last executing test programs:

57.944414989s ago: executing program 3 (id=628):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x200000100000011, 0x1, 0x5)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
mkdir(&(0x7f0000000200)='./file0\x00', 0x1c2)
r5 = open$dir(0x0, 0x0, 0x0)
mkdirat(r5, &(0x7f0000000080)='./file1\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x4000040)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000026000000000000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r7}, 0x18)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$BLKPG(r8, 0x1269, &(0x7f0000000000)={0x1, 0x0, 0x98, &(0x7f0000000180)={0x0, 0x800, 0x1000000f}})
fcntl$setstatus(r4, 0x4, 0x0)
ptrace$pokeuser(0x6, r6, 0x118, 0x40000089)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x805}, 0x4c0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x30, 0x1, 0x4, 0x3, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFULA_CFG_MODE={0xa, 0x2, {0x8, 0x1}}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x7}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x4044000)

57.073631082s ago: executing program 3 (id=631):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd26, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9c, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYRESHEX=r2], 0x48}}, 0x0)
r3 = userfaultfd(0x801)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
pwritev(r4, &(0x7f0000000500)=[{&(0x7f0000000000)='0', 0x1}, {&(0x7f00000002c0)='2', 0x1}], 0x2, 0x0, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000380)={0xeebc8ad36783bdcc, 0x0, &(0x7f0000ced000/0x4000)=nil})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r5 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x3)
ioctl$TIOCSSOFTCAR(r6, 0x80047437, &(0x7f0000000140)=0x10)
r7 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, &(0x7f00000001c0)="a6", 0x1, r7)
keyctl$KEYCTL_MOVE(0x1e, r5, 0xffffffffffffffff, r7, 0x1)
gettid()
unshare(0x6a040000)
socket$inet_udp(0x2, 0x2, 0x0)

55.265496946s ago: executing program 3 (id=648):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x0)
syz_usb_disconnect(r2)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224"], 0x0)
socket$inet6(0xa, 0x6, 0x8000003)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x4e3, &(0x7f0000000480)={0x0, 0x7031, 0x10100, 0x3, 0x10000, 0x0, r4}, &(0x7f0000000180)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_OPENAT={0x12, 0x6c, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0\x00', 0x20, 0x121000})
io_uring_enter(r5, 0xeb5, 0x49e3, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206010100000000000000000100ffff14000780080012400000000508000b400000cd200500010006000000050005000a00000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x60}, 0x1, 0x0, 0x0, 0x20000851}, 0x4004c004)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'trusted:', 'syz', 0x20, 0xe8c}, 0x2d, 0xfffffffffffffff9)
r9 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
keyctl$instantiate(0xc, r9, &(0x7f00000003c0)=ANY=[@ANYBLOB="7570646174652064656661756c7420757365723a6e657720002bc591dfc7209b37d6fe7905f875e7256846f2983fc9179b7cc3bb41d602ea2bcb5f449d5bdafe373278111ae4afcd94aa5f8995711147a1a397dfec724daa6c98cd651fa7c32a9a70cfebcbb65d06759c0e649dbfb9c22c58114c11a74b8a3d2f4e3cb382abb346f0ab68644d5eacd3c24d1f3704a77d2ebcbaf933d3e62418"], 0x19, 0xfffffffffffffffe)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
r10 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r10, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
connect$inet(r10, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10)
r11 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x120}, 0x1, 0x0, 0x0, 0x4002800}, 0x8000)
sendmsg$inet(r11, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
sendmmsg$inet(r10, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)

52.129581466s ago: executing program 3 (id=652):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={0x0})
r1 = openat2$dir(0xffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f00000004c0)={0x428003, 0x28, 0x22}, 0x18)
mkdirat(r1, 0x0, 0xc0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x2010, 0xffffffffffffffff, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r3 = socket$igmp(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000000)={@dev, 0x78, r4})
r5 = socket(0x18, 0x1, 0xffffffff)
ioctl(r5, 0x8916, &(0x7f0000000000))
ioctl(r5, 0x8936, &(0x7f0000000000))
syz_emit_ethernet(0x9b, &(0x7f0000000780)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @random="0000cbe40600", @val={@val={0x88a8, 0x1, 0x0, 0x10}, {0x8100, 0x5, 0x1, 0x1}}, {@x25={0x805, {0x2, 0x7, 0x17, "133e0ed4e8bd5038b6dbdfbe3b37767fcc66c4bbd56afdf6cdeb1ac706945bd7e9074b8f1cfa328213464e6b0fbe5321d83be49c2abd28e1458af740a249a0265a13ef3a47f5da81da8c36f2bf8487035987ceb58d3ee550d4bf7d6b84db2c1f98fefc40c3585a5b73be6f74db62b9a801cecb2c849b73a995fbd1cb41d83b41af13"}}}}, &(0x7f00000005c0)={0x1, 0x1, [0xca6, 0x889, 0xf36, 0x119]})
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='bic\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r2, &(0x7f0000000480)='\x00\"', 0x2, 0x90, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

52.069621786s ago: executing program 3 (id=653):
r0 = syz_open_dev$vcsn(&(0x7f0000000040), 0x9, 0x20000)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0xffffffff, 0x8000000000000001, 0x9, 0x80000000}) (async)
ioctl$NBD_SET_BLKSIZE(r0, 0xab01, 0xc761)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) (async)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='net/sctp\x00')
r2 = open_tree(r1, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20) (async)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sctp\x00') (async)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00') (async)
r5 = syz_clone(0x40000, &(0x7f00000000c0)="834b55149d36b65d0dbfff03ef10c23c8bc2859c71bb8e8ba80874bc09d55786e09f967b527598227f9255ebe19605219cc1fc3366b695687099dec514c66fb73f4afbe2798827e5cb27f3831e1b58574448db5e36d6d1de7f455b23a6acedba77c6eb3767428db92ba3122e00d845a0daaee3bd2d3141a961cd9aa9d450312934841f48247d8db802977389234b0800bf017628f6ac3dfb55f0adb123", 0x9d, &(0x7f0000000200), &(0x7f0000001900), &(0x7f0000000280)="701a7a1207897e7d04347ddabd2b79e672400f2e052b039576fa59dfe888471d84c831051476046b8d5c35cdad2a7b383704e5312eb897263f43ab20149bbc2571074549fe39e9cbca910228e1fb3b9528093f2930184f0513a841792a7417f9aff0668a0973b86518723ffcc453940ea08e63191fb0a67980f0b700111f92a31c9b5e9d5888fdccfc12d43a1f701bc18a5c9da3159f622a6d175643ac0a0e6c0a9449ed34516c6399fd6cad74eb6072e5221a738a072494b683ac6bed077dcef8495a2cc37c4ec1a7")
recvmmsg(r1, &(0x7f0000001880)=[{{&(0x7f0000000400)=@l2tp={0x2, 0x0, @remote}, 0x80, &(0x7f0000001840)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000000480)=""/193, 0xc1}, {&(0x7f0000000580)=""/187, 0xbb}, {&(0x7f0000001680)=""/187, 0xbb}, {&(0x7f0000001740)=""/200, 0xc8}], 0x5}, 0x7}], 0x1, 0x0, &(0x7f00000018c0)={0x0, 0x989680}) (async)
writev(r3, &(0x7f0000001b80)=[{&(0x7f0000001940)="69e5e8bde8593f9286333d3f12f9ef4b3459939e501221d10042d1d4f8587215966d20f6478a1c0b641df171f8245d5a11b8a554397385971faa2b17113f2d360758ffba8ce72cd7c2beea95d45a13d3e7f88caf4d66c8ece2d78c8a555d5a948c069fbd68a2898ca1ba56a1e657b7cc03084763c0ef07c049db8a86d9cf9ded5372a34ce51a9b72e799671877143f4c82561fc8104f62fdf531782f11c0be81a17582b05bfec9ba5abbcef69d7e0bda69b0a42a9a3c352e6995433f4a88985da910fec87e2e1c19729a9f5ee6b528632a3de926b4ced1ea411add3d41c6fef8ea435fcb", 0xe4}, {&(0x7f0000001a40)="125f7497119d9f3717af3af7344a5b73a1d2f9fe36849826a7bc9f5293a04e5461c8739a158e2e1e984636809291398a68c60a5286639087a74ecbcd1cc29b1b22", 0x41}, {&(0x7f0000001ac0)="facba4966e6a871bd219d1548c25df2ff8fb76a1618f8e926380b25af7d82ed8304315d4a3306138e742d305b09ff3c4ff0cd8c5a1301cc63ad9c99f00f1c809ba43ec839ad83826b45824c8fb94e60354dbcf23815e0630295ffb852fc98905ba9f28d4b19695ebcec1fd134a634e24718c307a58bfc153e41ca55e028b584a98dfb73a3f72587594d0eda2e555b859277f9b4b07ec3debc39ab6fec08b063959dfacb30674ff53abd28d9a26aebb87d3af5218c26097eb", 0xb8}, {&(0x7f0000000180)="40b60d5b8e6745655ab47b97af4dd25dad3a5bb9", 0x14}], 0x4) (async)
r6 = syz_open_dev$sndpcmc(&(0x7f000000cc40), 0x1, 0x8000)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r6, 0x40044102, 0x0) (async)
rt_sigqueueinfo(r5, 0x1f, &(0x7f0000000380)={0x1b, 0x0, 0x7ff}) (async)
read$FUSE(r4, &(0x7f0000002bc0)={0x2020}, 0x2084) (async)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7) (async)
ptrace$peekuser(0x3, r7, 0x48) (async)
syz_open_dev$evdev(0x0, 0x3, 0x0) (async)
add_key(&(0x7f0000000ac0)='asymmetric\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff) (async)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0xd, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r9}, 0x10) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r10 = syz_open_dev$sndmidi(&(0x7f0000000380), 0x2, 0x141101)
r11 = dup(r10)
write$6lowpan_enable(r11, &(0x7f0000000000)='0', 0xfffffd2c) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x100, 0x12345})

52.066741918s ago: executing program 3 (id=661):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={0x0})
r1 = openat2$dir(0xffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f00000004c0)={0x428003, 0x28, 0x22}, 0x18)
mkdirat(r1, 0x0, 0xc0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x2010, 0xffffffffffffffff, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r3 = socket$igmp(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000000)={@dev, 0x78, r4})
r5 = socket(0x18, 0x1, 0xffffffff)
ioctl(r5, 0x8916, &(0x7f0000000000))
ioctl(r5, 0x8936, &(0x7f0000000000))
syz_emit_ethernet(0x9b, &(0x7f0000000780)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @random="0000cbe40600", @val={@val={0x88a8, 0x1, 0x0, 0x10}, {0x8100, 0x5, 0x1, 0x1}}, {@x25={0x805, {0x2, 0x7, 0x17, "133e0ed4e8bd5038b6dbdfbe3b37767fcc66c4bbd56afdf6cdeb1ac706945bd7e9074b8f1cfa328213464e6b0fbe5321d83be49c2abd28e1458af740a249a0265a13ef3a47f5da81da8c36f2bf8487035987ceb58d3ee550d4bf7d6b84db2c1f98fefc40c3585a5b73be6f74db62b9a801cecb2c849b73a995fbd1cb41d83b41af13"}}}}, &(0x7f00000005c0)={0x1, 0x1, [0xca6, 0x889, 0xf36, 0x119]})
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='bic\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r2, &(0x7f0000000480)='\x00\"', 0x2, 0x90, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

36.950306298s ago: executing program 32 (id=661):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={0x0})
r1 = openat2$dir(0xffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f00000004c0)={0x428003, 0x28, 0x22}, 0x18)
mkdirat(r1, 0x0, 0xc0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x2010, 0xffffffffffffffff, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r3 = socket$igmp(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000000)={@dev, 0x78, r4})
r5 = socket(0x18, 0x1, 0xffffffff)
ioctl(r5, 0x8916, &(0x7f0000000000))
ioctl(r5, 0x8936, &(0x7f0000000000))
syz_emit_ethernet(0x9b, &(0x7f0000000780)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @random="0000cbe40600", @val={@val={0x88a8, 0x1, 0x0, 0x10}, {0x8100, 0x5, 0x1, 0x1}}, {@x25={0x805, {0x2, 0x7, 0x17, "133e0ed4e8bd5038b6dbdfbe3b37767fcc66c4bbd56afdf6cdeb1ac706945bd7e9074b8f1cfa328213464e6b0fbe5321d83be49c2abd28e1458af740a249a0265a13ef3a47f5da81da8c36f2bf8487035987ceb58d3ee550d4bf7d6b84db2c1f98fefc40c3585a5b73be6f74db62b9a801cecb2c849b73a995fbd1cb41d83b41af13"}}}}, &(0x7f00000005c0)={0x1, 0x1, [0xca6, 0x889, 0xf36, 0x119]})
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='bic\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r2, &(0x7f0000000480)='\x00\"', 0x2, 0x90, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

24.498687077s ago: executing program 2 (id=789):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=ANY=[@ANYBLOB="180000001500010029bd7000fedbdf"], 0x18}}, 0x20000000)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_LINKAT={0x27, 0x15, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x1400, 0x1})
io_uring_enter(0xffffffffffffffff, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r3, r4, 0x2, 0x2, 0x0, @void, @value}, 0x10)
r5 = openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000000080)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f00000000c0)={@hyper})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r5, 0x7ab, &(0x7f0000000040)={&(0x7f0000000780)={{@host}, {@hyper}, 0x400, "884fbe2726aa0a32f3e65f909acda971a093228292456e0332e6c11577b514f0bb8db731789d860e9589c4cbdd60b7a851a8a3c55ada2f90c51a69bf4a5c3e32296535dc838ef00dc18a32a79118dc858628f741f107552021e5a81d38e4374a8a717a7ca9015083cfff5d16156ef9cabf4f60c0da46870a10bf520cc5abcf9e3a437761ea75776763139fadd55c46daf5338870951822f6a803ccfbab9c3f507672d7c39ea9ccf81d9bc2b4649e7b44ed9fd7cb9bd389240cd41c415113d1caac4536f05c07e596d6addad2a4d27ba21a3b655753c508caedcc812ca235a7cd1686426b208bdecf8a4265ba8f6824aa60306e2d623481eed301b6dc21041fa8b6592be00bb74de1989a45a5aa32c189e9f5a5bb878281d0129afcfb8410cd1fa5acd080993d2d084213130a9b8d517d13251e6605a03d9b8faf507e820205a1f471af7b261419e79e09c547f7c10fd3f1ad876f59fdcc5e07d0ff4dee6ea2e3856616a352d648b9b5261b6263020fc3ae8eb404bc25703b3d3b83172d07ff22907d6631d226c8247c92c1826ff814590dfe8c7fc54dfb265e906f756846546316b20e0105e2a5355a210b2b7f5db61d8f90bb783b41ce368233bd08044e9283531fffe49e3d305ecfb16075a047557f57bb7baf8babfc02975ad0d60ed8de9cb8adc9f667bc6826cbea8e260e4bff28a5ec19d38d1fc019db3cfaf310e764d78619cb27fb17af05a0e8ae831ce8413721e71138e62cc4ad8e7974d1506b4fb581c549a3dd7b7ef44ac37201aa3bce6f37f648d781bcb4f303000000a640f1b04efb38a36e0ed0e2abcb07e4ad88ae3edfb6d840d75340204243d0e1c1c3139823b0d5ad196430bf4566619a1a97df4376a7e9a9e9c1d97b9f773c921778f2cb5165c02da1423305c502076177e4af50cb3343c10b01b78e3fe5520bdfae2b3dbe42db0f0eb55bbcb19038018d45ccdb8b0df400085a02c61b033f430fb6a7408e090c65798bc49d35e049d276fd1952d2b3dfd92a2548411e21be26216fe68fc3cf1c6625031260153708a53255b3d3d0411da80e8ab2102a97e539c34e9c769a7dafb87c5918deb59ef05e928c2c52775de467fa843cbcdabc290097eeb2ee7c58d86e3fccc39a5b694c18a4cc0d6af1e6579c69e6466bc0cbef15365109e4f67a6268625f8c3f358fb7d567cbea52e1bc289bd8effda4e362a729e8cd3064970b97e3f72535d9ba88e97a14834cfd8dc86b5d2f9b35425a4162e6abe8b785ef462883e716c91b8eb281d81f68f606f16fcbc5cddfdec3b515818a647d86a4c17bae6ad525e95598052c49cdee821ceb45b2350dda13628db0dd266f30285241a2b147d65113b8ed3665a3451f7a56cf430ec98aeac702d9b9f776d97520a9d039e5b2fff34ac4d4e0a32e1f35c8f38e4f4fe1b3212a70f185ad71ec86b8c9"}, 0x418})
socket$inet_sctp(0x2, 0x1, 0x84)
r6 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r7=>0x0, &(0x7f0000000000)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
io_uring_enter(r6, 0x48e9, 0x0, 0x2, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$CDROMSUBCHNL(r4, 0x530b, &(0x7f0000000300)={0x2, 0xe, 0x5, 0x8, 0x1c, 0x40, @msf={0x0, 0x1, 0xb}, @msf={0x1, 0x5f, 0x9}})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a00000000000000", @ANYRES64=r0, @ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x8015}, 0x4)
r9 = signalfd4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0)
readv(r9, &(0x7f0000003cc0)=[{&(0x7f0000001bc0)=""/4096, 0x1000}], 0x1)
signalfd4(r9, &(0x7f0000000040)={[0x7fffffffffffffff]}, 0x8, 0x0)
sendmsg$IPSET_CMD_GET_BYINDEX(r9, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x34, 0xf, 0x6, 0xa03, 0x0, 0x0, {0x3, 0x0, 0x2}, [@IPSET_ATTR_INDEX={0x6, 0xb, 0x4}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x40094)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

23.52586632s ago: executing program 2 (id=795):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000340)={0x0, 0xffffffffffffff96, &(0x7f0000000000)={&(0x7f0000000040)={0x5, 0x609f, 0x0, {0x0, 0x2710}, {0x0, 0x2710}, {}, 0x1, @can={{0x3, 0x1}, 0x1, 0x3, 0x0, 0x0, "6ee7ba2197db18bc"}}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x8800)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x54, 0x2, 0x6, 0x111, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0}]}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x54}}, 0x0)

23.218725072s ago: executing program 2 (id=797):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x4000004, 0xaa781)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@metacopy_on, 0x3a}], [], 0x2f})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xd5)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cpu.stat\x00', 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000006, 0x2010, r2, 0x8000000)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x8, 0x3)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r0, 0xc0305615, &(0x7f0000000040)={0x0, {0x10000, 0x6}})
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
r4 = eventfd2(0x2, 0x0)
close(r4)
ioctl$VHOST_SET_VRING_CALL(r3, 0x4008af21, &(0x7f0000000040)={0x1, r4})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', './file0', [{}, {0x20, 'cpu.stat\x00'}], 0xa, "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"}, 0x1016)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r5, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r7=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10)
getsockopt$XDP_STATISTICS(r5, 0x11b, 0x7, &(0x7f0000000180), &(0x7f00000001c0)=0x30)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xa, 0x5, 0x2, 0x7, 0x2020, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket(0x10, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

8.953856969s ago: executing program 2 (id=797):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x4000004, 0xaa781)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@metacopy_on, 0x3a}], [], 0x2f})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xd5)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cpu.stat\x00', 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000006, 0x2010, r2, 0x8000000)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x8, 0x3)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r0, 0xc0305615, &(0x7f0000000040)={0x0, {0x10000, 0x6}})
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
r4 = eventfd2(0x2, 0x0)
close(r4)
ioctl$VHOST_SET_VRING_CALL(r3, 0x4008af21, &(0x7f0000000040)={0x1, r4})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', './file0', [{}, {0x20, 'cpu.stat\x00'}], 0xa, "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"}, 0x1016)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r5, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r7=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10)
getsockopt$XDP_STATISTICS(r5, 0x11b, 0x7, &(0x7f0000000180), &(0x7f00000001c0)=0x30)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xa, 0x5, 0x2, 0x7, 0x2020, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket(0x10, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

8.953711682s ago: executing program 2 (id=797):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x4000004, 0xaa781)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@metacopy_on, 0x3a}], [], 0x2f})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xd5)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cpu.stat\x00', 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000006, 0x2010, r2, 0x8000000)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x8, 0x3)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r0, 0xc0305615, &(0x7f0000000040)={0x0, {0x10000, 0x6}})
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
r4 = eventfd2(0x2, 0x0)
close(r4)
ioctl$VHOST_SET_VRING_CALL(r3, 0x4008af21, &(0x7f0000000040)={0x1, r4})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', './file0', [{}, {0x20, 'cpu.stat\x00'}], 0xa, "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"}, 0x1016)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r5, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r7=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10)
getsockopt$XDP_STATISTICS(r5, 0x11b, 0x7, &(0x7f0000000180), &(0x7f00000001c0)=0x30)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xa, 0x5, 0x2, 0x7, 0x2020, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket(0x10, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

8.111042348s ago: executing program 0 (id=813):
r0 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc1, 0x87e, 0x20203843, 0x3, [0x2], [0x800, 0x0, 0x0, 0xfffffffc], [0x101, 0x0, 0x1, 0xb1e5], [0x6, 0xffffffffffffffff, 0x0, 0x8]})
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x4e21, @multicast2}, 0x4}}, 0x2e)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x3, &(0x7f0000000000)=0xffe00000, 0x4)
getsockname(r1, 0x0, &(0x7f0000000000))
r4 = openat$iommufd(0xffffff9c, &(0x7f00000001c0), 0x80000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000300)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r4, 0x3ba0, &(0x7f0000000340)={0x48, 0x2, r5})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r6, 0x0, 0xd}, 0x18)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r9=>0x0})
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000002000f000000050030000000000005002f000000000008000300", @ANYRES32=r9], 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r10 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0x0, 0x28000, 0x10}, 0xc)
r11 = openat$sw_sync_info(0xffffff9c, &(0x7f0000000880), 0xcd1375884cdd889f, 0x0)
r12 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@bloom_filter={0x1e, 0x3df, 0x7, 0x8, 0x800, 0xffffffffffffffff, 0xa67, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x4, 0x5, 0x5, @void, @value, @void, @value}, 0x50)
r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r13, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r13, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000940)={0xffffffffffffffff, <r14=>0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a00)={{0xffffffffffffffff, <r15=>0xffffffffffffffff}, &(0x7f0000000980), &(0x7f00000009c0)=r6}, 0x1c)
r16 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000a80)=@o_path={&(0x7f0000000a40)='./file0\x00', 0x0, 0x10, r6}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x12, 0x17, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000ff0100000000000000000000182f0000", @ANYRES32=0x1, @ANYBLOB="000000000200000018680000040000000000000006000000184400000000000000000000000000006a4708000800000018110000", @ANYRES32, @ANYBLOB="0000000000000083dee1f17ed65a31007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200020018400000f972ffff000000000000000004610800cc00000095000000000080009500000000000000"], &(0x7f0000000480)='syzkaller\x00', 0x401, 0xc9, &(0x7f0000000780)=""/201, 0x41000, 0x2, '\x00', r9, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000540)={0x3, 0x1, 0x6, 0xe5}, 0x10, 0x0, r7, 0x8, &(0x7f0000000ac0)=[r4, r10, r11, r12, r13, r14, r15, r16], &(0x7f0000000b00)=[{0x0, 0x4, 0x2, 0xc}, {0x1, 0x3, 0x2, 0x1}, {0x1, 0x1, 0x10, 0xd}, {0x3, 0x2, 0x10, 0xa}, {0x1, 0x4, 0xf}, {0x3, 0x1, 0x2, 0x7}, {0x4, 0x1, 0x5, 0xa}, {0x4, 0x3, 0xb, 0x5}], 0x10, 0x4, @void, @value}, 0x94)
r17 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000d2a066541134a5b067f33592c5f36b00", @ANYRES16=r17, @ANYBLOB="010000000000fbdbdf2501000000050004000200000008000600ac1414bb"], 0x24}, 0x1, 0x0, 0x0, 0x4008884}, 0x0)

7.679079369s ago: executing program 0 (id=815):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
process_madvise(r1, &(0x7f0000001440)=[{&(0x7f0000000000)="9f", 0x1}, {0x0, 0x18100}], 0x2, 0x19, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="04d5"], 0x2)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={0x0, <r3=>0x0}, &(0x7f0000000000)=0xc)
setuid(r3)
socket$packet(0x11, 0x3, 0x300)

