last executing test programs:

11.696799733s ago: executing program 1 (id=237):
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x400452c8, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
readv(r0, &(0x7f0000000200)=[{&(0x7f0000000480)=""/171, 0xab}], 0x1)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

11.094636954s ago: executing program 1 (id=242):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000000400)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x2db, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
pread64(r1, &(0x7f0000000040)=""/41, 0x29, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r2, 0x29, 0x19, &(0x7f0000000040), 0x4)
syz_emit_ethernet(0x6e, &(0x7f0000000340)=ANY=[@ANYBLOB="bbbbbbbbbbbb0180c200000086dd6002adf700383a00fe880000000000000000000000000001ff020000000000000000000000000001030090780000000060fd90630000ff010000000000000000000000000001fe8800000000000000000000000000011e520b02c2964e88"], 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000440), 0xc)
r4 = syz_io_uring_setup(0x5135, &(0x7f0000000180)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000380)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index})
io_uring_enter(r4, 0x4684, 0x0, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000b80)=[{&(0x7f0000000580)=""/85, 0x69}], 0x1, 0x0, 0x0)
syz_usb_connect$uac1(0x0, 0x10a, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], &(0x7f0000000680)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x250, 0xff, 0xc, 0x2, 0xff, 0x9}, 0x19, &(0x7f0000000040)={0x5, 0xf, 0x19, 0x1, [@ss_container_id={0x14, 0x10, 0x4, 0x0, "aae9e29bfe23bc209025046e61e32a28"}]}, 0x8, [{0x4, &(0x7f0000000080)=@lang_id={0x4, 0x3, 0x40a}}, {0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x44f}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x300a}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x1c01}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x1801}}, {0x20, &(0x7f0000000700)=ANY=[@ANYBLOB="2003841c6b22e3608dc774deff9402d2069f97de0b7505cf8a66b44a39865ca5f6e84702aff7e3a9937dbea596c2e97649cb09897f7447c0deb08ec3a91e76745611a7a36f90eaf129dbf8b579dd615e58d35f19c71cc8c60b69911b8ce97e82bc660ac801b41df0cc5404aaee5d57b0df924e759bf324f01f60ec6ce1657cb8c6f717a64d6e79cb9bc71207d4c40d2b361e0f1985a776769f5fd0392000898a3e34625db97810eb614ff64481c45e047d0b58330ca012ca44bc122d3500000000"]}, {0x4, &(0x7f00000005c0)=@lang_id={0x4}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x458}}]})
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
unshare(0x22020400)
r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000300)={0x1000a4, 0x7a, 0x0, {r7}}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
add_key$keyring(&(0x7f0000000400), &(0x7f0000000440)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
socket(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_ROUTER={0x5, 0x16, 0x1}]}}}]}, 0x3c}}, 0x0)

9.046346098s ago: executing program 1 (id=248):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x47)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={0x0, r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8001)
syz_open_dev$usbfs(&(0x7f00000003c0), 0x77, 0x383000)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB="00ff00247f071f63564013b9ee38e11c58b30c7ae8e4cdd98eb768263a9e61d5cd909bb9dddda33ea5c7a258786a6af3e0aaa2f12101b211689ee8ca05eb86927923d088173f13b559238657481883b2e5c1a9ff4f01f6a749c5ffff8014474dbe2906796cde9d8d8d80f3bbbe597437c6da685a401918361fba1663881294435221827bcfe35cf5f3ba129d881edb9c308e57b8ef75f9d146"], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$SNAPSHOT_S2RAM(0xffffffffffffffff, 0x330b)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x10000000)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000ec0), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x2, 0x0, &(0x7f0000000000))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r3 = socket(0x22, 0x2, 0x2)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d)
recvmmsg(r4, &(0x7f00000021c0), 0x5b, 0x2, 0x0)
accept4$inet6(r3, 0x0, 0x0, 0x0)
connect$can_bcm(r0, &(0x7f0000000080), 0x10)
sendmsg$can_bcm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="05000000100000aa00000000", @ANYRES32=0x0, @ANYRES32=0xea60, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000008001000000020000203003000082775fcdafbb07bff218f29c048dca2f5daa98ec8ce7000fe9c0aefc54700dfff3f80ab8cf995f21fa4ece8f9cb11b479328c6a66cdded999c69ef85a909177e"], 0xc0}, 0x1, 0x0, 0x0, 0x800d040}, 0x18844)
pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
write$P9_RRENAMEAT(r5, &(0x7f00000000c0)={0x7, 0x4b, 0x1}, 0x7)
sendmsg$can_bcm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB="06"], 0x48}}, 0x0)

8.329970209s ago: executing program 1 (id=249):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4253}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[], 0x5c}}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0xffffffffffffffa7)
sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000a40)=ANY=[@ANYRESOCT=r0, @ANYRES16, @ANYBLOB], 0x168}, 0x1, 0x0, 0x0, 0x40000c1}, 0x20004000)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@bloom_filter={0x1e, 0x921, 0x3, 0x2, 0x4, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x5, 0x0, 0x4}, 0x48)
r3 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r3)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000002e00000008000300", @ANYRES32=0x0, @ANYBLOB="0a00340002020202020200000a0006000806110000000000080035000000000040005180340000801100010096eb6c6f56d9884e8b46fd8bfe000000080007000000000010000880040002000400010004000300040005000800008004000600"], 0x7c}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="9801000016003d1d27bd7000000000fdffffffffffffff000080ffffe0000002fe8000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1e00010000000000000000000000000000000033"], 0x1d8}}, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x800, 0xffffffffffffffff, 0x0, '\x00', 0x0, r3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000001b00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000500)=ANY=[@ANYRES64=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r6, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(r6, 0x40047451, 0x2000000a)
ioctl$TUNSETOFFLOAD(r6, 0x40047451, 0x20000015)
utimes(&(0x7f0000000000)='./file0\x00', 0x0)
write$FUSE_INIT(r3, 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x1, 0x0, 0xffffff38}}, 0x30)
syz_open_dev$tty20(0xc, 0x4, 0x0)

7.091304704s ago: executing program 1 (id=251):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "000080f100df00000000000000000009f600"})
syz_open_pts(r0, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc010000000000001500000000000000fe8000000000000000000000000000aa0000000000109078"], 0x0)
socket$qrtr(0x2a, 0x2, 0x0)
r1 = socket(0x11, 0x800000003, 0x0)
socket(0x10, 0x3, 0x0)
r2 = socket(0x200000100000011, 0x803, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x4000011)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x0, @multicast1}, 0x2}}, 0x2e)
sendmmsg(0xffffffffffffffff, &(0x7f0000000280)=[{{0x0, 0x700003a, 0x0, 0x0, 0x0, 0x0, 0x700}, 0x4}], 0x400000000000085, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r4 = fcntl$getown(0xffffffffffffffff, 0x9)
sched_setscheduler(r4, 0x6, &(0x7f0000000140)=0xfff)
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r5 = openat$sequencer2(0xffffff9c, &(0x7f0000000180), 0x84381, 0x0)
ioctl$SNDCTL_TMR_CONTINUE(r5, 0x5404)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYRES16=r1, @ANYRESOCT=r1, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

6.821196751s ago: executing program 3 (id=252):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f000000b800), 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0xb, 0x80000000, 0x1, 0x800, r3, 0x2, '\x00', 0x0, r0, 0x5, 0x2, 0x4}, 0x48)
mmap$xdp(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r7, 0x4020aeb2, 0x0)
r8 = openat$mixer(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r9 = openat$ubi_ctrl(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
dup3(r8, r9, 0x0)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
write$binfmt_aout(r10, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TIOCSETD(r10, 0x5423, &(0x7f0000000100))
ioctl$SOUND_MIXER_READ_DEVMASK(r9, 0x80044dfe, 0x0)
sendmmsg$inet(r5, &(0x7f0000000e00)=[{{&(0x7f0000000140)={0x2, 0x4e1d, @broadcast}, 0x10, 0x0, 0x0, &(0x7f00000008c0)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x1}}], 0x10}}, {{&(0x7f0000000240)={0x2, 0x4e20, @empty}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000340)="10c3efb92c60de657b6c8cdac015e32f769b7d56b072c565955d73ae6f273a6e3e1584204a625f2c2d02510ea803cebb95eb54e237001b0437b5371538e76edaf90f72422e6081a2365bac5bed9395b1ee9cf761a65fddcc392f6979989ae999e63e4eaa636788ececa9c90882b9d281e9a438daa425598183ce06322a2f4eb169346fe70a3d5f431d48e83b0ed3f1b9b30824e9cc612802c28be612", 0x9c}, {&(0x7f0000000400)="3a05a8f218d85fcaaf70ca6b678f45ac9ada7016a8a5dc6d7216367a0b3b03a81837f353827d48a3d2361e33162d593b05165b25e9e4b3bd3f27794e91fd438586b78b7390f58eff921c4ba01d10d71c476103d9c5c01ea145b66b2eb0081afe68f4534e28511772c61c90d864da8c29e6a05ae8a1445a30a8ebf271f458f324f24f8d5b340771e57b6d971742d8ec4e14708ae32595c7d98f591410406731c23d71dc0e86247b790244b30c8d925fa838a606769b09a81325f6dc2c821ef356490b007c00749494e755", 0xca}, {&(0x7f0000000500)="36ea3699941fa5ec08cca65ee5e5fcf5a1e05d92b98ea78c5bd06350307cb45035b495b826e0003d94e87dca07ddbaa064cb1e4b54d7c60e8630e4c72706c2add38206a89ba78db62a188211c6e582c673aa3f6ab624c1dcb09ba24923da7ee90c11c8a21e51ff83e00e0af7d13068cff820f2528a8d8890ecdee7742e64a7850b378b23d3aee5eb7cbfe290e6bcef22c791a20f744ef7", 0x97}, {&(0x7f00000005c0)="a53722bd2b5112078f3b11dc72aa242847544fff57d1ee3d50e582982e6df346bddd43ed70451bd90f5800d6f0c6a320eb68e38e435e4c2c661442ae25c1e15b11dc41c5c511bfcc10cbbc52bde6f7250f4d21047b5a19d8fcb8fc96bfa2fce70d8e9282b6ec970223cce589562d733af92a45c9c731bf705874ae1840ef4e68f8d46136f4a4f86f9cf37e0e71df8c77d5", 0x91}, {&(0x7f0000000680)="91ed37a48e8fc898232e9d158ab425b338a734fa7c0ce74c396c6e64fd1df7917f5a47bc1cece6e951f11eb2046eba90ed057f462b290feeff6602091c2517290da9195ac231d78d3809c040522840ba6c76a2e9daa55baf7754f115e1aaff15776ed1d57290cb", 0x67}, {&(0x7f0000000700)="4b476f525b52247e67742c7c7f8bf69c235903bc6e9cc96754ba1fc72f655ef0f3c8fb7e728315842b2a426640a7811321b186e456927f6e89a060c7e37466e655a2b207b383ab53366973c8171b73e6df83a0c8477076ce2bbd34041e0b7a0ffe69ec2bdef96856e643bf9c13e43803fd2c90f98103770fdfbbf4725a41bd5e9e59b567c15c0ba01d0d85c8ff913dd5b628f751e971765cd5baad0dcf8d95955b06791a4e12f4244ce0dc35953f342cd6b13a81905236569b8a44870c64", 0xbe}, {&(0x7f00000002c0)}], 0x7, &(0x7f0000000800)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x5}}], 0x10}}, {{&(0x7f0000000840)={0x2, 0x4e23, @multicast1}, 0x10, &(0x7f0000000b00)=[{&(0x7f0000000900)="8fe6dcd9e5b8b77b5b36665a4ca2cc7a435dae13e811d7cacdf23e0b5905fa5ad141c1342f7d21bdfe85d6dd09b0c2c24bf1d77e0e38597df0d6cd583537de189729a7dfe3a14167a637c6a22796ec85d6781d5d3d182ee83ffefec0cdafda520ea51e7dcdf4c8376ef20825b449fe178aa614c43375c95fe3a6373399c3a3a573e4d878e8", 0x85}, {&(0x7f00000009c0)="5e7784bbc28672c189d6bbf946e191b69f3845be3c2b35cb57933729413441522b4aba0ad4e6f24992e9ef13f4484b07617e89c198f505bb58cd8421c87625521f31c8043817ae823628e6866a5f8d748cbb6a549b1fca6c0efc4998d8cb55e23114e4", 0x63}, {&(0x7f0000000880)="473ecd", 0x3}, {&(0x7f0000000a40)}, {&(0x7f0000000a80)="91c0e8f92d911cfee9e8279cf204c84b7b24c2b6987120495b7eff82cf57f3299708d20c015fb434b9b2e7eb3edc81340568e27cf3300d3da28fcbbdce1c7bb68e2c6282f4d49a301c09070dc364f78a4b9ba2db3c13c624e497dd54d1eed2a1a76ab0", 0x63}], 0x5}}, {{&(0x7f0000000b40)={0x2, 0x4e20, @empty}, 0x10, &(0x7f0000000d40)=[{&(0x7f0000000c80)="f20e4c265072a8580692c421d31cb660dc191dfd848343943e1a0f45da80c8648e2faed52a8cc3e660875dbdcff0cde4095fb3c490cb4cb3ca74b63a89a54dfcded00aa08f87cae7f34e44245f0b961e2ae88baa2bfae2ed93b72cae40fb3a6aa30060dc63e78c0c5e", 0x69}], 0x1, &(0x7f0000000d80)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x5}}, @ip_retopts={{0x24, 0x0, 0x7, {[@timestamp_addr={0x44, 0x14, 0x6a, 0x1, 0x4, [{@private=0xa010101, 0x1}, {@local, 0x8}]}, @noop, @noop]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @local, @broadcast}}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x4}}, @ip_ttl={{0x10, 0x0, 0x2, 0x2}}], 0x6c}}], 0x4, 0x20040085)
sendmmsg$inet(r5, &(0x7f0000000480), 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r4}, 0x38)
write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0)
fsetxattr(0xffffffffffffffff, 0x0, &(0x7f0000000080)=':\x00', 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

6.751199205s ago: executing program 1 (id=253):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
bind$unix(r1, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000000)={0x8}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
read$msr(r2, &(0x7f0000032fc0)=""/102400, 0x19000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
r3 = mq_open(&(0x7f0000000000)='.+:#-%\x00', 0x40, 0x0, 0x0)
mq_getsetattr(r3, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=@base={0x20, 0x4, 0x4, 0x10005, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
close(r4)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffa46cac04a71837dd60120008000000bbfe800000ccb793bad8e6678000"/48], 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
socketpair(0x1, 0x805, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
syz_genetlink_get_family_id$devlink(&(0x7f00000013c0), r6)
dup2(r6, r5)
socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r6, 0x0, 0x0)
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x311)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))

5.461253327s ago: executing program 3 (id=255):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000340)=ANY=[@ANYRESOCT=r0], 0x28)
syz_80211_inject_frame(&(0x7f0000000280), &(0x7f00000002c0)=@ctrl_frame=@cf_end={{}, {0xb8}}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000003e0095"], &(0x7f0000000000)='syzkaller\x00'}, 0xc3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r1}, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000000)={0x0, 0x0, "97dded", 0x5})
socket$l2tp6(0xa, 0x2, 0x73)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r3, 0x0, 0x481, &(0x7f00000000c0), &(0x7f0000000100)=0xc)
bind$l2tp(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}, 0x1}, 0x10)
fsopen(0x0, 0x0)
pwritev(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="8a87b000fe0d5a68e6ee7b8bfd02fdba5c63ec6f5b86cb344b031ff9c7aeb5bb", 0x20}, {&(0x7f0000000180)="846b77c65849252f2b82ed75b3b5db4ce336ed01124626cb55ff5901e490e5fc6ff46dd6", 0x24}, {&(0x7f00000004c0)="31205738afcb5d5f83dc307a73424ec0a7d391bc34739defa51f56fa8fea5a50a785311eb8f133dce445788fea8c3aa2ca5a4c881f46b2c5bb7a7adf07b0e3f68276f2268c49aed5bbd0a3e34ee74cdf8740611b727f6cd7c9a0e303e18dc6fa21c7fa31585f955790c8d10fa2e13d14e7727de95ed3ff04bf900ca01dd5e876ad2c3ecd2e3bd961308b3b26a7de8471d4baa19d0205ec80d22c04840bd796", 0x9f}], 0x3, 0x10, 0x400)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(0x0, r4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = getpid()
process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r6, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000700)={'team_slave_1\x00', 0x800})

4.894678328s ago: executing program 2 (id=257):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000340)=ANY=[@ANYRESOCT=r0], 0x28)
syz_80211_inject_frame(&(0x7f0000000280), &(0x7f00000002c0)=@ctrl_frame=@cf_end={{}, {0xb8}}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000003e0095"], &(0x7f0000000000)='syzkaller\x00'}, 0xc3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r1}, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000000)={0x0, 0x0, "97dded", 0x5})
socket$l2tp6(0xa, 0x2, 0x73)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r3, 0x0, 0x481, &(0x7f00000000c0), &(0x7f0000000100)=0xc)
bind$l2tp(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}, 0x1}, 0x10)
fsopen(0x0, 0x0)
pwritev(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="8a87b000fe0d5a68e6ee7b8bfd02fdba5c63ec6f5b86cb344b031ff9c7aeb5bb", 0x20}, {&(0x7f0000000180)="846b77c65849252f2b82ed75b3b5db4ce336ed01124626cb55ff5901e490e5fc6ff46dd6", 0x24}, {&(0x7f00000004c0)="31205738afcb5d5f83dc307a73424ec0a7d391bc34739defa51f56fa8fea5a50a785311eb8f133dce445788fea8c3aa2ca5a4c881f46b2c5bb7a7adf07b0e3f68276f2268c49aed5bbd0a3e34ee74cdf8740611b727f6cd7c9a0e303e18dc6fa21c7fa31585f955790c8d10fa2e13d14e7727de95ed3ff04bf900ca01dd5e876ad2c3ecd2e3bd961308b3b26a7de8471d4baa19d0205ec80d22c04840bd796", 0x9f}], 0x3, 0x10, 0x400)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(0x0, r4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = getpid()
process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r6, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000700)={'team_slave_1\x00', 0x800})

