last executing test programs:

29.829323569s ago: executing program 3 (id=211):
r0 = socket(0x11, 0x800000003, 0x0)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, 0x0, &(0x7f0000000240))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0xa0}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r1 = io_uring_setup(0x6281, &(0x7f0000000080))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x9000}, 0x1})
io_uring_enter(0xffffffffffffffff, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
ioctl$KVM_NMI(r6, 0xae9a)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x800100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe], 0x0, 0x200080})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
pipe(&(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
accept4$unix(0xffffffffffffffff, &(0x7f0000000200)=@abs, &(0x7f0000000280)=0x6e, 0x80800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x24000080}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

29.347519552s ago: executing program 3 (id=217):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000340)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
ioprio_set$pid(0x2, 0x0, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x48882, 0x0)
sendfile(r0, r0, 0x0, 0x20000000003f) (fail_nth: 13)

29.070673181s ago: executing program 3 (id=218):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x90})
r1 = socket$packet(0x11, 0x3, 0x300)
getsockopt$packet_int(r1, 0x107, 0x7, 0x0, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, 0x0)
iopl(0x83)
syslog(0x4, &(0x7f0000000bc0), 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc3, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r3)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r8, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x20000240, 0x20000270, 0x200002a0], 0x0, 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="00000000000000000000000000580fff8057676f430b7ffa51000000000000000000000000000000000000000000000000000000ffffffef0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000042f404addccbf680e0000000000000000fc58d063621aa1f24da7fbbc000000000000000000000000000000000000000000000000feffffff0000000048dfbaf2bb2dfb06c68280b973e99586e9eaf9a27418e3e7b7196e53a5f9b5609bdd2f9ab7d15c753aac04d9743996835010c138d47aa624050aa838e7244addebf68c9a823d4aee9bf94e259720489d03ab6b0cb3e030d20dc05580193171a2195240ba50907da4e391f718510ce718d2869c365f241f0960a85fe975dda61c9e4a42bd9f8fc4d556ebaae44b78e237f49635b2d62b2f26b2b1c19e7d2eec4ddca0a339a288e5f1554bdcb00768ff87488bd5fa981c46c3d900520ef75f52e29acd4f336912d1b644c9d7b6d2e63ff72fb1b312788fdbc77e3c9e30504b23e99bdaff02128aabc3d315626b22ff421d5b1c417122dfc9a099cd0831de3b04bc65b3da543e880c1412987fe7c71f24ec8add8c9a940e929d56d5f90ba3d2325096cb7f342462d426746f392b8170d7aeea00deea5b4607797ba974966ebc65227516c70198672db32fd9c52c4074b8e6608d9c956faa488912ff15f7fd68daab4d9e4f331c7478128d7b10acda"]}, 0x26d)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x24, r9, 0x1, 0x70bd24, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x380b}]}, 0x24}, 0x1, 0x0, 0x0, 0x4014001}, 0x9590f6cc3aa755b6)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f0000000480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[@ANYRES32=r2, @ANYRESOCT=r5, @ANYBLOB="010025bd7000fbdbdf252e00000008000300", @ANYRES32=r10, @ANYRESDEC=r3, @ANYRES64=r5], 0x68}, 0x1, 0x0, 0x0, 0x44004090}, 0x80)

28.230833553s ago: executing program 3 (id=227):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x488})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0x3af4701e)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000000), 0x1000000000000232, 0x0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r2, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
shutdown(r2, 0x1)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7c, &(0x7f00000000c0), &(0x7f0000000180)=0x8)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000080)='./file0\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="1000cdffc5139f9a2b425d849ed465a9d33a6e8d04000000260e00000000000000776e3259adec0cfdcddfbbd11a5541000f3fa40d58c7"], &(0x7f00000002c0), 0x1600)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000003d000d8632cd6bdccc8d0000047c0000040000000c00018006000600800a0000040002"], 0x28}}, 0xc000)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0xea)
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_GET_CPUID2(r7, 0xc008ae91, &(0x7f00000003c0)={0x3, 0x0, [{}, {}, {}]})
write$input_event(r1, &(0x7f0000000240)={{}, 0x1f, 0x5, 0x2e}, 0x10)
r8 = open(&(0x7f0000000040)='./file0\x00', 0x80400, 0x1b0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="080000000400000004000000ff00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000003"], 0x48)
io_uring_setup(0x3eaa, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x13a, 0x0, r8})
syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0)