6.531469184s ago: executing program 0 (id=818):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000f80)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fedbdf253b00000008000300", @ANYRES32=r4, @ANYBLOB="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"], 0x78}, 0x1, 0x0, 0x0, 0x82}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)={0x268, r3, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x208, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x70, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x6, 0xfffc, 0x0, 0x101, 0x8001, 0xc2, 0x81]}}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x0, 0x9}, {0x2, 0x6}, {0x5, 0x6}, {0x2, 0x2}, {0x6}, {0x0, 0x2}, {0x4, 0x2}, {0x5, 0x6}, {0x3, 0x4}, {0x1, 0xa}, {0x7, 0x1}, {0x3, 0x7}, {0x6, 0x2}, {0x6, 0x7}, {0x1, 0x3}, {0x1, 0x6}, {0x6, 0x5}, {0x7, 0x8}, {0x2, 0x6}, {0x5, 0x2}, {0x4, 0x8}, {0x6, 0x6}, {0x0, 0x7}, {0x1, 0x3}, {0x3, 0x5}, {0x0, 0x9}, {0x3}, {0x5, 0x7}, {0x7, 0x3}, {0x0, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {}, {0x1, 0x2}, {0x4}, {0x5, 0x5}, {0x4, 0x2}, {0x4}, {0x4, 0x3}, {0x4}, {0x4, 0x2}, {0x0, 0x6}, {0x6, 0xa}, {0x0, 0x3}, {0x3, 0x7}, {0x3, 0x6}, {0x5, 0xa}, {0x7, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x4, 0x1, 0x5, 0x1, 0x627, 0xf970, 0x8, 0xfff]}}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xbb, 0x7e7, 0x7, 0x7, 0x1, 0x5, 0xa8, 0x4]}}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x7, 0x0, 0x0, 0x0, 0x93c, 0x3, 0x1]}}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x5, 0xa}, {0x5, 0x1}, {0x7, 0x5}, {0x6, 0x8}, {0x1, 0xa}, {0x1, 0x3}, {0x7, 0x7}, {0x2, 0x7}, {0x2, 0x9}, {}, {0x0, 0x9}, {0x0, 0x4}, {0x1, 0x9}, {0x3, 0x1}, {0x2, 0x8}, {0x1, 0x1}, {0x1, 0xa}, {0x0, 0x9}, {0x1, 0x5}, {0x3, 0x3}, {0x0, 0x8}, {0x1, 0x6}, {0x5, 0x1}, {0x1, 0x4}, {0x0, 0x2}, {0x0, 0x7}, {0x6, 0x9}, {0x3}, {0x1, 0x6}, {0x2, 0x5}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x9}, {0x6, 0x6}, {0x0, 0x2}, {0x7, 0x4}, {0x0, 0xa}, {0x2, 0x4}, {0x6, 0x7}, {0x7, 0x5}, {0x1, 0x4}, {0x6}, {0x2, 0x4}, {0x2, 0x3}, {0x0, 0x3}, {0x3, 0x7}, {0x6, 0x4}, {0x0, 0x10}, {0x0, 0x2}, {0x0, 0xa}, {0x2, 0x3}, {0x3, 0x3}, {0x1, 0x7}, {0x4, 0x3}, {0x5, 0x8}, {0x3, 0x9}, {0x5, 0xa}, {0x3}, {0x1, 0x6}, {0x7, 0x8}, {0x0, 0x4}, {0x1, 0xa}, {0x1, 0x3}, {0x3, 0x6}, {0x3, 0x5}]}]}, @NL80211_BAND_2GHZ={0x64, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0x36, 0x30, 0x1b, 0x6, 0x12, 0x9, 0x3, 0x60, 0x16, 0x7, 0x4, 0x0, 0x16, 0x6, 0xc, 0x1, 0x2, 0x48]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0xa}, {0x0, 0x8}, {0x4, 0x3}, {0x0, 0x6}, {0x4, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x0, 0x9, 0x8, 0x5, 0x9, 0x7]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x4, 0xfff9, 0x6, 0xc, 0x6, 0x33a0, 0x9]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x8000, 0x6, 0x7, 0x5, 0x500, 0x700, 0x4]}}]}, @NL80211_BAND_5GHZ={0xb8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0xf, 0x2, 0x4, 0xb, 0xfffb, 0x2, 0x7fff]}}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x9, 0xc, 0x0, 0x0, 0x60, 0x5, 0x5, 0x0]}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x2, 0x5}, {0x4, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x2, 0x24, 0x16, 0x6, 0x9, 0x18, 0x1b, 0x9, 0xb, 0x24, 0x1, 0x1b, 0x3, 0x24, 0x3, 0x9]}, @NL80211_TXRATE_HT={0x4f, 0x2, [{0x1, 0x6}, {0x0, 0x4}, {0x2, 0x4}, {0x1, 0x9}, {0x3, 0x6}, {0x2, 0x1}, {0x7, 0xa}, {0x1, 0x7}, {0x6, 0x8}, {0x0, 0x3}, {0x5}, {0x0, 0x7}, {0x0, 0xa}, {0x2, 0x7}, {0x6, 0x9}, {0x7, 0x9}, {0x1, 0x1}, {0x0, 0x9}, {0x6, 0x9}, {0x6, 0x3}, {0x2, 0x2}, {0x4, 0x3}, {0x6}, {0x0, 0x4}, {0x7, 0x2}, {0x5, 0x1f}, {0x3, 0xa}, {0x1}, {0x2}, {0x2, 0x3}, {}, {0x6, 0x5}, {0x6, 0x6}, {0x5}, {0x3, 0x3}, {0x7, 0x4}, {0x3, 0x1}, {0x5, 0x4}, {0x4, 0x3}, {0x7, 0x5}, {0x4, 0x7}, {0x7, 0x5}, {0x6, 0x9}, {0x5, 0x5}, {0x1, 0x2}, {0x6, 0x2}, {0x4, 0x7}, {0x0, 0x4}, {0x5, 0x7}, {0x0, 0x4}, {0x3}, {0x5}, {0x4, 0x8}, {0x0, 0x4}, {0x2, 0x3}, {0x6, 0x1}, {0x3, 0xa}, {0x0, 0x8}, {0x4}, {0x2, 0x4}, {0x1, 0x1}, {0x1}, {0x1, 0x2}, {0x1, 0x1}, {0x2, 0x9}, {0x0, 0x4}, {0x3, 0x8}, {0x2, 0x2}, {0x1, 0x8}, {0x4, 0x4}, {0x1, 0xa}, {0x2, 0xa}, {0x6, 0x4}, {0x2, 0x9}, {0x1, 0x9}]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x5, 0xb, 0x1, 0x2, 0x9, 0x1, 0x6, 0x60, 0x6c, 0x6c, 0x30, 0x18, 0x24, 0x24, 0x12, 0x30, 0x3, 0x4, 0x16, 0x12, 0xb, 0x4, 0x6, 0x9, 0x60]}]}]}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HT_OPMODE={0x6, 0x16, 0x14}, @NL80211_MESHCONF_CONNECTED_TO_AS={0x5, 0x1f, 0x1}, @NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x10}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x1}, @NL80211_MESHCONF_CONFIRM_TIMEOUT={0x6, 0x2, 0x41}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x3a}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x2}]}]}, 0x268}, 0x1, 0x0, 0x0, 0x1}, 0xc010)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x48811}, 0x2000805c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/notes', 0x0, 0x0)
syz_open_dev$vbi(0x0, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000001a40)=""/102392, 0x18ff8)
gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
openat$binfmt(0xffffffffffffff9c, r6, 0x42, 0x1ff)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet(r0, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

5.364844286s ago: executing program 2 (id=797):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x4000004, 0xaa781)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@metacopy_on, 0x3a}], [], 0x2f})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xd5)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cpu.stat\x00', 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000006, 0x2010, r2, 0x8000000)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x8, 0x3)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r0, 0xc0305615, &(0x7f0000000040)={0x0, {0x10000, 0x6}})
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
r4 = eventfd2(0x2, 0x0)
close(r4)
ioctl$VHOST_SET_VRING_CALL(r3, 0x4008af21, &(0x7f0000000040)={0x1, r4})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', './file0', [{}, {0x20, 'cpu.stat\x00'}], 0xa, "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"}, 0x1016)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r5, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r7=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10)
getsockopt$XDP_STATISTICS(r5, 0x11b, 0x7, &(0x7f0000000180), &(0x7f00000001c0)=0x30)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xa, 0x5, 0x2, 0x7, 0x2020, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket(0x10, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

4.825797858s ago: executing program 0 (id=821):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20048005}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r4, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x4, 0x4, 0x9, 0x41830, 0x1, 0x4, '\x00', 0x0, r6, 0x0, 0xffffffff, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$inet(0x2, 0x2, 0x0)
r7 = socket(0x23, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89f0, &(0x7f0000000800)={'bridge0\x00', &(0x7f0000000240)=@ethtool_coalesce={0xf, 0x4, 0x101, 0xc3a5, 0x9, 0x1ff, 0x4, 0x2, 0xfffffff6, 0x7fb, 0x1, 0xc99d, 0x2, 0x9, 0x8d, 0x7ff, 0x2, 0xa98, 0x8, 0x6, 0x10000040, 0x3, 0xfd}})

4.808209604s ago: executing program 4 (id=822):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20048005}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r4, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x4, 0x4, 0x9, 0x41830, 0x1, 0x4, '\x00', 0x0, r6, 0x0, 0xffffffff, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = socket(0x23, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89f0, &(0x7f0000000800)={'bridge0\x00', &(0x7f0000000240)=@ethtool_coalesce={0xf, 0x4, 0x101, 0xc3a5, 0x9, 0x1ff, 0x4, 0x2, 0xfffffff6, 0x7fb, 0x1, 0xc99d, 0x2, 0x9, 0x8d, 0x7ff, 0x2, 0xa98, 0x8, 0x6, 0x10000040, 0x3, 0xfd}})

4.794714503s ago: executing program 1 (id=823):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x200000100000011, 0x1, 0x5)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
mkdir(&(0x7f0000000200)='./file0\x00', 0x1c2)
r5 = open$dir(0x0, 0x0, 0x0)
mkdirat(r5, &(0x7f0000000080)='./file1\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYRES64=r4, @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x4000040)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000026000000000000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r7}, 0x18)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$BLKPG(r8, 0x1269, &(0x7f0000000000)={0x1, 0x0, 0x98, &(0x7f0000000180)={0x0, 0x800, 0x1000000f}})
fcntl$setstatus(r4, 0x4, 0x0)
ptrace$pokeuser(0x6, r6, 0x118, 0x40000089)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x805}, 0x4c0)
sendmsg$NFULNL_MSG_CONFIG(r0, 0x0, 0x4044000)

4.358052831s ago: executing program 1 (id=824):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20048005}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r4, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x4, 0x4, 0x9, 0x41830, 0x1, 0x4, '\x00', 0x0, r6, 0x0, 0xffffffff, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r7, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000000800)={'bridge0\x00', &(0x7f0000000240)=@ethtool_coalesce={0xf, 0x4, 0x101, 0xc3a5, 0x9, 0x1ff, 0x4, 0x2, 0xfffffff6, 0x7fb, 0x1, 0xc99d, 0x2, 0x9, 0x8d, 0x7ff, 0x2, 0xa98, 0x8, 0x6, 0x10000040, 0x3, 0xfd}})

3.777923897s ago: executing program 0 (id=825):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000f80)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fedbdf253b00000008000300", @ANYRES32=r4, @ANYBLOB="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"], 0x78}, 0x1, 0x0, 0x0, 0x82}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)={0x268, r3, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x208, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x70, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x6, 0xfffc, 0x0, 0x101, 0x8001, 0xc2, 0x81]}}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x0, 0x9}, {0x2, 0x6}, {0x5, 0x6}, {0x2, 0x2}, {0x6}, {0x0, 0x2}, {0x4, 0x2}, {0x5, 0x6}, {0x3, 0x4}, {0x1, 0xa}, {0x7, 0x1}, {0x3, 0x7}, {0x6, 0x2}, {0x6, 0x7}, {0x1, 0x3}, {0x1, 0x6}, {0x6, 0x5}, {0x7, 0x8}, {0x2, 0x6}, {0x5, 0x2}, {0x4, 0x8}, {0x6, 0x6}, {0x0, 0x7}, {0x1, 0x3}, {0x3, 0x5}, {0x0, 0x9}, {0x3}, {0x5, 0x7}, {0x7, 0x3}, {0x0, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {}, {0x1, 0x2}, {0x4}, {0x5, 0x5}, {0x4, 0x2}, {0x4}, {0x4, 0x3}, {0x4}, {0x4, 0x2}, {0x0, 0x6}, {0x6, 0xa}, {0x0, 0x3}, {0x3, 0x7}, {0x3, 0x6}, {0x5, 0xa}, {0x7, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x4, 0x1, 0x5, 0x1, 0x627, 0xf970, 0x8, 0xfff]}}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xbb, 0x7e7, 0x7, 0x7, 0x1, 0x5, 0xa8, 0x4]}}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x7, 0x0, 0x0, 0x0, 0x93c, 0x3, 0x1]}}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x5, 0xa}, {0x5, 0x1}, {0x7, 0x5}, {0x6, 0x8}, {0x1, 0xa}, {0x1, 0x3}, {0x7, 0x7}, {0x2, 0x7}, {0x2, 0x9}, {}, {0x0, 0x9}, {0x0, 0x4}, {0x1, 0x9}, {0x3, 0x1}, {0x2, 0x8}, {0x1, 0x1}, {0x1, 0xa}, {0x0, 0x9}, {0x1, 0x5}, {0x3, 0x3}, {0x0, 0x8}, {0x1, 0x6}, {0x5, 0x1}, {0x1, 0x4}, {0x0, 0x2}, {0x0, 0x7}, {0x6, 0x9}, {0x3}, {0x1, 0x6}, {0x2, 0x5}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x9}, {0x6, 0x6}, {0x0, 0x2}, {0x7, 0x4}, {0x0, 0xa}, {0x2, 0x4}, {0x6, 0x7}, {0x7, 0x5}, {0x1, 0x4}, {0x6}, {0x2, 0x4}, {0x2, 0x3}, {0x0, 0x3}, {0x3, 0x7}, {0x6, 0x4}, {0x0, 0x10}, {0x0, 0x2}, {0x0, 0xa}, {0x2, 0x3}, {0x3, 0x3}, {0x1, 0x7}, {0x4, 0x3}, {0x5, 0x8}, {0x3, 0x9}, {0x5, 0xa}, {0x3}, {0x1, 0x6}, {0x7, 0x8}, {0x0, 0x4}, {0x1, 0xa}, {0x1, 0x3}, {0x3, 0x6}, {0x3, 0x5}]}]}, @NL80211_BAND_2GHZ={0x64, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0x36, 0x30, 0x1b, 0x6, 0x12, 0x9, 0x3, 0x60, 0x16, 0x7, 0x4, 0x0, 0x16, 0x6, 0xc, 0x1, 0x2, 0x48]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0xa}, {0x0, 0x8}, {0x4, 0x3}, {0x0, 0x6}, {0x4, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x0, 0x9, 0x8, 0x5, 0x9, 0x7]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x4, 0xfff9, 0x6, 0xc, 0x6, 0x33a0, 0x9]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x8000, 0x6, 0x7, 0x5, 0x500, 0x700, 0x4]}}]}, @NL80211_BAND_5GHZ={0xb8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0xf, 0x2, 0x4, 0xb, 0xfffb, 0x2, 0x7fff]}}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x9, 0xc, 0x0, 0x0, 0x60, 0x5, 0x5, 0x0]}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x2, 0x5}, {0x4, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x2, 0x24, 0x16, 0x6, 0x9, 0x18, 0x1b, 0x9, 0xb, 0x24, 0x1, 0x1b, 0x3, 0x24, 0x3, 0x9]}, @NL80211_TXRATE_HT={0x4f, 0x2, [{0x1, 0x6}, {0x0, 0x4}, {0x2, 0x4}, {0x1, 0x9}, {0x3, 0x6}, {0x2, 0x1}, {0x7, 0xa}, {0x1, 0x7}, {0x6, 0x8}, {0x0, 0x3}, {0x5}, {0x0, 0x7}, {0x0, 0xa}, {0x2, 0x7}, {0x6, 0x9}, {0x7, 0x9}, {0x1, 0x1}, {0x0, 0x9}, {0x6, 0x9}, {0x6, 0x3}, {0x2, 0x2}, {0x4, 0x3}, {0x6}, {0x0, 0x4}, {0x7, 0x2}, {0x5, 0x1f}, {0x3, 0xa}, {0x1}, {0x2}, {0x2, 0x3}, {}, {0x6, 0x5}, {0x6, 0x6}, {0x5}, {0x3, 0x3}, {0x7, 0x4}, {0x3, 0x1}, {0x5, 0x4}, {0x4, 0x3}, {0x7, 0x5}, {0x4, 0x7}, {0x7, 0x5}, {0x6, 0x9}, {0x5, 0x5}, {0x1, 0x2}, {0x6, 0x2}, {0x4, 0x7}, {0x0, 0x4}, {0x5, 0x7}, {0x0, 0x4}, {0x3}, {0x5}, {0x4, 0x8}, {0x0, 0x4}, {0x2, 0x3}, {0x6, 0x1}, {0x3, 0xa}, {0x0, 0x8}, {0x4}, {0x2, 0x4}, {0x1, 0x1}, {0x1}, {0x1, 0x2}, {0x1, 0x1}, {0x2, 0x9}, {0x0, 0x4}, {0x3, 0x8}, {0x2, 0x2}, {0x1, 0x8}, {0x4, 0x4}, {0x1, 0xa}, {0x2, 0xa}, {0x6, 0x4}, {0x2, 0x9}, {0x1, 0x9}]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x5, 0x1, 0x2, 0x6, 0x9, 0x1, 0x6, 0x60, 0x6c, 0x6c, 0x30, 0x18, 0x24, 0x24, 0x12, 0x30, 0x3, 0x4, 0x16, 0x12, 0xb, 0x4, 0x6, 0x9, 0x60]}]}]}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HT_OPMODE={0x6, 0x16, 0x14}, @NL80211_MESHCONF_CONNECTED_TO_AS={0x5, 0x1f, 0x1}, @NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x10}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x1}, @NL80211_MESHCONF_CONFIRM_TIMEOUT={0x6, 0x2, 0x41}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x3a}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x2}]}]}, 0x268}, 0x1, 0x0, 0x0, 0x1}, 0xc010)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x48811}, 0x2000805c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/notes', 0x0, 0x0)
syz_open_dev$vbi(0x0, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000001a40)=""/102392, 0x18ff8)
gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r7 = openat$binfmt(0xffffffffffffff9c, r6, 0x42, 0x1ff)
socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
sendmmsg$inet(r0, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

3.281843607s ago: executing program 4 (id=826):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
process_madvise(r1, &(0x7f0000001440)=[{&(0x7f0000000000)="9f", 0x1}, {0x0, 0x18100}], 0x2, 0x19, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="04d5"], 0x2)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={0x0, <r3=>0x0}, &(0x7f0000000000)=0xc)
setuid(r3)
socket$packet(0x11, 0x3, 0x300)

2.738600637s ago: executing program 0 (id=827):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='contention_end\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040)={0x4, 0x5, 0x10, 0x2004}, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x29, 0x2, 0x0)
r3 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x10408, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x3d}}, 0xfcbc)
gettid()
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x2a}, 0x80)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000440), 0xf02, 0x0)
r4 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x1, 0x0)
write$proc_mixer(r4, &(0x7f0000000200)=[{'OGAIN', @val={' \'', 'Line Capture Switch'}}, {'OGAIN', @void}], 0x37)
close(r4)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/meminfo\x00', 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0xf, &(0x7f00000002c0), 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x44, &(0x7f0000000640), 0x4)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
sendto$inet(r1, &(0x7f0000000100)="ab", 0x1, 0x400c8c4, &(0x7f00000000c0)={0x2, 0x4e22, @local}, 0x10)

2.367583633s ago: executing program 4 (id=828):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x60281, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22, 0x80000001, @empty}, 0x1c)
listen(r2, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000600)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x5, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x4, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10}}}}}}, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, 0x0, 0x4000)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0x1e)
pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x3, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, 0x0, 0x0)

2.344447623s ago: executing program 1 (id=829):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000f80)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fedbdf253b00000008000300", @ANYRES32=r4, @ANYBLOB="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"], 0x78}, 0x1, 0x0, 0x0, 0x82}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)={0x268, r3, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x208, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x70, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x6, 0xfffc, 0x0, 0x101, 0x8001, 0xc2, 0x81]}}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x0, 0x9}, {0x2, 0x6}, {0x5, 0x6}, {0x2, 0x2}, {0x6}, {0x0, 0x2}, {0x4, 0x2}, {0x5, 0x6}, {0x3, 0x4}, {0x1, 0xa}, {0x7, 0x1}, {0x3, 0x7}, {0x6, 0x2}, {0x6, 0x7}, {0x1, 0x3}, {0x1, 0x6}, {0x6, 0x5}, {0x7, 0x8}, {0x2, 0x6}, {0x5, 0x2}, {0x4, 0x8}, {0x6, 0x6}, {0x0, 0x7}, {0x1, 0x3}, {0x3, 0x5}, {0x0, 0x9}, {0x3}, {0x5, 0x7}, {0x7, 0x3}, {0x0, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {}, {0x1, 0x2}, {0x4}, {0x5, 0x5}, {0x4, 0x2}, {0x4}, {0x4, 0x3}, {0x4}, {0x4, 0x2}, {0x0, 0x6}, {0x6, 0xa}, {0x0, 0x3}, {0x3, 0x7}, {0x3, 0x6}, {0x5, 0xa}, {0x7, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x4, 0x1, 0x5, 0x1, 0x627, 0xf970, 0x8, 0xfff]}}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xbb, 0x7e7, 0x7, 0x7, 0x1, 0x5, 0xa8, 0x4]}}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x7, 0x0, 0x0, 0x0, 0x93c, 0x3, 0x1]}}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x5, 0xa}, {0x5, 0x1}, {0x7, 0x5}, {0x6, 0x8}, {0x1, 0xa}, {0x1, 0x3}, {0x7, 0x7}, {0x2, 0x7}, {0x2, 0x9}, {}, {0x0, 0x9}, {0x0, 0x4}, {0x1, 0x9}, {0x3, 0x1}, {0x2, 0x8}, {0x1, 0x1}, {0x1, 0xa}, {0x0, 0x9}, {0x1, 0x5}, {0x3, 0x3}, {0x0, 0x8}, {0x1, 0x6}, {0x5, 0x1}, {0x1, 0x4}, {0x0, 0x2}, {0x0, 0x7}, {0x6, 0x9}, {0x3}, {0x1, 0x6}, {0x2, 0x5}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x9}, {0x6, 0x6}, {0x0, 0x2}, {0x7, 0x4}, {0x0, 0xa}, {0x2, 0x4}, {0x6, 0x7}, {0x7, 0x5}, {0x1, 0x4}, {0x6}, {0x2, 0x4}, {0x2, 0x3}, {0x0, 0x3}, {0x3, 0x7}, {0x6, 0x4}, {0x0, 0x10}, {0x0, 0x2}, {0x0, 0xa}, {0x2, 0x3}, {0x3, 0x3}, {0x1, 0x7}, {0x4, 0x3}, {0x5, 0x8}, {0x3, 0x9}, {0x5, 0xa}, {0x3}, {0x1, 0x6}, {0x7, 0x8}, {0x0, 0x4}, {0x1, 0xa}, {0x1, 0x3}, {0x3, 0x6}, {0x3, 0x5}]}]}, @NL80211_BAND_2GHZ={0x64, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0x36, 0x30, 0x1b, 0x6, 0x12, 0x9, 0x3, 0x60, 0x16, 0x7, 0x4, 0x0, 0x16, 0x6, 0xc, 0x1, 0x2, 0x48]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0xa}, {0x0, 0x8}, {0x4, 0x3}, {0x0, 0x6}, {0x4, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x0, 0x9, 0x8, 0x5, 0x9, 0x7]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x4, 0xfff9, 0x6, 0xc, 0x6, 0x33a0, 0x9]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x8000, 0x6, 0x7, 0x5, 0x500, 0x700, 0x4]}}]}, @NL80211_BAND_5GHZ={0xb8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0xf, 0x2, 0x4, 0xb, 0xfffb, 0x2, 0x7fff]}}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x9, 0xc, 0x0, 0x0, 0x60, 0x5, 0x5, 0x0]}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x2, 0x5}, {0x4, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x2, 0x24, 0x16, 0x6, 0x9, 0x18, 0x1b, 0x9, 0xb, 0x24, 0x1, 0x1b, 0x3, 0x24, 0x3, 0x9]}, @NL80211_TXRATE_HT={0x4f, 0x2, [{0x1, 0x6}, {0x0, 0x4}, {0x2, 0x4}, {0x1, 0x9}, {0x3, 0x6}, {0x2, 0x1}, {0x7, 0xa}, {0x1, 0x7}, {0x6, 0x8}, {0x0, 0x3}, {0x5}, {0x0, 0x7}, {0x0, 0xa}, {0x2, 0x7}, {0x6, 0x9}, {0x7, 0x9}, {0x1, 0x1}, {0x0, 0x9}, {0x6, 0x9}, {0x6, 0x3}, {0x2, 0x2}, {0x4, 0x3}, {0x6}, {0x0, 0x4}, {0x7, 0x2}, {0x5, 0x1f}, {0x3, 0xa}, {0x1}, {0x2}, {0x2, 0x3}, {}, {0x6, 0x5}, {0x6, 0x6}, {0x5}, {0x3, 0x3}, {0x7, 0x4}, {0x3, 0x1}, {0x5, 0x4}, {0x4, 0x3}, {0x7, 0x5}, {0x4, 0x7}, {0x7, 0x5}, {0x6, 0x9}, {0x5, 0x5}, {0x1, 0x2}, {0x6, 0x2}, {0x4, 0x7}, {0x0, 0x4}, {0x5, 0x7}, {0x0, 0x4}, {0x3}, {0x5}, {0x4, 0x8}, {0x0, 0x4}, {0x2, 0x3}, {0x6, 0x1}, {0x3, 0xa}, {0x0, 0x8}, {0x4}, {0x2, 0x4}, {0x1, 0x1}, {0x1}, {0x1, 0x2}, {0x1, 0x1}, {0x2, 0x9}, {0x0, 0x4}, {0x3, 0x8}, {0x2, 0x2}, {0x1, 0x8}, {0x4, 0x4}, {0x1, 0xa}, {0x2, 0xa}, {0x6, 0x4}, {0x2, 0x9}, {0x1, 0x9}]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x5, 0xb, 0x1, 0x2, 0x9, 0x1, 0x6, 0x60, 0x6c, 0x6c, 0x30, 0x18, 0x24, 0x24, 0x12, 0x30, 0x3, 0x4, 0x16, 0x12, 0xb, 0x4, 0x6, 0x9, 0x60]}]}]}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HT_OPMODE={0x6, 0x16, 0x14}, @NL80211_MESHCONF_CONNECTED_TO_AS={0x5, 0x1f, 0x1}, @NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x10}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x1}, @NL80211_MESHCONF_CONFIRM_TIMEOUT={0x6, 0x2, 0x41}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x3a}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x2}]}]}, 0x268}, 0x1, 0x0, 0x0, 0x1}, 0xc010)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x48811}, 0x2000805c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/notes', 0x0, 0x0)
syz_open_dev$vbi(0x0, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000001a40)=""/102392, 0x18ff8)
gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$inet(r0, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