3.995959657s ago: executing program 3 (id=260):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = userfaultfd(0x1)
ioperm(0x0, 0x35a, 0x80000001)
syz_pidfd_open(0x0, 0x0)
open(0x0, 0x80, 0x14d)
openat$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0)='io.weight\x00', 0x657, 0xfeffffff)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffff79, &(0x7f0000000080)=0x10000000000ef14)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x3, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x6200, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
unshare(0x2c060000)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ptrace(0x10, r3)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$PTP_ENABLE_PPS(r5, 0x40043d04, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r6, 0x0, 0x0)
poll(&(0x7f0000000100)=[{r6}], 0x1, 0x9d)
write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600]}}], 0xffc8)

3.68970187s ago: executing program 0 (id=261):
r0 = socket$inet(0x2, 0x1, 0x8)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='dctcp\x00', 0x6)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0xbc, &(0x7f0000000200)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000480)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xb, 0x5, 0x480, 0x40000, 0x2799, 0xffffffffffffffff, 0x803, '\x00', r3, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f0000000100))
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r5, &(0x7f00000001c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0xc2, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x9}, 0xe)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r5, 0x84, 0x21, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000840), 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff82)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001500), r6)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="81df252714ec0000df1b244eb99854b445235b76f09b2a87ca29257a9d31ca32550c008cbc16013de5a580b789871db7515f302d5aef9a83fcf430ae7507a6f9d07c16299ce77b9c2ba915113b67f9ad15ff49ccaab0a804732bdf984e8339fb8965467f8778bdee3ab91546c96295537307348a98d87616257809fc34e6abc7598771"], 0x14}}, 0x0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/consoles\x00', 0x0, 0x0)
r9 = add_key$user(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000700)="0182fc215615487e85a092ee12eddb6d7b570321f24a4c7f1c26f72938af6fc7a3e54ac0acadd7f9702d01ffffff7f6d8f740925581f094289fb79a93792798c519a0e6c442e1c04461cce34a696c6bdd20bcde5dac962b9b5346a8bce431f4a43d6ebce17904abf15176f261dee4020d9325a63c00962aaafc235d1ed065a7bb38524f34ca7a3a46f484e58843f0e28a39a56b34b289b9e107b906259d20199ce9867270370290c946c9d6f43bce708625c0e5895184a9a2bab6e6e4a137df79f841af4e89c139c2073e80a1b8414bf640722ef41f2265b41cb57b5a081df306cbdb254df1ccb1089a11c4ba919b94915f87460c5d1314608907d8b218963793c9265fcd021aa7934301542f794bfe5f342b0f182c422da7b321c8c623f02f4c9ba2e128eddfc20d550261ae3bd013518d077c97b0902626104ae784920690e311193a447695f23aa83fba7ce76a716793c4ec74a99042330fdb1deed20392169e006840fa22806e06bc59773145678f739d08baecd00"/387, 0x183, 0x0)
keyctl$set_timeout(0xf, r9, 0xfffffffffffffffd)
read$FUSE(r8, &(0x7f0000001580)={0x2020}, 0x2020)

3.269924129s ago: executing program 2 (id=262):
socket(0x11, 0x800000003, 0x0)
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@bridge_delneigh={0x28, 0x1c, 0xf07, 0xef, 0x0, {0x7, 0x0, 0x0, r1, 0x80, 0x8f}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}]}, 0x28}}, 0x0)

3.190859653s ago: executing program 2 (id=263):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f000000b800), 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0xb, 0x80000000, 0x1, 0x800, r3, 0x2, '\x00', 0x0, r0, 0x5, 0x2, 0x4}, 0x48)
mmap$xdp(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r7, 0x4020aeb2, 0x0)
r8 = openat$mixer(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r9 = openat$ubi_ctrl(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
dup3(r8, r9, 0x0)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
write$binfmt_aout(r10, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TIOCSETD(r10, 0x5423, &(0x7f0000000100))
ioctl$SOUND_MIXER_READ_DEVMASK(r9, 0x80044dfe, 0x0)
sendmmsg$inet(r5, &(0x7f0000000e00)=[{{&(0x7f0000000140)={0x2, 0x4e1d, @broadcast}, 0x10, 0x0, 0x0, &(0x7f00000008c0)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x1}}], 0x10}}, {{&(0x7f0000000240)={0x2, 0x4e20, @empty}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000340)="10c3efb92c60de657b6c8cdac015e32f769b7d56b072c565955d73ae6f273a6e3e1584204a625f2c2d02510ea803cebb95eb54e237001b0437b5371538e76edaf90f72422e6081a2365bac5bed9395b1ee9cf761a65fddcc392f6979989ae999e63e4eaa636788ececa9c90882b9d281e9a438daa425598183ce06322a2f4eb169346fe70a3d5f431d48e83b0ed3f1b9b30824e9cc612802c28be612", 0x9c}, {&(0x7f0000000400)="3a05a8f218d85fcaaf70ca6b678f45ac9ada7016a8a5dc6d7216367a0b3b03a81837f353827d48a3d2361e33162d593b05165b25e9e4b3bd3f27794e91fd438586b78b7390f58eff921c4ba01d10d71c476103d9c5c01ea145b66b2eb0081afe68f4534e28511772c61c90d864da8c29e6a05ae8a1445a30a8ebf271f458f324f24f8d5b340771e57b6d971742d8ec4e14708ae32595c7d98f591410406731c23d71dc0e86247b790244b30c8d925fa838a606769b09a81325f6dc2c821ef356490b007c00749494e755", 0xca}, {&(0x7f0000000500)="36ea3699941fa5ec08cca65ee5e5fcf5a1e05d92b98ea78c5bd06350307cb45035b495b826e0003d94e87dca07ddbaa064cb1e4b54d7c60e8630e4c72706c2add38206a89ba78db62a188211c6e582c673aa3f6ab624c1dcb09ba24923da7ee90c11c8a21e51ff83e00e0af7d13068cff820f2528a8d8890ecdee7742e64a7850b378b23d3aee5eb7cbfe290e6bcef22c791a20f744ef7", 0x97}, {&(0x7f00000005c0)="a53722bd2b5112078f3b11dc72aa242847544fff57d1ee3d50e582982e6df346bddd43ed70451bd90f5800d6f0c6a320eb68e38e435e4c2c661442ae25c1e15b11dc41c5c511bfcc10cbbc52bde6f7250f4d21047b5a19d8fcb8fc96bfa2fce70d8e9282b6ec970223cce589562d733af92a45c9c731bf705874ae1840ef4e68f8d46136f4a4f86f9cf37e0e71df8c77d5", 0x91}, {&(0x7f0000000680)="91ed37a48e8fc898232e9d158ab425b338a734fa7c0ce74c396c6e64fd1df7917f5a47bc1cece6e951f11eb2046eba90ed057f462b290feeff6602091c2517290da9195ac231d78d3809c040522840ba6c76a2e9daa55baf7754f115e1aaff15776ed1d57290cb", 0x67}, {&(0x7f0000000700)="4b476f525b52247e67742c7c7f8bf69c235903bc6e9cc96754ba1fc72f655ef0f3c8fb7e728315842b2a426640a7811321b186e456927f6e89a060c7e37466e655a2b207b383ab53366973c8171b73e6df83a0c8477076ce2bbd34041e0b7a0ffe69ec2bdef96856e643bf9c13e43803fd2c90f98103770fdfbbf4725a41bd5e9e59b567c15c0ba01d0d85c8ff913dd5b628f751e971765cd5baad0dcf8d95955b06791a4e12f4244ce0dc35953f342cd6b13a81905236569b8a44870c64", 0xbe}, {&(0x7f00000002c0)}], 0x7, &(0x7f0000000800)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x5}}], 0x10}}, {{&(0x7f0000000840)={0x2, 0x4e23, @multicast1}, 0x10, &(0x7f0000000b00)=[{&(0x7f0000000900)="8fe6dcd9e5b8b77b5b36665a4ca2cc7a435dae13e811d7cacdf23e0b5905fa5ad141c1342f7d21bdfe85d6dd09b0c2c24bf1d77e0e38597df0d6cd583537de189729a7dfe3a14167a637c6a22796ec85d6781d5d3d182ee83ffefec0cdafda520ea51e7dcdf4c8376ef20825b449fe178aa614c43375c95fe3a6373399c3a3a573e4d878e8", 0x85}, {&(0x7f00000009c0)="5e7784bbc28672c189d6bbf946e191b69f3845be3c2b35cb57933729413441522b4aba0ad4e6f24992e9ef13f4484b07617e89c198f505bb58cd8421c87625521f31c8043817ae823628e6866a5f8d748cbb6a549b1fca6c0efc4998d8cb55e23114e4", 0x63}, {&(0x7f0000000880)="473ecd", 0x3}, {&(0x7f0000000a40)}, {&(0x7f0000000a80)="91c0e8f92d911cfee9e8279cf204c84b7b24c2b6987120495b7eff82cf57f3299708d20c015fb434b9b2e7eb3edc81340568e27cf3300d3da28fcbbdce1c7bb68e2c6282f4d49a301c09070dc364f78a4b9ba2db3c13c624e497dd54d1eed2a1a76ab0", 0x63}], 0x5}}, {{&(0x7f0000000b40)={0x2, 0x4e20, @empty}, 0x10, &(0x7f0000000d40)=[{&(0x7f0000000c80)="f20e4c265072a8580692c421d31cb660dc191dfd848343943e1a0f45da80c8648e2faed52a8cc3e660875dbdcff0cde4095fb3c490cb4cb3ca74b63a89a54dfcded00aa08f87cae7f34e44245f0b961e2ae88baa2bfae2ed93b72cae40fb3a6aa30060dc63e78c0c5e", 0x69}], 0x1, &(0x7f0000000d80)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x5}}, @ip_ttl={{0x10, 0x0, 0x2, 0x5}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @local, @broadcast}}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x4}}, @ip_ttl={{0x10, 0x0, 0x2, 0x2}}], 0x58}}], 0x4, 0x20040085)
sendmmsg$inet(r5, &(0x7f0000000480), 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r4}, 0x38)
write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0)
fsetxattr(0xffffffffffffffff, 0x0, &(0x7f0000000080)=':\x00', 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

2.510057049s ago: executing program 0 (id=264):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00010000850000000d000000b7000000000000009500000000000000496cf2827fb43a431ca711fcc9cdfa146ec56175037958e271f60d25b7937f02c8695e5a1b2cdf41dc10d1e8bf076d83923dd29c034055b67dafe6c8dc3d5d78c07fa1f7e4d5b318e2ec0e0700897a74a0091ff110026e6d2ef831ab7ea0c34f17e3ad6ef3bb622003b538dfd8e012e79578e51bc53099e90fbdb2ca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e060e36fd8270ef0e789f93781965f1328d6704902cbe7bc0476619f28d99cd0aa7b73340cc2160a1fe3c184b751c51160fbce841f8a97be6148ba532e6ea09c346dfebd31a08b32808b80200000000009dd27080e71113610e10d859e8327ef03fb6c86adac12233f9a1fb9c2aec61ce63a3462fd50117b89a9ab759b4eeb8cb000067d42b4e54861d0227dbfd2ed8576a3f7f3deadd7130856f756436303767d2e24f29e5dad9796edb697a6ea0180aabc18cae2ed4b4390af9a9ceafd07ed0030000002cab154ad029a119ca3c972780870014605c83d7d11c3c975d5aec84222fff0d7216fdb0d3a0ec4bfae563112f4b391aafe2348754000000000000007642d3e5a815212f5e16c1b30c3a2a71bc85018e5ff2c910496f18afc9ffc2cc5a788bee1b47683db01a46939868d75211bbae0e7313bff5d4c391ddece00fc772dd6b4d4d0a917b239fe12280fc92c88c5b8dcdcc22ee1747790a8992533ac2a9f5a699593f084419cae0b4183fb01c73f99857399537f5dc2acb72c7eae993fc9eb22d130665b6341da114f08cd0509d380578673fffffff7f23877a6b24db0e067345560942fa629fbef2461c96a08707671215c302fae29187d4f5c06a960fd37c10223fdae7ed04935c3c90d3add8eebc8619d73415e6adcda2130f5011e42e50adab988dd8e12baf5cc9398c88607a08009c2977aab37d9a44cfc1c7b4000000000000fa47742f6c5b9c4b11e7d7262a1457c39495c826b956ba859adfe38f77b91bd7d5ca1664fe2f3ced8468911806e8916dc15e21644db60c2499d5d16d7d915836ab26c169482008ef069dc42749289f854797f2f900c2a12d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aae73835d5a3cda9e90d76c1993e0799d4894ee7f8249dc1e3428d2129369ee1b85afa1a5be5f6eb2eea0d0df414b315f65112412392191fa83ee830548f11e1038debd64cbe359454a3f2239cfe35f81b7aded448859968ff0e90500d0b07c0dd00490f167e6d5c1109681739dc33f75b20428d6474a0a91ee90b8de802c6b538622e6bbcb80f87b415263c401e64ed69a2f75409000000000000001d695c4559b82cabac3cccadc1e1c19af4e03020abf5ff0433d660f20898d2a045d009a0ffb20a77c9af2b80c05184a66d30bbea2ca45a4d6d6d1e6e79aef42355a500587b603306a5af8d867d80a07f10d82eafb03062e95196d5e3ff010000000000000be959096ea948cfa8e7194123e918914a71ad5a8521fb9553bc60f7d9719b55b3abb6bba3d113a680a8d46fe074c83fbe378a3889e8145b2eaceab05ef932c6e4f8ef0ed0d818a7b76d839cf3c63ebb4380b168c38fa32e49563cfee3a7f0fc18bfa32c418cef875fb49e2989177a30280bc586e79a5dd8076c248e7d6e97b3ce267dd4e27b6ef206660090bb2164474cef378f97ca33fc03000000000000001547053453d0c9aec91a24079b21d52fb5516bf0c28ef37aa76442f6083dc99cd61afaf6be45d7b00d3639f2f10ac2d5c759c3e5468f5874c24411d415b6b085fb73a2c7c3852e0e658ffeb4e863428a792bee94f6cd895424360e0464f9d7ea425f2fa6aac029d15af607ad83532ff181c985f54b39370c06e63055b4d6a36fa98a44e379d28307c9912fb097601f3f88a2ca6fd1f9320cfe7fc8e9f7f15f02e177ce23f43a154b42e26f037e8a013709003f509e6e540c9ba9c2a589ac5d8ad67a65e9a44c576dc24452eaa9d819e2b04bdd1c000000070000000000000000000000005333c6199c12dcd926891927a7267c47cf897853d160100b39b613faefe16bed1fc105dddd77ab929b837d54aa17eb9fbdc2bdc0e98ae2c3f23a6131e2879f04ff01000030b92dd493be66c2242f8184733b80ba28e8ffffff7f00000000bb2f89049c5f6d63d56995747639964217aacfe548bc869098aa0500e51dbc9e2d4db3c5f79fd355222ec2a00cf7f2ccd6dd6d2dc2a815d8314221a5472f1318a9dfbec5a759579caf3262129b14e99040b5d91398e17df85c25ccae973eecc7d187168d5c9cd848d566cc17587641ed01889c927da38d83314480b15e23138c5b877a72bd4cf74a299df4fbfc8e6ea96939f15d254d9033c5a45706bda78ab60200000000000000000000000000000000000000706f78f0a2ea9667fb5b951808545a46830970c2dfae01adbda7d29bf1f7abdaf52e0de6f9d7150808ed086642e64ebf98762b34338b80e41b704c3eefaf0bb5f7d895de17a10b0a0ea15ccc0d7a830b6eb33b6b61675511d693ef5e3c44bbf71cabc5175d879e7499f8baae2a1a09cf38da73297764fbc0e723e1cc3abb12e3076982ed32c94a2ce3e6f37c47e983da4ca5c96187db5a2a2e1742bc93a65d7187126126b3a80f17dd2f7dbbe82d104ede9ba6925afc2ee6cb94f56f1363cad635abf8f983292c49c0ebf5005154c7b58a3a2a2e5a00d2f953a86d2fd92b8661264f781e3fb02d05a28f3f17b64d0258853d45cb5ebde10cd3d82eeed2f1ed925b7cf400304932c5ed0a362b235ce37e1f17700f7d1fecf8be8a2c5d25a9c60657560d05441387ff158a018d19a286c56d0886eb59d509ee89cc2df52881d005b2e5c27563ba54e4153c132d0366a9660000000000000009c1aaec93ec0f925921fb2e9eb202a29bef28224dbabe723de5c584bc398a8792e493048c87f60a51a391e95921218149403558fd13c649f90b0911d57eeb298b590581eba1ce383b539ab80fd15445987b1bb4eb512545e1ab65fef310e10b1ee362b51c72f82edf2f502ddf52567775e34a56d1be892f1e62b08950d517fa6fb1b0ef2edf1b67f8644786116b037d4a36fdd30b000063e58c856ec44cbbc2d370553f832af9480215e09aaa3843fe360b1c293a14627f2cfbe278f31d0abc0f5aaa10926dbbfe8a4b131c13a73d4e6d065c2c0fed3ab8442520ce0e0ad7d2d177377ab197ace3ef8b1c24ceb0bdee84bd6e6317633938dd19dc42de7f8f860eca6d9c74525fcd3497526df4c13e3ba5f0d75365a4542ae9440d2fede416d618cdaaf7e038879c5d177b3876fda4121e15a00adb976064a93e8d000000000000903350932d3eef7fdada20c19807066e2c72d0d816eb9fa50be213bf6bbb7ccb9f2e8a153e6ced68f192ebed6e86af0f2cec7335fa8039fd6eb025440bc2a34d071f0a0e6774308a2c5986aa9200a1306ffa5a71ca69e89a6980612b35fc858f37c2c398515a910a35e22ab0573c10b85df4c2972a2fb8b9c080fbb41a753791df727fdeadc5cf218a6eda31312256191c620cce34d1e3bf40a4a207ab1575b399eb8155781bfc7cb5920b49c039935a888d77041814f60fbbcafa487ee96b368e8769da90b44190e569fe8b1d155d0765baaca5c5548b5a78bb43e5d9e47a1d5809bb178184b5672d08e29aecf1f572ac1e6cab7e820751e95999b7532603494d37a2bff3"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0x26, 0x0, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
r2 = dup(r0)
write$UHID_INPUT(r2, &(0x7f0000001040)={0xfc, {"fce3ad0eed0d07f91b5e091887f70706d038e7ff7fc6e5539b0d3c0a8b089b3f383163030890e0879b0af8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c523c921b1b5b31070d0773090acd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0xffffffffffffff34}}, 0x1006)