27.769730449s ago: executing program 3 (id=232):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000600000001"], 0x50)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)

27.230953965s ago: executing program 3 (id=238):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f0000005dc0)=[{{&(0x7f0000001cc0)={0x2, 0x4e22, @empty}, 0x118, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="100000000000000001000000beffffff0d000000000000000100000003000000940000000000000007000000070b390a010100ac1414aa443c2781ac14141c00000002640101020000000364010102000000ffac1414bb00000007ac1414bb0000000764010102000001016401010200000006440c5453ffffffff000000004408ea3000000003832bc87f00000164010102e00000020a0101027f000001e000000164010100e0000001ac1414bbe0000002000064"], 0x118}}], 0x1, 0x0)

27.206493861s ago: executing program 32 (id=238):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f0000005dc0)=[{{&(0x7f0000001cc0)={0x2, 0x4e22, @empty}, 0x118, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="100000000000000001000000beffffff0d000000000000000100000003000000940000000000000007000000070b390a010100ac1414aa443c2781ac14141c00000002640101020000000364010102000000ffac1414bb00000007ac1414bb0000000764010102000001016401010200000006440c5453ffffffff000000004408ea3000000003832bc87f00000164010102e00000020a0101027f000001e000000164010100e0000001ac1414bbe0000002000064"], 0x118}}], 0x1, 0x0)

5.245899427s ago: executing program 4 (id=414):
r0 = memfd_secret(0x0)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b708000000dfff007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = fcntl$dupfd(r1, 0x0, r0)
ioctl$SCSI_IOCTL_GET_PCI(r4, 0x2284, &(0x7f0000000000))

5.138814934s ago: executing program 4 (id=416):
memfd_create(&(0x7f0000000100)=';e\x00\x00\xa4\xd8\xe0\x9c\x7f9\x8aZ]3N\xbb\xe1^\x9c\xe1\x9b6s$0Y\xf8\x90\x00\x00\x00\x00\xd2~l\xf6\x12\xde\xdd\xd5\x1d\x96\xb0a\xad\xcd\x16\xd8G\xae\xd9DZm\xabO\xad\x11%\x7f`@\x16c\xc0\xb6\x1f\xe3\x00\x1a_\xc7\xbf\xa7T\xbe\x13\x8b\xb3r\x8fL\xe6\xba\xe7\x18\xb4$BIj\xa3\xc9\xc6|\x9b\x88\xddPx\x02I\xde\xe8\xcd\x02\xc1\xedc2\x06\xcbM\xfb\x13jZ\x96\xeej\x9b\xe4XjN\xb9>\xdf3U\r \x8dh8T/h)\x90\xff\x8d\xd9\x89\xab\xf8P\xacYtk\xa3\xed\xfa*8\x13\b\xce\xf8z\xed\xadnz\x96\xa3\x9a9R\xd9]\xe11We\xfe3\xe06\x1a^\x04^\xef\xa3\x0fU\x9b1\xc6J\x83\x9d[\\a\xfd\xdc\xa1\xcd\xbe\x9b\xc5z7\xe8VP\x89\x16MK`\xe5\x137\b\x00\x00\x00\xd5\x01\xea\x98\xe6Z\x95j\xe3\x0ek>\x14\x80\rXS\xce\xf9\x0e\x89\xc4\xc6\x1bOm4Lla\r\xce\x17\xb5r&\xf3\x96\xbc\xc39\xa7\x95\xd9F\x17', 0x0) (async)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00')
r1 = open_tree(r0, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (async)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x541c, &(0x7f0000000080)) (async)
syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IEEE802154_LIST_IFACE(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='7'], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020601080000000000000000000000000c00078008001200000000000500010006000000050005000a00000005000400000278000900020073797a310000000011000300686173683a69702c706f7274"], 0x58}}, 0x4000080) (async)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), r4) (async)
r6 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
write$sndseq(r6, &(0x7f0000000600), 0x0) (async)
statx(r6, &(0x7f0000000240)='./file0/../file0\x00', 0x1100, 0x140, &(0x7f00000024c0)) (async)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=ANY=[], 0x5c}, 0x1, 0x0, 0x0, 0x40080}, 0x80) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000340), r4) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) (async)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) (async)
write$vga_arbiter(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB='lock i'], 0x8)
ioctl$KVM_SET_NESTED_STATE(r10, 0x4080aebf, &(0x7f00000002c0)={{0x3, 0x0, 0x80, {0x8, 0x100000, 0x3}}, "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", "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"})
r11 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r12, 0x4068aea3, &(0x7f0000000500)={0xc7, 0x0, 0x1})

