0
[  110.889282][ T6903]  __rfcomm_dlc_close+0x28c/0x700
[  110.890498][ T6903]  rfcomm_dlc_close+0x1eb/0x240
[  110.891726][ T6903]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  110.893148][ T6903]  __rfcomm_sock_close+0xa7/0x230
[  110.894368][ T6903]  rfcomm_sock_shutdown+0xd5/0x230
[  110.895621][ T6903]  rfcomm_sock_release+0x5d/0x140
[  110.896848][ T6903]  __sock_release+0xb0/0x270
[  110.897980][ T6903]  ? __pfx_sock_close+0x10/0x10
[  110.899171][ T6903]  sock_close+0x1c/0x30
[  110.900172][ T6903]  __fput+0x3f6/0xb60
[  110.901142][ T6903]  ? _raw_spin_unlock_irq+0x23/0x50
[  110.902408][ T6903]  task_work_run+0x14e/0x250
[  110.903530][ T6903]  ? __pfx_task_work_run+0x10/0x10
[  110.904777][ T6903]  get_signal+0x1d3/0x26d0
[  110.905864][ T6903]  ? kick_process+0xf6/0x1b0
[  110.906995][ T6903]  ? task_work_add+0x1d6/0x370
[  110.908167][ T6903]  ? __pfx_task_work_add+0x10/0x10
[  110.909429][ T6903]  ? __pfx_get_signal+0x10/0x10
[  110.910620][ T6903]  arch_do_signal_or_restart+0x90/0x7e0
[  110.911938][ T6903]  ? __pfx___sys_connect+0x10/0x10
[  110.913175][ T6903]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  110.914679][ T6903]  ? rcu_is_watching+0x12/0xc0
[  110.915854][ T6903]  syscall_exit_to_user_mode+0x150/0x2a0
[  110.917197][ T6903]  __do_fast_syscall_32+0x80/0x120
[  110.918433][ T6903]  do_fast_syscall_32+0x32/0x80
[  110.919618][ T6903]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.921184][ T6903] RIP: 0023:0xf7faf579
[  110.922194][ T6903] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.926890][ T6903] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  110.928914][ T6903] RAX: fffffffffffffffc RBX: 0000000000000007 RCX: 00000000200004c0
[  110.930837][ T6903] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000000
[  110.932772][ T6903] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.934670][ T6903] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  110.936547][ T6903] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.938410][ T6903]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  111.330306][ T4309] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  111.333064][ T4309] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.405424][ T4309] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  111.409013][ T4309] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.515940][ T4309] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  111.519617][ T4309] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.624285][ T4309] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  111.627631][ T4309] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.706146][ T4309] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.753869][ T4309] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.824088][ T4309] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.865557][ T4309] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.934139][ T4309] bridge_slave_1: left allmulticast mode
[  111.936097][ T4309] bridge_slave_1: left promiscuous mode
[  111.938135][ T4309] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.940754][ T4309] bridge_slave_0: left allmulticast mode
[  111.942290][ T4309] bridge_slave_0: left promiscuous mode
[  111.943768][ T4309] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.946457][ T4309] bridge_slave_1: left allmulticast mode
[  111.947848][ T4309] bridge_slave_1: left promiscuous mode
[  111.949249][ T4309] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.951675][ T4309] bridge_slave_0: left allmulticast mode
[  111.953530][ T4309] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.196193][ T4309] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  112.200323][ T4309] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  112.204362][ T4309] bond0 (unregistering): Released all slaves
[  112.211187][ T4309] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  112.215460][ T4309] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  112.218464][ T4309] bond0 (unregistering): Released all slaves
[  112.667668][ T4309] hsr_slave_0: left promiscuous mode
[  112.669702][ T4309] hsr_slave_1: left promiscuous mode
[  112.672268][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.674666][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.677038][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.678930][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.682933][ T4309] hsr_slave_0: left promiscuous mode
[  112.684688][ T4309] hsr_slave_1: left promiscuous mode