2.363385349s ago: executing program 0 (id=265):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4253}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[], 0x5c}}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0xffffffffffffffa7)
sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000a40)=ANY=[@ANYRESOCT=r0, @ANYRES16, @ANYBLOB], 0x168}, 0x1, 0x0, 0x0, 0x40000c1}, 0x20004000)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@bloom_filter={0x1e, 0x921, 0x3, 0x2, 0x4, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x5, 0x0, 0x4}, 0x48)
r3 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r3)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000002e00000008000300", @ANYRES32=0x0, @ANYBLOB="0a00340002020202020200000a0006000806110000000000080035000000000040005180340000801100010096eb6c6f56d9884e8b46fd8bfe000000080007000000000010000880040002000400010004000300040005000800008004000600"], 0x7c}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="9801000016003d1d27bd7000000000fdffffffffffffff000080ffffe0000002fe8000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1e00010000000000000000000000000000000033"], 0x1d8}}, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x800, 0xffffffffffffffff, 0x0, '\x00', 0x0, r3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000001b00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000500)=ANY=[@ANYRES64=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r6, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(r6, 0x40047451, 0x2000000a)
ioctl$TUNSETOFFLOAD(r6, 0x40047451, 0x20000015)
utimes(&(0x7f0000000000)='./file0\x00', 0x0)
syz_fuse_handle_req(r3, &(0x7f000000a3c0)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)={0x78, 0x0, 0xfffffffffffffffd, {0x0, 0x0, 0x0, {0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x2}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x1, 0x0, 0xffffff38}}, 0x30)
syz_open_dev$tty20(0xc, 0x4, 0x0)

2.067863952s ago: executing program 2 (id=266):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb010018000000000000007c0000007c00000002000000000000000000000e000000000000dfc6d675422c2b6d000d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000000000000000000000009000000000000000000000009000000000000000000000009020000000000"], 0x0, 0x96}, 0x20)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], &(0x7f0000000040)=""/247, 0x26, 0xf7, 0x1}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x7, &(0x7f0000000180)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @map_val, @exit]}, &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2}, 0x80)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = io_uring_setup(0x65a1, &(0x7f0000000280)={0x0, 0x4})
close(r2)
ioctl$TIOCGPGRP(r1, 0x5409, 0x0)
r3 = syz_io_uring_setup(0x278, &(0x7f0000000340)={0x0, 0x0, 0x13580}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x1b, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r3, 0x53, 0x103, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x15, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="b7020000380d0000bfa30000000000000703000000feffff720af0fff8ffff1989a4f0ff00000000b7060000080000001e640000000000004504040001000000170400000c000a00b7040000ff0100006a0af2fe00000000850000001a000000b70000003f00000095000000000000009e17f199a68b06d83298a8cdc21ce784909b849d5550ad857d0454d8877a6db61d69f2ffcaa10350e11cb97c8adf1bc9a0c4eeceb9971e43405d621ffbc9ce000000d8ca56b50d0c010d631f6dde53a9a53608c10556e5734eb84049761451ce540c772e2d9f8004e26f7fcc059c062234d5595f6fbaa187b81d1106000000000f0000fd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7e43c5cbd8000000000000080231c61ccd106cb937b450f859ce8122a79c3e40000b59b0fc46d6cec3c0802882add4e1179bd4a44f231b6d753a7be428ba953df4aece69311687f4122073a236c3a32efa04137d4524847d2638da3261c8162bb7c7824be6195a66d2e17e122040e1100000000928612a29fc691e4f1f7bd053abb885f39381f1759410b1059f05684261f332d606834669b49ec99320ca7712d7e79bd5bf5ed818ecc7640917f6a559a47db608fcf9f6c131b84e41c354c66838f72b9e12d36e996f316f0812ca83efb30c7f6c6d57c4a64590401eec22523dd712c680013e87f649a1ede7142ca9d5d8a8c9f9b440fe4331ad5532c74d9a31a5d737537f7a2caa30581253d14dd3e92af7dc836686365ae01bdec561c0402b67801267a8df97d2f85426a5963d4fa3e26cc05972c162f223f000000d999e80de00fcbcc02d0aed7bb8f7ba337d59c14f39dcd4aad4139ef6425a9367f1bd1467fc6b95a4df7669839771ce9d5788029901e5a79d8b9990ace8f74087f25ad50c4608800000000000000005cbb5a2600"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000140), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x90)
r6 = socket(0x40000000015, 0x5, 0x0)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53048c4)
execve(&(0x7f0000000700)='./file0\x00', 0x0, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
r9 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r9, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r8, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000380)={0xb4, 0x0, &(0x7f0000000800)=[@increfs_done={0x40106308, 0x1}, @clear_death={0x400c630f, 0x2}, @acquire={0x40046305, 0x3}, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000200)={@flat=@handle={0x73682a85, 0x1001, 0x1}, @fda={0x66646185, 0x5, 0x1, 0x3f}, @fda={0x66646185, 0x2, 0x2, 0xa}}, &(0x7f0000000180)={0x0, 0x18, 0x34}}}, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000780)={@fda={0x66646185, 0x1, 0x2, 0x1a}, @fda={0x66646185, 0x9, 0x0, 0x22}, @flat=@handle={0x73682a85, 0x0, 0x2}}, &(0x7f0000000300)={0x0, 0x1c, 0x38}}}], 0xb6, 0x0, &(0x7f00000008c0)="176426ea81be9ca7002d06acd1f649b331b5dc84a358ea0fb97d2e8bdca422017a091a59a5f7430e2dbb8d147e48f415a3dbc3ac4eeee188e930840871d158baf29f30d03504eb463517e23568289dc5d81dfdd7644aa701aa9f308b0954a933a9c1e46c504f187423e19f4021e739acfb0e448426e7726304a4bf4be755d23c3e993b49851e4084cafbc02049b98c46bb3d7b2b7d15ec69c7a09311d943ef0feda417382b7c69da99f3258b6fa95c9fa94a25552962"})
connect$inet6(r6, 0x0, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x0, 0x0, 0x0, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
recvmsg(r10, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)

1.5212633s ago: executing program 3 (id=267):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f000000e0c0), 0x10010)
sendfile(r0, r1, &(0x7f0000000100)=0x10, 0x10001)

1.510767545s ago: executing program 3 (id=268):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000340)=ANY=[@ANYRESOCT=r0], 0x28)
syz_80211_inject_frame(&(0x7f0000000280), &(0x7f00000002c0)=@ctrl_frame=@cf_end={{}, {0xb8}}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000003e0095"], &(0x7f0000000000)='syzkaller\x00'}, 0xc3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r1}, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000000)={0x0, 0x0, "97dded", 0x5})
socket$l2tp6(0xa, 0x2, 0x73)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r3, 0x0, 0x481, &(0x7f00000000c0), &(0x7f0000000100)=0xc)
bind$l2tp(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}, 0x1}, 0x10)
fsopen(0x0, 0x0)
pwritev(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="8a87b000fe0d5a68e6ee7b8bfd02fdba5c63ec6f5b86cb344b031ff9c7aeb5bb", 0x20}, {&(0x7f0000000180)="846b77c65849252f2b82ed75b3b5db4ce336ed01124626cb55ff5901e490e5fc6ff46dd6", 0x24}, {&(0x7f00000004c0)="31205738afcb5d5f83dc307a73424ec0a7d391bc34739defa51f56fa8fea5a50a785311eb8f133dce445788fea8c3aa2ca5a4c881f46b2c5bb7a7adf07b0e3f68276f2268c49aed5bbd0a3e34ee74cdf8740611b727f6cd7c9a0e303e18dc6fa21c7fa31585f955790c8d10fa2e13d14e7727de95ed3ff04bf900ca01dd5e876ad2c3ecd2e3bd961308b3b26a7de8471d4baa19d0205ec80d22c04840bd796", 0x9f}], 0x3, 0x10, 0x400)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(0x0, r4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = getpid()
process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000700)={'team_slave_1\x00', 0x800})

1.223273852s ago: executing program 0 (id=269):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x1, 0x6, 0x0, 0x40, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x5, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r1=>r0, @ANYBLOB="0000000000000000b7080000fa0000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
socket(0x29, 0x80002, 0xffffffff)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000500)=ANY=[@ANYRES32=r2], &(0x7f0000000280)='syzkaller\x00', 0xfffffff8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
listen(0xffffffffffffffff, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000000380)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x2000000000000077, 0x0)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5}, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r9=>0x0})
sendto$packet(r7, &(0x7f0000000180)="10030600e4ff020002004788aa96a13bb100001100007fca1a00", 0x1000a, 0x0, &(0x7f0000000140)={0x11, 0x0, r9}, 0x14)
getsockopt$bt_BT_RCVMTU(0xffffffffffffffff, 0x112, 0xd, &(0x7f00000000c0), &(0x7f0000000040)=0x2)
socket(0x10, 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r10 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r10, &(0x7f0000000340)={&(0x7f0000000000)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-aes-neon\x00'}, 0x80, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYRES32=r1], 0x10}, 0x8811)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f00000002c0)='pimreg1\x00', 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

1.222685633s ago: executing program 2 (id=270):
r0 = socket$alg(0x26, 0x5, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x21040, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000100)={0x0, "5660359c3245d1c42317afad7d48ed51000000000000000100", <r2=>0xffffffffffffffff})
syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, 0x0, 0x0)
ioctl$SYNC_IOC_MERGE(r2, 0xc0303e03, &(0x7f0000000340)={"3c24139ed4d4b8affbf514fd000000000000000000000000000000004000"})
r3 = openat$pmem0(0xffffff9c, &(0x7f0000000040), 0x6d02, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r3, 0x80049363, &(0x7f0000000240))
socket$can_bcm(0x1d, 0x2, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
recvmmsg(r4, &(0x7f0000004380)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x2004, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_AUTORATE={0x8, 0x9, 0x1}]}}]}, 0x3c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', r7}, 0x48)
syz_open_dev$video(&(0x7f0000000140), 0x0, 0x22000)
pselect6(0x40, &(0x7f00000001c0)={0xa36}, 0x0, &(0x7f0000000200)={0x3ff}, 0x0, 0x0)
bind$alg(r0, &(0x7f0000003880)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-ssse3\x00'}, 0x58)
r8 = accept4(r0, 0x0, 0x0, 0x80800)
sendmsg$kcm(r8, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000000)="72a03429", 0x4}], 0x1}, 0x0)

1.090754232s ago: executing program 0 (id=271):
syz_genetlink_get_family_id$tipc2(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=ANY=[@ANYBLOB="046117b56b1069f1b69e0a275dbc9f6e2c7686f9e524fce7c1d5f2", @ANYBLOB="7dd402590eb5aaeefe8feef64e9dcd1838fced5ca256d67014b3e8da9f74a8a7a36a8ee42583381712872705c51595f2b2ef450b74f9bbc5023685b63ce416519fa0dabdef4a449c4a7d3d9812ef749b913ada1ded2d4a292a990ce1e7f2f9e247f3dda088a0c1d6e83d285273f6dfeb4e4ed49d96237d68b788355b2d546d3cd3859d02135d0043f0e860c5ceb28dc76086c37a3c347d6ae74d8a0d5fc01470e8749e"], 0x14}, 0x1, 0x0, 0x0, 0x2000c805}, 0x0)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f00000001c0)={0x1, @sdr={0x34424752, 0x2}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x90)
socket$inet6(0xa, 0x80000, 0x0)
syz_emit_vhci(0x0, 0x1d)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
getrusage(0x0, &(0x7f0000000640))
r2 = syz_open_procfs(0x0, &(0x7f0000000340)='net/vlan/vlan0\x00')
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000580)={r2, 0x58, &(0x7f0000000100)}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$SO_BINDTODEVICE_wg(r3, 0x1, 0x19, &(0x7f0000000080)='wg2\x00', 0x4)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
setsockopt$MRT6_ADD_MFC(r2, 0x29, 0xd2, 0x0, 0x2c)
preadv(r2, &(0x7f0000000440)=[{&(0x7f0000001280)=""/64, 0x40}, {&(0x7f00000002c0)=""/64, 0x40}], 0x2, 0x800000, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000380)=ANY=[])
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$SNDCTL_DSP_SETTRIGGER(0xffffffffffffffff, 0x40045010, &(0x7f0000000040)=0x4)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r4, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffe, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x65, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x976, 0x0, 0x0, 0x1], [0x8, 0xff, 0x0, 0xfffffff9], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc8a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xc5, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}, 0x45c)
ioctl$UI_DEV_SETUP(r4, 0x5501, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001900)=[{0x0}, {&(0x7f0000000040)=""/65, 0x41}], 0x2)
write$input_event(r4, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)

339.813817ms ago: executing program 3 (id=272):
r0 = socket$inet(0x2, 0x1, 0x8)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='dctcp\x00', 0x6)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0xbc, &(0x7f0000000200)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000480)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xb, 0x5, 0x480, 0x40000, 0x2799, 0xffffffffffffffff, 0x803, '\x00', r3, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f0000000100))
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r5, &(0x7f00000001c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0xc2, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x9}, 0xe)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r5, 0x84, 0x21, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000840), 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff82)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001500), r6)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="81df252714ec0000df1b244eb99854b445235b76f09b2a87ca29257a9d31ca32550c008cbc16013de5a580b789871db7515f302d5aef9a83fcf430ae7507a6f9d07c16299ce77b9c2ba915113b67f9ad15ff49ccaab0a804732bdf984e8339fb8965467f8778bdee3ab91546c96295537307348a98d87616257809fc34e6abc7598771"], 0x14}}, 0x0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/consoles\x00', 0x0, 0x0)
r9 = add_key$user(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000700)="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"/387, 0x183, 0x0)
keyctl$set_timeout(0xf, r9, 0xfffffffffffffffd)
read$FUSE(r8, &(0x7f0000001580)={0x2020}, 0x2020)

264.52967ms ago: executing program 2 (id=273):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='dctcp\x00', 0x6)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/124, 0x7c}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x0, 0x1}, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_submit(0x0, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r4, 0x0}])
r5 = syz_io_uring_setup(0x24f9, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r5, 0xa3d, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r8 = gettid()
timer_create(0x2, &(0x7f0000000180)={0x0, 0x1b, 0x4, @tid=r8}, &(0x7f0000000080))
timer_settime(0x0, 0x5, &(0x7f00000001c0)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000100))
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r9, &(0x7f00000001c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e24, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={0x1}, 0x4)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f0000000000)={0x0, 0x104000})
r10 = syz_io_uring_setup(0x24237, &(0x7f0000000100)={0x0, 0x800000, 0x0, 0x1, 0x348}, &(0x7f0000000200), &(0x7f00000001c0))
r11 = io_uring_setup(0x34d, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x8000, 0x3cb})
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r10, 0x1b, 0x20000000, r12)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000480)=0xffffffffffffffff, 0x4)