1.431478424s ago: executing program 4 (id=830):
r0 = io_uring_setup(0x19e3, &(0x7f0000000000)={0x0, 0x4178, 0x400, 0x1, 0x245})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ppoll(&(0x7f0000000080)=[{r1}], 0x1, 0x0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r3, 0x4068aea3, &(0x7f0000000240)={0xdf, 0x0, 0x8000})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r4 = syz_open_pts(r1, 0x121500)
close_range(r0, r4, 0x0) (fail_nth: 1)

1.209871054s ago: executing program 1 (id=831):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000f80)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fedbdf253b00000008000300", @ANYRES32=r4, @ANYBLOB="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"], 0x78}, 0x1, 0x0, 0x0, 0x82}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)={0x268, r3, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x208, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x70, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x6, 0xfffc, 0x0, 0x101, 0x8001, 0xc2, 0x81]}}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x0, 0x9}, {0x2, 0x6}, {0x5, 0x6}, {0x2, 0x2}, {0x6}, {0x0, 0x2}, {0x4, 0x2}, {0x5, 0x6}, {0x3, 0x4}, {0x1, 0xa}, {0x7, 0x1}, {0x3, 0x7}, {0x6, 0x2}, {0x6, 0x7}, {0x1, 0x3}, {0x1, 0x6}, {0x6, 0x5}, {0x7, 0x8}, {0x2, 0x6}, {0x5, 0x2}, {0x4, 0x8}, {0x6, 0x6}, {0x0, 0x7}, {0x1, 0x3}, {0x3, 0x5}, {0x0, 0x9}, {0x3}, {0x5, 0x7}, {0x7, 0x3}, {0x0, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {}, {0x1, 0x2}, {0x4}, {0x5, 0x5}, {0x4, 0x2}, {0x4}, {0x4, 0x3}, {0x4}, {0x4, 0x2}, {0x0, 0x6}, {0x6, 0xa}, {0x0, 0x3}, {0x3, 0x7}, {0x3, 0x6}, {0x5, 0xa}, {0x7, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x4, 0x1, 0x5, 0x1, 0x627, 0xf970, 0x8, 0xfff]}}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xbb, 0x7e7, 0x7, 0x7, 0x1, 0x5, 0xa8, 0x4]}}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x7, 0x0, 0x0, 0x0, 0x93c, 0x3, 0x1]}}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x5, 0xa}, {0x5, 0x1}, {0x7, 0x5}, {0x6, 0x8}, {0x1, 0xa}, {0x1, 0x3}, {0x7, 0x7}, {0x2, 0x7}, {0x2, 0x9}, {}, {0x0, 0x9}, {0x0, 0x4}, {0x1, 0x9}, {0x3, 0x1}, {0x2, 0x8}, {0x1, 0x1}, {0x1, 0xa}, {0x0, 0x9}, {0x1, 0x5}, {0x3, 0x3}, {0x0, 0x8}, {0x1, 0x6}, {0x5, 0x1}, {0x1, 0x4}, {0x0, 0x2}, {0x0, 0x7}, {0x6, 0x9}, {0x3}, {0x1, 0x6}, {0x2, 0x5}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x9}, {0x6, 0x6}, {0x0, 0x2}, {0x7, 0x4}, {0x0, 0xa}, {0x2, 0x4}, {0x6, 0x7}, {0x7, 0x5}, {0x1, 0x4}, {0x6}, {0x2, 0x4}, {0x2, 0x3}, {0x0, 0x3}, {0x3, 0x7}, {0x6, 0x4}, {0x0, 0x10}, {0x0, 0x2}, {0x0, 0xa}, {0x2, 0x3}, {0x3, 0x3}, {0x1, 0x7}, {0x4, 0x3}, {0x5, 0x8}, {0x3, 0x9}, {0x5, 0xa}, {0x3}, {0x1, 0x6}, {0x7, 0x8}, {0x0, 0x4}, {0x1, 0xa}, {0x1, 0x3}, {0x3, 0x6}, {0x3, 0x5}]}]}, @NL80211_BAND_2GHZ={0x64, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0x36, 0x30, 0x1b, 0x6, 0x12, 0x9, 0x3, 0x60, 0x16, 0x7, 0x4, 0x0, 0x16, 0x6, 0xc, 0x1, 0x2, 0x48]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0xa}, {0x0, 0x8}, {0x4, 0x3}, {0x0, 0x6}, {0x4, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x0, 0x9, 0x8, 0x5, 0x9, 0x7]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x4, 0xfff9, 0x6, 0xc, 0x6, 0x33a0, 0x9]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x8000, 0x6, 0x7, 0x5, 0x500, 0x700, 0x4]}}]}, @NL80211_BAND_5GHZ={0xb8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0xf, 0x2, 0x4, 0xb, 0xfffb, 0x2, 0x7fff]}}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x9, 0xc, 0x0, 0x0, 0x60, 0x5, 0x5, 0x0]}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x2, 0x5}, {0x4, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x2, 0x24, 0x16, 0x6, 0x9, 0x18, 0x1b, 0x9, 0xb, 0x24, 0x1, 0x1b, 0x3, 0x24, 0x3, 0x9]}, @NL80211_TXRATE_HT={0x4f, 0x2, [{0x1, 0x6}, {0x0, 0x4}, {0x2, 0x4}, {0x1, 0x9}, {0x3, 0x6}, {0x2, 0x1}, {0x7, 0xa}, {0x1, 0x7}, {0x6, 0x8}, {0x0, 0x3}, {0x5}, {0x0, 0x7}, {0x0, 0xa}, {0x2, 0x7}, {0x6, 0x9}, {0x7, 0x9}, {0x1, 0x1}, {0x0, 0x9}, {0x6, 0x9}, {0x6, 0x3}, {0x2, 0x2}, {0x4, 0x3}, {0x6}, {0x0, 0x4}, {0x7, 0x2}, {0x5, 0x1f}, {0x3, 0xa}, {0x1}, {0x2}, {0x2, 0x3}, {}, {0x6, 0x5}, {0x6, 0x6}, {0x5}, {0x3, 0x3}, {0x7, 0x4}, {0x3, 0x1}, {0x5, 0x4}, {0x4, 0x3}, {0x7, 0x5}, {0x4, 0x7}, {0x7, 0x5}, {0x6, 0x9}, {0x5, 0x5}, {0x1, 0x2}, {0x6, 0x2}, {0x4, 0x7}, {0x0, 0x4}, {0x5, 0x7}, {0x0, 0x4}, {0x3}, {0x5}, {0x4, 0x8}, {0x0, 0x4}, {0x2, 0x3}, {0x6, 0x1}, {0x3, 0xa}, {0x0, 0x8}, {0x4}, {0x2, 0x4}, {0x1, 0x1}, {0x1}, {0x1, 0x2}, {0x1, 0x1}, {0x2, 0x9}, {0x0, 0x4}, {0x3, 0x8}, {0x2, 0x2}, {0x1, 0x8}, {0x4, 0x4}, {0x1, 0xa}, {0x2, 0xa}, {0x6, 0x4}, {0x2, 0x9}, {0x1, 0x9}]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0xb, 0x1, 0x2, 0x6, 0x9, 0x1, 0x6, 0x60, 0x6c, 0x6c, 0x30, 0x18, 0x24, 0x24, 0x12, 0x30, 0x3, 0x4, 0x16, 0x12, 0xb, 0x4, 0x6, 0x9, 0x60]}]}]}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HT_OPMODE={0x6, 0x16, 0x14}, @NL80211_MESHCONF_CONNECTED_TO_AS={0x5, 0x1f, 0x1}, @NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x10}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x1}, @NL80211_MESHCONF_CONFIRM_TIMEOUT={0x6, 0x2, 0x41}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x3a}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x2}]}]}, 0x268}, 0x1, 0x0, 0x0, 0x1}, 0xc010)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x48811}, 0x2000805c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/notes', 0x0, 0x0)
syz_open_dev$vbi(0x0, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000001a40)=""/102392, 0x18ff8)
gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000000c000000bca30000000000002403000020feffff620af8fff8ffffff71a4f8ff000000001f03000000000000e5000200000000002604fdffff02000014010000033800001d130000000000007a0a00fe0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b8074bf7df8b5e783637da740800000000000000c55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2740000000000000000000000000000000000000000000a0009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4100260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb0000000000000005375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d34d3757b1450fdb0a9a69f432e277f3a0386eb2bd3305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07618b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e040000003c3ffad44d2a376def42e41e9fc31678257e040fa7cf32c221aaac08000000000000001a00000000000000000000173570f0c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d641ef02e4d5295d756e110522a7a945b93fb705b95b6aae27a8fb33732ce1da1c0b1af8eb9222a06e984ab1e6984c8bdc12360627137ab67b6b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481efe46a4ce86be0b1d8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0c6cb4bed8594a39bd76d3ef8a7ab014e787596db796bd93a36c2880423291e3bccc86f66ba792ff4d87b3f80e5908779e51c5e9055fc5b23605cd000c723187ef09dcf4b07b06a9342f3f62ee7acddff292082c1f4d8eb9561f80873a09a1ae0c9af1121175e5600f43a1179484502009759264a5729f07c2b218fa36ba2316a99aaad0130df83d0bda1e711290f78c143ea143967b00adcd77e6ad5e48d839ea61aadb83e4d071c54691924a3830d3e7b5c198bb0ed623153590000000000000000004b985ea1702f34f2f85b168c083e810ed567e3f1979b9ed1a4bf6a10dac825c96a0828b335de445a4880bb6474157efd1a72ca46ae4cbe3ab648c9bc4867a5a4cb87d7d6d55475b34b3cb6aa9e2337d4e04a37e35109752522ac9b186ddd80c47da6a2f4ef7bb909c975520000000000000000000000219cf5c1376ab33786f6b856d354e90a2733f78f2d188057cead3480eade49d55b770fad7fa000d23da6275768810b6b2df91d3a991ea98d929d271696c258d5b735d5db11df434e7dd1b7c1ca05cea3977df564115f4ec6ffab1d2ff8a642ca50934b3fbe44b0abeba9df209566984a29dfc0466e439a94e177b3c4d5f6e92b8176b9d6ddeeeb196fa964217f88e1acc180aaa4"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r7 = openat$binfmt(0xffffffffffffff9c, r6, 0x42, 0x1ff)
socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
sendmmsg$inet(r0, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

1.209607789s ago: executing program 4 (id=832):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) (async)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) (async)
getpid()
syz_open_procfs(0x0, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r1, 0x2c9ab000) (async)
sched_setaffinity(0x0, 0xffffffffffffff61, &(0x7f00000002c0)=0x2) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
read$msr(0xffffffffffffffff, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) (async)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="6fc05cd5c90002699df3a17aa3427baae03bd4cc868d304013c7fc6bc38e758709b71d3f50f95d0bf355a3236500cc0aa3adda41aea0af2983"], 0x7) (async)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x81, 0x9) (async)
sendmsg$TIPC_NL_MON_PEER_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0d030000000000000000130000000c0009800800020000000000"], 0x20}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x66, 0x7ffc1ffb}]}) (async)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x2) (async)
socket$tipc(0x1e, 0x2, 0x0) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
write$sndseq(0xffffffffffffffff, &(0x7f0000000380)=[{0x1, 0xc, 0x9, 0x4, @time={0x7, 0xd782}, {0xa0, 0x8}, {0x3, 0x7}, @quote={{0x5, 0x2}, 0x0, &(0x7f0000000000)={0x3, 0x8, 0x9, 0x9, @time={0x9, 0x6}, {0xff, 0x5}, {0x9, 0x2}, @raw8={"c58af58ba2e1912507f99819"}}}}], 0x1c)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)

403.084683ms ago: executing program 4 (id=833):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000f80)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fedbdf253b00000008000300", @ANYRES32=r4, @ANYBLOB="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"], 0x78}, 0x1, 0x0, 0x0, 0x82}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)={0x21c, r3, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x1bc, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x70, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x6, 0xfffc, 0x0, 0x101, 0x8001, 0xc2, 0x81]}}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x0, 0x9}, {0x2, 0x6}, {0x5, 0x6}, {0x2, 0x2}, {0x6}, {0x0, 0x2}, {0x4, 0x2}, {0x5, 0x6}, {0x3, 0x4}, {0x1, 0xa}, {0x7, 0x1}, {0x3, 0x7}, {0x6, 0x2}, {0x6, 0x7}, {0x1, 0x3}, {0x1, 0x6}, {0x6, 0x5}, {0x7, 0x8}, {0x2, 0x6}, {0x5, 0x2}, {0x4, 0x8}, {0x6, 0x6}, {0x0, 0x7}, {0x1, 0x3}, {0x3, 0x5}, {0x0, 0x9}, {0x3}, {0x5, 0x7}, {0x7, 0x3}, {0x0, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {}, {0x1, 0x2}, {0x4}, {0x5, 0x5}, {0x4, 0x2}, {0x4}, {0x4, 0x3}, {0x4}, {0x4, 0x2}, {0x0, 0x6}, {0x6, 0xa}, {0x0, 0x3}, {0x3, 0x7}, {0x3, 0x6}, {0x5, 0xa}, {0x7, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x4, 0x1, 0x5, 0x1, 0x627, 0xf970, 0x8, 0xfff]}}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xbb, 0x7e7, 0x7, 0x7, 0x1, 0x5, 0xa8, 0x4]}}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x7, 0x0, 0x0, 0x0, 0x93c, 0x3, 0x1]}}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x5, 0xa}, {0x5, 0x1}, {0x7, 0x5}, {0x6, 0x8}, {0x1, 0xa}, {0x1, 0x3}, {0x7, 0x7}, {0x2, 0x7}, {0x2, 0x9}, {}, {0x0, 0x9}, {0x0, 0x4}, {0x1, 0x9}, {0x3, 0x1}, {0x2, 0x8}, {0x1, 0x1}, {0x1, 0xa}, {0x0, 0x9}, {0x1, 0x5}, {0x3, 0x3}, {0x0, 0x8}, {0x1, 0x6}, {0x5, 0x1}, {0x1, 0x4}, {0x0, 0x2}, {0x0, 0x7}, {0x6, 0x9}, {0x3}, {0x1, 0x6}, {0x2, 0x5}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x9}, {0x6, 0x6}, {0x0, 0x2}, {0x7, 0x4}, {0x0, 0xa}, {0x2, 0x4}, {0x6, 0x7}, {0x7, 0x5}, {0x1, 0x4}, {0x6}, {0x2, 0x4}, {0x2, 0x3}, {0x0, 0x3}, {0x3, 0x7}, {0x6, 0x4}, {0x0, 0x10}, {0x0, 0x2}, {0x0, 0xa}, {0x2, 0x3}, {0x3, 0x3}, {0x1, 0x7}, {0x4, 0x3}, {0x5, 0x8}, {0x3, 0x9}, {0x5, 0xa}, {0x3}, {0x1, 0x6}, {0x7, 0x8}, {0x0, 0x4}, {0x1, 0xa}, {0x1, 0x3}, {0x3, 0x6}, {0x3, 0x5}]}]}, @NL80211_BAND_2GHZ={0x64, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0x36, 0x30, 0x1b, 0x6, 0x12, 0x9, 0x3, 0x60, 0x16, 0x7, 0x4, 0x0, 0x16, 0x6, 0xc, 0x1, 0x2, 0x48]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0xa}, {0x0, 0x8}, {0x4, 0x3}, {0x0, 0x6}, {0x4, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x0, 0x9, 0x8, 0x5, 0x9, 0x7]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x4, 0xfff9, 0x6, 0xc, 0x6, 0x33a0, 0x9]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x8000, 0x6, 0x7, 0x5, 0x500, 0x700, 0x4]}}]}, @NL80211_BAND_5GHZ={0x6c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0xf, 0x2, 0x4, 0xb, 0xfffb, 0x2, 0x7fff]}}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x9, 0xc, 0x0, 0x0, 0x60, 0x5, 0x5, 0x0]}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x2, 0x5}, {0x4, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x2, 0x24, 0x16, 0x6, 0x9, 0x18, 0x1b, 0x9, 0xb, 0x24, 0x1, 0x1b, 0x3, 0x24, 0x3, 0x9]}, @NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x5, 0xb, 0x1, 0x2, 0x6, 0x9, 0x1, 0x6, 0x60, 0x6c, 0x6c, 0x30, 0x18, 0x24, 0x24, 0x12, 0x30, 0x3, 0x4, 0x16, 0x12, 0xb, 0x4, 0x6, 0x9, 0x60]}]}]}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HT_OPMODE={0x6, 0x16, 0x14}, @NL80211_MESHCONF_CONNECTED_TO_AS={0x5, 0x1f, 0x1}, @NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x10}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x1}, @NL80211_MESHCONF_CONFIRM_TIMEOUT={0x6, 0x2, 0x41}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x3a}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x2}]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x1}, 0xc010)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x48811}, 0x2000805c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/notes', 0x0, 0x0)
syz_open_dev$vbi(0x0, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000001a40)=""/102392, 0x18ff8)
gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r7 = openat$binfmt(0xffffffffffffff9c, r6, 0x42, 0x1ff)
socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
sendmmsg$inet(r0, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

185.947141ms ago: executing program 1 (id=834):
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = fsopen(&(0x7f0000000040)='tracefs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x1a6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0), r2)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x28, r3, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'macvtap0\x00'}}]}]}, 0x28}}, 0x4000000)
creat(&(0x7f0000000200)='./file0\x00', 0x2)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r4, 0x84, 0x20, 0x0, &(0x7f0000000080))

0s ago: executing program 1 (id=835):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000f80)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fedbdf253b00000008000300", @ANYRES32=r4, @ANYBLOB="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"], 0x78}, 0x1, 0x0, 0x0, 0x82}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)={0x268, r3, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x208, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x70, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x6, 0xfffc, 0x0, 0x101, 0x8001, 0xc2, 0x81]}}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x0, 0x9}, {0x2, 0x6}, {0x5, 0x6}, {0x2, 0x2}, {0x6}, {0x0, 0x2}, {0x4, 0x2}, {0x5, 0x6}, {0x3, 0x4}, {0x1, 0xa}, {0x7, 0x1}, {0x3, 0x7}, {0x6, 0x2}, {0x6, 0x7}, {0x1, 0x3}, {0x1, 0x6}, {0x6, 0x5}, {0x7, 0x8}, {0x2, 0x6}, {0x5, 0x2}, {0x4, 0x8}, {0x6, 0x6}, {0x0, 0x7}, {0x1, 0x3}, {0x3, 0x5}, {0x0, 0x9}, {0x3}, {0x5, 0x7}, {0x7, 0x3}, {0x0, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {}, {0x1, 0x2}, {0x4}, {0x5, 0x5}, {0x4, 0x2}, {0x4}, {0x4, 0x3}, {0x4}, {0x4, 0x2}, {0x0, 0x6}, {0x6, 0xa}, {0x0, 0x3}, {0x3, 0x7}, {0x3, 0x6}, {0x5, 0xa}, {0x7, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x4, 0x1, 0x5, 0x1, 0x627, 0xf970, 0x8, 0xfff]}}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xbb, 0x7e7, 0x7, 0x7, 0x1, 0x5, 0xa8, 0x4]}}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x7, 0x0, 0x0, 0x0, 0x93c, 0x3, 0x1]}}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x5, 0xa}, {0x5, 0x1}, {0x7, 0x5}, {0x6, 0x8}, {0x1, 0xa}, {0x1, 0x3}, {0x7, 0x7}, {0x2, 0x7}, {0x2, 0x9}, {}, {0x0, 0x9}, {0x0, 0x4}, {0x1, 0x9}, {0x3, 0x1}, {0x2, 0x8}, {0x1, 0x1}, {0x1, 0xa}, {0x0, 0x9}, {0x1, 0x5}, {0x3, 0x3}, {0x0, 0x8}, {0x1, 0x6}, {0x5, 0x1}, {0x1, 0x4}, {0x0, 0x2}, {0x0, 0x7}, {0x6, 0x9}, {0x3}, {0x1, 0x6}, {0x2, 0x5}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x9}, {0x6, 0x6}, {0x0, 0x2}, {0x7, 0x4}, {0x0, 0xa}, {0x2, 0x4}, {0x6, 0x7}, {0x7, 0x5}, {0x1, 0x4}, {0x6}, {0x2, 0x4}, {0x2, 0x3}, {0x0, 0x3}, {0x3, 0x7}, {0x6, 0x4}, {0x0, 0x10}, {0x0, 0x2}, {0x0, 0xa}, {0x2, 0x3}, {0x3, 0x3}, {0x1, 0x7}, {0x4, 0x3}, {0x5, 0x8}, {0x3, 0x9}, {0x5, 0xa}, {0x3}, {0x1, 0x6}, {0x7, 0x8}, {0x0, 0x4}, {0x1, 0xa}, {0x1, 0x3}, {0x3, 0x6}, {0x3, 0x5}]}]}, @NL80211_BAND_2GHZ={0x64, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0x36, 0x30, 0x1b, 0x6, 0x12, 0x9, 0x3, 0x60, 0x16, 0x7, 0x4, 0x0, 0x16, 0x6, 0xc, 0x1, 0x2, 0x48]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0xa}, {0x0, 0x8}, {0x4, 0x3}, {0x0, 0x6}, {0x4, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x0, 0x9, 0x8, 0x5, 0x9, 0x7]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x4, 0xfff9, 0x6, 0xc, 0x6, 0x33a0, 0x9]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x8000, 0x6, 0x7, 0x5, 0x500, 0x700, 0x4]}}]}, @NL80211_BAND_5GHZ={0xb8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0xf, 0x2, 0x4, 0xb, 0xfffb, 0x2, 0x7fff]}}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x9, 0xc, 0x0, 0x0, 0x60, 0x5, 0x5, 0x0]}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x2, 0x5}, {0x4, 0x2}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x2, 0x24, 0x16, 0x6, 0x9, 0x18, 0x1b, 0x9, 0xb, 0x24, 0x1, 0x1b, 0x3, 0x24, 0x3, 0x9]}, @NL80211_TXRATE_HT={0x4f, 0x2, [{0x1, 0x6}, {0x0, 0x4}, {0x2, 0x4}, {0x1, 0x9}, {0x3, 0x6}, {0x2, 0x1}, {0x7, 0xa}, {0x1, 0x7}, {0x6, 0x8}, {0x0, 0x3}, {0x5}, {0x0, 0x7}, {0x0, 0xa}, {0x2, 0x7}, {0x6, 0x9}, {0x7, 0x9}, {0x1, 0x1}, {0x0, 0x9}, {0x6, 0x9}, {0x6, 0x3}, {0x2, 0x2}, {0x4, 0x3}, {0x6}, {0x0, 0x4}, {0x7, 0x2}, {0x5, 0x1f}, {0x3, 0xa}, {0x1}, {0x2}, {0x2, 0x3}, {}, {0x6, 0x5}, {0x6, 0x6}, {0x5}, {0x3, 0x3}, {0x7, 0x4}, {0x3, 0x1}, {0x5, 0x4}, {0x4, 0x3}, {0x7, 0x5}, {0x4, 0x7}, {0x7, 0x5}, {0x6, 0x9}, {0x5, 0x5}, {0x1, 0x2}, {0x6, 0x2}, {0x4, 0x7}, {0x0, 0x4}, {0x5, 0x7}, {0x0, 0x4}, {0x3}, {0x5}, {0x4, 0x8}, {0x0, 0x4}, {0x2, 0x3}, {0x6, 0x1}, {0x3, 0xa}, {0x0, 0x8}, {0x4}, {0x2, 0x4}, {0x1, 0x1}, {0x1}, {0x1, 0x2}, {0x1, 0x1}, {0x2, 0x9}, {0x0, 0x4}, {0x3, 0x8}, {0x2, 0x2}, {0x1, 0x8}, {0x4, 0x4}, {0x1, 0xa}, {0x2, 0xa}, {0x6, 0x4}, {0x2, 0x9}, {0x1, 0x9}]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x5, 0x1, 0x2, 0x6, 0x9, 0x1, 0x6, 0x60, 0x6c, 0x6c, 0x30, 0x18, 0x24, 0x24, 0x12, 0x30, 0x3, 0x4, 0x16, 0x12, 0xb, 0x4, 0x6, 0x9, 0x60]}]}]}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HT_OPMODE={0x6, 0x16, 0x14}, @NL80211_MESHCONF_CONNECTED_TO_AS={0x5, 0x1f, 0x1}, @NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x10}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x1}, @NL80211_MESHCONF_CONFIRM_TIMEOUT={0x6, 0x2, 0x41}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x3a}, @NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x2}]}]}, 0x268}, 0x1, 0x0, 0x0, 0x1}, 0xc010)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x48811}, 0x2000805c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/notes', 0x0, 0x0)
syz_open_dev$vbi(0x0, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000001a40)=""/102392, 0x18ff8)
gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r7 = openat$binfmt(0xffffffffffffff9c, r6, 0x42, 0x1ff)
socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
sendmmsg$inet(r0, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

kernel console output (not intermixed with test programs):