[  112.686363][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.688244][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.690322][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.692557][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.696483][ T4309] veth0_macvtap: left promiscuous mode
[  112.697919][ T4309] veth1_vlan: left promiscuous mode
[  112.699291][ T4309] veth0_vlan: left promiscuous mode
[  112.701208][ T4309] veth0_macvtap: left promiscuous mode
[  112.702732][ T4309] veth1_vlan: left promiscuous mode
[  112.704168][ T4309] veth0_vlan: left promiscuous mode
[  112.908066][ T4309] team0 (unregistering): Port device team_slave_1 removed
[  112.938938][ T4309] team0 (unregistering): Port device team_slave_0 removed
[  113.324841][ T4309] team0 (unregistering): Port device team_slave_1 removed
[  113.355687][ T4309] team0 (unregistering): Port device team_slave_0 removed
[  113.458333][ T1281] lo speed is unknown, defaulting to 1000
[  114.107266][ T4309] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.175707][ T4309] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.265020][ T4309] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.334180][ T4309] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.381994][ T4309] bridge_slave_1: left allmulticast mode
[  114.384128][ T4309] bridge_slave_1: left promiscuous mode
[  114.386150][ T4309] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.389619][ T4309] bridge_slave_0: left allmulticast mode
[  114.392126][ T4309] bridge_slave_0: left promiscuous mode
[  114.394279][ T4309] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.527492][ T4309] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  114.532212][ T4309] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  114.536176][ T4309] bond0 (unregistering): Released all slaves
[  114.905496][ T4309] hsr_slave_0: left promiscuous mode
[  114.907051][ T4309] hsr_slave_1: left promiscuous mode
[  114.908539][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  114.910437][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.912740][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.914437][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.917092][ T4309] veth0_macvtap: left promiscuous mode
[  114.918391][ T4309] veth1_vlan: left promiscuous mode
[  114.919624][ T4309] veth0_vlan: left promiscuous mode
[  115.129043][ T4309] team0 (unregistering): Port device team_slave_1 removed
[  115.166470][ T4309] team0 (unregistering): Port device team_slave_0 removed
[  115.323070][ T6187] lo speed is unknown, defaulting to 1000

VM DIAGNOSIS:
12:28:57  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc9002185fb60 RCX=0000000000000000 RDX=0000000000000000
RSI=ffffffff84b8c734 RDI=ffffc9002185fb60 RBP=ffffffff84b8c720 RSP=ffffc90000007f60
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc90000007ff8
R12=0000000000000000 R13=dffffc0000000000 R14=ffffc900226a7b20 R15=ffffc9002185fb28
RIP=ffffffff84b8c75d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f5755da4 CR3=0000000056cc2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=1ffffffff1b03571 RBX=0000000000000001 RCX=ffff88802b521a10 RDX=0000000000000000
RSI=ffff8880438894e0 RDI=ffffffff8d81ab88 RBP=ffffc900226a78e0 RSP=ffffc900226a7748
R8 =1ffffffff1b03570 R9 =1ffff110056a7df0 R10=0000000080000002 R11=000000000007d20d
R12=ffff8880438894e0 R13=dffffc0000000000 R14=0000000000000001 R15=000000000003ee80
RIP=ffffffff8b13dd9a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000002001b000 CR3=0000000056cc2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81c96835 RDX=0000000000000004
RSI=dffffc0000000000 RDI=ffffc90000e1fcac RBP=0000000000000002 RSP=ffffc90000e1f7c0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=00000000e1be5cfb
R12=0000000000000001 R13=0000000000000005 R14=0000000000004505 R15=ffffc90000e1fc78
RIP=ffffffff81c965cd RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5715bac CR3=0000000059c3a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 00c800a400000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000074 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85034e45 RDI=ffffffff9a63a220 RBP=ffffffff9a63a1e0 RSP=ffffc900067e71a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e32312e36
R12=0000000000000000 R13=0000000000000074 R14=ffffffff85034de0 R15=0000000000000000
RIP=ffffffff85034e6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f74b6108 CR3=0000000023066000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08e80b1 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000