0s ago: executing program 0 (id=274):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x40, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361d86865"])
chdir(&(0x7f0000000280)='./file0\x00')
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000080), 0xfecc)
syz_open_dev$evdev(&(0x7f0000000140), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getpid()
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, 0x0, 0x0)
r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsmount(r0, 0x0, 0x0)
openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0)
r1 = creat(0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102395, 0x18ffb)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$alg(0x26, 0x5, 0x0)
r3 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x20080)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x200000b, 0x30, r2, 0xff7fd000)
ioctl(r3, 0x0, &(0x7f0000000500)="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")
syz_usbip_server_init(0x4)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x4004080)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x34ba82, 0x0)
ioctl$TCSETAF(r5, 0x5408, &(0x7f0000000080)={0x4e00, 0x0, 0x0, 0xbdff, 0x0, "ec28a1ba80a20507"})
write$binfmt_aout(r5, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000240)={0x0, 0xfffffffe, 0x1, 0x0, 0x0, "0062ba7d82000000000000000000f7fffeff00"})
socket$packet(0x11, 0x2, 0x300)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:60153' (ED25519) to the list of known hosts.
[   58.315531][ T5335] cgroup: Unknown subsys name 'net'
[   58.459294][ T5335] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   59.926180][ T5335] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   66.432269][ T5361] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   66.437885][ T5368] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   66.439129][ T5362] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   66.442838][ T5368] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   66.449568][ T5362] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   66.450446][ T5368] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   66.456332][ T5368] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   66.460639][ T5368] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   66.460873][ T5365] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   66.468379][ T5362] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   66.470326][ T5368] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   66.474268][ T5367] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   66.480409][ T5365] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   66.480425][   T65] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   66.483101][ T5368] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   66.487635][   T65] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   66.490102][ T5365] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   66.491837][ T5368] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   66.493825][   T65] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   66.493931][ T5368] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   66.494572][ T5368] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   66.494928][ T5368] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   66.496046][ T4770] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   66.503042][ T5365] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   66.920668][ T5352] chnl_net:caif_netlink_parms(): no params data found
[   66.944053][ T5350] chnl_net:caif_netlink_parms(): no params data found
[   66.963057][ T5351] chnl_net:caif_netlink_parms(): no params data found
[   67.336847][ T5350] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.340680][ T5350] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.344077][ T5350] bridge_slave_0: entered allmulticast mode
[   67.348357][ T5350] bridge_slave_0: entered promiscuous mode
[   67.383961][ T5352] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.387008][ T5352] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.390088][ T5352] bridge_slave_0: entered allmulticast mode
[   67.394443][ T5352] bridge_slave_0: entered promiscuous mode
[   67.399238][ T5353] chnl_net:caif_netlink_parms(): no params data found
[   67.412208][ T5350] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.415522][ T5350] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.418685][ T5350] bridge_slave_1: entered allmulticast mode
[   67.422710][ T5350] bridge_slave_1: entered promiscuous mode
[   67.452007][ T5351] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.455397][ T5351] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.458486][ T5351] bridge_slave_0: entered allmulticast mode
[   67.462647][ T5351] bridge_slave_0: entered promiscuous mode
[   67.467209][ T5352] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.470296][ T5352] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.473211][ T5352] bridge_slave_1: entered allmulticast mode
[   67.476668][ T5352] bridge_slave_1: entered promiscuous mode
[   67.566066][ T5351] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.569290][ T5351] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.572464][ T5351] bridge_slave_1: entered allmulticast mode
[   67.578503][ T5351] bridge_slave_1: entered promiscuous mode
[   67.651469][ T5352] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.721596][ T5351] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.728971][ T5352] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.735068][ T5350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.748433][ T5351] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.831146][ T5350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.888381][ T5351] team0: Port device team_slave_0 added
[   67.896630][ T5352] team0: Port device team_slave_0 added
[   67.976089][ T5351] team0: Port device team_slave_1 added
[   67.980674][ T5352] team0: Port device team_slave_1 added
[   68.028887][ T5350] team0: Port device team_slave_0 added
[   68.060552][ T5353] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.064259][ T5353] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.067592][ T5353] bridge_slave_0: entered allmulticast mode
[   68.071283][ T5353] bridge_slave_0: entered promiscuous mode
[   68.173737][ T5350] team0: Port device team_slave_1 added
[   68.206301][ T5353] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.209961][ T5353] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.213555][ T5353] bridge_slave_1: entered allmulticast mode
[   68.217615][ T5353] bridge_slave_1: entered promiscuous mode
[   68.222043][ T5351] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.225298][ T5351] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.238166][ T5351] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.248916][ T5351] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.258906][ T5351] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.289225][ T5351] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.308375][ T5352] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.311129][ T5352] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.323880][ T5352] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.395315][ T5352] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.398365][ T5352] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.410409][ T5352] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.416227][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.419482][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.431563][ T5350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.437873][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.440917][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.452310][ T5350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.533662][ T5365] Bluetooth: hci1: command tx timeout
[   68.533759][ T5368] Bluetooth: hci3: command tx timeout
[   68.533784][   T65] Bluetooth: hci0: command tx timeout
[   68.539256][ T5353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.542861][ T5368] Bluetooth: hci2: command tx timeout
[   68.549786][ T5353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.783429][ T5351] hsr_slave_0: entered promiscuous mode
[   68.787465][ T5351] hsr_slave_1: entered promiscuous mode
[   68.795539][ T5352] hsr_slave_0: entered promiscuous mode
[   68.799794][ T5352] hsr_slave_1: entered promiscuous mode
[   68.810373][ T5352] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.819977][ T5352] Cannot create hsr debugfs directory
[   68.828509][ T5350] hsr_slave_0: entered promiscuous mode
[   68.836263][ T5350] hsr_slave_1: entered promiscuous mode
[   68.840310][ T5350] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.844373][ T5350] Cannot create hsr debugfs directory
[   68.850794][ T5353] team0: Port device team_slave_0 added
[   68.856683][ T5353] team0: Port device team_slave_1 added
[   68.979887][ T5353] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.983608][ T5353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.995239][ T5353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.083117][ T5353] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.085841][ T5353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.096850][ T5353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.359019][ T5353] hsr_slave_0: entered promiscuous mode
[   69.363320][ T5353] hsr_slave_1: entered promiscuous mode
[   69.366278][ T5353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   69.369644][ T5353] Cannot create hsr debugfs directory
[   69.671154][ T5352] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   69.697656][ T5352] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   69.715102][ T5352] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   69.725647][ T5352] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   69.767104][ T5350] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   69.774317][ T5350] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   69.780496][ T5350] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   69.786782][ T5350] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   69.881298][ T5351] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   69.888512][ T5351] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   69.896430][ T5351] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   69.903331][ T5351] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   69.970314][ T5353] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   69.987952][ T5353] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   69.995431][ T5353] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   70.001660][ T5353] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   70.042376][ T5350] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.091397][ T5352] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.100176][ T5350] 8021q: adding VLAN 0 to HW filter on device team0
[   70.116310][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.120409][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.125919][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.128995][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.144723][ T5352] 8021q: adding VLAN 0 to HW filter on device team0
[   70.161313][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.164553][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.197424][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.200842][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.227067][ T5351] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.275321][ T5351] 8021q: adding VLAN 0 to HW filter on device team0
[   70.308512][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.311321][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.317147][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.320024][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.407639][ T5353] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.445353][ T5353] 8021q: adding VLAN 0 to HW filter on device team0
[   70.457612][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.461522][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.471497][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.474642][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.549436][ T5350] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.589751][ T5352] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.611965][ T5351] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.613140][ T5368] Bluetooth: hci2: command tx timeout
[   70.617185][ T5365] Bluetooth: hci3: command tx timeout
[   70.617279][   T65] Bluetooth: hci1: command tx timeout
[   70.621651][ T5350] veth0_vlan: entered promiscuous mode
[   70.623655][ T5365] Bluetooth: hci0: command tx timeout
[   70.646803][ T5350] veth1_vlan: entered promiscuous mode
[   70.708504][ T5350] veth0_macvtap: entered promiscuous mode
[   70.718691][ T5350] veth1_macvtap: entered promiscuous mode
[   70.737556][ T5353] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.745795][ T5352] veth0_vlan: entered promiscuous mode
[   70.767592][ T5352] veth1_vlan: entered promiscuous mode
[   70.774918][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.793703][ T5351] veth0_vlan: entered promiscuous mode
[   70.809818][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.815259][ T5351] veth1_vlan: entered promiscuous mode
[   70.831670][ T5350] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.836574][ T5350] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.840656][ T5350] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.845929][ T5350] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.895086][ T5353] veth0_vlan: entered promiscuous mode
[   70.913807][ T5352] veth0_macvtap: entered promiscuous mode
[   70.921633][ T5352] veth1_macvtap: entered promiscuous mode
[   70.939445][ T5353] veth1_vlan: entered promiscuous mode
[   70.964154][ T5351] veth0_macvtap: entered promiscuous mode
[   70.969357][ T5352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.974380][ T5352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.980311][ T5352] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.987962][ T5352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.994861][ T5352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.007852][ T5352] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.031816][ T5351] veth1_macvtap: entered promiscuous mode
[   71.035776][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.038657][ T5352] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.039568][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.043809][ T5352] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.050511][ T5352] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.054495][ T5352] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.106478][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.110050][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.119937][ T5351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.124865][ T5351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.129304][ T5351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.134253][ T5351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.140274][ T5351] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.157711][ T5353] veth0_macvtap: entered promiscuous mode
[   71.166100][ T5351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.171379][ T5351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.176337][ T5351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.181515][ T5351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.187517][ T5351] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.208671][ T5351] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.212368][ T5351] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.216285][ T5351] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.220866][ T5351] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.229881][ T5353] veth1_macvtap: entered promiscuous mode
[   71.252442][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.259261][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.264025][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.268475][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.272680][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.276789][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.282125][ T5353] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.290923][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.294603][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.344499][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.349315][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.358844][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.365852][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.370778][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.375605][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.381159][ T5353] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.386943][ T5353] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.390876][ T5353] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.395322][ T5353] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.399256][ T5353] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.430471][ T1111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.434704][ T1111] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.456761][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.460059][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.514671][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.519644][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.562229][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.568677][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.644419][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.647956][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.656722][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.660231][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.660473][ T5420] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1'.
[   71.667021][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.681706][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.688217][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.691579][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.696365][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.699633][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.703213][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.705497][ T5420] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1'.
[   71.706336][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.714181][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.717391][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.720599][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.724190][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.727453][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.730501][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.736178][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.739694][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.744282][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.748147][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.751400][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.755282][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.759368][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.763468][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.766823][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.769980][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.773486][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.776356][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.779678][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.783902][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.787010][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.789939][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.794096][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.797182][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.800797][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.804989][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.808529][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.812368][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.817847][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.821618][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.831514][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.838667][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.847147][    T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   71.864753][    T8] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   71.873905][ T1417] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   71.976444][ T5415] netlink: 8280 bytes leftover after parsing attributes in process `syz.2.3'.