luetooth: hci3: command 0x040f tx timeout
[   58.154949][ T6178] ieee802154 phy0 wpan0: encryption failed: -22
[   58.489335][ T6194] bridge_slave_0: left allmulticast mode
[   58.491713][ T6194] bridge_slave_0: left promiscuous mode
[   58.493971][ T6194] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.509572][ T6194] bridge_slave_1: left allmulticast mode
[   58.510023][ T6195] MTD: Couldn't look up 'mountinfo': -2
[   58.512012][ T6194] bridge_slave_1: left promiscuous mode
[   58.515883][ T6194] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.517668][ T6195] netlink: 16 bytes leftover after parsing attributes in process `syz.1.47'.
[   58.527459][ T6194] bond0: (slave bond_slave_0): Releasing backup interface
[   58.535632][ T6194] bond0: (slave bond_slave_1): Releasing backup interface
[   58.551831][ T6194] team0: Port device team_slave_0 removed
[   58.557579][ T6194] team0: Port device team_slave_1 removed
[   58.559811][ T6194] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.562889][ T6194] batman_adv: batadv0: Removing interface: batadv_slave_0
[   58.584226][ T6194] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.590180][ T6194] batman_adv: batadv0: Removing interface: batadv_slave_1
[   58.607792][ T6202] team0: Mode changed to "broadcast"
[   58.612157][ T6194] vlan0: entered promiscuous mode
[   58.620534][ T6194] team0: Port device vlan0 added
[   58.632884][ T6194] FAULT_INJECTION: forcing a failure.
[   58.632884][ T6194] name failslab, interval 1, probability 0, space 0, times 1
[   58.638861][ T6194] CPU: 2 UID: 0 PID: 6194 Comm: syz.3.45 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   58.638875][ T6194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.638881][ T6194] Call Trace:
[   58.638885][ T6194]  <TASK>
[   58.638888][ T6194]  dump_stack_lvl+0x16c/0x1f0
[   58.638907][ T6194]  should_fail_ex+0x512/0x640
[   58.638925][ T6194]  should_failslab+0xc2/0x120
[   58.638939][ T6194]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   58.638951][ T6194]  ? skb_clone+0x190/0x3f0
[   58.638966][ T6194]  skb_clone+0x190/0x3f0
[   58.638979][ T6194]  netlink_deliver_tap+0xabd/0xd30
[   58.638995][ T6194]  netlink_unicast+0x5df/0x7f0
[   58.639010][ T6194]  ? __pfx_netlink_unicast+0x10/0x10
[   58.639028][ T6194]  netlink_sendmsg+0x8d1/0xdd0
[   58.639043][ T6194]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.639058][ T6194]  ? __import_iovec+0x1c8/0x660
[   58.639071][ T6194]  ____sys_sendmsg+0xa95/0xc70
[   58.639088][ T6194]  ? __pfx_____sys_sendmsg+0x10/0x10
[   58.639102][ T6194]  ? get_compat_msghdr+0x11a/0x170
[   58.639121][ T6194]  ___sys_sendmsg+0x134/0x1d0
[   58.639134][ T6194]  ? __pfx____sys_sendmsg+0x10/0x10
[   58.639162][ T6194]  __sys_sendmsg+0x16d/0x220
[   58.639175][ T6194]  ? __pfx___sys_sendmsg+0x10/0x10
[   58.639191][ T6194]  ? rcu_is_watching+0x12/0xc0
[   58.639202][ T6194]  ? rcu_is_watching+0x12/0xc0
[   58.639213][ T6194]  __do_fast_syscall_32+0x73/0x120
[   58.639229][ T6194]  do_fast_syscall_32+0x32/0x80
[   58.639245][ T6194]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   58.639258][ T6194] RIP: 0023:0xf7ff6579
[   58.639266][ T6194] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   58.639276][ T6194] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   58.639285][ T6194] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000440
[   58.639291][ T6194] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   58.639297][ T6194] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   58.639302][ T6194] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   58.639308][ T6194] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   58.639320][ T6194]  </TASK>
[   58.639449][ T6194] tipc: Started in network mode
[   58.715615][ T6194] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   58.718214][ T6194] tipc: Enabled bearer <eth:team0>, priority 0
[   58.882369][ T6220] ieee802154 phy0 wpan0: encryption failed: -22
[   59.438988][ T6227] netlink: 92 bytes leftover after parsing attributes in process `syz.0.54'.
[   59.833408][ T5799] tipc: Node number set to 11578026
[   60.101430][ T5942] Bluetooth: hci1: command 0x040f tx timeout
[   60.101466][   T67] Bluetooth: hci0: command 0x040f tx timeout
[   60.181448][   T67] Bluetooth: hci3: command 0x040f tx timeout
[   60.191443][   T67] Bluetooth: hci2: command 0x040f tx timeout
[   60.318233][ T6223] ieee802154 phy0 wpan0: encryption failed: -22
[   60.958148][ T6259] netlink: 4 bytes leftover after parsing attributes in process `syz.0.61'.
[   61.010888][ T6260] netlink: 8 bytes leftover after parsing attributes in process `syz.0.61'.
[   61.722299][ T6274] ieee802154 phy0 wpan0: encryption failed: -22
[   62.216669][ T6307] netlink: 12 bytes leftover after parsing attributes in process `syz.3.73'.
[   62.877150][ T6344] bridge_slave_0: left allmulticast mode
[   62.879084][ T6344] bridge_slave_0: left promiscuous mode
[   62.881084][ T6344] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.887101][ T6344] bridge_slave_1: left allmulticast mode
[   62.889007][ T6344] bridge_slave_1: left promiscuous mode
[   62.890929][ T6344] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.898036][ T6344] bond0: (slave bond_slave_0): Releasing backup interface
[   62.904002][ T6344] bond0: (slave bond_slave_1): Releasing backup interface
[   62.915561][ T6344] team0: Port device team_slave_0 removed
[   62.920746][ T6344] team0: Port device team_slave_1 removed
[   62.925008][ T6344] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   62.927478][ T6344] batman_adv: batadv0: Removing interface: batadv_slave_0
[   62.932443][ T6344] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   62.934851][ T6344] batman_adv: batadv0: Removing interface: batadv_slave_1
[   62.957176][ T6347] team0: Mode changed to "broadcast"
[   62.982602][ T6344] vlan0: entered promiscuous mode
[   62.989074][ T6344] team0: Port device vlan0 added
[   62.994227][ T6344] tipc: Started in network mode
[   62.995885][ T6344] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   62.998366][ T6344] tipc: Enabled bearer <eth:team0>, priority 0
[   63.188166][ T6357] ieee802154 phy0 wpan0: encryption failed: -22
[   63.978161][ T6388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.90'.
[   64.040873][ T6390] netlink: 8 bytes leftover after parsing attributes in process `syz.0.90'.
[   64.147584][ T6157] tipc: Node number set to 11578026
[   64.384734][ T6402] No source specified
[   64.657204][ T6406] netlink: 4 bytes leftover after parsing attributes in process `syz.2.92'.
[   64.665510][ T6406] netlink: 8 bytes leftover after parsing attributes in process `syz.2.92'.
[   64.752827][ T6410] netlink: 'syz.3.95': attribute type 10 has an invalid length.
[   64.772054][ T6410] team0: Device veth0_vlan is already a lower device of the team interface
[   64.777227][ T1140] tipc: Resetting bearer <eth:team0>
[   64.825364][   T40] audit: type=1804 audit(1748301111.588:2): pid=6411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.96" name="/newroot/19/file0/file0" dev="9p" ino=35913897 res=1 errno=0
[   65.562921][ T6422] ieee802154 phy0 wpan0: encryption failed: -22
[   66.624562][ T6433] process 'syz.2.103' launched '/dev/fd/5' with NULL argv: empty string added
[   66.886714][ T6443] netlink: 4 bytes leftover after parsing attributes in process `syz.1.104'.
[   66.950067][ T6446] netlink: 8 bytes leftover after parsing attributes in process `syz.1.104'.
[   67.963976][ T6471] ieee802154 phy0 wpan0: encryption failed: -22
[   68.193616][ T6478] random: crng reseeded on system resumption
[   68.229941][ T6478] pimreg: entered allmulticast mode
[   68.871258][ T6492] netlink: 4 bytes leftover after parsing attributes in process `syz.3.119'.
[   68.879999][ T6492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.119'.
[   69.088077][ T6497] netlink: 4 bytes leftover after parsing attributes in process `syz.1.121'.
[   69.092420][ T6497] netlink: 8 bytes leftover after parsing attributes in process `syz.1.121'.
[   69.103133][ T6494] netlink: 4 bytes leftover after parsing attributes in process `syz.2.118'.
[   69.106603][ T6494] netlink: 8 bytes leftover after parsing attributes in process `syz.2.118'.
[   69.480945][ T6500] fuse: Unknown parameter 'Od'
[   69.516209][ T6510] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   69.519281][ T6510] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   69.524314][ T6510] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   69.527853][ T6510] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   69.532385][ T6510] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[   69.536301][ T6510] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[   69.540183][ T6510] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[   69.545782][ T6510] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[   69.549456][ T6510] geneve2: entered promiscuous mode
[   69.551258][ T6510] geneve2: entered allmulticast mode
[   69.628599][ T6508] FAULT_INJECTION: forcing a failure.
[   69.628599][ T6508] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   69.633319][ T6508] CPU: 0 UID: 0 PID: 6508 Comm: syz.3.124 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   69.633332][ T6508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.633338][ T6508] Call Trace:
[   69.633342][ T6508]  <TASK>
[   69.633346][ T6508]  dump_stack_lvl+0x16c/0x1f0
[   69.633365][ T6508]  should_fail_ex+0x512/0x640
[   69.633382][ T6508]  _copy_from_user+0x2e/0xd0
[   69.633392][ T6508]  userfaultfd_register+0x19a/0xd70
[   69.633411][ T6508]  ? __pfx_userfaultfd_register+0x10/0x10
[   69.633426][ T6508]  ? tomoyo_path_number_perm+0x295/0x580
[   69.633444][ T6508]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   69.633459][ T6508]  userfaultfd_ioctl+0x8ea/0x38e0
[   69.633471][ T6508]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   69.633487][ T6508]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[   69.633506][ T6508]  ? find_held_lock+0x2b/0x80
[   69.633516][ T6508]  ? hook_file_ioctl_common+0x145/0x410
[   69.633531][ T6508]  ? __fget_files+0x20e/0x3c0
[   69.633540][ T6508]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[   69.633553][ T6508]  ? compat_ptr_ioctl+0x6e/0xa0
[   69.633566][ T6508]  compat_ptr_ioctl+0x6e/0xa0
[   69.633578][ T6508]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[   69.633592][ T6508]  __ia32_compat_sys_ioctl+0x24f/0x360
[   69.633607][ T6508]  __do_fast_syscall_32+0x73/0x120
[   69.633624][ T6508]  do_fast_syscall_32+0x32/0x80
[   69.633639][ T6508]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   69.633652][ T6508] RIP: 0023:0xf7ff6579
[   69.633660][ T6508] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   69.633670][ T6508] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   69.633679][ T6508] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c020aa00
[   69.633685][ T6508] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[   69.633691][ T6508] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   69.633696][ T6508] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   69.633701][ T6508] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   69.633713][ T6508]  </TASK>
[   69.738456][ T6517] ieee802154 phy0 wpan0: encryption failed: -22
[   70.551308][ T6541] netlink: 4 bytes leftover after parsing attributes in process `syz.3.133'.
[   70.555770][ T6541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.133'.
[   70.827026][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[   70.829307][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[   70.907852][ T6548] ieee802154 phy0 wpan0: encryption failed: -22
[   71.921636][ T6560] netlink: 4 bytes leftover after parsing attributes in process `syz.0.135'.
[   71.922545][ T6561] netlink: 4 bytes leftover after parsing attributes in process `syz.3.136'.
[   71.929931][ T6560] netlink: 8 bytes leftover after parsing attributes in process `syz.0.135'.
[   71.958076][ T6559] netlink: 8 bytes leftover after parsing attributes in process `syz.3.136'.
[   72.379168][ T6573] tmpfs: Bad value for 'mpol'
[   72.601009][ T6586] fuse: Unknown parameter 'Od'
[   73.317740][ T6601] ieee802154 phy0 wpan0: encryption failed: -22
[   73.912291][ T6593] ieee802154 phy0 wpan0: encryption failed: -22
[   74.121510][ T6607] netlink: 4 bytes leftover after parsing attributes in process `syz.0.158'.
[   75.014908][ T6634] netlink: 4 bytes leftover after parsing attributes in process `syz.1.156'.
[   75.351002][ T6643] ieee802154 phy0 wpan0: encryption failed: -22
[   75.433839][ T6651] warning: `syz.2.165' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   76.380736][ T6685] netlink: 32 bytes leftover after parsing attributes in process `syz.2.177'.
[   76.560405][ T6694] netlink: 4 bytes leftover after parsing attributes in process `syz.2.179'.
[   76.609815][ T6696] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   77.755243][ T6726] ptm ptm30: ldisc open failed (-12), clearing slot 30
[   78.074969][ T6721] ieee802154 phy0 wpan0: encryption failed: -22
[   78.220745][ T6739] FAULT_INJECTION: forcing a failure.
[   78.220745][ T6739] name failslab, interval 1, probability 0, space 0, times 0
[   78.225455][ T6739] CPU: 2 UID: 0 PID: 6739 Comm: syz.2.194 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   78.225468][ T6739] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.225473][ T6739] Call Trace:
[   78.225477][ T6739]  <TASK>
[   78.225480][ T6739]  dump_stack_lvl+0x16c/0x1f0
[   78.225499][ T6739]  should_fail_ex+0x512/0x640
[   78.225514][ T6739]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   78.225528][ T6739]  should_failslab+0xc2/0x120
[   78.225541][ T6739]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   78.225553][ T6739]  ? io_submit_one+0x122/0x1da0
[   78.225570][ T6739]  io_submit_one+0x122/0x1da0
[   78.225586][ T6739]  ? __lock_acquire+0xaa4/0x1ba0
[   78.225602][ T6739]  ? __pfx_io_submit_one+0x10/0x10
[   78.225622][ T6739]  ? __might_fault+0xe3/0x190
[   78.225633][ T6739]  ? __might_fault+0x13b/0x190
[   78.225647][ T6739]  ? __ia32_compat_sys_io_submit+0x1ad/0x3a0
[   78.225663][ T6739]  __ia32_compat_sys_io_submit+0x1ad/0x3a0
[   78.225680][ T6739]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[   78.225696][ T6739]  ? fput+0x70/0xf0
[   78.225712][ T6739]  ? rcu_is_watching+0x12/0xc0
[   78.225724][ T6739]  __do_fast_syscall_32+0x73/0x120
[   78.225740][ T6739]  do_fast_syscall_32+0x32/0x80
[   78.225756][ T6739]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   78.225768][ T6739] RIP: 0023:0xf712e579
[   78.225776][ T6739] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   78.225785][ T6739] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[   78.225795][ T6739] RAX: ffffffffffffffda RBX: 00000000f7ffc000 RCX: 0000000000000019
[   78.225801][ T6739] RDX: 00000000800003c0 RSI: 0000000000000000 RDI: 0000000000000000
[   78.225807][ T6739] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   78.225812][ T6739] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   78.225817][ T6739] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   78.225830][ T6739]  </TASK>
[   78.845048][ T6759] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 6759 comm: syz.0.201)
[   78.849104][   T40] audit: type=1800 audit(1748301125.608:3): pid=6759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.201" name="blkio.throttle.io_service_bytes_recursive" dev="mqueue" ino=12594 res=0 errno=0
[   79.058298][ T6774] binder: 6773:6774 ioctl c0306201 80000600 returned -14
[   79.191430][ T6004] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   79.341439][ T6004] usb 7-1: device descriptor read/64, error -71
[   79.449833][ T6790] netlink: 4 bytes leftover after parsing attributes in process `syz.3.209'.
[   79.454868][ T6790] netlink: 8 bytes leftover after parsing attributes in process `syz.3.209'.
[   79.591466][ T6004] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   79.731417][ T6004] usb 7-1: device descriptor read/64, error -71
[   79.851583][ T6004] usb usb7-port1: attempt power cycle
[   80.201410][ T6004] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   80.221836][ T6004] usb 7-1: device descriptor read/8, error -71
[   80.463264][ T6004] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   80.494715][ T6004] usb 7-1: device descriptor read/8, error -71
[   80.620968][ T6004] usb usb7-port1: unable to enumerate USB device
[   80.907274][ T6816] netlink: 'syz.0.216': attribute type 6 has an invalid length.
[   80.910057][ T6816] netlink: 32 bytes leftover after parsing attributes in process `syz.0.216'.
[   81.078982][ T1331] cfg80211: failed to load regulatory.db
[   81.755477][ T6843] netlink: 8 bytes leftover after parsing attributes in process `syz.2.224'.
[   81.887468][ T6851] syz.2.227: attempt to access beyond end of device
[   81.887468][ T6851] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[   82.069693][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.0.222'.
[   82.075327][ T6859] netlink: 8 bytes leftover after parsing attributes in process `syz.0.222'.
[   83.856607][ T6864] ieee802154 phy0 wpan0: encryption failed: -22
[   84.532278][ T6918] netlink: 4 bytes leftover after parsing attributes in process `syz.1.241'.
[   84.542872][ T6918] netlink: 8 bytes leftover after parsing attributes in process `syz.1.241'.
[   84.771393][ T1331] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[   84.933604][ T1331] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   84.936870][ T1331] usb 8-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[   84.939517][ T1331] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.948569][ T1331] usb 8-1: config 0 descriptor??
[   85.071204][ T6938] FAULT_INJECTION: forcing a failure.
[   85.071204][ T6938] name failslab, interval 1, probability 0, space 0, times 0
[   85.078847][ T6938] CPU: 2 UID: 0 PID: 6938 Comm: syz.2.250 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   85.078869][ T6938] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.078878][ T6938] Call Trace:
[   85.078884][ T6938]  <TASK>
[   85.078890][ T6938]  dump_stack_lvl+0x16c/0x1f0
[   85.078917][ T6938]  should_fail_ex+0x512/0x640
[   85.078939][ T6938]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   85.078971][ T6938]  should_failslab+0xc2/0x120
[   85.078991][ T6938]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   85.079007][ T6938]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[   85.079023][ T6938]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   85.079042][ T6938]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   85.079059][ T6938]  mmu_topup_memory_caches+0x25/0x170
[   85.079084][ T6938]  kvm_mmu_load+0xd9/0x22a0
[   85.079106][ T6938]  ? kvm_apic_has_interrupt+0xb5/0x190
[   85.079125][ T6938]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   85.079143][ T6938]  ? __pfx_kvm_guest_time_update+0x10/0x10
[   85.079160][ T6938]  ? __pfx_kvm_mmu_load+0x10/0x10
[   85.079181][ T6938]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   85.079198][ T6938]  ? kvm_check_and_inject_events+0x71c/0x1310
[   85.079224][ T6938]  vcpu_run+0x3446/0x5390
[   85.079246][ T6938]  ? __lock_acquire+0xaa4/0x1ba0
[   85.079271][ T6938]  ? __pfx_vcpu_run+0x10/0x10
[   85.079297][ T6938]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[   85.079316][ T6938]  ? __local_bh_enable_ip+0xa4/0x120
[   85.079339][ T6938]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[   85.079359][ T6938]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[   85.079383][ T6938]  kvm_vcpu_ioctl+0x5e9/0x1680
[   85.079408][ T6938]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   85.079430][ T6938]  ? tomoyo_path_number_perm+0x18d/0x580
[   85.079452][ T6938]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   85.079466][ T6938]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   85.079488][ T6938]  ? do_vfs_ioctl+0x512/0x1990
[   85.079511][ T6938]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   85.079544][ T6938]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[   85.079567][ T6938]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[   85.079589][ T6938]  ? __fget_files+0x20e/0x3c0
[   85.079602][ T6938]  ? __pfx_fput+0x10/0x10
[   85.079624][ T6938]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[   85.079644][ T6938]  __ia32_compat_sys_ioctl+0x24f/0x360
[   85.079668][ T6938]  __do_fast_syscall_32+0x73/0x120
[   85.079693][ T6938]  do_fast_syscall_32+0x32/0x80
[   85.079713][ T6938]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   85.079729][ T6938] RIP: 0023:0xf712e579
[   85.079742][ T6938] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   85.079775][ T6938] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   85.079789][ T6938] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[   85.079798][ T6938] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   85.079807][ T6938] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   85.079815][ T6938] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   85.079820][ T6938] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   85.079840][ T6938]  </TASK>
[   85.202580][ T1331] usbhid 8-1:0.0: can't add hid device: -71
[   85.204521][ T1331] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[   85.209696][ T1331] usb 8-1: USB disconnect, device number 2
[   85.632231][ T6157] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   85.811412][ T6157] usb 8-1: Using ep0 maxpacket: 32
[   85.819353][ T6157] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   85.832095][ T6157] usb 8-1: New USB device found, idVendor=0f11, idProduct=1821, bcdDevice= 0.40
[   85.837406][ T6157] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.851647][ T6157] usb 8-1: config 0 descriptor??
[   86.294771][ T6157] usbhid 8-1:0.0: can't add hid device: -71
[   86.300410][ T6157] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[   86.317068][ T6157] usb 8-1: USB disconnect, device number 3
[   87.540843][ T7014] FAULT_INJECTION: forcing a failure.
[   87.540843][ T7014] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.545019][ T7014] CPU: 1 UID: 0 PID: 7014 Comm: syz.0.273 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   87.545033][ T7014] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.545039][ T7014] Call Trace:
[   87.545042][ T7014]  <TASK>
[   87.545046][ T7014]  dump_stack_lvl+0x16c/0x1f0
[   87.545065][ T7014]  should_fail_ex+0x512/0x640
[   87.545083][ T7014]  strncpy_from_user+0x3b/0x2e0
[   87.545098][ T7014]  strncpy_from_user_nofault+0x7f/0x180
[   87.545114][ T7014]  bpf_probe_read_compat_str+0xf1/0x170
[   87.545128][ T7014]  bpf_prog_d73d3bb03d5a037f+0x3e/0x44
[   87.545137][ T7014]  bpf_trace_run2+0x230/0x590
[   87.545150][ T7014]  ? __pfx_bpf_trace_run2+0x10/0x10
[   87.545163][ T7014]  ? tomoyo_path_number_perm+0x470/0x580
[   87.545184][ T7014]  kfree+0x236/0x4d0
[   87.545196][ T7014]  tomoyo_path_number_perm+0x470/0x580
[   87.545210][ T7014]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   87.545236][ T7014]  ? find_held_lock+0x2b/0x80
[   87.545245][ T7014]  ? hook_file_ioctl_common+0x145/0x410
[   87.545260][ T7014]  ? __fget_files+0x20e/0x3c0
[   87.545269][ T7014]  ? __pfx_fput+0x10/0x10
[   87.545283][ T7014]  security_file_ioctl_compat+0x9b/0x240
[   87.545298][ T7014]  __ia32_compat_sys_ioctl+0xc3/0x360
[   87.545315][ T7014]  __do_fast_syscall_32+0x73/0x120
[   87.545332][ T7014]  do_fast_syscall_32+0x32/0x80
[   87.545347][ T7014]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   87.545360][ T7014] RIP: 0023:0xf707e579
[   87.545368][ T7014] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   87.545378][ T7014] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   87.545387][ T7014] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 000000000000541c
[   87.545393][ T7014] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[   87.545399][ T7014] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   87.545404][ T7014] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   87.545410][ T7014] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   87.545422][ T7014]  </TASK>
[   88.016248][ T7029] ieee802154 phy0 wpan0: encryption failed: -22
[   88.355864][ T7032] FAULT_INJECTION: forcing a failure.
[   88.355864][ T7032] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.364473][ T7032] CPU: 2 UID: 0 PID: 7032 Comm: syz.1.278 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   88.364489][ T7032] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.364495][ T7032] Call Trace:
[   88.364499][ T7032]  <TASK>
[   88.364503][ T7032]  dump_stack_lvl+0x16c/0x1f0
[   88.364522][ T7032]  should_fail_ex+0x512/0x640
[   88.364541][ T7032]  _copy_to_user+0x32/0xd0
[   88.364551][ T7032]  simple_read_from_buffer+0xcb/0x170
[   88.364569][ T7032]  proc_fail_nth_read+0x197/0x270
[   88.364584][ T7032]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   88.364599][ T7032]  ? rw_verify_area+0xcf/0x680
[   88.364614][ T7032]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   88.364628][ T7032]  vfs_read+0x1de/0xc70
[   88.364640][ T7032]  ? __pfx___mutex_lock+0x10/0x10
[   88.364656][ T7032]  ? __pfx_vfs_read+0x10/0x10
[   88.364669][ T7032]  ? __fget_files+0x20e/0x3c0
[   88.364682][ T7032]  ksys_read+0x12a/0x240
[   88.364691][ T7032]  ? __pfx_ksys_read+0x10/0x10
[   88.364702][ T7032]  ? rcu_is_watching+0x12/0xc0
[   88.364714][ T7032]  __do_fast_syscall_32+0x73/0x120
[   88.364731][ T7032]  do_fast_syscall_32+0x32/0x80
[   88.364746][ T7032]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   88.364759][ T7032] RIP: 0023:0xf7fa2579
[   88.364767][ T7032] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   88.364777][ T7032] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   88.364787][ T7032] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50c6620
[   88.364793][ T7032] RDX: 000000000000000f RSI: 00000000f7432ff4 RDI: 0000000000000000
[   88.364798][ T7032] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   88.364803][ T7032] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   88.364809][ T7032] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   88.364821][ T7032]  </TASK>
[   88.777123][ T7047] =======================================================
[   88.777123][ T7047] WARNING: The mand mount option has been deprecated and
[   88.777123][ T7047]          and is ignored by this kernel. Remove the mand
[   88.777123][ T7047]          option from the mount to silence this warning.
[   88.777123][ T7047] =======================================================
[   88.796870][ T7047] overlayfs: conflicting lowerdir path
[   89.258677][ T7064] FAULT_INJECTION: forcing a failure.
[   89.258677][ T7064] name failslab, interval 1, probability 0, space 0, times 0
[   89.262672][ T7064] CPU: 2 UID: 0 PID: 7064 Comm: syz.3.287 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   89.262685][ T7064] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.262702][ T7064] Call Trace:
[   89.262707][ T7064]  <TASK>
[   89.262711][ T7064]  dump_stack_lvl+0x16c/0x1f0
[   89.262731][ T7064]  should_fail_ex+0x512/0x640
[   89.262747][ T7064]  ? __kmalloc_noprof+0xbf/0x510
[   89.262765][ T7064]  ? nft_trans_alloc_gfp+0x26/0x2e0
[   89.262775][ T7064]  should_failslab+0xc2/0x120
[   89.262789][ T7064]  __kmalloc_noprof+0xd2/0x510
[   89.262799][ T7064]  ? lockdep_init_map_type+0x5c/0x280
[   89.262816][ T7064]  nft_trans_alloc_gfp+0x26/0x2e0
[   89.262828][ T7064]  nf_tables_newtable+0x1387/0x1b40
[   89.262848][ T7064]  ? __pfx_nf_tables_newtable+0x10/0x10
[   89.262866][ T7064]  ? __nla_parse+0x40/0x60
[   89.262879][ T7064]  nfnetlink_rcv_batch+0x1908/0x2350
[   89.262907][ T7064]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[   89.262921][ T7064]  ? consume_skb+0xcc/0x100
[   89.262936][ T7064]  ? find_held_lock+0x2b/0x80
[   89.262946][ T7064]  ? __local_bh_enable_ip+0xa4/0x120
[   89.262958][ T7064]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.262981][ T7064]  ? __pfx___dev_queue_xmit+0x10/0x10
[   89.263005][ T7064]  ? __nla_parse+0x40/0x60
[   89.263018][ T7064]  nfnetlink_rcv+0x3c1/0x430
[   89.263032][ T7064]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   89.263051][ T7064]  netlink_unicast+0x53d/0x7f0
[   89.263067][ T7064]  ? __pfx_netlink_unicast+0x10/0x10
[   89.263084][ T7064]  netlink_sendmsg+0x8d1/0xdd0
[   89.263100][ T7064]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.263115][ T7064]  ? __import_iovec+0x1c8/0x660
[   89.263128][ T7064]  ____sys_sendmsg+0xa95/0xc70
[   89.263145][ T7064]  ? __pfx_____sys_sendmsg+0x10/0x10
[   89.263160][ T7064]  ? get_compat_msghdr+0x11a/0x170
[   89.263178][ T7064]  ___sys_sendmsg+0x134/0x1d0
[   89.263192][ T7064]  ? __pfx____sys_sendmsg+0x10/0x10
[   89.263222][ T7064]  __sys_sendmsg+0x16d/0x220
[   89.263235][ T7064]  ? __pfx___sys_sendmsg+0x10/0x10
[   89.263253][ T7064]  ? rcu_is_watching+0x12/0xc0
[   89.263265][ T7064]  __do_fast_syscall_32+0x73/0x120
[   89.263281][ T7064]  do_fast_syscall_32+0x32/0x80
[   89.263297][ T7064]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.263310][ T7064] RIP: 0023:0xf7ff6579
[   89.263318][ T7064] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.263328][ T7064] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   89.263338][ T7064] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[   89.263344][ T7064] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.263349][ T7064] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.263355][ T7064] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.263360][ T7064] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.263373][ T7064]  </TASK>
[   89.477624][ T7068] netlink: 4 bytes leftover after parsing attributes in process `syz.0.286'.
[   89.483405][ T7068] netlink: 8 bytes leftover after parsing attributes in process `syz.0.286'.
[   89.666835][ T7075] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[   89.932163][ T7090] ptm ptm5: ldisc open failed (-12), clearing slot 5
[   90.425389][ T7069] ieee802154 phy0 wpan0: encryption failed: -22
[   90.615271][ T7117] FAULT_INJECTION: forcing a failure.
[   90.615271][ T7117] name failslab, interval 1, probability 0, space 0, times 0
[   90.619786][ T7117] CPU: 0 UID: 0 PID: 7117 Comm: syz.3.302 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   90.619806][ T7117] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.619815][ T7117] Call Trace:
[   90.619821][ T7117]  <TASK>
[   90.619827][ T7117]  dump_stack_lvl+0x16c/0x1f0
[   90.619854][ T7117]  should_fail_ex+0x512/0x640
[   90.619876][ T7117]  ? __pfx_fuse_dev_poll+0x10/0x10
[   90.619899][ T7117]  ? io_cache_alloc_new+0x45/0xf0
[   90.619914][ T7117]  should_failslab+0xc2/0x120
[   90.619934][ T7117]  __kmalloc_noprof+0xd2/0x510
[   90.619956][ T7117]  ? io_rw_init_file+0x71f/0xa20
[   90.619978][ T7117]  io_cache_alloc_new+0x45/0xf0
[   90.619994][ T7117]  io_arm_poll_handler+0x941/0xca0
[   90.620020][ T7117]  ? __pfx_io_arm_poll_handler+0x10/0x10
[   90.620048][ T7117]  ? __io_issue_sqe+0x14a/0x7c0
[   90.620067][ T7117]  io_queue_async+0x88/0x3f0
[   90.620085][ T7117]  io_submit_sqes+0x1720/0x25d0
[   90.620117][ T7117]  __do_sys_io_uring_enter+0xd6a/0x1630
[   90.620141][ T7117]  ? __fget_files+0x20e/0x3c0
[   90.620155][ T7117]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[   90.620178][ T7117]  ? fput+0x70/0xf0
[   90.620196][ T7117]  ? ksys_write+0x1b9/0x240
[   90.620211][ T7117]  ? __pfx_ksys_write+0x10/0x10
[   90.620228][ T7117]  ? rcu_is_watching+0x12/0xc0
[   90.620247][ T7117]  __do_fast_syscall_32+0x73/0x120
[   90.620272][ T7117]  do_fast_syscall_32+0x32/0x80
[   90.620295][ T7117]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   90.620313][ T7117] RIP: 0023:0xf7ff6579
[   90.620325][ T7117] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   90.620339][ T7117] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[   90.620354][ T7117] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000000047ba
[   90.620364][ T7117] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   90.620372][ T7117] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   90.620381][ T7117] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   90.620390][ T7117] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   90.620411][ T7117]  </TASK>