5.07952983s ago: executing program 4 (id=418):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a03020000000000000000020000000900020073797a30000000000900010073797a3000000000140003800800024000000000080001400000000014000000110001"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x2c, 0x16, 0xa, 0x801, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}], {0x14}}, 0x54}}, 0x0)

5.029572766s ago: executing program 4 (id=420):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ftruncate(r0, 0xc17c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000140)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd602e5cea00403c0020010000000000000000000000000000ff0200000000000000000000000000010004000000000000c9"], 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x145842, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000000c0), 0xfea7)
copy_file_range(r2, &(0x7f00000001c0), r1, 0x0, 0xa78, 0x10000000000000)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000800)=ANY=[@ANYBLOB="34010000100013070000000000000000fe880000000000000000000000000001ac1414aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="2001000000000000000000000032000000fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000047a138846a9c5d26c70000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0003000000000048000200656362286369706865725f6e756c6c2900"/229], 0x134}}, 0x0)
io_uring_setup(0x5237, &(0x7f0000009a80)={0x0, 0x25d1, 0x400, 0x0, 0x20e})
symlinkat(&(0x7f0000000180)='.\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='efs\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000580), r5)
sendmsg$IEEE802154_ASSOCIATE_RESP(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000005c0)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_STATUS={0x5}]}, 0x1c}}, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r4, 0x0)

4.857296009s ago: executing program 4 (id=421):
r0 = getpid()
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r2, 0x1, 0x45, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r0}}]}, 0x3c}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)

4.47028899s ago: executing program 2 (id=426):
socket$inet6(0x10, 0x3, 0x0)
syz_open_dev$sg(&(0x7f00000003c0), 0x8, 0x101005)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mlockall(0x7)
r0 = socket$inet_sctp(0x2, 0x400000000001, 0x84)
sendto$inet(r0, 0x0, 0x0, 0x805, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000300)={0x28, 0x0, 0xffffffff}, 0x10)
socket$alg(0x26, 0x5, 0x0)
pselect6(0x40, &(0x7f00000000c0)={0x900000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)

4.165394414s ago: executing program 4 (id=429):
r0 = socket$isdn_base(0x22, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000040), r1)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r3, 0xc0f8565c, &(0x7f0000001080)={0x0, 0x5, 0x1, {0x2, @win={{}, 0x0, 0xffffffff, 0x0, 0xffffffff, 0x0}}})
sendmsg$SEG6_CMD_DUMPHMAC(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000006f6e724a4b17b8ece65b813d123b15afd2b724d46e335212e09982eaf19ad815f25db7fcf167e8d2a0e3dba7e7104ed778431da0346a27448752a875414eb68b133a23726a1eab12f1d6c2d56e70a0ce48a4ca0c1a4338d2eb450d80a28099010a899b0b49fc73c0492f55b3e114adf9242c6ca89ddab44a69c17390dd6744097de0cfc829060be64612f9aad2abb980d774c240fa02c4d31e5ea9ad157c55d5d6fd9776f831", @ANYRES16=r2, @ANYBLOB="01032cbd7000ffdbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x110, r0, 0xfffff000)
r4 = open_tree(0xffffffffffffff9c, 0x0, 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYRES16=r5], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x240440c4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = syz_io_uring_setup(0x7f61, &(0x7f00000006c0)={0x0, 0x4533, 0x0, 0x0, 0x2b3, 0x0, r4}, &(0x7f0000000080)=<r9=>0x0, &(0x7f0000000340)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000600)=ANY=[@ANYRESHEX=r4], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='xprtrdma_inline_thresh\x00', r11}, 0x18)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
socket$kcm(0x2c, 0x3, 0x0)
r12 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000580)="6700000011008188040f56ecdb4cb9cca7480ef434000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774fa0af3dc59a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1}, 0x0)
io_uring_enter(r8, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x400017e)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4048aecb, &(0x7f0000000480)=ANY=[])
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f0000000240)={&(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180), &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4, 0x4000000000000140, 0x2, 0x6})