[   71.980798][ T5415] netlink: 8280 bytes leftover after parsing attributes in process `syz.2.3'.
[   71.996214][ T5426] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[   72.008966][ T5426] CIFS: Unable to determine destination address
[   72.012945][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   72.062704][ T1417] usb 8-1: Using ep0 maxpacket: 8
[   72.074146][ T1417] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   72.079236][ T1417] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[   72.083534][ T1417] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   72.088274][ T1417] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   72.094053][ T1417] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   72.098083][ T1417] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   72.114336][ T1417] hub 8-1:1.0: bad descriptor, ignoring hub
[   72.134916][ T1417] hub 8-1:1.0: probe with driver hub failed with error -5
[   72.149180][ T1417] cdc_wdm 8-1:1.0: skipping garbage
[   72.151728][ T1417] cdc_wdm 8-1:1.0: skipping garbage
[   72.158503][ T1417] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[   72.160628][ T1417] cdc_wdm 8-1:1.0: Unknown control protocol
[   72.483461][    T8] usb 8-1: USB disconnect, device number 2
[   72.531743][ T5432] overlayfs: failed to resolve './file0': -2
[   72.567124][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2c0!!!
[   72.575134][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   72.693729][ T5365] Bluetooth: hci2: command tx timeout
[   72.710726][ T5368] Bluetooth: hci1: command tx timeout
[   72.710761][   T65] Bluetooth: hci0: command tx timeout
[   72.710802][ T5365] Bluetooth: hci3: command tx timeout
[   72.870839][ T5397] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[   73.055072][ T5397] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   73.059984][ T5397] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[   73.070805][ T5397] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[   73.081150][ T5397] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   73.086136][ T5397] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.093899][ T5417] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   73.098929][ T5397] hub 8-1:1.0: bad descriptor, ignoring hub
[   73.107297][ T5397] hub 8-1:1.0: probe with driver hub failed with error -5
[   73.110521][ T5397] cdc_wdm 8-1:1.0: skipping garbage
[   73.113260][ T5397] cdc_wdm 8-1:1.0: skipping garbage
[   73.120155][ T5397] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[   73.123045][ T5397] cdc_wdm 8-1:1.0: Unknown control protocol
[   73.472994][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   73.476913][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   73.477173][ T5417] tmpfs: Unknown parameter 'nr_inodesRp'
[   73.480450][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   73.574762][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   73.578234][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   73.582007][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   73.586182][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   74.683867][   T57] usb 8-1: USB disconnect, device number 3
[   74.773011][   T65] Bluetooth: hci1: command tx timeout
[   74.773096][ T5368] Bluetooth: hci0: command tx timeout
[   74.775712][   T65] Bluetooth: hci3: command tx timeout
[   74.778942][ T5360] Bluetooth: hci2: command tx timeout
[   74.899512][ T5460] Zero length message leads to an empty skb
[   76.142966][   T35] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   76.361320][ T5477] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   76.386996][   T35] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[   76.390896][   T35] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   76.396663][   T35] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   76.400303][   T35] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   76.404222][   T35] usb 6-1: Manufacturer: syz
[   76.408708][   T35] usb 6-1: config 0 descriptor??
[   76.417355][ T5477] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   76.555910][   T35] rc_core: IR keymap rc-hauppauge not found
[   76.558429][   T35] Registered IR keymap rc-empty
[   76.572813][   T35] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[   76.584263][   T35] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input6
[   76.955976][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[   76.959216][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[   77.687251][ T5477] Bluetooth: hci0: Opcode 0x0401 failed: -4
[   78.041114][ T5488] netlink: 156 bytes leftover after parsing attributes in process `syz.0.15'.
[   78.064792][ T5488] fuse: Bad value for 'fd'
[   78.623220][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[   78.664510][    T9] usb 6-1: USB disconnect, device number 2
[   78.915082][ T5498] sch_tbf: burst 4 is lower than device lo mtu (65550) !
[   78.937886][ T5498] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   82.238333][ T5522] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   83.143661][ T5528] ALSA: mixer_oss: invalid OSS volume ''
[   83.149288][ T5528] syz.1.24 uses obsolete (PF_INET,SOCK_PACKET)
[   83.317848][   T39] audit: type=1326 audit(1723735870.575:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5526 comm="syz.1.24" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f24579 code=0x0
[   85.953064][ T5360] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   85.958336][ T5360] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   85.972963][ T5360] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   86.003038][ T5360] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   86.019168][ T5360] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   86.023776][ T5360] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   86.113233][ T5559] REISERFS warning (device nullb0): super-6502 reiserfs_getopt: unknown mount option "�b�_v-f`��"
[   86.314925][ T5558] chnl_net:caif_netlink_parms(): no params data found
[   86.485796][ T5558] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.488876][ T5558] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.491837][ T5558] bridge_slave_0: entered allmulticast mode
[   86.496160][ T5558] bridge_slave_0: entered promiscuous mode
[   86.503539][ T5558] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.507947][ T5558] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.510870][ T5558] bridge_slave_1: entered allmulticast mode
[   86.527112][ T5558] bridge_slave_1: entered promiscuous mode
[   86.644554][ T5558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.650117][ T5558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.795207][ T5558] team0: Port device team_slave_0 added
[   86.800854][ T5558] team0: Port device team_slave_1 added
[   86.834872][ T5573] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   87.001481][ T5558] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.021647][ T5558] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.043686][ T5558] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.050101][ T5558] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.058381][ T5558] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.070215][ T5558] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.186089][  T104] cfg80211: failed to load regulatory.db
[   87.245816][ T5558] hsr_slave_0: entered promiscuous mode
[   87.257319][ T5558] hsr_slave_1: entered promiscuous mode
[   87.261936][ T5558] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   87.268157][ T5558] Cannot create hsr debugfs directory
[   87.951363][ T5558] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.132854][ T5368] Bluetooth: hci4: command tx timeout
[   88.148873][ T5558] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.297550][ T5558] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.389188][ T5558] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.406552][ T5589] netlink: 'syz.0.37': attribute type 9 has an invalid length.
[   88.409968][ T5589] netlink: 'syz.0.37': attribute type 6 has an invalid length.
[   88.583287][ T5558] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   88.591059][ T5558] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   88.597943][ T5558] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   88.618114][ T5558] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   88.796797][ T5558] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.823252][ T5558] 8021q: adding VLAN 0 to HW filter on device team0
[   88.841455][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.844724][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.869226][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.872409][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.873008][  T832] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   88.951662][ T5558] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   89.070820][  T832] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[   89.077713][  T832] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   89.103222][  T832] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   89.112765][  T832] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   89.131346][  T832] usb 6-1: Manufacturer: syz
[   89.155459][  T832] usb 6-1: config 0 descriptor??
[   89.233803][ T5558] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.263463][  T832] rc_core: IR keymap rc-hauppauge not found
[   89.272746][  T832] Registered IR keymap rc-empty
[   89.276225][  T832] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[   89.303360][  T832] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input7
[   89.321572][ T5558] veth0_vlan: entered promiscuous mode
[   89.349862][ T5558] veth1_vlan: entered promiscuous mode
[   89.511990][ T5558] veth0_macvtap: entered promiscuous mode
[   89.522786][ T5558] veth1_macvtap: entered promiscuous mode
[   89.576874][  T985] usb 6-1: USB disconnect, device number 3
[   89.578280][ T5558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.584922][ T5558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.589245][ T5558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.593882][ T5558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.597919][ T5558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.602281][ T5558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.607107][ T5558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.612178][ T5558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.625911][ T5558] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.635077][ T5558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.662300][ T5558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.669397][ T5558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.675811][ T5558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.680386][ T5558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.685400][ T5558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.689776][ T5558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.696881][ T5558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.708812][ T5558] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.730610][ T5558] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.738029][ T5558] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.741644][ T5558] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.745269][ T5558] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.818815][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.832924][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.888065][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.891837][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.218817][ T5368] Bluetooth: hci4: command tx timeout
[   90.713861][ T5614] netlink: 156 bytes leftover after parsing attributes in process `syz.0.43'.
[   90.806780][ T5614] fuse: Bad value for 'fd'
[   91.130615][ T5625] netlink: 12 bytes leftover after parsing attributes in process `syz.1.46'.
[   91.149491][ T5625] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   91.153749][ T5625] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   91.158184][ T5625] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   91.161926][ T5625] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   91.166677][ T5625] vxlan0: entered promiscuous mode
[   91.716838][ T5635] netlink: 32 bytes leftover after parsing attributes in process `syz.2.50'.
[   91.760371][ T5634] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   91.799197][ T5637] process 'syz.2.52' launched './file1' with NULL argv: empty string added
[   91.978435][ T5643] Driver unsupported XDP return value 0 on prog  (id 21) dev N/A, expect packet loss!
[   91.985362][ T5646] netlink: 'syz.3.55': attribute type 1 has an invalid length.
[   91.989368][ T5646] netlink: 244 bytes leftover after parsing attributes in process `syz.3.55'.
[   92.164665][ T5659] batadv_slave_1: entered promiscuous mode
[   92.172399][ T5658] batadv_slave_1: left promiscuous mode
[   92.244630][ T5664] input: syz0 as /devices/virtual/input/input8
[   92.293353][ T5368] Bluetooth: hci4: command tx timeout
[   93.422383][ T5675] mkiss: ax0: crc mode is auto.
[   94.277309][ T5684] FAULT_INJECTION: forcing a failure.
[   94.277309][ T5684] name failslab, interval 1, probability 0, space 0, times 0
[   94.285345][  T832] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   94.292679][ T5684] CPU: 1 UID: 0 PID: 5684 Comm: syz.0.67 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[   94.297751][ T5684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.302488][ T5684] Call Trace:
[   94.303995][ T5684]  <TASK>
[   94.305323][ T5684]  dump_stack_lvl+0x16c/0x1f0
[   94.307507][ T5684]  should_fail_ex+0x497/0x5b0
[   94.309625][ T5684]  should_failslab+0xc2/0x120
[   94.311746][ T5684]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   94.314247][ T5684]  ? skb_clone+0x190/0x3f0
[   94.316283][ T5684]  skb_clone+0x190/0x3f0
[   94.318358][ T5684]  netlink_deliver_tap+0xb26/0xcf0
[   94.320895][ T5684]  netlink_unicast+0x6c2/0x830
[   94.323422][ T5684]  ? __pfx_netlink_unicast+0x10/0x10
[   94.325867][ T5684]  ? genl_rcv_msg+0x4bd/0x800
[   94.328005][ T5684]  netlink_ack+0x6a5/0xb20
[   94.330039][ T5684]  netlink_rcv_skb+0x327/0x410
[   94.332657][ T5684]  ? __pfx_genl_rcv_msg+0x10/0x10
[   94.335122][ T5684]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   94.337744][ T5684]  ? down_read+0xc9/0x330
[   94.339872][ T5684]  ? __pfx_down_read+0x10/0x10
[   94.342199][ T5684]  ? netlink_deliver_tap+0x1ae/0xcf0
[   94.345107][ T5684]  genl_rcv+0x28/0x40
[   94.347347][ T5684]  netlink_unicast+0x544/0x830
[   94.349516][ T5684]  ? __pfx_netlink_unicast+0x10/0x10
[   94.351865][ T5684]  ? __phys_addr_symbol+0x30/0x80
[   94.354130][ T5684]  ? __check_object_size+0x497/0x720
[   94.356580][ T5684]  netlink_sendmsg+0x8b8/0xd70
[   94.358859][ T5684]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.361446][ T5684]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   94.363849][ T5684]  ____sys_sendmsg+0x9b4/0xb50
[   94.365938][ T5684]  ? __pfx_____sys_sendmsg+0x10/0x10
[   94.368343][ T5684]  ? get_compat_msghdr+0x11b/0x170
[   94.370663][ T5684]  ? __pfx___lock_acquire+0x10/0x10
[   94.372997][ T5684]  ___sys_sendmsg+0x135/0x1e0
[   94.375290][ T5684]  ? __pfx____sys_sendmsg+0x10/0x10
[   94.378287][ T5684]  ? ksys_write+0x21c/0x260
[   94.380476][ T5684]  ? __fget_light+0x173/0x210
[   94.382613][ T5684]  __sys_sendmsg+0x117/0x1f0
[   94.384756][ T5684]  ? __pfx___sys_sendmsg+0x10/0x10
[   94.387109][ T5684]  __do_fast_syscall_32+0x73/0x120
[   94.389504][ T5684]  do_fast_syscall_32+0x32/0x80
[   94.391686][ T5684]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   94.394902][ T5684] RIP: 0023:0xf7fe3579
[   94.397368][ T5684] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   94.405825][ T5684] RSP: 002b:00000000f578656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   94.409533][ T5684] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0
[   94.413026][ T5684] RDX: 0000000000024894 RSI: 0000000000000000 RDI: 0000000000000000
[   94.416519][ T5684] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   94.420399][ T5684] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   94.424112][ T5684] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   94.427746][ T5684]  </TASK>
[   94.430993][ T5368] Bluetooth: hci4: command tx timeout
[   94.524035][  T832] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   94.528861][  T832] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 65327, setting to 1024
[   94.538642][  T832] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[   94.543409][  T832] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   94.558203][  T832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.570676][ T5682] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   94.579624][  T832] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   94.837742][ T5694] FAULT_INJECTION: forcing a failure.
[   94.837742][ T5694] name failslab, interval 1, probability 0, space 0, times 0
[   94.843530][ T5694] CPU: 3 UID: 0 PID: 5694 Comm: syz.0.71 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[   94.848567][ T5694] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.853492][ T5694] Call Trace:
[   94.855011][ T5694]  <TASK>
[   94.856337][ T5694]  dump_stack_lvl+0x16c/0x1f0
[   94.858453][ T5694]  should_fail_ex+0x497/0x5b0
[   94.860596][ T5694]  ? fs_reclaim_acquire+0xae/0x160
[   94.862928][ T5694]  should_failslab+0xc2/0x120
[   94.865037][ T5694]  __kmalloc_node_noprof+0xd1/0x440
[   94.867741][ T5694]  ? __kvmalloc_node_noprof+0x9d/0x1a0
[   94.870486][ T5694]  __kvmalloc_node_noprof+0x9d/0x1a0
[   94.872852][ T5694]  bucket_table_alloc.isra.0+0x86/0x470
[   94.875327][ T5694]  ? __raw_spin_lock_init+0x3a/0x110
[   94.877696][ T5694]  rhashtable_init_noprof+0x43b/0x7d0
[   94.880114][ T5694]  rhltable_init_noprof+0x20/0x60
[   94.882370][ T5694]  nf_tables_newtable+0xfaa/0x1b20
[   94.884674][ T5694]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   94.887938][ T5694]  ? __pfx_nf_tables_newtable+0x10/0x10
[   94.890497][ T5694]  ? __nla_parse+0x40/0x60
[   94.892682][ T5694]  nfnetlink_rcv_batch+0x1a19/0x24e0
[   94.895238][ T5694]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[   94.897732][ T5694]  ? preempt_schedule_common+0x44/0xc0
[   94.900185][ T5694]  ? __pfx___lock_acquire+0x10/0x10
[   94.902239][ T5694]  ? __pfx___dev_queue_xmit+0x10/0x10
[   94.904437][ T5694]  ? bpf_lsm_capable+0x9/0x10
[   94.906794][ T5694]  ? __nla_parse+0x40/0x60
[   94.909153][ T5694]  nfnetlink_rcv+0x3c3/0x430
[   94.911307][ T5694]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   94.913645][ T5694]  netlink_unicast+0x544/0x830
[   94.915965][ T5694]  ? __pfx_netlink_unicast+0x10/0x10
[   94.918413][ T5694]  ? __phys_addr_symbol+0x30/0x80
[   94.920715][ T5694]  ? __check_object_size+0x497/0x720
[   94.923110][ T5694]  netlink_sendmsg+0x8b8/0xd70
[   94.925352][ T5694]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.927881][ T5694]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   94.930203][ T5694]  ____sys_sendmsg+0x9b4/0xb50
[   94.932328][ T5694]  ? __pfx_____sys_sendmsg+0x10/0x10
[   94.934508][ T5694]  ? get_compat_msghdr+0x11b/0x170
[   94.936498][ T5694]  ? __pfx___lock_acquire+0x10/0x10
[   94.938512][ T5694]  ___sys_sendmsg+0x135/0x1e0
[   94.940395][ T5694]  ? __pfx____sys_sendmsg+0x10/0x10
[   94.942527][ T5694]  ? ksys_write+0x21c/0x260
[   94.944724][ T5694]  ? __fget_light+0x173/0x210
[   94.946916][ T5694]  __sys_sendmsg+0x117/0x1f0
[   94.949203][ T5694]  ? __pfx___sys_sendmsg+0x10/0x10
[   94.951504][ T5694]  __do_fast_syscall_32+0x73/0x120
[   94.954011][ T5694]  do_fast_syscall_32+0x32/0x80
[   94.956223][ T5694]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   94.959066][ T5694] RIP: 0023:0xf7fe3579
[   94.960919][ T5694] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   94.969230][ T5694] RSP: 002b:00000000f578656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   94.972494][ T5694] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[   94.975368][ T5694] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   94.978634][ T5694] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   94.982394][ T5694] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   94.986023][ T5694] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   94.989555][ T5694]  </TASK>
[   95.095925][ T5699] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   95.108440][ T5699] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   95.204776][ T5697] netlink: 12 bytes leftover after parsing attributes in process `syz.2.72'.