[   90.683101][ T7120] netlink: 8 bytes leftover after parsing attributes in process `syz.1.303'.
[   90.695448][ T7120] netlink: 4 bytes leftover after parsing attributes in process `syz.1.303'.
[   90.698146][ T7120] netlink: 'syz.1.303': attribute type 13 has an invalid length.
[   90.700570][ T7120] netlink: 'syz.1.303': attribute type 14 has an invalid length.
[   91.352136][ T7147] program syz.1.310 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   91.363003][    C2] sr 2:0:0:0: [sr0] tag#12 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[   91.366327][    C2] sr 2:0:0:0: [sr0] tag#12 CDB: opcode=0x95 95 00 00 00 00 00 00 00 80 14 00 80 00 00 00 00
[   92.420323][ T7169] netlink: 4 bytes leftover after parsing attributes in process `syz.3.317'.
[   92.424869][ T7169] netlink: 8 bytes leftover after parsing attributes in process `syz.3.317'.
[   92.522666][ T7175] netlink: 4 bytes leftover after parsing attributes in process `syz.0.316'.
[   92.536507][ T7175] netlink: 8 bytes leftover after parsing attributes in process `syz.0.316'.
[   92.716550][ T7185] netlink: 36 bytes leftover after parsing attributes in process `syz.2.322'.
[   92.874661][  T835] IPVS: starting estimator thread 0...
[   92.971507][ T7197] IPVS: using max 47 ests per chain, 112800 per kthread
[   93.843864][ T7221] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   94.093054][ T7233] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   94.179813][ T7211] syz.0.328 (7211) used greatest stack depth: 19720 bytes left
[   94.217593][ T7235] netlink: 4 bytes leftover after parsing attributes in process `syz.2.335'.
[   94.223712][ T7235] netlink: 8 bytes leftover after parsing attributes in process `syz.2.335'.
[   94.789127][ T7237] ieee802154 phy0 wpan0: encryption failed: -22
[   95.288579][  T835] libceph: connect (1)[c::]:6789 error -101
[   95.291754][  T835] libceph: mon0 (1)[c::]:6789 connect error
[   95.334249][ T7253] ceph: No mds server is up or the cluster is laggy
[   95.379056][ T7264] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[   95.381245][ T7264] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   95.386523][ T7264] vhci_hcd vhci_hcd.0: Device attached
[   95.411604][ T7253] block nbd1: Device being setup by another task
[   95.621400][ T6004] usb 43-1: new high-speed USB device number 2 using vhci_hcd
[   95.780689][ T7270] FAULT_INJECTION: forcing a failure.
[   95.780689][ T7270] name failslab, interval 1, probability 0, space 0, times 0
[   95.784858][ T7270] CPU: 3 UID: 0 PID: 7270 Comm: syz.2.345 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[   95.784871][ T7270] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.784878][ T7270] Call Trace:
[   95.784881][ T7270]  <TASK>
[   95.784885][ T7270]  dump_stack_lvl+0x16c/0x1f0
[   95.784904][ T7270]  should_fail_ex+0x512/0x640
[   95.784920][ T7270]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   95.784933][ T7270]  should_failslab+0xc2/0x120
[   95.784946][ T7270]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   95.784958][ T7270]  ? __alloc_skb+0x2b2/0x380
[   95.784972][ T7270]  __alloc_skb+0x2b2/0x380
[   95.784983][ T7270]  ? __pfx___alloc_skb+0x10/0x10
[   95.784996][ T7270]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   95.785013][ T7270]  netlink_alloc_large_skb+0x69/0x130
[   95.785027][ T7270]  netlink_sendmsg+0x6a1/0xdd0
[   95.785043][ T7270]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.785058][ T7270]  ? __import_iovec+0x1c8/0x660
[   95.785070][ T7270]  ____sys_sendmsg+0xa95/0xc70
[   95.785087][ T7270]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.785102][ T7270]  ? get_compat_msghdr+0x11a/0x170
[   95.785124][ T7270]  ___sys_sendmsg+0x134/0x1d0
[   95.785138][ T7270]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.785166][ T7270]  __sys_sendmsg+0x16d/0x220
[   95.785179][ T7270]  ? __pfx___sys_sendmsg+0x10/0x10
[   95.785195][ T7270]  ? rcu_is_watching+0x12/0xc0
[   95.785207][ T7270]  ? rcu_is_watching+0x12/0xc0
[   95.785218][ T7270]  __do_fast_syscall_32+0x73/0x120
[   95.785235][ T7270]  do_fast_syscall_32+0x32/0x80
[   95.785250][ T7270]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.785264][ T7270] RIP: 0023:0xf712e579
[   95.785272][ T7270] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.785281][ T7270] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   95.785291][ T7270] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[   95.785297][ T7270] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   95.785302][ T7270] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.785307][ T7270] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.785313][ T7270] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.785325][ T7270]  </TASK>
[   95.884755][ T7246] block nbd1: shutting down sockets
[   95.939012][ T7265] vhci_hcd: connection reset by peer
[   95.943694][ T1140] vhci_hcd: stop threads
[   95.945421][ T1140] vhci_hcd: release socket
[   95.947472][ T1140] vhci_hcd: disconnect device
[   96.096474][ T7281] tmpfs: Bad value for 'mpol'
[   96.521884][ T7290] ieee802154 phy0 wpan0: encryption failed: -22
[   97.300989][ T7303] netlink: 16 bytes leftover after parsing attributes in process `syz.1.356'.
[   97.609230][ T7313] XFS (nullb0): Invalid superblock magic number
[   98.597629][ T7331] ieee802154 phy0 wpan0: encryption failed: -22
[   98.644617][ T7336] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   98.751600][ T5942] Bluetooth: hci3: command 0x040f tx timeout
[   98.891447][ T5979] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   99.031397][ T5979] usb 7-1: device descriptor read/64, error -71
[   99.242731][ T7348] program syz.1.369 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   99.271544][ T5979] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   99.401410][ T5979] usb 7-1: device descriptor read/64, error -71
[   99.449343][ T7359] Bluetooth: MGMT ver 1.23
[   99.521725][ T5979] usb usb7-port1: attempt power cycle
[   99.616861][ T7371] netlink: 20 bytes leftover after parsing attributes in process `syz.3.377'.
[   99.620970][ T7371] netlink: 20 bytes leftover after parsing attributes in process `syz.3.377'.
[   99.731044][ T7368] netlink: 68 bytes leftover after parsing attributes in process `syz.1.376'.
[   99.734374][ T7368] netlink: 24 bytes leftover after parsing attributes in process `syz.1.376'.
[   99.737205][ T7368] netlink: 24 bytes leftover after parsing attributes in process `syz.1.376'.
[   99.741502][ T7368] netlink: 8 bytes leftover after parsing attributes in process `syz.1.376'.
[   99.861531][ T5979] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   99.881886][ T5979] usb 7-1: device descriptor read/8, error -71
[  100.121481][ T5979] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  100.157751][ T5979] usb 7-1: device descriptor read/8, error -71
[  100.281681][ T5979] usb usb7-port1: unable to enumerate USB device
[  100.555314][ T7375] ieee802154 phy0 wpan0: encryption failed: -22
[  100.635909][ T7402] 9pnet_fd: Insufficient options for proto=fd
[  100.644573][ T7402] netlink: 'syz.1.387': attribute type 1 has an invalid length.
[  100.647078][ T7402] netlink: 224 bytes leftover after parsing attributes in process `syz.1.387'.
[  100.672412][ T7402] block device autoloading is deprecated and will be removed.
[  100.675533][ T7402] syz.1.387: attempt to access beyond end of device
[  100.675533][ T7402] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  100.686843][ T7402] overlay: Bad value for 'workdir'
[  100.731492][ T6004] vhci_hcd: vhci_device speed not set
[  101.448612][ T7415] netlink: 4 bytes leftover after parsing attributes in process `syz.0.390'.
[  101.453839][ T7415] netlink: 8 bytes leftover after parsing attributes in process `syz.0.390'.
[  102.164011][ T7433] Process accounting resumed
[  102.201462][  T835] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  102.363540][  T835] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  102.366686][  T835] usb 6-1: config 0 has no interfaces?
[  102.368389][  T835] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  102.371120][  T835] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.375581][  T835] usb 6-1: config 0 descriptor??
[  102.548682][ T7438] ieee802154 phy0 wpan0: encryption failed: -22
[  102.650091][ T7443] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  102.654917][ T7443] netlink: 'syz.1.394': attribute type 10 has an invalid length.
[  102.657356][ T7443] netlink: 40 bytes leftover after parsing attributes in process `syz.1.394'.
[  102.976475][ T7443] team0: Port device geneve0 added
[  104.171476][  T835] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  104.331419][  T835] usb 8-1: Using ep0 maxpacket: 8
[  104.334662][  T835] usb 8-1: config 0 has no interfaces?
[  104.336629][  T835] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  104.341645][  T835] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.368080][  T835] usb 8-1: config 0 descriptor??
[  104.779731][ T7399] usb 6-1: USB disconnect, device number 2
[  105.149155][ T7484] fuse: Bad value for 'group_id'
[  105.150769][ T7484] fuse: Bad value for 'group_id'
[  105.158203][ T7484] netlink: 'syz.0.409': attribute type 1 has an invalid length.
[  105.216991][ T7484] 8021q: adding VLAN 0 to HW filter on device bond2
[  105.221726][ T7484] bond1: (slave bond2): making interface the new active one
[  105.225297][ T7484] bond1: (slave bond2): Enslaving as an active interface with an up link
[  105.353152][ T7495] FAULT_INJECTION: forcing a failure.
[  105.353152][ T7495] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.357431][ T7495] CPU: 0 UID: 0 PID: 7495 Comm: syz.2.412 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  105.357444][ T7495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.357450][ T7495] Call Trace:
[  105.357454][ T7495]  <TASK>
[  105.357458][ T7495]  dump_stack_lvl+0x16c/0x1f0
[  105.357477][ T7495]  should_fail_ex+0x512/0x640
[  105.357495][ T7495]  _copy_to_user+0x32/0xd0
[  105.357506][ T7495]  simple_read_from_buffer+0xcb/0x170
[  105.357523][ T7495]  proc_fail_nth_read+0x197/0x270
[  105.357538][ T7495]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.357553][ T7495]  ? rw_verify_area+0xcf/0x680
[  105.357568][ T7495]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.357583][ T7495]  vfs_read+0x1de/0xc70
[  105.357594][ T7495]  ? __pfx___mutex_lock+0x10/0x10
[  105.357609][ T7495]  ? __pfx_vfs_read+0x10/0x10
[  105.357622][ T7495]  ? __fget_files+0x20e/0x3c0
[  105.357635][ T7495]  ksys_read+0x12a/0x240
[  105.357645][ T7495]  ? __pfx_ksys_read+0x10/0x10
[  105.357655][ T7495]  ? rcu_is_watching+0x12/0xc0
[  105.357667][ T7495]  __do_fast_syscall_32+0x73/0x120
[  105.357684][ T7495]  do_fast_syscall_32+0x32/0x80
[  105.357700][ T7495]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  105.357713][ T7495] RIP: 0023:0xf712e579
[  105.357721][ T7495] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  105.357730][ T7495] RSP: 002b:00000000f511e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  105.357739][ T7495] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f511e620
[  105.357745][ T7495] RDX: 000000000000000f RSI: 00000000f7492ff4 RDI: 0000000000000000
[  105.357751][ T7495] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  105.357757][ T7495] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  105.357762][ T7495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  105.357774][ T7495]  </TASK>
[  105.420845][    C0] vkms_vblank_simulate: vblank timer overrun
[  106.403035][ T7512] FAULT_INJECTION: forcing a failure.
[  106.403035][ T7512] name failslab, interval 1, probability 0, space 0, times 0
[  106.407951][ T7512] CPU: 0 UID: 0 PID: 7512 Comm: syz.2.418 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  106.407966][ T7512] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.407972][ T7512] Call Trace:
[  106.407976][ T7512]  <TASK>
[  106.407981][ T7512]  dump_stack_lvl+0x16c/0x1f0
[  106.408000][ T7512]  should_fail_ex+0x512/0x640
[  106.408015][ T7512]  ? __kmalloc_noprof+0xbf/0x510
[  106.408028][ T7512]  ? tcf_em_tree_validate+0x1c8/0xd60
[  106.408040][ T7512]  should_failslab+0xc2/0x120
[  106.408053][ T7512]  __kmalloc_noprof+0xd2/0x510
[  106.408064][ T7512]  ? __nla_parse+0x40/0x60
[  106.408077][ T7512]  tcf_em_tree_validate+0x1c8/0xd60
[  106.408094][ T7512]  ? __pfx_tcf_em_tree_validate+0x10/0x10
[  106.408109][ T7512]  ? tcf_exts_validate+0x42/0x60
[  106.408121][ T7512]  basic_change+0x3ac/0x1400
[  106.408137][ T7512]  ? __pfx_basic_change+0x10/0x10
[  106.408156][ T7512]  ? __pfx_basic_change+0x10/0x10
[  106.408169][ T7512]  tc_new_tfilter+0xa32/0x2340
[  106.408191][ T7512]  ? __pfx_tc_new_tfilter+0x10/0x10
[  106.408208][ T7512]  ? kfree_skbmem+0x1a4/0x1f0
[  106.408219][ T7512]  ? __lock_acquire+0x5ca/0x1ba0
[  106.408240][ T7512]  ? find_held_lock+0x2b/0x80
[  106.408249][ T7512]  ? __pfx_tc_new_tfilter+0x10/0x10
[  106.408262][ T7512]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  106.408280][ T7512]  ? __pfx_tc_new_tfilter+0x10/0x10
[  106.408299][ T7512]  rtnetlink_rcv_msg+0x95b/0xe90
[  106.408317][ T7512]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  106.408342][ T7512]  netlink_rcv_skb+0x16a/0x440
[  106.408356][ T7512]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  106.408370][ T7512]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  106.408391][ T7512]  ? netlink_deliver_tap+0x1ae/0xd30
[  106.408406][ T7512]  netlink_unicast+0x53d/0x7f0
[  106.408422][ T7512]  ? __pfx_netlink_unicast+0x10/0x10
[  106.408439][ T7512]  netlink_sendmsg+0x8d1/0xdd0
[  106.408455][ T7512]  ? __pfx_netlink_sendmsg+0x10/0x10
[  106.408470][ T7512]  ? __import_iovec+0x1c8/0x660
[  106.408483][ T7512]  ____sys_sendmsg+0xa95/0xc70
[  106.408500][ T7512]  ? __pfx_____sys_sendmsg+0x10/0x10
[  106.408515][ T7512]  ? get_compat_msghdr+0x11a/0x170
[  106.408533][ T7512]  ___sys_sendmsg+0x134/0x1d0
[  106.408547][ T7512]  ? __pfx____sys_sendmsg+0x10/0x10
[  106.408577][ T7512]  __sys_sendmsg+0x16d/0x220
[  106.408590][ T7512]  ? __pfx___sys_sendmsg+0x10/0x10
[  106.408608][ T7512]  ? rcu_is_watching+0x12/0xc0
[  106.408620][ T7512]  __do_fast_syscall_32+0x73/0x120
[  106.408637][ T7512]  do_fast_syscall_32+0x32/0x80
[  106.408653][ T7512]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  106.408666][ T7512] RIP: 0023:0xf712e579
[  106.408674][ T7512] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  106.408684][ T7512] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  106.408693][ T7512] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080006040
[  106.408699][ T7512] RDX: 0000000020001880 RSI: 0000000000000000 RDI: 0000000000000000
[  106.408705][ T7512] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  106.408710][ T7512] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  106.408716][ T7512] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  106.408729][ T7512]  </TASK>
[  106.443429][ T5799] usb 8-1: USB disconnect, device number 4
[  106.444710][    C0] vkms_vblank_simulate: vblank timer overrun
[  107.051524][ T5799] usb 7-1: new full-speed USB device number 10 using dummy_hcd
[  107.192785][ T5799] usb 7-1: device descriptor read/64, error -71
[  107.453219][ T5799] usb 7-1: new full-speed USB device number 11 using dummy_hcd
[  107.591445][ T5799] usb 7-1: device descriptor read/64, error -71
[  107.702601][ T5799] usb usb7-port1: attempt power cycle
[  107.832687][ T7544] futex_wake_op: syz.1.428 tries to shift op by -1; fix this program
[  107.838016][ T7544] Bluetooth: MGMT ver 1.23
[  108.041452][ T5799] usb 7-1: new full-speed USB device number 12 using dummy_hcd
[  108.064399][ T5799] usb 7-1: device descriptor read/8, error -71
[  108.301753][ T5799] usb 7-1: new full-speed USB device number 13 using dummy_hcd
[  108.321963][ T5799] usb 7-1: device descriptor read/8, error -71
[  108.431697][ T5799] usb usb7-port1: unable to enumerate USB device
[  108.879139][ T7562] overlayfs: failed to resolve './file1': -2
[  110.057900][ T7581] ieee802154 phy0 wpan0: encryption failed: -22
[  110.723006][ T7593] FAULT_INJECTION: forcing a failure.
[  110.723006][ T7593] name failslab, interval 1, probability 0, space 0, times 0
[  110.728240][ T7593] CPU: 0 UID: 0 PID: 7593 Comm: syz.2.444 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  110.728261][ T7593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.728270][ T7593] Call Trace:
[  110.728276][ T7593]  <TASK>
[  110.728282][ T7593]  dump_stack_lvl+0x16c/0x1f0
[  110.728308][ T7593]  should_fail_ex+0x512/0x640
[  110.728332][ T7593]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  110.728355][ T7593]  should_failslab+0xc2/0x120
[  110.728377][ T7593]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  110.728394][ T7593]  ? __alloc_skb+0x2b2/0x380
[  110.728416][ T7593]  __alloc_skb+0x2b2/0x380
[  110.728434][ T7593]  ? __pfx___alloc_skb+0x10/0x10
[  110.728456][ T7593]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  110.728483][ T7593]  netlink_alloc_large_skb+0x69/0x130
[  110.728505][ T7593]  netlink_sendmsg+0x6a1/0xdd0
[  110.728530][ T7593]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.728554][ T7593]  ? __import_iovec+0x1c8/0x660
[  110.728577][ T7593]  ____sys_sendmsg+0xa95/0xc70
[  110.728598][ T7593]  ? gfs2_control_func+0x710/0xf20
[  110.728617][ T7593]  ? __pfx_____sys_sendmsg+0x10/0x10
[  110.728641][ T7593]  ? get_compat_msghdr+0x11a/0x170
[  110.728672][ T7593]  ___sys_sendmsg+0x134/0x1d0
[  110.728692][ T7593]  ? __pfx____sys_sendmsg+0x10/0x10
[  110.728740][ T7593]  __sys_sendmsg+0x16d/0x220
[  110.728768][ T7593]  ? __pfx___sys_sendmsg+0x10/0x10
[  110.728796][ T7593]  ? rcu_is_watching+0x12/0xc0
[  110.728816][ T7593]  __do_fast_syscall_32+0x73/0x120
[  110.728842][ T7593]  do_fast_syscall_32+0x32/0x80
[  110.728868][ T7593]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.728887][ T7593] RIP: 0023:0xf712e579
[  110.728898][ T7593] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.728912][ T7593] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  110.728927][ T7593] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000ec0
[  110.728937][ T7593] RDX: 0000000004044000 RSI: 0000000000000000 RDI: 0000000000000000
[  110.728946][ T7593] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.728955][ T7593] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.728966][ T7593] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.728986][ T7593]  </TASK>
[  110.736705][ T7592] netlink: 'syz.1.443': attribute type 4 has an invalid length.
[  110.901202][ T7601] usb usb9: check_ctrlrecip: process 7601 (syz.2.447) requesting ep 01 but needs 81
[  110.909426][ T7601] usb usb9: usbfs: process 7601 (syz.2.447) did not claim interface 0 before use
[  111.579961][   T40] audit: type=1326 audit(1748301158.338:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7616 comm="syz.3.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  111.580671][ T7617] netlink: 288 bytes leftover after parsing attributes in process `syz.3.452'.
[  111.586486][   T40] audit: type=1326 audit(1748301158.338:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7616 comm="syz.3.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  111.595754][   T40] audit: type=1326 audit(1748301158.338:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7616 comm="syz.3.452" exe="/syz-executor" sig=0 arch=40000003 syscall=328 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  111.602675][   T40] audit: type=1326 audit(1748301158.338:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7616 comm="syz.3.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  111.609334][   T40] audit: type=1326 audit(1748301158.338:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7616 comm="syz.3.452" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  111.616102][   T40] audit: type=1326 audit(1748301158.348:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7616 comm="syz.3.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  111.622745][   T40] audit: type=1326 audit(1748301158.348:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7616 comm="syz.3.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  111.985237][ T7630] netlink: 'syz.2.457': attribute type 25 has an invalid length.
[  111.990817][ T7630] netlink: 'syz.2.457': attribute type 1 has an invalid length.
[  111.993972][ T7630] bridge0: port 1(bridge_slave_0) entered learning state
[  112.019057][ T7634] FAULT_INJECTION: forcing a failure.
[  112.019057][ T7634] name failslab, interval 1, probability 0, space 0, times 0
[  112.022872][ T7634] CPU: 3 UID: 0 PID: 7634 Comm: syz.3.458 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  112.022894][ T7634] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.022903][ T7634] Call Trace:
[  112.022908][ T7634]  <TASK>
[  112.022915][ T7634]  dump_stack_lvl+0x16c/0x1f0
[  112.022957][ T7634]  should_fail_ex+0x512/0x640
[  112.022982][ T7634]  ? fs_reclaim_acquire+0xae/0x150
[  112.023014][ T7634]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  112.023037][ T7634]  should_failslab+0xc2/0x120
[  112.023057][ T7634]  __kmalloc_noprof+0xd2/0x510
[  112.023092][ T7634]  tomoyo_realpath_from_path+0xc2/0x6e0
[  112.023117][ T7634]  ? tomoyo_profile+0x47/0x60
[  112.023135][ T7634]  tomoyo_path_number_perm+0x245/0x580
[  112.023153][ T7634]  ? tomoyo_path_number_perm+0x237/0x580
[  112.023175][ T7634]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  112.023220][ T7634]  ? find_held_lock+0x2b/0x80
[  112.023236][ T7634]  ? hook_file_ioctl_common+0x145/0x410
[  112.023255][ T7634]  ? __fget_files+0x204/0x3c0
[  112.023274][ T7634]  ? __fget_files+0x20e/0x3c0
[  112.023286][ T7634]  ? __pfx_fput+0x10/0x10
[  112.023310][ T7634]  security_file_ioctl_compat+0x9b/0x240
[  112.023333][ T7634]  __ia32_compat_sys_ioctl+0xc3/0x360
[  112.023359][ T7634]  __do_fast_syscall_32+0x73/0x120
[  112.023385][ T7634]  do_fast_syscall_32+0x32/0x80
[  112.023409][ T7634]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.023429][ T7634] RIP: 0023:0xf7ff6579
[  112.023442][ T7634] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  112.023457][ T7634] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  112.023472][ T7634] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  112.023482][ T7634] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  112.023491][ T7634] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  112.023520][ T7634] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  112.023529][ T7634] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.023551][ T7634]  </TASK>
[  112.023594][ T7634] ERROR: Out of memory at tomoyo_realpath_from_path.
[  112.380955][ T7655] netlink: 4 bytes leftover after parsing attributes in process `syz.0.459'.
[  112.387615][ T7655] netlink: 8 bytes leftover after parsing attributes in process `syz.0.459'.
[  112.638567][ T7667] ubi31: attaching mtd0
[  112.641140][ T7667] ubi31: scanning is finished
[  112.643259][ T7667] ubi31: empty MTD device detected
[  112.713174][ T7667] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  112.716426][ T7667] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  112.719552][ T7667] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  112.722747][ T7667] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  112.725707][ T7667] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  112.728631][ T7667] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  112.732359][ T7667] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2214671011
[  112.736574][ T7667] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  112.741686][ T7668] ubi31: background thread "ubi_bgt31d" started, PID 7668
[  113.211477][ T7682] netlink: 152 bytes leftover after parsing attributes in process `syz.0.470'.
[  113.909382][ T7693] futex_wake_op: syz.0.473 tries to shift op by 32; fix this program
[  113.917486][   T67] Bluetooth: hci0: unexpected event for opcode 0x080b
[  114.036762][ T7686] ieee802154 phy0 wpan0: encryption failed: -22
[  114.235211][ T7710] netlink: 'syz.3.467': attribute type 4 has an invalid length.
[  114.477603][ T7720] netlink: 'syz.2.479': attribute type 1 has an invalid length.
[  114.505832][ T7720] 8021q: adding VLAN 0 to HW filter on device bond1
[  114.667947][ T7729] netlink: 4 bytes leftover after parsing attributes in process `syz.0.476'.
[  114.671784][ T7729] netlink: 8 bytes leftover after parsing attributes in process `syz.0.476'.
[  115.477603][ T7749] ieee802154 phy0 wpan0: encryption failed: -22
[  116.054444][ T7756] netem: change failed
[  116.057377][ T7756] netlink: 56 bytes leftover after parsing attributes in process `syz.3.490'.
[  116.060380][ T7756] netlink: 8 bytes leftover after parsing attributes in process `syz.3.490'.
[  116.573569][ T7766] netlink: 4 bytes leftover after parsing attributes in process `syz.3.491'.
[  116.581903][ T7766] netlink: 8 bytes leftover after parsing attributes in process `syz.3.491'.
[  117.818561][ T7794] ieee802154 phy0 wpan0: encryption failed: -22
[  117.902650][ T7795] bridge0: port 1(netdevsim0) entered blocking state
[  117.905103][ T7795] bridge0: port 1(netdevsim0) entered disabled state
[  117.907321][ T7795] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  117.910507][ T7795] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  117.913749][ T7795] bridge0: port 1(netdevsim0) entered blocking state
[  117.915964][ T7795] bridge0: port 1(netdevsim0) entered forwarding state
[  117.942911][   T67] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  117.946039][   T67] Bluetooth: hci0: Injecting HCI hardware error event
[  117.949157][ T5942] Bluetooth: hci0: hardware error 0x00
[  119.802121][ T7869] FAULT_INJECTION: forcing a failure.
[  119.802121][ T7869] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.807278][ T7869] CPU: 3 UID: 0 PID: 7869 Comm: syz.2.521 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  119.807300][ T7869] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.807310][ T7869] Call Trace:
[  119.807316][ T7869]  <TASK>
[  119.807323][ T7869]  dump_stack_lvl+0x16c/0x1f0
[  119.807353][ T7869]  should_fail_ex+0x512/0x640
[  119.807381][ T7869]  _copy_to_user+0x32/0xd0
[  119.807400][ T7869]  bpf_verifier_vlog+0x3da/0x6f0
[  119.807448][ T7869]  bpf_verifier_log_write+0x16f/0x180
[  119.807473][ T7869]  ? __pfx_bpf_verifier_log_write+0x10/0x10
[  119.807498][ T7869]  ? _copy_to_user+0x48/0xd0
[  119.807515][ T7869]  ? bpf_verifier_vlog+0x3e7/0x6f0
[  119.807538][ T7869]  ? print_verifier_state+0x1d3/0x1170
[  119.807564][ T7869]  print_verifier_state+0x1ee/0x1170
[  119.807596][ T7869]  ? __pfx_print_verifier_state+0x10/0x10
[  119.807618][ T7869]  ? print_insn_state+0x4d/0x180
[  119.807647][ T7869]  do_check_common+0xefd/0xc2a0
[  119.807690][ T7869]  ? __pfx_do_check_common+0x10/0x10
[  119.807710][ T7869]  ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10
[  119.807737][ T7869]  ? kfree+0x2b6/0x4d0
[  119.807752][ T7869]  ? bpf_check+0x6c86/0xb460
[  119.807768][ T7869]  ? bpf_check+0x7b2f/0xb460
[  119.807788][ T7869]  bpf_check+0x7f51/0xb460
[  119.807822][ T7869]  ? __pfx_bpf_check+0x10/0x10
[  119.807840][ T7869]  ? pcpu_alloc_noprof+0x949/0x1470
[  119.807869][ T7869]  ? __lock_acquire+0xaa4/0x1ba0
[  119.807909][ T7869]  ? find_held_lock+0x2b/0x80
[  119.807931][ T7869]  ? __asan_memset+0x23/0x50
[  119.807946][ T7869]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  119.807972][ T7869]  bpf_prog_load+0xe41/0x2490
[  119.808001][ T7869]  ? __pfx_bpf_prog_load+0x10/0x10
[  119.808044][ T7869]  ? bpf_lsm_bpf+0x9/0x10
[  119.808063][ T7869]  __sys_bpf+0x433c/0x4d80
[  119.808090][ T7869]  ? __pfx___sys_bpf+0x10/0x10
[  119.808114][ T7869]  ? ksys_write+0x190/0x240
[  119.808134][ T7869]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  119.808173][ T7869]  ? fput+0x70/0xf0
[  119.808193][ T7869]  ? ksys_write+0x1b9/0x240
[  119.808209][ T7869]  ? __pfx_ksys_write+0x10/0x10
[  119.808229][ T7869]  __ia32_sys_bpf+0x76/0xe0
[  119.808255][ T7869]  __do_fast_syscall_32+0x73/0x120
[  119.808281][ T7869]  do_fast_syscall_32+0x32/0x80
[  119.808307][ T7869]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.808328][ T7869] RIP: 0023:0xf712e579
[  119.808342][ T7869] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.808357][ T7869] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  119.808373][ T7869] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000440
[  119.808383][ T7869] RDX: 0000000000000070 RSI: 0000000000000000 RDI: 0000000000000000
[  119.808392][ T7869] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.808401][ T7869] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  119.808410][ T7869] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.808432][ T7869]  </TASK>
[  119.919215][    C3] vkms_vblank_simulate: vblank timer overrun
[  120.022055][ T5942] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  120.208644][ T7880] program syz.1.524 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  120.416100][ T7866] ieee802154 phy0 wpan0: encryption failed: -22
[  120.619091][ T7886] netlink: 8 bytes leftover after parsing attributes in process `syz.3.526'.
[  121.994909][ T7921] sg_write: data in/out 489/14 bytes for SCSI command 0x3-- guessing data in;
[  121.994909][ T7921]    program syz.2.537 not setting count and/or reply_len properly
[  122.345236][ T7929] netlink: 32 bytes leftover after parsing attributes in process `syz.2.538'.
[  122.372798][ T7911] ieee802154 phy0 wpan0: encryption failed: -22
[  122.970216][   T40] audit: type=1326 audit(1748301169.728:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  122.980573][   T40] audit: type=1326 audit(1748301169.728:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  122.992260][   T40] audit: type=1326 audit(1748301169.728:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=133 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  123.003247][   T40] audit: type=1326 audit(1748301169.728:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  123.013237][   T40] audit: type=1326 audit(1748301169.728:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  123.040415][   T40] audit: type=1326 audit(1748301169.728:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  123.049645][   T40] audit: type=1326 audit(1748301169.738:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  123.058889][   T40] audit: type=1326 audit(1748301169.738:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  123.068731][   T40] audit: type=1326 audit(1748301169.738:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  123.077860][ T7971] block nbd3: NBD_DISCONNECT
[  123.078820][   T40] audit: type=1326 audit(1748301169.738:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7961 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000
[  123.281998][  T835] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  123.432933][  T835] usb 6-1: Using ep0 maxpacket: 32
[  123.435855][  T835] usb 6-1: config 224 has an invalid descriptor of length 0, skipping remainder of the config
[  123.439158][  T835] usb 6-1: config 224 has 0 interfaces, different from the descriptor's value: 1
[  123.443921][  T835] usb 6-1: New USB device found, idVendor=1410, idProduct=9011, bcdDevice= f.f3
[  123.446858][  T835] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.449424][  T835] usb 6-1: Product: syz
[  123.450887][  T835] usb 6-1: Manufacturer: syz
[  123.453374][  T835] usb 6-1: SerialNumber: syz
[  123.529410][ T7998] netlink: 8 bytes leftover after parsing attributes in process `syz.3.550'.
[  123.558823][ T7998] hfs: unable to load iocharset "io#harset"
[  123.669542][ T5942] Bluetooth: hci3: unexpected event for opcode 0x080f
[  123.775779][ T7997] geneve1: entered promiscuous mode
[  124.216856][ T8010] netlink: 8 bytes leftover after parsing attributes in process `syz.0.554'.
[  125.065803][ T8033] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  125.145860][ T8045] netlink: 12 bytes leftover after parsing attributes in process `syz.0.561'.
[  125.439660][ T8066] netlink: 4 bytes leftover after parsing attributes in process `syz.2.564'.
[  125.917271][  T835] usb 6-1: USB disconnect, device number 3
[  126.533872][ T8113] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  126.537442][ T8113] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  126.540249][ T8113] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  127.103010][ T8130] netlink: 4 bytes leftover after parsing attributes in process `syz.1.579'.
[  127.108859][ T8130] netlink: 8 bytes leftover after parsing attributes in process `syz.1.579'.
[  127.844924][ T8146] netlink: 4 bytes leftover after parsing attributes in process `syz.3.584'.
[  127.964541][ T8145] netlink: 8 bytes leftover after parsing attributes in process `syz.3.584'.
[  128.581478][   T67] Bluetooth: hci3: command 0x040f tx timeout
[  128.581529][ T5942] Bluetooth: hci2: command 0x040f tx timeout
[  128.583566][   T67] Bluetooth: hci1: command 0x040f tx timeout
[  128.834301][ T8156] Process accounting resumed
[  128.919830][ T8150] ieee802154 phy0 wpan0: encryption failed: -22
[  129.212837][ T8165] ieee802154 phy0 wpan0: encryption failed: -22
[  130.053498][ T8170] ieee802154 phy0 wpan0: encryption failed: -22
[  130.199808][ T8187] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  130.277483][ T8190] program syz.3.596 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  130.281614][    C1] sr 2:0:0:0: [sr0] tag#3 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  130.284782][    C1] sr 2:0:0:0: [sr0] tag#3 CDB: opcode=0x95 95 00 00 00 00 00 00 00 80 14 00 80 00 00 00 00
[  131.368256][ T8200] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  131.493694][ T8220] netlink: 4 bytes leftover after parsing attributes in process `syz.2.600'.
[  131.508327][ T8221] netlink: 4 bytes leftover after parsing attributes in process `syz.1.606'.
[  131.515235][ T8220] netlink: 8 bytes leftover after parsing attributes in process `syz.2.600'.
[  131.523163][ T8221] netlink: 8 bytes leftover after parsing attributes in process `syz.1.606'.
[  131.746786][ T8222] ieee802154 phy0 wpan0: encryption failed: -22
[  132.263778][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  132.265804][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  132.580665][ T8235] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  133.320693][ T8265] netlink: 8 bytes leftover after parsing attributes in process `syz.0.614'.
[  133.344548][ T8265] hfs: unable to load iocharset "io#harset"
[  133.447036][ T8258] netlink: 'syz.2.611': attribute type 4 has an invalid length.
[  133.565725][ T8265] geneve1: entered promiscuous mode
[  134.545821][ T8294] netlink: 4 bytes leftover after parsing attributes in process `syz.0.620'.
[  134.557414][ T8294] netlink: 8 bytes leftover after parsing attributes in process `syz.0.620'.
[  135.963053][ T8334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.625'.
[  135.966577][ T8334] netlink: 8 bytes leftover after parsing attributes in process `syz.2.625'.
[  136.057469][ T8335] netlink: 4 bytes leftover after parsing attributes in process `syz.1.629'.
[  136.063263][ T8335] netlink: 8 bytes leftover after parsing attributes in process `syz.1.629'.
[  137.003550][ T8345] ieee802154 phy0 wpan0: encryption failed: -22
[  138.931655][    T9] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  139.084068][    T9] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  139.088273][    T9] usb 8-1: config 0 has no interfaces?
[  139.090645][    T9] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  139.094885][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.104288][    T9] usb 8-1: config 0 descriptor??
[  139.446433][ T8391] ieee802154 phy0 wpan0: encryption failed: -22
[  139.447500][ T8393] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  139.459207][ T8393] netlink: 'syz.3.648': attribute type 10 has an invalid length.
[  139.462701][ T8393] netlink: 40 bytes leftover after parsing attributes in process `syz.3.648'.
[  139.467163][ T8393] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.470889][ T8393] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.475224][ T8393] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.479126][ T8393] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.488148][ T8393] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.492464][ T8393] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.496163][ T8393] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.498967][ T8393] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.504281][ T8393] team0: Port device geneve0 added
[  140.041056][ T8396] ieee802154 phy0 wpan0: encryption failed: -22
[  140.474596][ T8404] ieee802154 phy0 wpan0: encryption failed: -22
[  141.031875][ T8415] overlayfs: failed to resolve './file1': -2
[  141.204737][ T8419] netlink: 'syz.2.650': attribute type 3 has an invalid length.
[  141.491859][  T835] usb 8-1: USB disconnect, device number 5
[  142.456087][ T8447] netlink: 4 bytes leftover after parsing attributes in process `syz.1.663'.
[  142.463852][ T8447] netlink: 8 bytes leftover after parsing attributes in process `syz.1.663'.
[  142.885351][ T3223] libceph: connect (1)[c::]:6789 error -101
[  142.888099][ T3223] libceph: mon0 (1)[c::]:6789 connect error
[  142.893296][ T3223] libceph: connect (1)[c::]:6789 error -101
[  142.897163][ T3223] libceph: mon0 (1)[c::]:6789 connect error
[  142.944950][ T8459] ceph: No mds server is up or the cluster is laggy
[  143.204163][ T8458] block nbd0: Device being setup by another task
[  143.339306][ T8464] netlink: 4 bytes leftover after parsing attributes in process `syz.2.660'.
[  143.346538][ T8464] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode
[  143.349327][ T8464] macvtap1: entered promiscuous mode
[  143.354170][ T8464] mac80211_hwsim hwsim9 wlan1: left promiscuous mode
[  143.516358][ T8456] block nbd0: shutting down sockets
[  143.617141][ T8475] netlink: 4 bytes leftover after parsing attributes in process `syz.0.664'.
[  143.682888][ T8475] team0 (unregistering): Port device team_slave_0 removed
[  143.690594][ T8475] team0 (unregistering): Port device team_slave_1 removed
[  143.702020][ T8476] netlink: 'syz.1.671': attribute type 10 has an invalid length.
[  143.739559][ T8476] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  143.748182][ T8473] netlink: 'syz.1.671': attribute type 7 has an invalid length.
[  143.751246][ T8473] netlink: 'syz.1.671': attribute type 8 has an invalid length.
[  143.787961][ T8472] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  143.795957][ T8480] netdevsim netdevsim0: Direct firmware load for ,Ú3ºhËÍ_F+¿²Ut,#ŽÀà|ÿÃrÏu&┤Vë£ûD3Yš®ŸÌÙ±©çíÀ{Š8Ê)‚Ȥ¿Z‚f#VQGk­`öÚi›©Ë?„¼w8	Îdó�Õ#µ~ç*5íC—2!8zñd™9I•»]†"‹[ÀëqiUñ failed with error -2
[  143.805303][ T8480] netdevsim netdevsim0: Falling back to sysfs fallback for: ,Ú3ºhËÍ_F+¿²Ut,#ŽÀà|ÿÃrÏu&┤Vë£ûD3Yš®ŸÌÙ±©çíÀ{Š8Ê)‚Ȥ¿Z‚f#VQGk­`öÚi›©Ë?„¼w8	Îdó�Õ#µ~ç*5íC—2!8zñd™9I•»]†"‹[ÀëqiUñ
[  144.181419][ T3223] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  144.334720][ T3223] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  144.337784][ T3223] usb 7-1: config 0 has no interfaces?
[  144.339510][ T3223] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  144.342482][ T3223] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.346300][ T3223] usb 7-1: config 0 descriptor??
[  144.613991][ T8485] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  144.630760][ T8485] netlink: 'syz.2.662': attribute type 10 has an invalid length.
[  144.634225][ T8485] netlink: 40 bytes leftover after parsing attributes in process `syz.2.662'.
[  144.675791][ T8485] team0: Port device geneve0 added
[  145.105896][ T8492] syz_tun: entered allmulticast mode
[  145.110184][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  145.110192][   T40] audit: type=1326 audit(1748301191.868:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  145.118425][   T40] audit: type=1326 audit(1748301191.868:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  145.119344][ T8491] syz_tun: left allmulticast mode
[  145.124957][   T40] audit: type=1326 audit(1748301191.878:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf707e579 code=0x7ffc0000
[  145.133068][   T40] audit: type=1326 audit(1748301191.878:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  145.139403][   T40] audit: type=1326 audit(1748301191.878:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  145.145856][   T40] audit: type=1326 audit(1748301191.878:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf707e579 code=0x7ffc0000
[  145.152350][   T40] audit: type=1326 audit(1748301191.878:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000
[  145.164339][   T40] audit: type=1326 audit(1748301191.878:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  145.171245][   T40] audit: type=1326 audit(1748301191.878:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  145.184968][   T40] audit: type=1326 audit(1748301191.878:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.0.669" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000
[  145.244225][ T8494] netlink: 1104 bytes leftover after parsing attributes in process `syz.1.672'.
[  145.381866][ T8504] capability: warning: `syz.1.674' uses deprecated v2 capabilities in a way that may be insecure
[  145.548926][ T8508] netlink: 4 bytes leftover after parsing attributes in process `syz.1.675'.
[  145.593985][ T8513] netlink: 4 bytes leftover after parsing attributes in process `syz.0.670'.
[  145.602246][ T8513] netlink: 8 bytes leftover after parsing attributes in process `syz.0.670'.
[  146.766971][ T5985] usb 7-1: USB disconnect, device number 14
[  147.094349][ T8535] netlink: 16 bytes leftover after parsing attributes in process `syz.0.683'.
[  147.098793][ T8535] netlink: 12 bytes leftover after parsing attributes in process `syz.0.683'.
[  147.103567][ T8535] netlink: 'syz.0.683': attribute type 1 has an invalid length.
[  147.105981][ T8535] netlink: 28 bytes leftover after parsing attributes in process `syz.0.683'.
[  147.246221][ T8542] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  147.743451][ T8564] FAULT_INJECTION: forcing a failure.
[  147.743451][ T8564] name failslab, interval 1, probability 0, space 0, times 0
[  147.747298][ T8564] CPU: 0 UID: 0 PID: 8564 Comm: syz.1.693 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  147.747311][ T8564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.747317][ T8564] Call Trace:
[  147.747321][ T8564]  <TASK>
[  147.747325][ T8564]  dump_stack_lvl+0x16c/0x1f0
[  147.747344][ T8564]  should_fail_ex+0x512/0x640
[  147.747360][ T8564]  ? __kmalloc_noprof+0xbf/0x510
[  147.747373][ T8564]  ? lsm_blob_alloc+0x68/0x90
[  147.747382][ T8564]  should_failslab+0xc2/0x120
[  147.747396][ T8564]  __kmalloc_noprof+0xd2/0x510
[  147.747410][ T8564]  lsm_blob_alloc+0x68/0x90
[  147.747419][ T8564]  security_prepare_creds+0x30/0x270
[  147.747435][ T8564]  prepare_creds+0x56f/0x7d0
[  147.747451][ T8564]  __sys_setfsgid+0xe3/0x380
[  147.747462][ T8564]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  147.747480][ T8564]  __do_fast_syscall_32+0x73/0x120
[  147.747496][ T8564]  do_fast_syscall_32+0x32/0x80
[  147.747512][ T8564]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.747525][ T8564] RIP: 0023:0xf7fa2579
[  147.747533][ T8564] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  147.747542][ T8564] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 000000000000008b
[  147.747552][ T8564] RAX: ffffffffffffffda RBX: 00000000ffffff00 RCX: 0000000000000000
[  147.747558][ T8564] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  147.747563][ T8564] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  147.747569][ T8564] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  147.747574][ T8564] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.747586][ T8564]  </TASK>
[  148.164127][ T8571] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  148.284127][ T8572] bridge_slave_0: left allmulticast mode
[  148.286512][ T8572] bridge_slave_0: left promiscuous mode
[  148.289891][ T8572] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.297196][ T8572] bridge_slave_1: left allmulticast mode
[  148.299652][ T8572] bridge_slave_1: left promiscuous mode
[  148.307638][ T8572] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.316738][ T8572] bond0: (slave bond_slave_0): Releasing backup interface
[  148.328413][ T8572] bond0: (slave bond_slave_1): Releasing backup interface
[  148.328425][ T8573] netlink: 'syz.0.696': attribute type 10 has an invalid length.
[  148.346071][ T8572] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  148.349064][ T8572] batman_adv: batadv0: Removing interface: batadv_slave_0
[  148.363897][ T8572] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  148.366309][ T8572] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.395384][ T8572] bond1: (slave bond2): Releasing backup interface
[  148.432716][ T8573] mac80211_hwsim hwsim3 wlan1: left allmulticast mode
[  148.628907][ T8579] netfs: Couldn't get user pages (rc=-14)
[  149.994109][ T8597] capability: warning: `syz.0.702' uses 32-bit capabilities (legacy support in use)
[  152.493127][ T8634] netlink: 80 bytes leftover after parsing attributes in process `syz.2.714'.
[  152.511073][    T9] libceph: connect (1)[c::]:6789 error -101
[  152.513268][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  152.655746][ T8634] ceph: No mds server is up or the cluster is laggy
[  152.869220][   T40] kauditd_printk_skb: 158 callbacks suppressed
[  152.869263][   T40] audit: type=1800 audit(1748301199.628:190): pid=8650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.717" name="file1" dev="overlay" ino=1017 res=0 errno=0
[  154.243522][ T8666] netlink: 12 bytes leftover after parsing attributes in process `syz.0.721'.
[  155.030089][ T8683] ieee802154 phy0 wpan0: encryption failed: -22
[  155.287670][ T8687] netlink: 'syz.0.727': attribute type 7 has an invalid length.
[  155.290795][ T8687] netlink: 'syz.0.727': attribute type 8 has an invalid length.
[  155.322857][ T8687] netlink: 'syz.0.727': attribute type 10 has an invalid length.
[  155.365690][ T8687] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  155.422671][ T8686] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.959640][ T5942] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  157.031950][ T8720] lo speed is unknown, defaulting to 1000
[  157.035116][ T8720] lo speed is unknown, defaulting to 1000
[  157.044905][ T8720] lo speed is unknown, defaulting to 1000
[  157.065365][ T8720] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  157.083861][ T8720] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  157.164981][ T8721] netlink: 16 bytes leftover after parsing attributes in process `syz.2.735'.
[  157.194186][ T5942] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  157.208119][ T5942] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  157.208169][ T8720] lo speed is unknown, defaulting to 1000
[  157.213853][ T8720] lo speed is unknown, defaulting to 1000
[  157.214907][ T5942] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  157.216728][ T8720] lo speed is unknown, defaulting to 1000
[  157.221535][ T8720] lo speed is unknown, defaulting to 1000
[  157.222355][ T5942] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  157.224025][ T8720] lo speed is unknown, defaulting to 1000
[  157.249520][ T8716] lo speed is unknown, defaulting to 1000
[  157.355017][ T8716] chnl_net:caif_netlink_parms(): no params data found
[  157.510428][ T8716] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.513392][ T8716] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.515666][ T8716] bridge_slave_0: entered allmulticast mode
[  157.518204][ T8716] bridge_slave_0: entered promiscuous mode
[  157.532680][ T8716] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.534910][ T8716] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.537164][ T8716] bridge_slave_1: entered allmulticast mode
[  157.539767][ T8716] bridge_slave_1: entered promiscuous mode
[  157.791053][ T8716] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  157.804562][ T8716] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  157.900923][ T1136] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.923317][ T8716] team0: Port device team_slave_0 added
[  157.927774][ T8716] team0: Port device team_slave_1 added
[  157.968235][ T8716] batman_adv: batadv0: Adding interface: batadv_slave_0
[  157.970384][ T8716] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.005211][ T8716] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  158.019394][ T1136] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.026339][ T8716] batman_adv: batadv0: Adding interface: batadv_slave_1
[  158.028540][ T8716] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.036627][ T8716] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  158.087008][ T8716] hsr_slave_0: entered promiscuous mode
[  158.089399][ T8716] hsr_slave_1: entered promiscuous mode
[  158.091563][ T8716] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  158.093958][ T8716] Cannot create hsr debugfs directory
[  158.120823][ T8742] netlink: 4 bytes leftover after parsing attributes in process `syz.2.738'.
[  158.137894][ T1136] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.155750][ T8742] netlink: 8 bytes leftover after parsing attributes in process `syz.2.738'.
[  158.240371][ T1136] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.301129][ T8716] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  158.313638][ T8716] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  158.325992][ T8716] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  158.339305][ T8716] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  158.707447][ T1136] team0: Port device geneve0 removed
[  158.870063][ T1136] bond0 (unregistering): Released all slaves
[  158.877238][ T1136] bond1 (unregistering): Released all slaves
[  158.888778][   T64] tipc: Resetting bearer <eth:team0>
[  158.929561][ T8716] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.943664][ T8716] 8021q: adding VLAN 0 to HW filter on device team0
[  158.953074][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.955536][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  158.964776][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.969156][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[  158.990896][ T8758] syz.1.742 uses obsolete (PF_INET,SOCK_PACKET)
[  159.029069][ T8758] lo speed is unknown, defaulting to 1000
[  159.167087][ T8716] 8021q: adding VLAN 0 to HW filter on device batadv0
[  159.191510][ T8776] netlink: 4 bytes leftover after parsing attributes in process `syz.2.743'.
[  159.196934][ T8776] netlink: 8 bytes leftover after parsing attributes in process `syz.2.743'.
[  159.301570][ T5942] Bluetooth: hci4: command tx timeout
[  159.382131][ T8716] veth0_vlan: entered promiscuous mode
[  159.403225][ T8716] veth1_vlan: entered promiscuous mode
[  159.450050][ T8716] veth0_macvtap: entered promiscuous mode
[  159.456474][ T8716] veth1_macvtap: entered promiscuous mode
[  159.468924][ T8716] batman_adv: batadv0: Interface activated: batadv_slave_0
[  159.476925][ T8716] batman_adv: batadv0: Interface activated: batadv_slave_1
[  159.482731][ T8716] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  159.485482][ T8716] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  159.488572][ T8716] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  159.493147][ T8716] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.530721][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.534704][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  159.548552][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.551220][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.394810][ T8806] lo speed is unknown, defaulting to 1000
[  160.645313][ T1136] tipc: Disabling bearer <eth:team0>
[  160.674473][ T1136] tipc: Left network mode
[  160.939434][   T40] audit: type=1326 audit(1748301207.698:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8829 comm="syz.2.750" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf712e579 code=0x0
[  160.948420][ T8798] ieee802154 phy0 wpan0: encryption failed: -22
[  161.043440][ T1136] hsr_slave_0: left promiscuous mode
[  161.050461][ T1136] hsr_slave_1: left promiscuous mode
[  161.070331][ T1136] veth1_macvtap: left promiscuous mode
[  161.073282][ T1136] veth0_macvtap: left promiscuous mode
[  161.075102][ T1136] veth1_vlan: left promiscuous mode
[  161.330695][ T1136] team0 (unregistering): Port device vlan0 removed
[  161.381444][ T5942] Bluetooth: hci4: command tx timeout
[  161.478600][ T8850] netlink: 4 bytes leftover after parsing attributes in process `syz.1.751'.
[  161.481148][ T8845] ieee802154 phy0 wpan0: encryption failed: -22
[  161.492761][ T8850] netlink: 8 bytes leftover after parsing attributes in process `syz.1.751'.
[  162.181765][ T8853] hub 6-0:1.0: USB hub found
[  162.186119][ T8853] hub 6-0:1.0: 1 port detected
[  162.376260][ T8856] netlink: 'syz.4.756': attribute type 10 has an invalid length.
[  163.124711][ T8854] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  163.403843][ T8866] ieee802154 phy0 wpan0: encryption failed: -22
[  163.461501][ T5942] Bluetooth: hci4: command tx timeout
[  163.704479][ T8855] netlink: 'syz.4.756': attribute type 7 has an invalid length.
[  163.707884][ T8855] netlink: 'syz.4.756': attribute type 8 has an invalid length.
[  163.773933][ T8856] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  164.130770][ T8888] netlink: 4 bytes leftover after parsing attributes in process `syz.0.762'.
[  164.182018][ T8893] netlink: 4 bytes leftover after parsing attributes in process `syz.1.759'.
[  164.186457][ T8893] netlink: 8 bytes leftover after parsing attributes in process `syz.1.759'.
[  164.818699][ T8907] netlink: 'syz.0.764': attribute type 7 has an invalid length.
[  164.830436][ T8907] netlink: 'syz.0.764': attribute type 8 has an invalid length.
[  164.848287][ T8907] netlink: 'syz.0.764': attribute type 10 has an invalid length.
[  164.883779][ T8906] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  164.916962][ T8909] fuse: Bad value for 'user_id'
[  164.918572][ T8909] fuse: Bad value for 'user_id'
[  165.134800][ T8917] netlink: 4 bytes leftover after parsing attributes in process `syz.1.765'.
[  165.139362][ T8917] netlink: 8 bytes leftover after parsing attributes in process `syz.1.765'.
[  165.392582][ T8923] netlink: 'syz.4.768': attribute type 7 has an invalid length.
[  165.395062][ T8923] netlink: 'syz.4.768': attribute type 8 has an invalid length.
[  165.398947][ T8923] netlink: 'syz.4.768': attribute type 10 has an invalid length.
[  165.436474][ T8922] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  165.552630][ T5942] Bluetooth: hci4: command tx timeout
[  166.336969][ T8934] ieee802154 phy0 wpan0: encryption failed: -22
[  167.069108][ T8945] hub 6-0:1.0: USB hub found
[  167.071395][ T8945] hub 6-0:1.0: 1 port detected
[  167.157991][ T8921] ieee802154 phy0 wpan0: encryption failed: -22
[  167.377088][ T8954] netlink: 4 bytes leftover after parsing attributes in process `syz.4.773'.
[  167.380989][ T8954] netlink: 8 bytes leftover after parsing attributes in process `syz.4.773'.
[  167.903576][ T8961] fuse: Bad value for 'user_id'
[  167.905174][ T8961] fuse: Bad value for 'user_id'
[  168.056966][ T8968] netlink: 'syz.0.778': attribute type 7 has an invalid length.
[  168.067682][ T8968] : entered promiscuous mode
[  168.439867][   T40] audit: type=1326 audit(1748301215.198:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.459220][   T40] audit: type=1326 audit(1748301215.198:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=161 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.469506][   T40] audit: type=1326 audit(1748301215.198:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.478363][   T40] audit: type=1326 audit(1748301215.198:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=101 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.487072][   T40] audit: type=1326 audit(1748301215.198:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.495446][   T40] audit: type=1326 audit(1748301215.198:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.504352][   T40] audit: type=1326 audit(1748301215.198:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.513522][   T40] audit: type=1326 audit(1748301215.198:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.523660][   T40] audit: type=1326 audit(1748301215.198:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.530351][   T40] audit: type=1326 audit(1748301215.198:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.1.785" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  168.563690][ T8985] hub 2-0:1.0: USB hub found
[  168.565932][ T8985] hub 2-0:1.0: 2 ports detected
[  168.733469][ T8987] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  168.742047][ T8987] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  168.745508][ T8987] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  168.749388][ T8987] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  168.819531][ T8987] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  169.240355][ T9000] netlink: 4 bytes leftover after parsing attributes in process `syz.1.787'.
[  169.243835][ T9000] netlink: 8 bytes leftover after parsing attributes in process `syz.1.787'.
[  169.732304][ T9018] ubifs: Unknown parameter 'grpquota'
[  170.675749][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.809100][ T5301] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  170.819151][ T5301] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  170.822785][ T5301] Bluetooth: hci4: command 0x0c1a tx timeout
[  170.822934][   T67] Bluetooth: hci3: command 0x040f tx timeout
[  170.823268][ T5939] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  170.824964][ T5301] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  170.836980][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.837319][ T5301] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  170.884106][ T9040] lo speed is unknown, defaulting to 1000
[  170.985989][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.100744][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.102798][ T1331] e1000 0000:00:06.0 eth0: Reset adapter
[  171.223699][ T9040] chnl_net:caif_netlink_parms(): no params data found
[  171.341718][ T9050] netlink: 4 bytes leftover after parsing attributes in process `syz.4.800'.
[  171.346002][ T9050] netlink: 8 bytes leftover after parsing attributes in process `syz.4.800'.
[  171.366474][ T9057] netlink: 'syz.0.803': attribute type 10 has an invalid length.
[  171.401562][ T9056] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  171.459734][ T9063] netlink: 4 bytes leftover after parsing attributes in process `syz.1.802'.
[  171.543571][ T9040] bridge0: port 1(bridge_slave_0) entered blocking state
[  171.546064][ T9040] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.548688][ T9040] bridge_slave_0: entered allmulticast mode
[  171.555568][ T9040] bridge_slave_0: entered promiscuous mode
[  171.574927][ T9040] bridge0: port 2(bridge_slave_1) entered blocking state
[  171.577659][ T9040] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.580475][ T9040] bridge_slave_1: entered allmulticast mode
[  171.588591][ T9040] bridge_slave_1: entered promiscuous mode
[  171.621212][ T1331] e1000 0000:00:06.0 eth0: Reset adapter
[  171.719792][ T9040] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  171.726140][   T13] bridge_slave_1: left allmulticast mode
[  171.727830][   T13] bridge_slave_1: left promiscuous mode
[  171.730323][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.735607][   T13] bridge_slave_0: left allmulticast mode
[  171.738132][   T13] bridge_slave_0: left promiscuous mode
[  171.739963][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.847705][   T13] team0: Port device geneve0 removed
[  171.970243][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  171.975289][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  171.978880][   T13] bond0 (unregistering): Released all slaves
[  172.038735][   T13] bond1 (unregistering): Released all slaves
[  172.047240][ T9040] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  172.099489][ T9040] team0: Port device team_slave_0 added
[  172.108723][ T9040] team0: Port device team_slave_1 added
[  172.170003][ T9040] batman_adv: batadv0: Adding interface: batadv_slave_0
[  172.173003][ T9040] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  172.180841][ T9040] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  172.185094][ T9082] netlink: 'syz.1.805': attribute type 7 has an invalid length.
[  172.187560][ T9082] netlink: 'syz.1.805': attribute type 8 has an invalid length.
[  172.190695][ T9040] batman_adv: batadv0: Adding interface: batadv_slave_1
[  172.192982][ T9040] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  172.193924][ T9084] 9pnet_fd: Insufficient options for proto=fd
[  172.200722][ T9040] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  172.217740][ T9082] netlink: 'syz.1.805': attribute type 10 has an invalid length.
[  172.257365][ T9040] hsr_slave_0: entered promiscuous mode
[  172.259609][ T9040] hsr_slave_1: entered promiscuous mode
[  172.309996][ T9080] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  172.809114][ T9040] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  172.813532][ T9040] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  172.818103][ T9040] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  172.836314][ T9040] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  172.901474][ T5942] Bluetooth: hci4: command 0x0c1a tx timeout
[  172.903483][ T5942] Bluetooth: hci1: command tx timeout
[  172.910979][ T9040] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.933799][ T9040] 8021q: adding VLAN 0 to HW filter on device team0
[  172.939909][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.942999][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[  172.974447][ T1171] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.977478][ T1171] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.104630][ T9040] 8021q: adding VLAN 0 to HW filter on device batadv0
[  173.125397][ T9040] veth0_vlan: entered promiscuous mode
[  173.130056][ T9040] veth1_vlan: entered promiscuous mode
[  173.144968][ T9040] veth0_macvtap: entered promiscuous mode
[  173.149536][ T9040] veth1_macvtap: entered promiscuous mode
[  173.163228][ T9040] batman_adv: batadv0: Interface activated: batadv_slave_0
[  173.169059][ T9040] batman_adv: batadv0: Interface activated: batadv_slave_1
[  173.174736][ T9040] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.177481][ T9040] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.180194][ T9040] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.183850][ T9040] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.215053][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.217508][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.231014][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.237294][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.784545][ T5979] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  173.975926][   T13] hsr_slave_0: left promiscuous mode
[  173.978809][   T13] hsr_slave_1: left promiscuous mode
[  173.981718][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.984878][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.988756][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.992356][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  174.021979][   T13] veth1_macvtap: left promiscuous mode
[  174.023841][   T13] veth0_macvtap: left promiscuous mode
[  174.025761][   T13] veth1_vlan: left promiscuous mode
[  174.636999][   T13] team0 (unregistering): Port device team_slave_1 removed
[  174.709466][   T13] team0 (unregistering): Port device team_slave_0 removed
[  174.982722][ T5301] Bluetooth: hci4: command 0x0c1a tx timeout
[  175.540808][   T13] IPVS: stop unused estimator thread 0...