[   95.354536][   T30] usb 6-1: USB disconnect, device number 4
[   96.443052][ T5699] Bluetooth: hci0: Opcode 0x0401 failed: -4
[   96.718172][ T5734] netlink: 8 bytes leftover after parsing attributes in process `syz.2.80'.
[   96.977315][ T5747] netlink: 80 bytes leftover after parsing attributes in process `syz.0.84'.
[   96.990457][ T5752] No control pipe specified
[   97.170496][ T5761] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   97.173421][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[   97.232196][ T5761] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   98.497982][ T5761] Bluetooth: hci0: Opcode 0x0401 failed: -4
[   98.942659][   T30] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   99.164658][   T30] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   99.169747][   T30] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   99.182701][   T30] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   99.192791][   T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.205188][ T5776] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   99.211659][   T30] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   99.334721][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[   99.524750][   T35] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   99.723795][   T35] usb 5-1: Using ep0 maxpacket: 32
[   99.734531][   T35] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   99.741601][   T35] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[   99.755445][   T35] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   99.761451][   T35] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.767793][   T35] usb 5-1: Product: syz
[   99.769557][   T35] usb 5-1: Manufacturer: syz
[   99.771354][   T35] usb 5-1: SerialNumber: syz
[  100.011620][   T35] usb 5-1: USB disconnect, device number 2
[  100.385850][ T5433] usb 6-1: USB disconnect, device number 5
[  100.407019][ T5807] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.415318][ T5807] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.893811][ T5368] Bluetooth: Frame is too long (len 168, expected len 20)
[  101.134972][ T5817] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  101.158768][ T5819] QAT: Invalid ioctl 21531
[  101.729503][ T5807] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  102.161563][ T5833] syz.2.105: attempt to access beyond end of device
[  102.161563][ T5833] loop2: rw=0, sector=0, nr_sectors = 1 limit=0
[  102.452730][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  102.616732][ T5368] Bluetooth: hci2: command tx timeout
[  103.094721][ T5840] nfs: Unknown parameter 'ntext'
[  103.453000][ T4686] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  103.644558][ T4686] usb 7-1: Using ep0 maxpacket: 32
[  103.649828][ T4686] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  103.654410][ T4686] usb 7-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[  103.665008][ T4686] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  103.670611][ T4686] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.676105][ T4686] usb 7-1: Product: syz
[  103.677890][ T4686] usb 7-1: Manufacturer: syz
[  103.679934][ T4686] usb 7-1: SerialNumber: syz
[  103.903894][ T4686] usb 7-1: USB disconnect, device number 2
[  104.992638][    T8] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  105.202673][    T8] usb 7-1: Using ep0 maxpacket: 8
[  105.207155][    T8] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  105.211592][    T8] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  105.225959][ T5865] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  105.238844][ T5865] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  105.243580][    T8] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  105.249942][    T8] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  105.272682][    T8] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  105.276813][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.295594][    T8] hub 7-1:1.0: bad descriptor, ignoring hub
[  105.298161][    T8] hub 7-1:1.0: probe with driver hub failed with error -5
[  105.301913][    T8] cdc_wdm 7-1:1.0: skipping garbage
[  105.312617][    T8] cdc_wdm 7-1:1.0: skipping garbage
[  105.319390][    T8] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  105.321938][    T8] cdc_wdm 7-1:1.0: Unknown control protocol
[  105.939724][ T5868] FAULT_INJECTION: forcing a failure.
[  105.939724][ T5868] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  105.946375][ T5868] CPU: 1 UID: 0 PID: 5868 Comm: syz.2.112 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  105.951226][ T5868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.956193][ T5868] Call Trace:
[  105.957807][ T5868]  <TASK>
[  105.959161][ T5868]  dump_stack_lvl+0x16c/0x1f0
[  105.961401][ T5868]  should_fail_ex+0x497/0x5b0
[  105.963625][ T5868]  strncpy_from_user+0x38/0x320
[  105.965846][ T5868]  getname_flags.part.0+0x8f/0x550
[  105.968183][ T5868]  getname+0x8d/0xe0
[  105.970002][ T5868]  do_sys_openat2+0x104/0x1e0
[  105.972124][ T5868]  ? __pfx_do_sys_openat2+0x10/0x10
[  105.974518][ T5868]  __ia32_compat_sys_openat+0x16e/0x210
[  105.977009][ T5868]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  105.979758][ T5868]  ? ksys_write+0x1ab/0x260
[  105.981834][ T5868]  __do_fast_syscall_32+0x73/0x120
[  105.984334][ T5868]  do_fast_syscall_32+0x32/0x80
[  105.986532][ T5868]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  105.989033][ T5868] RIP: 0023:0xf7f22579
[  105.990670][ T5868] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  105.998983][ T5868] RSP: 002b:00000000f5684110 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  106.002715][ T5868] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f5684160
[  106.006191][ T5868] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 00000000f73b0ff4
[  106.009788][ T5868] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  106.013352][ T5868] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  106.016913][ T5868] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  106.020456][ T5868]  </TASK>
[  106.144736][ T5433] usb 7-1: USB disconnect, device number 3
[  106.562736][ T5865] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  107.332803][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  107.383669][ T5877] netlink: 'syz.1.115': attribute type 3 has an invalid length.
[  107.387658][ T5877] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.115'.
[  108.189076][ T5881] input: syz1 as /devices/virtual/input/input9
[  108.283383][   T39] audit: type=1326 audit(1723735895.525:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.307929][   T39] audit: type=1326 audit(1723735895.525:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.342990][   T39] audit: type=1326 audit(1723735895.525:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.359921][   T39] audit: type=1326 audit(1723735895.535:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.388142][   T39] audit: type=1326 audit(1723735895.535:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.406579][ T5884] netlink: 40 bytes leftover after parsing attributes in process `syz.2.118'.
[  108.408758][   T39] audit: type=1326 audit(1723735895.535:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.420166][   T39] audit: type=1326 audit(1723735895.535:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.431563][   T39] audit: type=1326 audit(1723735895.535:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.441633][   T39] audit: type=1326 audit(1723735895.535:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  108.453753][   T39] audit: type=1326 audit(1723735895.535:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5883 comm="syz.2.118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  109.374650][ T1417] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  109.562638][ T1417] usb 6-1: Using ep0 maxpacket: 32
[  109.587727][ T1417] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  109.604954][ T1417] usb 6-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[  109.621506][ T1417] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  109.625843][ T1417] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.629568][ T1417] usb 6-1: Product: syz
[  109.632973][ T1417] usb 6-1: Manufacturer: syz
[  109.635054][ T1417] usb 6-1: SerialNumber: syz
[  109.856099][  T832] usb 6-1: USB disconnect, device number 6
[  110.052061][ T5819] Process accounting resumed
[  110.098846][ T5904] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.112878][ T5904] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.505032][ T5919] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.784567][ T5923] netlink: 156 bytes leftover after parsing attributes in process `syz.3.128'.
[  110.798937][ T5923] fuse: Bad value for 'fd'
[  111.429266][ T5904] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  111.982781][   T25] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  112.071777][ T5948] capability: warning: `syz.2.136' uses deprecated v2 capabilities in a way that may be insecure
[  112.112703][ T4686] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  112.172836][   T25] usb 5-1: Using ep0 maxpacket: 8
[  112.177292][   T25] usb 5-1: config 0 has no interfaces?
[  112.184847][   T25] usb 5-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  112.190609][   T25] usb 5-1: New USB device strings: Mfr=22, Product=149, SerialNumber=35
[  112.194511][   T25] usb 5-1: Product: syz
[  112.196482][   T25] usb 5-1: Manufacturer: syz
[  112.198639][   T25] usb 5-1: SerialNumber: syz
[  112.205867][   T25] usb 5-1: config 0 descriptor??
[  112.232802][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  112.302732][ T4686] usb 8-1: Using ep0 maxpacket: 32
[  112.328254][ T4686] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  112.333062][ T4686] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[  112.339362][ T4686] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  112.348263][ T4686] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.351765][ T4686] usb 8-1: Product: syz
[  112.354382][ T4686] usb 8-1: Manufacturer: syz
[  112.356527][ T4686] usb 8-1: SerialNumber: syz
[  112.483109][ T5475] usb 5-1: USB disconnect, device number 3
[  112.591284][ T4686] usb 8-1: USB disconnect, device number 4
[  113.082043][ T5960] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.102424][ T5960] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.192883][ T5962] netlink: 8 bytes leftover after parsing attributes in process `syz.2.138'.
[  113.196946][ T5962] netlink: 8 bytes leftover after parsing attributes in process `syz.2.138'.
[  113.288619][ T5963] netlink: 28 bytes leftover after parsing attributes in process `syz.3.140'.
[  114.302749][ T5433] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  114.367607][ T5981] netlink: 156 bytes leftover after parsing attributes in process `syz.3.144'.
[  114.377480][ T5981] fuse: Bad value for 'fd'
[  114.419259][ T5960] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  114.499785][ T5433] usb 6-1: config 0 has no interfaces?
[  114.508718][ T5433] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  114.518746][ T5433] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.526544][ T5433] usb 6-1: config 0 descriptor??
[  115.195616][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  115.242675][ T4686] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  115.256158][ T5996] FAULT_INJECTION: forcing a failure.
[  115.256158][ T5996] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.265200][ T5996] CPU: 3 UID: 0 PID: 5996 Comm: syz.3.149 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  115.272266][ T5996] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.277007][ T5996] Call Trace:
[  115.278426][ T5996]  <TASK>
[  115.279695][ T5996]  dump_stack_lvl+0x16c/0x1f0
[  115.281622][ T5996]  should_fail_ex+0x497/0x5b0
[  115.283616][ T5996]  _copy_to_user+0x30/0xc0
[  115.285769][ T5996]  __copy_siginfo_to_user32+0x97/0xf0
[  115.288132][ T5996]  ? __pfx___copy_siginfo_to_user32+0x10/0x10
[  115.290690][ T5996]  ? _raw_spin_unlock_irq+0x23/0x50
[  115.293011][ T5996]  ? siginfo_layout+0x177/0x290
[  115.295226][ T5996]  ia32_setup_rt_frame+0x6c3/0xb20
[  115.297479][ T5996]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  115.299920][ T5996]  arch_do_signal_or_restart+0x47b/0x7e0
[  115.302260][ T5996]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  115.304774][ T5996]  ? __pfx_ksys_write+0x10/0x10
[  115.306795][ T5996]  syscall_exit_to_user_mode+0x150/0x2a0
[  115.309063][ T5996]  __do_fast_syscall_32+0x80/0x120
[  115.311333][ T5996]  do_fast_syscall_32+0x32/0x80
[  115.313497][ T5996]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.316312][ T5996] RIP: 0023:0xf745e577
[  115.318114][ T5996] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 <cd> 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00
[  115.326070][ T5996] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  115.329428][ T5996] RAX: 0000000000000151 RBX: 0000000000000004 RCX: 000000002000a900
[  115.332834][ T5996] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  115.336269][ T5996] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  115.339326][ T5996] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  115.342433][ T5996] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.345489][ T5996]  </TASK>
[  115.436277][ T4686] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  115.439411][ T4686] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  115.457763][ T4686] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  115.461856][ T4686] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  115.465476][ T4686] usb 5-1: Manufacturer: syz
[  115.480526][ T4686] usb 5-1: config 0 descriptor??
[  115.582324][ T4686] rc_core: IR keymap rc-hauppauge not found
[  115.585075][ T4686] Registered IR keymap rc-empty
[  115.587810][ T4686] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  115.595090][ T4686] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input10
[  115.610191][    C2] vkms_vblank_simulate: vblank timer overrun
[  115.841456][   T25] usb 5-1: USB disconnect, device number 4
[  116.469739][ T4686] usb 6-1: USB disconnect, device number 7
[  117.496136][ T6012] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  117.510340][ T6012] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  117.898206][ T6019] FAULT_INJECTION: forcing a failure.
[  117.898206][ T6019] name failslab, interval 1, probability 0, space 0, times 0
[  117.906717][ T6019] CPU: 3 UID: 0 PID: 6019 Comm: syz.1.154 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  117.912854][ T6019] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.918473][ T6019] Call Trace:
[  117.920560][ T6019]  <TASK>
[  117.922399][ T6019]  dump_stack_lvl+0x16c/0x1f0
[  117.924985][ T6019]  should_fail_ex+0x497/0x5b0
[  117.927252][ T6019]  should_failslab+0xc2/0x120
[  117.929341][ T6019]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  117.931905][ T6019]  ? skb_clone+0x190/0x3f0
[  117.934500][ T6019]  skb_clone+0x190/0x3f0
[  117.937084][ T6019]  netlink_deliver_tap+0xb26/0xcf0
[  117.940266][ T6019]  netlink_unicast+0x6c2/0x830
[  117.942678][ T6019]  ? __pfx_netlink_unicast+0x10/0x10
[  117.945038][ T6019]  ? genl_rcv_msg+0x4bd/0x800
[  117.946913][ T6019]  netlink_ack+0x6a5/0xb20
[  117.948800][ T6019]  netlink_rcv_skb+0x327/0x410
[  117.951722][ T6019]  ? __pfx_genl_rcv_msg+0x10/0x10
[  117.954276][ T6019]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  117.956675][ T6019]  ? down_read+0xc9/0x330
[  117.958970][ T6019]  ? __pfx_down_read+0x10/0x10
[  117.961591][ T6019]  ? netlink_deliver_tap+0x1ae/0xcf0
[  117.964146][ T6019]  genl_rcv+0x28/0x40
[  117.966216][ T6019]  netlink_unicast+0x544/0x830
[  117.968347][ T6019]  ? __pfx_netlink_unicast+0x10/0x10
[  117.970646][ T6019]  ? __phys_addr_symbol+0x30/0x80
[  117.972996][ T6019]  ? __check_object_size+0x497/0x720
[  117.975283][ T6019]  netlink_sendmsg+0x8b8/0xd70
[  117.977327][ T6019]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.979570][ T6019]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  117.981792][ T6019]  ____sys_sendmsg+0x9b4/0xb50
[  117.983874][ T6019]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.986360][ T6019]  ? get_compat_msghdr+0x11b/0x170
[  117.988516][ T6019]  ? __pfx___lock_acquire+0x10/0x10
[  117.990796][ T6019]  ___sys_sendmsg+0x135/0x1e0
[  117.992918][ T6019]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.995130][ T6019]  ? ksys_write+0x21c/0x260
[  117.997064][ T6019]  ? __fget_light+0x173/0x210
[  117.999134][ T6019]  __sys_sendmsg+0x117/0x1f0
[  118.001144][ T6019]  ? __pfx___sys_sendmsg+0x10/0x10
[  118.003762][ T6019]  __do_fast_syscall_32+0x73/0x120
[  118.006870][ T6019]  do_fast_syscall_32+0x32/0x80
[  118.009345][ T6019]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.012058][ T6019] RIP: 0023:0xf7f24579
[  118.013910][ T6019] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  118.022647][ T6019] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  118.026262][ T6019] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000300
[  118.029727][ T6019] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  118.033118][ T6019] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  118.036291][ T6019] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  118.039768][ T6019] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  118.043416][ T6019]  </TASK>
[  118.185532][ T6023] netlink: 36 bytes leftover after parsing attributes in process `syz.1.156'.
[  118.190629][ T6023] FAULT_INJECTION: forcing a failure.
[  118.190629][ T6023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.198305][ T6023] CPU: 2 UID: 0 PID: 6023 Comm: syz.1.156 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  118.203622][ T6023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.209282][ T6023] Call Trace:
[  118.211371][ T6023]  <TASK>
[  118.213214][ T6023]  dump_stack_lvl+0x16c/0x1f0
[  118.216095][ T6023]  should_fail_ex+0x497/0x5b0
[  118.218624][ T6023]  _copy_from_user+0x30/0xf0
[  118.221193][ T6023]  kstrtouint_from_user+0xd7/0x1c0
[  118.223918][ T6023]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  118.226511][ T6023]  ? __pfx_lock_acquire+0x10/0x10
[  118.228752][ T6023]  proc_fail_nth_write+0x84/0x270
[  118.231225][ T6023]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  118.234242][ T6023]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  118.237278][ T6023]  vfs_write+0x29a/0x1140
[  118.239667][ T6023]  ? __fdget_pos+0xeb/0x180
[  118.241759][ T6023]  ? __pfx_vfs_write+0x10/0x10
[  118.243852][ T6023]  ? __pfx___mutex_lock+0x10/0x10
[  118.246322][ T6023]  ? __fget_files+0x256/0x400
[  118.248736][ T6023]  ksys_write+0x12f/0x260
[  118.250644][ T6023]  ? __pfx_ksys_write+0x10/0x10
[  118.252862][ T6023]  __do_fast_syscall_32+0x73/0x120
[  118.255493][ T6023]  do_fast_syscall_32+0x32/0x80
[  118.257590][ T6023]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.260215][ T6023] RIP: 0023:0xf7f24579
[  118.261951][ T6023] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  118.269937][ T6023] RSP: 002b:00000000f56c65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  118.273845][ T6023] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f56c6620
[  118.277699][ T6023] RDX: 0000000000000001 RSI: 00000000f73b0ff4 RDI: 0000000000000000
[  118.281114][ T6023] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  118.285504][ T6023] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  118.289277][ T6023] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  118.292754][ T6023]  </TASK>
[  118.294122][    C2] vkms_vblank_simulate: vblank timer overrun
[  118.830777][ T6012] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  119.357260][ T6049] FAULT_INJECTION: forcing a failure.
[  119.357260][ T6049] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.366181][ T6049] CPU: 1 UID: 0 PID: 6049 Comm: syz.0.163 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  119.370711][ T6049] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.389686][ T6049] Call Trace:
[  119.394087][ T6049]  <TASK>
[  119.397224][ T6049]  dump_stack_lvl+0x16c/0x1f0
[  119.401085][ T6049]  should_fail_ex+0x497/0x5b0
[  119.403979][ T6049]  _copy_to_user+0x30/0xc0
[  119.407629][ T6049]  simple_read_from_buffer+0xd0/0x160
[  119.410598][ T6049]  proc_fail_nth_read+0x1b0/0x290
[  119.413034][ T6049]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  119.415788][ T6049]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  119.418421][ T6049]  vfs_read+0x1d4/0xbd0
[  119.420333][ T6049]  ? __fdget_pos+0xeb/0x180
[  119.423047][ T6049]  ? __pfx_vfs_read+0x10/0x10