[  175.667443][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  175.885842][ T5942] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  175.892220][ T5942] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  175.896361][ T5942] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  175.903590][ T5942] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  175.906899][ T5942] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  176.008410][ T9158] chnl_net:caif_netlink_parms(): no params data found
[  176.088790][ T9158] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.091068][ T9158] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.093670][ T9158] bridge_slave_0: entered allmulticast mode
[  176.096324][ T9158] bridge_slave_0: entered promiscuous mode
[  176.099409][ T9158] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.102478][ T9158] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.104762][ T9158] bridge_slave_1: entered allmulticast mode
[  176.107408][ T9158] bridge_slave_1: entered promiscuous mode
[  176.144872][ T9158] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  176.149290][ T9158] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  176.187620][ T9158] team0: Port device team_slave_0 added
[  176.193525][ T9158] team0: Port device team_slave_1 added
[  176.226772][ T9158] batman_adv: batadv0: Adding interface: batadv_slave_0
[  176.228989][ T9158] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.237808][ T9158] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  176.242138][ T9158] batman_adv: batadv0: Adding interface: batadv_slave_1
[  176.244496][ T9158] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.254097][ T9158] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  176.292623][ T9158] hsr_slave_0: entered promiscuous mode
[  176.294941][ T9158] hsr_slave_1: entered promiscuous mode
[  176.297006][ T9158] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  176.299365][ T9158] Cannot create hsr debugfs directory
[  177.115570][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.244601][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.355915][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.483727][   T13] bridge_slave_1: left allmulticast mode
[  177.485916][   T13] bridge_slave_1: left promiscuous mode
[  177.488741][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.493615][   T13] bridge_slave_0: left allmulticast mode
[  177.495810][   T13] bridge_slave_0: left promiscuous mode
[  177.498084][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.753276][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  177.757350][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  177.760862][   T13] bond0 (unregistering): Released all slaves
[  177.951562][ T5942] Bluetooth: hci1: command tx timeout
[  178.114224][   T13] hsr_slave_0: left promiscuous mode
[  178.116362][   T13] hsr_slave_1: left promiscuous mode
[  178.118341][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  178.120613][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  178.124579][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  178.126843][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  178.146156][   T13] veth1_macvtap: left promiscuous mode
[  178.147891][   T13] veth0_macvtap: left promiscuous mode
[  178.149634][   T13] veth1_vlan: left promiscuous mode
[  178.151445][   T13] veth0_vlan: left promiscuous mode
[  178.705304][   T13] team0 (unregistering): Port device team_slave_1 removed
[  178.764225][   T13] team0 (unregistering): Port device team_slave_0 removed
[  179.198655][ T9158] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  179.204562][ T9158] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  179.209471][ T9158] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  179.215035][ T9158] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  179.262620][ T9158] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.271302][ T9158] 8021q: adding VLAN 0 to HW filter on device team0
[  179.276638][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.278679][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.285699][  T219] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.287982][  T219] bridge0: port 2(bridge_slave_1) entered forwarding state
[  179.417429][ T9158] 8021q: adding VLAN 0 to HW filter on device batadv0
[  179.439680][ T9158] veth0_vlan: entered promiscuous mode
[  179.444778][ T9158] veth1_vlan: entered promiscuous mode
[  179.458843][ T9158] veth0_macvtap: entered promiscuous mode
[  179.463314][ T9158] veth1_macvtap: entered promiscuous mode
[  179.478438][ T9158] batman_adv: batadv0: Interface activated: batadv_slave_0
[  179.483922][ T9158] batman_adv: batadv0: Interface activated: batadv_slave_1
[  179.488282][ T9158] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.490997][ T9158] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.495042][ T9158] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.497778][ T9158] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.528246][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  179.530958][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  179.544603][ T1171] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  179.547445][ T1171] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  181.665555][   T64] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.858080][ T5301] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  181.862552][ T5301] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  181.865626][ T5301] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  181.868629][ T5301] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  181.871509][ T5301] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  181.987750][ T9215] chnl_net:caif_netlink_parms(): no params data found
[  182.050937][ T9215] bridge0: port 1(bridge_slave_0) entered blocking state
[  182.054012][ T9215] bridge0: port 1(bridge_slave_0) entered disabled state
[  182.056268][ T9215] bridge_slave_0: entered allmulticast mode
[  182.058835][ T9215] bridge_slave_0: entered promiscuous mode
[  182.061930][ T9215] bridge0: port 2(bridge_slave_1) entered blocking state
[  182.064196][ T9215] bridge0: port 2(bridge_slave_1) entered disabled state
[  182.066419][ T9215] bridge_slave_1: entered allmulticast mode
[  182.069023][ T9215] bridge_slave_1: entered promiscuous mode
[  182.100478][ T9215] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  182.107331][ T9215] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  182.145245][ T9215] team0: Port device team_slave_0 added
[  182.149141][ T9215] team0: Port device team_slave_1 added
[  182.179092][ T9215] batman_adv: batadv0: Adding interface: batadv_slave_0
[  182.181268][ T9215] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  182.190027][ T9215] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  182.194906][ T9215] batman_adv: batadv0: Adding interface: batadv_slave_1
[  182.197092][ T9215] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  182.204996][ T9215] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  182.248397][ T9215] hsr_slave_0: entered promiscuous mode
[  182.252043][ T9215] hsr_slave_1: entered promiscuous mode
[  183.144842][   T64] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.206245][   T64] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.280964][   T64] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.397139][   T64] bridge_slave_1: left allmulticast mode
[  183.399086][   T64] bridge_slave_1: left promiscuous mode
[  183.400982][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  183.404942][   T64] bridge_slave_0: left allmulticast mode
[  183.406818][   T64] bridge_slave_0: left promiscuous mode
[  183.408746][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.612085][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  183.618362][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  183.623781][   T64] bond0 (unregistering): Released all slaves
[  183.941543][ T5942] Bluetooth: hci1: command tx timeout
[  184.034705][   T64] hsr_slave_0: left promiscuous mode
[  184.037633][   T64] hsr_slave_1: left promiscuous mode
[  184.040434][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  184.043535][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  184.049879][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  184.054557][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  184.074432][   T64] veth1_macvtap: left promiscuous mode
[  184.076226][   T64] veth0_macvtap: left promiscuous mode
[  184.078034][   T64] veth1_vlan: left promiscuous mode
[  184.079736][   T64] veth0_vlan: left promiscuous mode
[  184.594452][   T64] team0 (unregistering): Port device team_slave_1 removed
[  184.651148][   T64] team0 (unregistering): Port device team_slave_0 removed
[  185.054823][ T9256] Cannot find del_set index 3 as target
[  185.064737][ T9256] netlink: 244 bytes leftover after parsing attributes in process `syz.4.812'.
[  185.682071][ T9215] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  185.804278][ T9215] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  185.817673][ T9215] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  185.854889][ T9215] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  185.943227][ T9215] 8021q: adding VLAN 0 to HW filter on device bond0
[  185.958892][ T9215] 8021q: adding VLAN 0 to HW filter on device team0
[  185.976331][  T219] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.979344][  T219] bridge0: port 1(bridge_slave_0) entered forwarding state
[  185.984529][  T219] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.987546][  T219] bridge0: port 2(bridge_slave_1) entered forwarding state
[  186.083418][ T9280] tipc: Started in network mode
[  186.085015][ T9280] tipc: Node identity ac141425, cluster identity 4711
[  186.088155][ T9280] tipc: New replicast peer: 0.0.0.0
[  186.090487][ T9280] tipc: Enabled bearer <udp:syz2>, priority 10
[  186.104902][ T9280] tipc: New replicast peer: 172.20.20.170
[  186.183027][ T9215] 8021q: adding VLAN 0 to HW filter on device batadv0
[  186.223136][ T9215] veth0_vlan: entered promiscuous mode
[  186.229097][ T9215] veth1_vlan: entered promiscuous mode
[  186.245635][ T9215] veth0_macvtap: entered promiscuous mode
[  186.249615][ T9215] veth1_macvtap: entered promiscuous mode
[  186.258605][ T9215] batman_adv: batadv0: Interface activated: batadv_slave_0
[  186.266909][ T9215] batman_adv: batadv0: Interface activated: batadv_slave_1
[  186.272682][ T9215] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.275401][ T9215] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.278106][ T9215] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.280932][ T9215] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  186.286946][ T5942] Bluetooth: hci1: command tx timeout
[  186.324319][ T1136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  186.330109][ T1136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  186.336175][   T40] kauditd_printk_skb: 26 callbacks suppressed
[  186.336185][   T40] audit: type=1326 audit(1748301233.098:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9291 comm="syz.0.815" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e579 code=0x0
[  186.357573][ T9251] ieee802154 phy0 wpan0: encryption failed: -22
[  186.360180][ T1171] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  186.363311][ T1171] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  186.532316][ T9296] vlan2: entered promiscuous mode
[  186.534029][ T9296] bond0: entered promiscuous mode
[  186.535601][ T9296] mac80211_hwsim hwsim8 wlan1: entered promiscuous mode
[  186.909986][ T9299] netlink: 'syz.4.817': attribute type 5 has an invalid length.
[  186.912539][ T9299] netlink: 16 bytes leftover after parsing attributes in process `syz.4.817'.
[  187.101483][ T3223] tipc: Node number set to 2886997029
[  187.515259][ T9302] ieee802154 phy0 wpan0: encryption failed: -22
[  188.027340][ T9312] ieee802154 phy0 wpan0: encryption failed: -22
[  188.395338][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.829698][ T9305] ieee802154 phy0 wpan0: encryption failed: -22
[  189.038210][ T5301] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  189.042143][ T5301] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  189.045385][ T5301] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  189.048544][ T5301] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  189.051874][ T5301] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  189.304819][ T9321] chnl_net:caif_netlink_parms(): no params data found
[  189.793217][ T9321] bridge0: port 1(bridge_slave_0) entered blocking state
[  189.797173][ T9321] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.802678][ T9321] bridge_slave_0: entered allmulticast mode
[  189.806500][ T9321] bridge_slave_0: entered promiscuous mode
[  189.811037][ T9321] bridge0: port 2(bridge_slave_1) entered blocking state
[  189.814024][ T9321] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.816552][ T9321] bridge_slave_1: entered allmulticast mode
[  189.820431][ T9321] bridge_slave_1: entered promiscuous mode
[  189.884407][ T9321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  189.891488][ T9321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  189.963074][ T9321] team0: Port device team_slave_0 added
[  189.969640][ T9321] team0: Port device team_slave_1 added
[  190.019853][ T9321] batman_adv: batadv0: Adding interface: batadv_slave_0
[  190.022964][ T9321] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.033020][ T9321] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  190.044566][ T9321] batman_adv: batadv0: Adding interface: batadv_slave_1
[  190.050823][ T9321] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.061200][ T9321] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  190.102680][ T9321] hsr_slave_0: entered promiscuous mode
[  190.106690][ T9321] hsr_slave_1: entered promiscuous mode
[  190.108705][ T9321] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  190.111799][ T9321] Cannot create hsr debugfs directory
[  190.194112][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.478457][   T40] audit: type=1326 audit(1748301237.238:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9345 comm="syz.4.826" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704e579 code=0x0
[  190.536198][ T5301] Bluetooth: hci4: Malformed HCI Event
[  190.662545][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.789875][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.847737][ T9341] ieee802154 phy0 wpan0: encryption failed: -22
[  190.985012][   T13] bridge_slave_1: left allmulticast mode
[  190.986944][   T13] bridge_slave_1: left promiscuous mode
[  190.989691][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.996003][   T13] bridge_slave_0: left allmulticast mode
[  190.997749][   T13] bridge_slave_0: left promiscuous mode
[  190.999572][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.142151][ T5301] Bluetooth: hci1: command tx timeout
[  191.289200][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  191.295327][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  191.300695][   T13] bond0 (unregistering): Released all slaves
[  192.300940][ T9360] ieee802154 phy0 wpan0: encryption failed: -22
[  192.458643][ T9321] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  192.496518][ T9321] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  192.501987][ T9321] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  192.506325][ T9321] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  192.555090][ T9321] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.565187][ T9321] 8021q: adding VLAN 0 to HW filter on device team0
[  192.579870][   T13] hsr_slave_0: left promiscuous mode
[  192.589363][   T13] hsr_slave_1: left promiscuous mode
[  192.598983][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  192.601227][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  192.609588][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  192.612118][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  192.631834][   T13] veth1_macvtap: left promiscuous mode
[  192.633626][   T13] veth0_macvtap: left promiscuous mode
[  192.635344][   T13] veth1_vlan: left promiscuous mode
[  192.637875][   T13] veth0_vlan: left promiscuous mode
[  192.784908][ T9384] ieee802154 phy0 wpan0: encryption failed: -22
[  192.796706][   T40] audit: type=1326 audit(1748301239.348:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9379 comm="syz.4.832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  192.803320][   T40] audit: type=1326 audit(1748301239.348:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9379 comm="syz.4.832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  193.231517][ T5301] Bluetooth: hci1: command tx timeout
[  193.704953][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  193.706942][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  194.157830][ T9397] ieee802154 phy0 wpan0: encryption failed: -22
[  194.995408][ T9410] ieee802154 phy0 wpan0: encryption failed: -22
[  195.302967][ T5301] Bluetooth: hci1: command tx timeout
[  195.572343][ T9422] netlink: 'syz.0.838': attribute type 10 has an invalid length.
[  196.331265][ T9420] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  197.381407][ T5301] Bluetooth: hci1: command tx timeout
[  208.665902][ T5942] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  208.905500][ T5942] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  208.909522][ T5942] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  208.913951][ T5942] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  208.916724][ T5942] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  209.773611][ T1416] ==================================================================
[  209.776116][ T1416] BUG: KASAN: slab-use-after-free in handle_tx+0x5a5/0x630
[  209.778290][ T1416] Read of size 8 at addr ffff88806b452020 by task aoe_tx0/1416
[  209.781758][ T1416] 
[  209.782743][ T1416] CPU: 2 UID: 0 PID: 1416 Comm: aoe_tx0 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  209.782757][ T1416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  209.782763][ T1416] Call Trace:
[  209.782768][ T1416]  <TASK>
[  209.782772][ T1416]  dump_stack_lvl+0x116/0x1f0
[  209.782795][ T1416]  print_report+0xc3/0x670
[  209.782807][ T1416]  ? __virt_addr_valid+0x5e/0x590
[  209.782820][ T1416]  ? __phys_addr+0xc6/0x150
[  209.782833][ T1416]  ? handle_tx+0x5a5/0x630
[  209.782844][ T1416]  kasan_report+0xe0/0x110
[  209.782856][ T1416]  ? handle_tx+0x5a5/0x630
[  209.782867][ T1416]  handle_tx+0x5a5/0x630
[  209.782880][ T1416]  dev_hard_start_xmit+0x93/0x740
[  209.782892][ T1416]  __dev_queue_xmit+0x7eb/0x43e0
[  209.782903][ T1416]  ? lockdep_hardirqs_on+0x7c/0x110
[  209.782917][ T1416]  ? finish_task_switch.isra.0+0x221/0xc10
[  209.782929][ T1416]  ? rcu_is_watching+0x12/0xc0
[  209.782939][ T1416]  ? __pfx___dev_queue_xmit+0x10/0x10
[  209.782950][ T1416]  ? __lock_acquire+0xaa4/0x1ba0
[  209.782964][ T1416]  ? __lock_acquire+0xaa4/0x1ba0
[  209.782978][ T1416]  ? do_raw_spin_lock+0x12c/0x2b0
[  209.782993][ T1416]  ? find_held_lock+0x2b/0x80
[  209.783003][ T1416]  ? skb_dequeue+0x126/0x180
[  209.783011][ T1416]  ? find_held_lock+0x2b/0x80
[  209.783021][ T1416]  ? rcu_is_watching+0x12/0xc0
[  209.783031][ T1416]  tx+0xcc/0x190
[  209.783043][ T1416]  ? __pfx_tx+0x10/0x10
[  209.783054][ T1416]  kthread+0x1e4/0x3e0
[  209.783063][ T1416]  ? find_held_lock+0x2b/0x80
[  209.783072][ T1416]  ? __pfx_kthread+0x10/0x10
[  209.783082][ T1416]  ? __pfx_default_wake_function+0x10/0x10
[  209.783092][ T1416]  ? lockdep_hardirqs_on+0x7c/0x110
[  209.783107][ T1416]  ? __kthread_parkme+0x19e/0x250
[  209.783119][ T1416]  ? __pfx_kthread+0x10/0x10
[  209.783129][ T1416]  kthread+0x3c2/0x780
[  209.783143][ T1416]  ? __pfx_kthread+0x10/0x10
[  209.783156][ T1416]  ? __pfx_kthread+0x10/0x10
[  209.783170][ T1416]  ? __pfx_kthread+0x10/0x10
[  209.783183][ T1416]  ? __pfx_kthread+0x10/0x10
[  209.783197][ T1416]  ? rcu_is_watching+0x12/0xc0
[  209.783206][ T1416]  ? __pfx_kthread+0x10/0x10
[  209.783220][ T1416]  ret_from_fork+0x48/0x80
[  209.783229][ T1416]  ? __pfx_kthread+0x10/0x10
[  209.783243][ T1416]  ret_from_fork_asm+0x1a/0x30
[  209.783260][ T1416]  </TASK>
[  209.783264][ T1416] 
[  209.851906][ T1416] Allocated by task 7120:
[  209.853271][ T1416]  kasan_save_stack+0x33/0x60
[  209.854766][ T1416]  kasan_save_track+0x14/0x30
[  209.856250][ T1416]  __kasan_kmalloc+0xaa/0xb0
[  209.857707][ T1416]  alloc_tty_struct+0x96/0x8c0
[  209.859220][ T1416]  tty_init_dev.part.0+0x1e/0x500
[  209.860781][ T1416]  tty_open+0xa50/0xf90
[  209.862113][ T1416]  chrdev_open+0x234/0x6a0
[  209.863516][ T1416]  do_dentry_open+0x741/0x1c10
[  209.865035][ T1416]  vfs_open+0x82/0x3f0
[  209.866328][ T1416]  path_openat+0x1e5e/0x2d40
[  209.867782][ T1416]  do_filp_open+0x20b/0x470
[  209.869204][ T1416]  do_sys_openat2+0x11b/0x1d0
[  209.870677][ T1416]  __ia32_compat_sys_openat+0x16d/0x210
[  209.872427][ T1416]  __do_fast_syscall_32+0x73/0x120
[  209.874022][ T1416]  do_fast_syscall_32+0x32/0x80
[  209.875525][ T1416]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  209.877492][ T1416] 
[  209.878265][ T1416] Freed by task 1015:
[  209.879531][ T1416]  kasan_save_stack+0x33/0x60
[  209.881016][ T1416]  kasan_save_track+0x14/0x30
[  209.882530][ T1416]  kasan_save_free_info+0x3b/0x60
[  209.884125][ T1416]  __kasan_slab_free+0x51/0x70
[  209.885643][ T1416]  kfree+0x2b6/0x4d0
[  209.886897][ T1416]  process_one_work+0x9cf/0x1b70
[  209.888463][ T1416]  worker_thread+0x6c8/0xf10
[  209.890013][ T1416]  kthread+0x3c2/0x780
[  209.891384][ T1416]  ret_from_fork+0x48/0x80
[  209.892883][ T1416]  ret_from_fork_asm+0x1a/0x30
[  209.894456][ T1416] 
[  209.895236][ T1416] Last potentially related work creation:
[  209.897008][ T1416]  kasan_save_stack+0x33/0x60
[  209.898495][ T1416]  kasan_record_aux_stack+0xb8/0xd0
[  209.900135][ T1416]  insert_work+0x36/0x230
[  209.901502][ T1416]  __queue_work+0x97e/0x10f0
[  209.902993][ T1416]  queue_work_on+0x1a4/0x1f0
[  209.904450][ T1416]  release_tty+0x4de/0x5d0
[  209.905874][ T1416]  tty_release_struct+0xb7/0xe0
[  209.907421][ T1416]  tty_release+0xe2d/0x1430
[  209.908829][ T1416]  __fput+0x3ff/0xb70
[  209.910101][ T1416]  task_work_run+0x150/0x240
[  209.911597][ T1416]  do_exit+0xafb/0x2c30
[  209.912933][ T1416]  do_group_exit+0xd3/0x2a0
[  209.914369][ T1416]  get_signal+0x2673/0x26d0
[  209.915815][ T1416]  arch_do_signal_or_restart+0x8f/0x7a0
[  209.917553][ T1416]  syscall_exit_to_user_mode+0x150/0x2a0
[  209.919325][ T1416]  __do_fast_syscall_32+0x80/0x120
[  209.920948][ T1416]  do_fast_syscall_32+0x32/0x80
[  209.922496][ T1416]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  209.924485][ T1416] 
[  209.925256][ T1416] The buggy address belongs to the object at ffff88806b452000
[  209.925256][ T1416]  which belongs to the cache kmalloc-cg-2k of size 2048
[  209.929628][ T1416] The buggy address is located 32 bytes inside of
[  209.929628][ T1416]  freed 2048-byte region [ffff88806b452000, ffff88806b452800)
[  209.933848][ T1416] 
[  209.934630][ T1416] The buggy address belongs to the physical page:
[  209.936620][ T1416] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6b450
[  209.939336][ T1416] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  209.941975][ T1416] memcg:ffff88804f981881
[  209.943324][ T1416] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[  209.945676][ T1416] page_type: f5(slab)
[  209.946934][ T1416] raw: 04fff00000000040 ffff88801b44c140 dead000000000100 dead000000000122
[  209.949556][ T1416] raw: 0000000000000000 0000000000080008 00000000f5000000 ffff88804f981881
[  209.952237][ T1416] head: 04fff00000000040 ffff88801b44c140 dead000000000100 dead000000000122
[  209.954908][ T1416] head: 0000000000000000 0000000000080008 00000000f5000000 ffff88804f981881
[  209.957573][ T1416] head: 04fff00000000003 ffffea0001ad1401 00000000ffffffff 00000000ffffffff
[  209.960208][ T1416] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  209.962884][ T1416] page dumped because: kasan: bad access detected
[  209.964869][ T1416] page_owner tracks the page as allocated
[  209.966638][ T1416] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6812, tgid 6805 (syz.3.215), ts 80843191464, free_ts 80136952314
[  209.973039][ T1416]  post_alloc_hook+0x181/0x1b0
[  209.974548][ T1416]  get_page_from_freelist+0x135c/0x3920
[  209.976293][ T1416]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  209.978158][ T1416]  alloc_pages_mpol+0x1fb/0x550
[  209.979694][ T1416]  new_slab+0x244/0x340
[  209.981007][ T1416]  ___slab_alloc+0xd9c/0x1940
[  209.982492][ T1416]  __slab_alloc.constprop.0+0x56/0xb0
[  209.984179][ T1416]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  209.986178][ T1416]  kmemdup_noprof+0x29/0x60
[  209.987621][ T1416]  neigh_sysctl_register+0xb2/0x670
[  209.989254][ T1416]  addrconf_sysctl_register+0xb9/0x1f0
[  209.990973][ T1416]  ipv6_add_dev+0xb39/0x15f0
[  209.992459][ T1416]  addrconf_notify+0x53e/0x19e0
[  209.993994][ T1416]  notifier_call_chain+0xbc/0x410
[  209.995591][ T1416]  call_netdevice_notifiers_info+0xbe/0x140
[  209.997446][ T1416]  register_netdevice+0x182e/0x2270
[  209.999088][ T1416] page last free pid 5944 tgid 5944 stack trace:
[  210.001057][ T1416]  __free_frozen_pages+0x69d/0xff0
[  210.002694][ T1416]  qlist_free_all+0x4e/0x120
[  210.004157][ T1416]  kasan_quarantine_reduce+0x195/0x1e0
[  210.005861][ T1416]  __kasan_slab_alloc+0x69/0x90
[  210.007374][ T1416]  __kmalloc_cache_node_noprof+0x217/0x420
[  210.009191][ T1416]  __get_vm_area_node+0x101/0x330
[  210.010785][ T1416]  __vmalloc_node_range_noprof+0x277/0x1540
[  210.012669][ T1416]  vmalloc_noprof+0x6b/0x90
[  210.014100][ T1416]  xt_compat_init_offsets+0xe6/0x1f0
[  210.015767][ T1416]  compat_table_info+0xb7/0x5f0
[  210.017303][ T1416]  compat_get_entries+0x211/0x860
[  210.018896][ T1416]  do_ip6t_get_ctl+0x51f/0xa50
[  210.020409][ T1416]  nf_getsockopt+0x7c/0xe0
[  210.021852][ T1416]  ipv6_getsockopt+0x1f7/0x280
[  210.023373][ T1416]  tcp_getsockopt+0xa1/0x100
[  210.024951][ T1416]  do_sock_getsockopt+0x3fc/0x800
[  210.026543][ T1416] 
[  210.027328][ T1416] Memory state around the buggy address:
[  210.029073][ T1416]  ffff88806b451f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  210.031581][ T1416]  ffff88806b451f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  210.034066][ T1416] >ffff88806b452000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  210.036546][ T1416]                                ^
[  210.038146][ T1416]  ffff88806b452080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  210.040633][ T1416]  ffff88806b452100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  210.043151][ T1416] ==================================================================
[  210.045718][ T1416] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  210.047888][ T1416] CPU: 2 UID: 0 PID: 1416 Comm: aoe_tx0 Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  210.050836][ T1416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.054187][ T1416] Call Trace:
[  210.055254][ T1416]  <TASK>
[  210.056200][ T1416]  dump_stack_lvl+0x3d/0x1f0
[  210.057661][ T1416]  panic+0x71c/0x800
[  210.058918][ T1416]  ? __pfx_panic+0x10/0x10
[  210.060327][ T1416]  ? mark_held_locks+0x49/0x80
[  210.061865][ T1416]  ? handle_tx+0x5a5/0x630
[  210.063286][ T1416]  ? check_panic_on_warn+0x1f/0xb0
[  210.064905][ T1416]  ? handle_tx+0x5a5/0x630
[  210.066315][ T1416]  check_panic_on_warn+0xab/0xb0
[  210.067890][ T1416]  end_report+0x107/0x170
[  210.069249][ T1416]  kasan_report+0xee/0x110
[  210.070670][ T1416]  ? handle_tx+0x5a5/0x630
[  210.072120][ T1416]  handle_tx+0x5a5/0x630
[  210.073463][ T1416]  dev_hard_start_xmit+0x93/0x740
[  210.075058][ T1416]  __dev_queue_xmit+0x7eb/0x43e0
[  210.076613][ T1416]  ? lockdep_hardirqs_on+0x7c/0x110
[  210.078244][ T1416]  ? finish_task_switch.isra.0+0x221/0xc10
[  210.080077][ T1416]  ? rcu_is_watching+0x12/0xc0
[  210.081599][ T1416]  ? __pfx___dev_queue_xmit+0x10/0x10
[  210.083291][ T1416]  ? __lock_acquire+0xaa4/0x1ba0
[  210.084851][ T1416]  ? __lock_acquire+0xaa4/0x1ba0
[  210.086409][ T1416]  ? do_raw_spin_lock+0x12c/0x2b0
[  210.088002][ T1416]  ? find_held_lock+0x2b/0x80
[  210.089485][ T1416]  ? skb_dequeue+0x126/0x180
[  210.090956][ T1416]  ? find_held_lock+0x2b/0x80
[  210.092466][ T1416]  ? rcu_is_watching+0x12/0xc0
[  210.093981][ T1416]  tx+0xcc/0x190
[  210.095135][ T1416]  ? __pfx_tx+0x10/0x10
[  210.096446][ T1416]  kthread+0x1e4/0x3e0
[  210.097738][ T1416]  ? find_held_lock+0x2b/0x80
[  210.099228][ T1416]  ? __pfx_kthread+0x10/0x10
[  210.100687][ T1416]  ? __pfx_default_wake_function+0x10/0x10
[  210.102532][ T1416]  ? lockdep_hardirqs_on+0x7c/0x110
[  210.104173][ T1416]  ? __kthread_parkme+0x19e/0x250
[  210.105754][ T1416]  ? __pfx_kthread+0x10/0x10
[  210.107218][ T1416]  kthread+0x3c2/0x780
[  210.108505][ T1416]  ? __pfx_kthread+0x10/0x10
[  210.109963][ T1416]  ? __pfx_kthread+0x10/0x10
[  210.111430][ T1416]  ? __pfx_kthread+0x10/0x10
[  210.112931][ T1416]  ? __pfx_kthread+0x10/0x10
[  210.114387][ T1416]  ? rcu_is_watching+0x12/0xc0
[  210.115902][ T1416]  ? __pfx_kthread+0x10/0x10
[  210.117358][ T1416]  ret_from_fork+0x48/0x80
[  210.118768][ T1416]  ? __pfx_kthread+0x10/0x10
[  210.120235][ T1416]  ret_from_fork_asm+0x1a/0x30
[  210.121765][ T1416]  </TASK>
[  210.123457][ T1416] Kernel Offset: disabled
[  210.124822][ T1416] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:14:16  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=ffffc90002fbfdf0 RCX=ffffc90002fbf37c RDX=0000000000000000
RSI=ffffffff8dbb8f28 RDI=ffff8880258f4cc4 RBP=ffff8880258f4880 RSP=ffffc90002fbf388
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000007fb3
R12=ffffc90002fbf478 R13=ffffc90002fbf428 R14=ffffc90002fbfdf0 R15=ffffc90002fbf45c
RIP=ffffffff81a148d0 RFL=00000a03 [-O----C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977e7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055e293d47620 CR3=000000000e180000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 186781d39b8be6ac 0dad9a66a5f33946
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bafa68fd96fb49d6 ddb204faba1846ed
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 276b1b6d410d2269 c905661806f5431a
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d6cb35d9b2a85606 55aa8fe8f910b8bc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000080 0008ec982cc91a40
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008000000000 0000008000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000027c24d94 000b93dd264ffca8
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00a7b8442e3408c0 00000080000c271e
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 256774ae15b6460a 3980fe600b65a1a7
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 76a039a296f00f6d 9221645e26546b92
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9b94ffffffff8945 9b77ffffffff8945 9b5bffffffff8945 9b42ffffffff8945
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 338affffffff8946 337cffffffff8945 9c43ffffffff8945 9bc1ffffffff8945
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 34b1ffffffff8946 3492ffffffff8946 344dffffffff8946 33c1ffffffff8946
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20a3ffffffff8947 205fffffffff8947 2020ffffffff8947 1f1effffffff8947
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1d8effffffff8947 1bcdffffffff8947 1b54ffffffff8947 1946ffffffff8947
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 192dffffffff8947 18e1ffffffff8947 1897ffffffff8946 4c14ffffffff8946
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4bcaffffffff8946 35b6ffffffff8946 3575ffffffff8946 34e2ffffffff8946
ZMM24=4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040
ZMM25=afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a
ZMM26=f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556
ZMM27=d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e
ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=7e0b00007e0b0000 7e0b00007e0b0000 7e0b00007e0b0000 7e0b00007e0b0000 7e0b00007e0b0000 7e0b00007e0b0000 7e0b00007e0b0000 7e0b00007e0b0000
info registers vcpu 1

CPU#1
RAX=00000000008c3e63 RBX=0000000000000001 RCX=ffffffff8b69b3e9 RDX=0000000000000000
RSI=ffffffff8dbde4d7 RDI=ffffffff8bf48da0 RBP=ffffed1003b5c488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed10056665bd R10=ffff88802b332deb R11=0000000000000000
R12=0000000000000001 R13=ffff88801dae2440 R14=ffffffff90854f10 R15=0000000000000000
RIP=ffffffff8b699c7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978e7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7425004 CR3=0000000027e83000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000020210058
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffff0f0e0d0c
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff854c75b0 RDI=ffffffff9ade4c80 RBP=ffffffff9ade4c40 RSP=ffffc9000768f3c8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff35bc9e2 R15=dffffc0000000000
RIP=ffffffff854c75d7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979e7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007efc2d70735d CR3=000000000e180000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3e8e9f51bfb8bf03 1c7d8e163a48a3ac
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 948187067b3947cf e4319cc8092f73af
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dddeea7f0352fde1 53438655adac6e3c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 17813848a8aa1e72 6162e9f1d2f3a0f5
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2252b365f247bb46 9d1e1ba1012687e4
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2b81ef750aa10dfc 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2edbef7e35b398e0 dd6ad70bc877ca3c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6767db0c00000000 14597bd6177f6c00
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 994354b8e12f14b1 b488441001cb6bf3
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c013e1745e00b961 36c99f367f254286
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000031d3fb RBX=0000000000000003 RCX=ffffffff8b69b3e9 RDX=0000000000000000
RSI=ffffffff8dbde4d7 RDI=ffffffff8bf48da0 RBP=ffffed10037e4000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a65bd R10=ffff88802b532deb R11=0000000000000000
R12=0000000000000003 R13=ffff88801bf20000 R14=ffffffff90854f10 R15=0000000000000000
RIP=ffffffff8b699c7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ae7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f0df7ab4 CR3=0000000020127000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 da40534ffe34326f f71c978703cab7b1
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 afed79ec58d7c546 0f35e3cb3534175d
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8c0c89235648b6f8 7a202a5a2530ab5e
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e3291b54165273a3 5e618d22a2c7150c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d3da882c31cf55aa 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5d7478fd00000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d4b663faec4d6b7a a0ed8dc3fdad9489
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000004b093989
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856b08c647
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3bd3d5ffffffff89 3bd3adffffffff89 3bd338ffffffff89 3bd331ffffffff89
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3c2919ffffffff89 3bef71ffffffff89 3bec8dffffffff89 3bd41bffffffff89
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3c443dffffffff89 3c4290ffffffff89 3c4288ffffffff89 3c2fdeffffffff89
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3ca561ffffffff89 3ca4f0ffffffff89 3ca4aaffffffff89 3ca464ffffffff89
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3ca3b7ffffffff89 3ca374ffffffff89 3ca358ffffffff89 3ca340ffffffff89
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3ca312ffffffff89 3ca290ffffffff89 3ca1c7ffffffff89 3ca1a2ffffffff89
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3c4cd6ffffffff89 3c4c9dffffffff89 3c4c93ffffffff89 3c44feffffffff89
ZMM24=4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040 4ed500404ed50040
ZMM25=afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a afc0d95aafc0d95a
ZMM26=f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556 f27dd556f27dd556
ZMM27=d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e d4d60a5ed4d60a5e
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=7b0b00007b0b0000 7b0b00007b0b0000 7b0b00007b0b0000 7b0b00007b0b0000 7b0b00007b0b0000 7b0b00007b0b0000 7b0b00007b0b0000 7b0b00007b0b0000