[  119.425337][ T6049]  ? __pfx___mutex_lock+0x10/0x10
[  119.427716][ T6049]  ? __fget_files+0x256/0x400
[  119.429696][ T6049]  ksys_read+0x12f/0x260
[  119.431860][ T6049]  ? __pfx_ksys_read+0x10/0x10
[  119.434356][ T6049]  __do_fast_syscall_32+0x73/0x120
[  119.436992][ T6049]  do_fast_syscall_32+0x32/0x80
[  119.439388][ T6049]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.441873][ T6049] RIP: 0023:0xf7fe3579
[  119.443667][ T6049] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.451624][ T6049] RSP: 002b:00000000f57865a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  119.454971][ T6049] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5786620
[  119.458336][ T6049] RDX: 000000000000000f RSI: 00000000f7470ff4 RDI: 0000000000000000
[  119.461457][ T6049] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  119.464812][ T6049] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  119.468906][ T6049] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.472148][ T6049]  </TASK>
[  119.572767][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  119.615936][ T6054] netlink: 36 bytes leftover after parsing attributes in process `syz.0.165'.
[  119.924257][ T6070] 9pnet_fd: Insufficient options for proto=fd
[  120.029539][ T6074] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  120.050850][ T6074] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  120.602177][ T6079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.171'.
[  121.348107][ T6074] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  121.580656][ T6097] netlink: 32 bytes leftover after parsing attributes in process `syz.3.175'.
[  122.103415][ T6111] netlink: 8 bytes leftover after parsing attributes in process `syz.0.180'.
[  122.104959][    T9] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  122.142769][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  122.272635][    T9] usb 6-1: device descriptor read/64, error -71
[  122.494011][ T6111] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  122.566549][ T6111] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  122.592871][    T9] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  122.607707][ T6111] bond0 (unregistering): Released all slaves
[  122.762739][    T9] usb 6-1: device descriptor read/64, error -71
[  122.914946][    T9] usb usb6-port1: attempt power cycle
[  123.342779][    T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  123.387253][    T9] usb 6-1: device descriptor read/8, error -71
[  123.663176][    T9] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  123.693700][    T9] usb 6-1: device descriptor read/8, error -71
[  123.813303][    T9] usb usb6-port1: unable to enumerate USB device
[  123.865890][ T6136] netlink: 20 bytes leftover after parsing attributes in process `syz.2.184'.
[  124.511964][ T6140] FAULT_INJECTION: forcing a failure.
[  124.511964][ T6140] name failslab, interval 1, probability 0, space 0, times 0
[  124.517664][ T6140] CPU: 2 UID: 0 PID: 6140 Comm: syz.2.186 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  124.522623][ T6140] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.526782][ T6140] Call Trace:
[  124.528131][ T6140]  <TASK>
[  124.529330][ T6140]  dump_stack_lvl+0x16c/0x1f0
[  124.531404][ T6140]  should_fail_ex+0x497/0x5b0
[  124.533518][ T6140]  should_failslab+0xc2/0x120
[  124.535615][ T6140]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  124.537901][ T6140]  ? skb_clone+0x190/0x3f0
[  124.539816][ T6140]  skb_clone+0x190/0x3f0
[  124.541855][ T6140]  netlink_deliver_tap+0xb26/0xcf0
[  124.544170][ T6140]  netlink_unicast+0x6c2/0x830
[  124.546668][ T6140]  ? __pfx_netlink_unicast+0x10/0x10
[  124.549361][ T6140]  ? genl_rcv_msg+0x4bd/0x800
[  124.551826][ T6140]  netlink_ack+0x6a5/0xb20
[  124.554226][ T6140]  netlink_rcv_skb+0x327/0x410
[  124.557069][ T6140]  ? __pfx_genl_rcv_msg+0x10/0x10
[  124.559547][ T6140]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  124.562074][ T6140]  ? down_read+0xc9/0x330
[  124.564224][ T6140]  ? __pfx_down_read+0x10/0x10
[  124.566486][ T6140]  ? netlink_deliver_tap+0x1ae/0xcf0
[  124.568921][ T6140]  genl_rcv+0x28/0x40
[  124.570780][ T6140]  netlink_unicast+0x544/0x830
[  124.573091][ T6140]  ? __pfx_netlink_unicast+0x10/0x10
[  124.575493][ T6140]  ? __phys_addr_symbol+0x30/0x80
[  124.577690][ T6140]  ? __check_object_size+0x497/0x720
[  124.580473][ T6140]  netlink_sendmsg+0x8b8/0xd70
[  124.582843][ T6140]  ? __pfx_netlink_sendmsg+0x10/0x10
[  124.585240][ T6140]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  124.587793][ T6140]  ____sys_sendmsg+0x9b4/0xb50
[  124.590098][ T6140]  ? __pfx_____sys_sendmsg+0x10/0x10
[  124.592494][ T6140]  ? get_compat_msghdr+0x11b/0x170
[  124.594840][ T6140]  ? __pfx___lock_acquire+0x10/0x10
[  124.597380][ T6140]  ___sys_sendmsg+0x135/0x1e0
[  124.599496][ T6140]  ? __pfx____sys_sendmsg+0x10/0x10
[  124.601889][ T6140]  ? ksys_write+0x21c/0x260
[  124.604041][ T6140]  ? __fget_light+0x173/0x210
[  124.606292][ T6140]  __sys_sendmsg+0x117/0x1f0
[  124.608456][ T6140]  ? __pfx___sys_sendmsg+0x10/0x10
[  124.610930][ T6140]  __do_fast_syscall_32+0x73/0x120
[  124.613335][ T6140]  do_fast_syscall_32+0x32/0x80
[  124.615613][ T6140]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  124.618520][ T6140] RIP: 0023:0xf7f22579
[  124.620383][ T6140] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  124.629764][ T6140] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  124.633679][ T6140] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180
[  124.637207][ T6140] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  124.640817][ T6140] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  124.644277][ T6140] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  124.647959][ T6140] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  124.651358][ T6140]  </TASK>
[  124.652944][    C2] vkms_vblank_simulate: vblank timer overrun
[  124.733216][ T6142] FAULT_INJECTION: forcing a failure.
[  124.733216][ T6142] name failslab, interval 1, probability 0, space 0, times 0
[  124.739183][ T6142] CPU: 3 UID: 0 PID: 6142 Comm: syz.2.187 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  124.744200][ T6142] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.751522][ T6142] Call Trace:
[  124.753265][ T6142]  <TASK>
[  124.754668][ T6142]  dump_stack_lvl+0x16c/0x1f0
[  124.756842][ T6142]  should_fail_ex+0x497/0x5b0
[  124.759117][ T6142]  ? fs_reclaim_acquire+0xae/0x160
[  124.761790][ T6142]  should_failslab+0xc2/0x120
[  124.763948][ T6142]  __kmalloc_node_track_caller_noprof+0xcf/0x440
[  124.767068][ T6142]  ? kasprintf+0xc8/0x100
[  124.769370][ T6142]  kvasprintf+0xbd/0x160
[  124.771995][ T6142]  ? __pfx_kvasprintf+0x10/0x10
[  124.774310][ T6142]  kasprintf+0xc8/0x100
[  124.776206][ T6142]  ? __pfx_kasprintf+0x10/0x10
[  124.778672][ T6142]  ? trace_kmalloc+0x2d/0xe0
[  124.780934][ T6142]  ? __kmalloc_noprof+0x207/0x410
[  124.783440][ T6142]  ? __pfx___kvmalloc_node_noprof+0x1/0x10
[  124.786870][ T6142]  nf_tables_newset+0x269a/0x4020
[  124.789343][ T6142]  ? __pfx_nf_tables_newset+0x10/0x10
[  124.791913][ T6142]  ? __pfx___lock_acquire+0x10/0x10
[  124.794373][ T6142]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  124.797438][ T6142]  ? __nla_validate_parse+0x605/0x2b10
[  124.800190][ T6142]  ? __pfx___nla_validate_parse+0x10/0x10
[  124.802753][ T6142]  ? net_generic+0xea/0x2a0
[  124.804800][ T6142]  ? __pfx_lock_release+0x10/0x10
[  124.807177][ T6142]  ? __nla_parse+0x40/0x60
[  124.809493][ T6142]  nfnetlink_rcv_batch+0x1a19/0x24e0
[  124.812150][ T6142]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  124.814926][ T6142]  ? __pfx_lock_release+0x10/0x10
[  124.817238][ T6142]  ? __local_bh_enable_ip+0xa4/0x120
[  124.819587][ T6142]  ? lockdep_hardirqs_on+0x7c/0x110
[  124.822248][ T6142]  ? __pfx___dev_queue_xmit+0x10/0x10
[  124.824682][ T6142]  ? bpf_lsm_capable+0x9/0x10
[  124.826823][ T6142]  ? __nla_parse+0x40/0x60
[  124.829193][ T6142]  nfnetlink_rcv+0x3c3/0x430
[  124.831424][ T6142]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  124.833738][ T6142]  netlink_unicast+0x544/0x830
[  124.836611][ T6142]  ? __pfx_netlink_unicast+0x10/0x10
[  124.839345][ T6142]  ? __phys_addr_symbol+0x30/0x80
[  124.841707][ T6142]  ? __check_object_size+0x497/0x720
[  124.844057][ T6142]  netlink_sendmsg+0x8b8/0xd70
[  124.846199][ T6142]  ? __pfx_netlink_sendmsg+0x10/0x10
[  124.848557][ T6142]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  124.850916][ T6142]  ____sys_sendmsg+0x9b4/0xb50
[  124.853058][ T6142]  ? __pfx_____sys_sendmsg+0x10/0x10
[  124.855391][ T6142]  ? get_compat_msghdr+0x11b/0x170
[  124.857681][ T6142]  ? __pfx___lock_acquire+0x10/0x10
[  124.860066][ T6142]  ___sys_sendmsg+0x135/0x1e0
[  124.862200][ T6142]  ? __pfx____sys_sendmsg+0x10/0x10
[  124.864515][ T6142]  ? ksys_write+0x21c/0x260
[  124.866579][ T6142]  ? __fget_light+0x173/0x210
[  124.868686][ T6142]  __sys_sendmsg+0x117/0x1f0
[  124.870777][ T6142]  ? __pfx___sys_sendmsg+0x10/0x10
[  124.873087][ T6142]  __do_fast_syscall_32+0x73/0x120
[  124.875380][ T6142]  do_fast_syscall_32+0x32/0x80
[  124.877552][ T6142]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  124.880479][ T6142] RIP: 0023:0xf7f22579
[  124.882296][ T6142] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  124.890747][ T6142] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  124.894482][ T6142] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000200000c0
[  124.897533][ T6142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  124.900613][ T6142] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  124.903938][ T6142] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  124.907319][ T6142] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  124.910927][ T6142]  </TASK>
[  126.678725][  T832] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  126.884426][  T832] usb 8-1: Using ep0 maxpacket: 32
[  126.900579][  T832] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  126.905170][  T832] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[  126.912215][  T832] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  126.916415][  T832] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.920257][  T832] usb 8-1: Product: syz
[  126.922321][  T832] usb 8-1: Manufacturer: syz
[  126.924850][  T832] usb 8-1: SerialNumber: syz
[  127.242867][    T9] usb 8-1: USB disconnect, device number 5
[  128.516601][    T9] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  128.704169][    T9] usb 8-1: Using ep0 maxpacket: 8
[  128.722050][    T9] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  128.732420][    T9] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  128.748804][    T9] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  128.766026][    T9] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  128.770782][    T9] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  128.805062][    T9] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  128.817813][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.140569][    T9] usb 8-1: usb_control_msg returned -32
[  129.148161][    T9] usbtmc 8-1:16.0: can't read capabilities
[  129.445154][   T39] kauditd_printk_skb: 71 callbacks suppressed
[  129.445170][   T39] audit: type=1326 audit(1723735916.705:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.3.198" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x0
[  131.285445][ T5433] usb 8-1: USB disconnect, device number 6
[  131.902806][ T5433] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  132.092644][ T5433] usb 8-1: Using ep0 maxpacket: 32
[  132.097015][ T5433] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  132.122320][ T5433] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[  132.157126][ T5433] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  132.161221][ T5433] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.164844][ T5433] usb 8-1: Product: syz
[  132.166728][ T5433] usb 8-1: Manufacturer: syz
[  132.168816][ T5433] usb 8-1: SerialNumber: syz
[  132.387245][ T5433] usb 8-1: USB disconnect, device number 7
[  133.194593][ T6230] netlink: 16 bytes leftover after parsing attributes in process `syz.3.211'.
[  134.555348][ T6246] netlink: 4096 bytes leftover after parsing attributes in process `syz.3.216'.
[  134.562897][ T6246] openvswitch: netlink: Actions may not be safe on all matching packets
[  134.832778][  T985] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  135.020990][ T6257] 
��: renamed from pim6reg1
[  135.034591][  T985] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  135.039395][  T985] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  135.052704][  T985] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  135.057580][  T985] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  135.071391][  T985] usb 5-1: Manufacturer: syz
[  135.077869][  T985] usb 5-1: config 0 descriptor??
[  135.152629][  T985] rc_core: IR keymap rc-hauppauge not found
[  135.155701][  T985] Registered IR keymap rc-empty
[  135.158350][  T985] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  135.165399][  T985] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input12
[  135.914218][ T6263] netlink: 'syz.2.220': attribute type 5 has an invalid length.
[  136.494953][ T5475] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  136.676127][ T5475] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  136.679872][ T5475] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.686711][ T6276] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  136.694004][ T6275] netlink: 288 bytes leftover after parsing attributes in process `syz.1.223'.
[  136.698554][ T6275] netlink: 288 bytes leftover after parsing attributes in process `syz.1.223'.
[  136.706031][ T5475] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  136.710114][ T5475] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  136.716344][ T5475] usb 7-1: Manufacturer: syz
[  136.724495][ T5475] usb 7-1: config 0 descriptor??
[  136.809443][ T6284] netlink: 7 bytes leftover after parsing attributes in process `syz.1.225'.
[  136.823720][ T5475] rc_core: IR keymap rc-hauppauge not found
[  136.829901][ T5475] Registered IR keymap rc-empty
[  136.835870][ T5475] rc rc1: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc1
[  136.841299][ T5475] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc1/input13
[  136.978695][ T5475] usb 7-1: USB disconnect, device number 4
[  137.107826][ T6293] netlink: 4 bytes leftover after parsing attributes in process `syz.3.228'.
[  137.121113][ T6293] ipvlan2: entered allmulticast mode
[  137.123784][ T6293] veth0_vlan: entered allmulticast mode
[  137.303980][ T6298] =======================================================
[  137.303980][ T6298] WARNING: The mand mount option has been deprecated and
[  137.303980][ T6298]          and is ignored by this kernel. Remove the mand
[  137.303980][ T6298]          option from the mount to silence this warning.
[  137.303980][ T6298] =======================================================
[  137.322700][ T6298] FAULT_INJECTION: forcing a failure.
[  137.322700][ T6298] name failslab, interval 1, probability 0, space 0, times 0
[  137.329113][ T6298] CPU: 2 UID: 0 PID: 6298 Comm: syz.3.229 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  137.334521][ T6298] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  137.339266][ T6298] Call Trace:
[  137.340770][ T6298]  <TASK>
[  137.342077][ T6298]  dump_stack_lvl+0x16c/0x1f0
[  137.344158][ T6298]  should_fail_ex+0x497/0x5b0
[  137.346344][ T6298]  ? fs_reclaim_acquire+0xae/0x160
[  137.348779][ T6298]  should_failslab+0xc2/0x120
[  137.350900][ T6298]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  137.353226][ T6298]  ? _printk+0xc8/0x100
[  137.354854][ T6298]  ? alloc_vfsmnt+0x23/0x6e0
[  137.356755][ T6298]  alloc_vfsmnt+0x23/0x6e0
[  137.358885][ T6298]  vfs_create_mount+0x93/0x500
[  137.361221][ T6298]  ? __do_sys_fsmount+0x75d/0x8c0
[  137.363827][ T6298]  __do_sys_fsmount+0x439/0x8c0
[  137.366266][ T6298]  ? __pfx___do_sys_fsmount+0x10/0x10
[  137.368588][ T6298]  ? ksys_write+0x1ab/0x260
[  137.370972][ T6298]  __do_fast_syscall_32+0x73/0x120
[  137.373161][ T6298]  do_fast_syscall_32+0x32/0x80
[  137.375335][ T6298]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  137.378121][ T6298] RIP: 0023:0xf745e579
[  137.379896][ T6298] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  137.388196][ T6298] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 00000000000001b0
[  137.391877][ T6298] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000000
[  137.395328][ T6298] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  137.398758][ T6298] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  137.402249][ T6298] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  137.405506][ T6298] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  137.408943][ T6298]  </TASK>
[  137.442836][   T39] audit: type=1326 audit(1723735924.695:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.463090][   T39] audit: type=1326 audit(1723735924.705:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.472174][   T39] audit: type=1326 audit(1723735924.715:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=19 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.481636][   T39] audit: type=1326 audit(1723735924.715:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.511753][   T39] audit: type=1326 audit(1723735924.715:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.531481][   T39] audit: type=1326 audit(1723735924.715:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.549709][   T39] audit: type=1326 audit(1723735924.715:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.565717][   T39] audit: type=1326 audit(1723735924.715:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.576667][   T39] audit: type=1326 audit(1723735924.715:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.585541][   T39] audit: type=1326 audit(1723735924.715:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.3.229" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf745e579 code=0x7ffc0000
[  137.991438][ T5475] usb 5-1: USB disconnect, device number 5
[  138.382946][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[  138.386549][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  140.027876][    T9] libceph: connect (1)[c::]:6789 error -101
[  140.031264][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  140.037555][    T9] libceph: connect (1)[c::]:6789 error -101
[  140.040330][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  140.310002][    T9] libceph: connect (1)[c::]:6789 error -101
[  140.313250][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  140.822975][  T832] libceph: connect (1)[c::]:6789 error -101
[  140.825683][  T832] libceph: mon0 (1)[c::]:6789 connect error
[  140.864238][ T6329] ceph: No mds server is up or the cluster is laggy
[  141.076049][ T6340] hub 9-0:1.0: USB hub found
[  141.085201][ T6340] hub 9-0:1.0: 1 port detected
[  141.462924][  T985] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  141.469294][ T6356] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  141.480295][ T6356] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  141.674618][  T985] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  141.677961][  T985] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  141.682892][  T985] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  141.688572][  T985] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  141.692263][  T985] usb 7-1: Manufacturer: syz
[  141.703677][  T985] usb 7-1: config 0 descriptor??
[  141.822304][  T985] rc_core: IR keymap rc-hauppauge not found
[  141.824983][  T985] Registered IR keymap rc-empty
[  141.828198][  T985] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  141.833790][  T985] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input15
[  141.982714][ T1417] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  142.189397][ T1417] usb 6-1: config 1 has an invalid interface number: 3 but max is 2
[  142.194297][ T1417] usb 6-1: config 1 has no interface number 1
[  142.201747][ T1417] usb 6-1: too many endpoints for config 1 interface 3 altsetting 1: 170, using maximum allowed: 30
[  142.208652][ T1417] usb 6-1: config 1 interface 3 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 170
[  142.218865][ T1417] usb 6-1: config 1 interface 2 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 14
[  142.227849][ T1417] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  142.238930][ T1417] usb 6-1: config 1 interface 3 has no altsetting 0
[  142.242315][ T1417] usb 6-1: config 1 interface 2 has no altsetting 2
[  142.251370][ T1417] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  142.259237][ T1417] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.264004][ T1417] usb 6-1: Product: 《
[  142.265848][ T1417] usb 6-1: Manufacturer: я
[  142.267914][ T1417] usb 6-1: SerialNumber: ᰁ
[  142.804037][ T6356] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  143.175412][ T1417] usb 6-1: USB disconnect, device number 12
[  143.493625][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  144.071114][ T5433] usb 7-1: USB disconnect, device number 5
[  144.246066][ T6388] netlink: 156 bytes leftover after parsing attributes in process `syz.1.249'.
[  144.254504][ T6388] fuse: Bad value for 'fd'
[  145.579946][ T6394] fuse: Bad value for 'fd'
[  146.741412][ T6401] FAULT_INJECTION: forcing a failure.
[  146.741412][ T6401] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.750575][ T6401] CPU: 3 UID: 0 PID: 6401 Comm: syz.0.254 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  146.755486][ T6401] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.761552][ T6401] Call Trace:
[  146.763514][ T6401]  <TASK>
[  146.765107][ T6401]  dump_stack_lvl+0x16c/0x1f0
[  146.767589][ T6401]  should_fail_ex+0x497/0x5b0
[  146.769719][ T6401]  _copy_from_user+0x30/0xf0
[  146.771784][ T6401]  csum_and_copy_from_iter_full+0x218/0x19c0
[  146.774823][ T6401]  ? __pfx_csum_and_copy_from_iter_full+0x10/0x10
[  146.777557][ T6401]  ? rcu_is_watching+0x12/0xc0
[  146.779652][ T6401]  ? trace_kmalloc+0x2d/0xe0
[  146.781588][ T6401]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  146.784443][ T6401]  ? __alloc_skb+0x164/0x380
[  146.786550][ T6401]  ip_generic_getfrag+0x175/0x260
[  146.788860][ T6401]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  146.791275][ T6401]  ? __pfx___alloc_skb+0x10/0x10
[  146.793418][ T6401]  raw6_getfrag+0x1ed/0x270
[  146.795579][ T6401]  __ip6_append_data.isra.0+0x2bff/0x4450
[  146.798196][ T6401]  ? __pfx_raw6_getfrag+0x10/0x10
[  146.800490][ T6401]  ? __pfx___ip6_append_data.isra.0+0x10/0x10
[  146.803190][ T6401]  ? ip6_mtu+0x231/0x4a0
[  146.805092][ T6401]  ? ip6_setup_cork+0xc1b/0x1360
[  146.807226][ T6401]  ip6_append_data+0x1e6/0x500
[  146.809329][ T6401]  ? __pfx_raw6_getfrag+0x10/0x10
[  146.811468][ T6401]  rawv6_sendmsg+0x1578/0x4400
[  146.813307][ T6401]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  146.815517][ T6401]  ? __pfx___might_resched+0x10/0x10
[  146.817949][ T6401]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  146.820701][ T6401]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  146.823086][ T6401]  ? inet_sendmsg+0x119/0x140
[  146.824986][ T6401]  inet_sendmsg+0x119/0x140
[  146.827831][ T6401]  sock_write_iter+0x4b8/0x5c0
[  146.830413][ T6401]  ? __pfx_sock_write_iter+0x10/0x10
[  146.832867][ T6401]  ? bpf_lsm_file_permission+0x9/0x10
[  146.835553][ T6401]  ? security_file_permission+0x98/0xc0
[  146.837890][ T6401]  vfs_write+0x6b6/0x1140
[  146.839744][ T6401]  ? __pfx_sock_write_iter+0x10/0x10
[  146.842113][ T6401]  ? __pfx_vfs_write+0x10/0x10
[  146.844528][ T6401]  ? __fget_files+0x256/0x400
[  146.846682][ T6401]  ? __fget_light+0x173/0x210
[  146.848533][ T6401]  ksys_write+0x1f8/0x260
[  146.850334][ T6401]  ? __pfx_ksys_write+0x10/0x10
[  146.852570][ T6401]  __do_fast_syscall_32+0x73/0x120
[  146.854978][ T6401]  do_fast_syscall_32+0x32/0x80
[  146.857135][ T6401]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  146.860046][ T6401] RIP: 0023:0xf7fe3579
[  146.862838][ T6401] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  146.870629][ T6401] RSP: 002b:00000000f578656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  146.874184][ T6401] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000200000c0
[  146.877488][ T6401] RDX: 000000000000fff7 RSI: 0000000000000000 RDI: 0000000000000000
[  146.881055][ T6401] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  146.884633][ T6401] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  146.888447][ T6401] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  146.891559][ T6401]  </TASK>
[  146.938319][ T6404] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  146.946785][ T6404] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  147.565213][ T6412] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  147.585016][ T6412] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  148.015930][ T6419] netlink: 156 bytes leftover after parsing attributes in process `syz.0.259'.
[  148.030673][ T6419] fuse: Bad value for 'fd'
[  148.278485][ T6404] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  148.893112][ T6412] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  149.012915][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  150.093369][ T6442] netlink: 156 bytes leftover after parsing attributes in process `syz.0.265'.
[  150.105551][ T6442] fuse: Bad value for 'fd'
[  150.933484][ T6450] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  150.941917][ T6450] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  151.103098][ T5368] Bluetooth: hci0: command 0x0401 tx timeout
[  151.107887][ T6450] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  151.292703][   T39] kauditd_printk_skb: 9 callbacks suppressed
[  151.292714][   T39] audit: type=1326 audit(1723735938.545:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6455 comm="syz.2.270" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f22579 code=0x0
[  151.535432][ T6464] input: syz0 as /devices/virtual/input/input16
[  152.513948][ T6475] 9p: Unknown Cache mode or invalid value fsca�he
[  152.516861][ T6475] 9pnet: Tag 65535 still in use
[  152.529031][    C0] ------------[ cut here ]------------
[  152.531879][    C0] refcount_t: underflow; use-after-free.
[  152.534574][    C0] WARNING: CPU: 0 PID: 112 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210
[  152.538293][    C0] Modules linked in:
[  152.544028][    C0] CPU: 0 UID: 0 PID: 112 Comm: kswapd0 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  152.548550][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.554128][    C0] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  152.557751][    C0] Code: ff 89 de e8 58 e9 0b fd 84 db 0f 85 66 ff ff ff e8 6b e7 0b fd c6 05 cf c3 7a 0b 01 90 48 c7 c7 60 f6 af 8b e8 67 97 ce fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 48 e7 0b fd 0f b6 1d aa c3 7a 0b 31
[  152.569839][    C0] RSP: 0018:ffffc90000007d90 EFLAGS: 00010082
[  152.572642][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff814dd779
[  152.578786][    C0] RDX: ffff88801b6f0000 RSI: ffffffff814dd786 RDI: 0000000000000001
[  152.582186][    C0] RBP: ffff88805f228668 R08: 0000000000000001 R09: 0000000000000000
[  152.586004][    C0] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  152.589459][    C0] R13: ffff88805f228668 R14: ffff88801ee1e800 R15: 0000000000000000
[  152.593056][    C0] FS:  0000000000000000(0000) GS:ffff88802c000000(0000) knlGS:0000000000000000
[  152.597062][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  152.600113][    C0] CR2: 000000002f607ff8 CR3: 000000005b1a6000 CR4: 0000000000350ef0
[  152.603415][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  152.606992][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  152.610258][    C0] Call Trace:
[  152.611756][    C0]  <IRQ>
[  152.612969][    C0]  ? show_regs+0x8c/0xa0
[  152.614770][    C0]  ? __warn+0xe5/0x3c0
[  152.616485][    C0]  ? __wake_up_klogd.part.0+0x99/0xf0
[  152.619117][    C0]  ? refcount_warn_saturate+0x14a/0x210
[  152.621540][    C0]  ? report_bug+0x3c0/0x580
[  152.623575][    C0]  ? handle_bug+0x3d/0x70
[  152.625534][    C0]  ? exc_invalid_op+0x17/0x50
[  152.628708][    C0]  ? asm_exc_invalid_op+0x1a/0x20
[  152.631542][    C0]  ? __warn_printk+0x199/0x350
[  152.634025][    C0]  ? __warn_printk+0x1a6/0x350
[  152.636649][    C0]  ? refcount_warn_saturate+0x14a/0x210
[  152.639292][    C0]  p9_req_put+0x1f4/0x250
[  152.641222][    C0]  req_done+0x1e7/0x2f0
[  152.643045][    C0]  ? __pfx_req_done+0x10/0x10
[  152.644912][    C0]  ? __pfx_req_done+0x10/0x10
[  152.647241][    C0]  vring_interrupt+0x31b/0x400
[  152.649395][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  152.651270][    C0]  __handle_irq_event_percpu+0x229/0x7c0
[  152.653310][    C0]  handle_irq_event+0xab/0x1e0
[  152.655138][    C0]  handle_edge_irq+0x263/0xd10
[  152.657194][    C0]  __common_interrupt+0xdf/0x250
[  152.659065][    C0]  common_interrupt+0xab/0xd0
[  152.660869][    C0]  </IRQ>
[  152.662006][    C0]  <TASK>
[  152.663132][    C0]  asm_common_interrupt+0x26/0x40
[  152.665049][    C0] RIP: 0010:preempt_schedule_irq+0x4c/0x90
[  152.667201][    C0] Code: df 55 65 48 8b 2d a4 d9 fb 74 53 48 89 eb 48 c1 eb 03 48 01 c3 bf 01 00 00 00 e8 ff 9c 53 f6 e8 8a 6c 8a f6 fb bf 01 00 00 00 <e8> 4f a3 ff ff 9c 58 fa f6 c4 02 75 1e bf 01 00 00 00 e8 2d 41 53
[  152.674662][    C0] RSP: 0018:ffffc90000e9f668 EFLAGS: 00000206
[  152.677027][    C0] RAX: 00000000003ca503 RBX: ffffed10036de000 RCX: 1ffffffff28b8360
[  152.680036][    C0] RDX: 0000000000000000 RSI: ffffffff8b4cd020 RDI: 0000000000000001
[  152.683206][    C0] RBP: ffff88801b6f0000 R08: 0000000000000001 R09: fffffbfff28b70da
[  152.686128][    C0] R10: ffffffff945b86d7 R11: 0000000000000000 R12: 0000000000000000
[  152.689036][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.692162][    C0]  ? preempt_schedule_irq+0x46/0x90
[  152.694113][    C0]  irqentry_exit+0x36/0x90
[  152.696144][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  152.699229][    C0] RIP: 0010:lock_acquire+0x1f2/0x560
[  152.701806][    C0] Code: c1 05 ea 2e 99 7e 83 f8 01 0f 85 ea 02 00 00 9c 58 f6 c4 02 0f 85 d5 02 00 00 48 85 ed 74 01 fb 48 b8 00 00 00 00 00 fc ff df <48> 01 c3 48 c7 03 00 00 00 00 48 c7 43 08 00 00 00 00 48 8b 84 24
[  152.711510][    C0] RSP: 0018:ffffc90000e9f730 EFLAGS: 00000206
[  152.714209][    C0] RAX: dffffc0000000000 RBX: 1ffff920001d3ee8 RCX: 0000000000000001
[  152.717518][    C0] RDX: 0000000000000001 RSI: ffffffff8b4cd320 RDI: ffffffff8bb050e0
[  152.720615][    C0] RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff28b70d8
[  152.723722][    C0] R10: ffffffff945b86c7 R11: 0000000000000000 R12: 0000000000000000
[  152.727799][    C0] R13: 0000000000000000 R14: ffffffff8ddb9320 R15: 0000000000000000
[  152.732598][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  152.736030][    C0]  ? do_shrink_slab+0x65f/0x11c0
[  152.738679][    C0]  shrink_slab+0x1d9/0x1300
[  152.741138][    C0]  ? shrink_slab+0x1d3/0x1300
[  152.743938][    C0]  ? shrink_slab+0x13f/0x1300
[  152.746991][    C0]  ? __pfx_shrink_slab+0x10/0x10
[  152.750087][    C0]  ? find_held_lock+0x2d/0x110
[  152.753209][    C0]  ? lru_gen_shrink_node+0x685/0x1510
[  152.756573][    C0]  shrink_one+0x47e/0x7b0
[  152.758854][    C0]  ? lru_gen_shrink_node+0x685/0x1510
[  152.761944][    C0]  lru_gen_shrink_node+0x69f/0x1510
[  152.764864][    C0]  ? lru_gen_shrink_node+0x418/0x1510
[  152.767770][    C0]  ? __pfx_lru_gen_shrink_node+0x10/0x10
[  152.770423][    C0]  ? mem_cgroup_iter+0x2f2/0x760
[  152.772716][    C0]  balance_pgdat+0x110f/0x1950
[  152.775318][    C0]  ? __pfx_balance_pgdat+0x10/0x10
[  152.777867][    C0]  ? lockdep_hardirqs_on_prepare+0x370/0x420
[  152.781277][    C0]  ? __pfx___lock_acquire+0x10/0x10
[  152.792893][    C0]  ? find_held_lock+0x2d/0x110
[  152.795487][    C0]  ? cgroup_freezing+0x155/0x3d0
[  152.798013][    C0]  kswapd+0x5ea/0xbf0
[  152.800107][    C0]  ? __pfx_kswapd+0x10/0x10
[  152.802726][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  152.805891][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  152.808426][    C0]  ? __kthread_parkme+0x148/0x220
[  152.811155][    C0]  ? __pfx_kswapd+0x10/0x10
[  152.813285][    C0]  kthread+0x2c1/0x3a0
[  152.815140][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  152.817488][    C0]  ? __pfx_kthread+0x10/0x10
[  152.819557][    C0]  ret_from_fork+0x45/0x80
[  152.821664][    C0]  ? __pfx_kthread+0x10/0x10
[  152.824155][    C0]  ret_from_fork_asm+0x1a/0x30
[  152.826330][    C0]  </TASK>
[  152.827763][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  152.830966][    C0] CPU: 0 UID: 0 PID: 112 Comm: kswapd0 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0
[  152.835592][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.840432][    C0] Call Trace:
[  152.841884][    C0]  <IRQ>
[  152.843145][    C0]  dump_stack_lvl+0x3d/0x1f0
[  152.845398][    C0]  panic+0x6f5/0x7a0
[  152.847100][    C0]  ? __pfx_panic+0x10/0x10
[  152.849001][    C0]  ? show_trace_log_lvl+0x363/0x500
[  152.851039][    C0]  ? check_panic_on_warn+0x1f/0xb0
[  152.853059][    C0]  ? refcount_warn_saturate+0x14a/0x210
[  152.855254][    C0]  check_panic_on_warn+0xab/0xb0
[  152.857210][    C0]  __warn+0xf1/0x3c0
[  152.859011][    C0]  ? __wake_up_klogd.part.0+0x99/0xf0
[  152.861406][    C0]  ? refcount_warn_saturate+0x14a/0x210
[  152.863948][    C0]  report_bug+0x3c0/0x580
[  152.865971][    C0]  handle_bug+0x3d/0x70
[  152.868418][    C0]  exc_invalid_op+0x17/0x50
[  152.870423][    C0]  asm_exc_invalid_op+0x1a/0x20
[  152.872606][    C0] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  152.875418][    C0] Code: ff 89 de e8 58 e9 0b fd 84 db 0f 85 66 ff ff ff e8 6b e7 0b fd c6 05 cf c3 7a 0b 01 90 48 c7 c7 60 f6 af 8b e8 67 97 ce fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 48 e7 0b fd 0f b6 1d aa c3 7a 0b 31
[  152.883921][    C0] RSP: 0018:ffffc90000007d90 EFLAGS: 00010082
[  152.888624][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff814dd779
[  152.892339][    C0] RDX: ffff88801b6f0000 RSI: ffffffff814dd786 RDI: 0000000000000001
[  152.895927][    C0] RBP: ffff88805f228668 R08: 0000000000000001 R09: 0000000000000000
[  152.899554][    C0] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  152.903850][    C0] R13: ffff88805f228668 R14: ffff88801ee1e800 R15: 0000000000000000
[  152.908104][    C0]  ? __warn_printk+0x199/0x350
[  152.910647][    C0]  ? __warn_printk+0x1a6/0x350
[  152.912979][    C0]  p9_req_put+0x1f4/0x250
[  152.915350][    C0]  req_done+0x1e7/0x2f0
[  152.918028][    C0]  ? __pfx_req_done+0x10/0x10
[  152.920134][    C0]  ? __pfx_req_done+0x10/0x10
[  152.922340][    C0]  vring_interrupt+0x31b/0x400
[  152.924909][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  152.927512][    C0]  __handle_irq_event_percpu+0x229/0x7c0
[  152.930274][    C0]  handle_irq_event+0xab/0x1e0
[  152.932804][    C0]  handle_edge_irq+0x263/0xd10
[  152.935421][    C0]  __common_interrupt+0xdf/0x250
[  152.937800][    C0]  common_interrupt+0xab/0xd0
[  152.940326][    C0]  </IRQ>
[  152.942221][    C0]  <TASK>
[  152.944421][    C0]  asm_common_interrupt+0x26/0x40
[  152.947476][    C0] RIP: 0010:preempt_schedule_irq+0x4c/0x90
[  152.950674][    C0] Code: df 55 65 48 8b 2d a4 d9 fb 74 53 48 89 eb 48 c1 eb 03 48 01 c3 bf 01 00 00 00 e8 ff 9c 53 f6 e8 8a 6c 8a f6 fb bf 01 00 00 00 <e8> 4f a3 ff ff 9c 58 fa f6 c4 02 75 1e bf 01 00 00 00 e8 2d 41 53
[  152.959055][    C0] RSP: 0018:ffffc90000e9f668 EFLAGS: 00000206
[  152.961723][    C0] RAX: 00000000003ca503 RBX: ffffed10036de000 RCX: 1ffffffff28b8360
[  152.965263][    C0] RDX: 0000000000000000 RSI: ffffffff8b4cd020 RDI: 0000000000000001
[  152.969290][    C0] RBP: ffff88801b6f0000 R08: 0000000000000001 R09: fffffbfff28b70da
[  152.973231][    C0] R10: ffffffff945b86d7 R11: 0000000000000000 R12: 0000000000000000
[  152.977481][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.981722][    C0]  ? preempt_schedule_irq+0x46/0x90
[  152.984517][    C0]  irqentry_exit+0x36/0x90
[  152.986756][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  152.989958][    C0] RIP: 0010:lock_acquire+0x1f2/0x560
[  152.992055][    C0] Code: c1 05 ea 2e 99 7e 83 f8 01 0f 85 ea 02 00 00 9c 58 f6 c4 02 0f 85 d5 02 00 00 48 85 ed 74 01 fb 48 b8 00 00 00 00 00 fc ff df <48> 01 c3 48 c7 03 00 00 00 00 48 c7 43 08 00 00 00 00 48 8b 84 24
[  153.000847][    C0] RSP: 0018:ffffc90000e9f730 EFLAGS: 00000206
[  153.004127][    C0] RAX: dffffc0000000000 RBX: 1ffff920001d3ee8 RCX: 0000000000000001
[  153.007891][    C0] RDX: 0000000000000001 RSI: ffffffff8b4cd320 RDI: ffffffff8bb050e0
[  153.011585][    C0] RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff28b70d8
[  153.014989][    C0] R10: ffffffff945b86c7 R11: 0000000000000000 R12: 0000000000000000
[  153.018473][    C0] R13: 0000000000000000 R14: ffffffff8ddb9320 R15: 0000000000000000
[  153.022137][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  153.024613][    C0]  ? do_shrink_slab+0x65f/0x11c0
[  153.027402][    C0]  shrink_slab+0x1d9/0x1300
[  153.029678][    C0]  ? shrink_slab+0x1d3/0x1300
[  153.032136][    C0]  ? shrink_slab+0x13f/0x1300
[  153.034237][    C0]  ? __pfx_shrink_slab+0x10/0x10
[  153.036399][    C0]  ? find_held_lock+0x2d/0x110
[  153.038502][    C0]  ? lru_gen_shrink_node+0x685/0x1510
[  153.040875][    C0]  shrink_one+0x47e/0x7b0
[  153.043334][    C0]  ? lru_gen_shrink_node+0x685/0x1510
[  153.046534][    C0]  lru_gen_shrink_node+0x69f/0x1510
[  153.049777][    C0]  ? lru_gen_shrink_node+0x418/0x1510
[  153.053293][    C0]  ? __pfx_lru_gen_shrink_node+0x10/0x10
[  153.056134][    C0]  ? mem_cgroup_iter+0x2f2/0x760
[  153.059159][    C0]  balance_pgdat+0x110f/0x1950
[  153.062195][    C0]  ? __pfx_balance_pgdat+0x10/0x10
[  153.065021][    C0]  ? lockdep_hardirqs_on_prepare+0x370/0x420
[  153.067994][    C0]  ? __pfx___lock_acquire+0x10/0x10
[  153.070751][    C0]  ? find_held_lock+0x2d/0x110
[  153.073291][    C0]  ? cgroup_freezing+0x155/0x3d0
[  153.075796][    C0]  kswapd+0x5ea/0xbf0
[  153.077869][    C0]  ? __pfx_kswapd+0x10/0x10
[  153.080140][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  153.083298][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  153.085624][    C0]  ? __kthread_parkme+0x148/0x220
[  153.088110][    C0]  ? __pfx_kswapd+0x10/0x10
[  153.090245][    C0]  kthread+0x2c1/0x3a0
[  153.092097][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  153.094424][    C0]  ? __pfx_kthread+0x10/0x10
[  153.096573][    C0]  ret_from_fork+0x45/0x80
[  153.098640][    C0]  ? __pfx_kthread+0x10/0x10
[  153.100791][    C0]  ret_from_fork_asm+0x1a/0x30
[  153.102972][    C0]  </TASK>
[  153.114224][    C0] Kernel Offset: disabled
[  153.116256][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:32:20  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fab3c5 RDI=ffffffff9511f340 RBP=ffffffff9511f300 RSP=ffffc90000007750
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000006e R14=ffffffff84fab360 R15=0000000000000000
RIP=ffffffff84fab3ef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002f607ff8 CR3=000000005b1a6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000019861b RBX=0000000000000001 RCX=ffffffff8b06ac09 RDX=0000000000000000
RSI=ffffffff8b4cd020 RDI=ffffffff8bb050e0 RBP=ffffed1002cf8910 RSP=ffffc90000477e08
R8 =0000000000000001 R9 =ffffed1005826fd9 R10=ffff88802c137ecb R11=0000000000000000
R12=0000000000000001 R13=ffff8880167c4880 R14=ffffffff90112f58 R15=0000000000000000
RIP=ffffffff8b06bfff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f7446da8 CR3=0000000057d02000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000010103 RBX=0000000000000001 RCX=0000000000000000 RDX=ffff888061184880
RSI=ffffffff81784fe7 RDI=0000000000000001 RBP=000000000003db0c RSP=ffffc900005400f0
R8 =0000000000000000 R9 =fffffbfff2a1b451 R10=ffffffff950da28b R11=0000000000000000
R12=ffff88802c22ca40 R13=ffff88802c22d2f8 R14=ffff88802c22c9c0 R15=ffff88802c22c9c0
RIP=ffffffff818b25dc RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802c200000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020fdf000 CR3=0000000057206000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000000004 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff8cd77470 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6720303d64697520 3539323736393439 32343d6469756120 3a293430313a3500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6720303764637520 3533323736333433 3234376463756120 3023343031303500
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030302030303030 3030200000303830 3437382e36203120 2032323437003430
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030302030302030 3030200000223530 3437382e36202720 2032252230003030
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3e376269786b2a33 376d63792a287865 7e7f696f726f2770 73792528376f726f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a3a3a3a3a3a3a3a 3a3a3a0a003a723a 376f6e65692a333d 3f38386c3d6c723a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000025f743 RBX=0000000000000003 RCX=ffffffff8b06ac09 RDX=0000000000000000
RSI=ffffffff8b4cd020 RDI=ffffffff8bb050e0 RBP=ffffed1002cfb488 RSP=ffffc90000497e08
R8 =0000000000000001 R9 =ffffed1005866fd9 R10=ffff88802c337ecb R11=0000000000000000
R12=0000000000000003 R13=ffff8880167da440 R14=ffffffff90112f58 R15=0000000000000000
RIP=ffffffff8b06bfff RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020cbd000 CR3=0000000057206000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000