3.870535382s ago: executing program 2 (id=431):
r0 = syz_open_dev$sndctrl(&(0x7f0000000240), 0x0, 0x0)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080))
mkdir(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f0000000180)='./bus\x00', 0x90000818)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-512-generic\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$unix(r5, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001100)="b2", 0x7fffefff}, {&(0x7f0000001140)='K', 0x1}], 0x2, 0x0, 0x0, 0x8dff}}], 0x1, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
getsockopt$sock_buf(r6, 0x1, 0x1a, 0x0, &(0x7f0000001400))
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc2c45513, &(0x7f0000000280)={{0xb, 0x0, 0x3, 0x0, '\x00', 0x3}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x20, 0x0, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0xffffffff, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x2]})

3.108232534s ago: executing program 1 (id=437):
r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0x639)
r1 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_setup(0xa94, &(0x7f0000000300), &(0x7f00000000c0)=<r3=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x5f, 0x0, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r1, 0xb15, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x200})
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000001980)={{0x2000, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 'syz0\x00', 0x0})

3.030589962s ago: executing program 2 (id=438):
syz_usb_connect(0x2, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x77, &(0x7f0000000000)=@string={0x77, 0x3, "abe98397850d9289638d7120310994176d76ee8005e3bf5de76d569d98cc3ce7d4419c84da5f7e420900d136a14f65099da81db6c35a3e0c7fb9fe03b0fa265df2be125facefe74e0e21bb6a1889f400fb20971f7f4031183b1ef33a6b6292c4d96927f019fba2ad2987739c5e0d59351755863603"}}]})
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a01020000000000000000020000000900010073797a3000000000aa000300"], 0x1e4}}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
socket$alg(0x26, 0x5, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, 0x0)
pselect6(0x40, &(0x7f0000000600), 0x0, &(0x7f0000000680)={0x7ff}, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x7fff, 0x0)

2.20906051s ago: executing program 1 (id=441):
poll(0x0, 0x0, 0xa)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x6, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000340)=ANY=[@ANYRES64=0x0, @ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0xe99e21c109ef349f, 0x0, &(0x7f0000000240))
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x3d, &(0x7f0000000380)=""/206, &(0x7f0000000000)=0xce)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000480)={'sit0\x00', &(0x7f0000000680)={'syztnl1\x00', 0x0, 0x8000, 0x80, 0x6, 0x9, {{0x33, 0x4, 0x1, 0x3, 0xcc, 0x66, 0x0, 0x2, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote, {[@lsrr={0x83, 0x3, 0xa3}, @lsrr={0x83, 0x13, 0x1b, [@empty, @rand_addr=0x64010101, @loopback, @loopback]}, @timestamp={0x44, 0x18, 0xdb, 0x0, 0x3, [0x9, 0x6, 0x5, 0x3, 0x8]}, @ssrr={0x89, 0xb, 0x6d, [@remote, @local]}, @rr={0x7, 0x1b, 0x79, [@broadcast, @dev={0xac, 0x14, 0x14, 0x1d}, @broadcast, @empty, @remote, @private=0xa010102]}, @timestamp={0x44, 0x14, 0xb8, 0x0, 0xb, [0x7, 0x7f, 0x0, 0x7ff]}, @timestamp={0x44, 0xc, 0x5e, 0x0, 0x2, [0x9, 0xd]}, @cipso={0x86, 0x1f, 0xffffffffffffffff, [{0x7, 0xa, "b07376339db3b5dc"}, {0x5, 0x9, "94929576d39780"}, {0x5, 0x6, '0fUi'}]}, @noop, @cipso={0x86, 0x21, 0x2, [{0x0, 0xb, "9eef919ebaae402351"}, {0x0, 0x10, "db9c7d7d93507c94d9863e3399af"}]}]}}}}})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0xc6, {0x0, 0x6}, {}, @raw32}], 0x1c)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000180)={0x1d7, @time={0x65757900}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x54, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}, @IPSET_ATTR_REVISION={0x5}]}, 0x54}}, 0x840)
sendmsg$IPSET_CMD_FLUSH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x28, 0x4, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x28}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r4)
sendmsg$NL80211_CMD_REQ_SET_REG(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)={0x1c, r5, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000090)
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)
socket(0xa, 0x1, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)

2.129855621s ago: executing program 0 (id=442):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_open_dev$usbmon(&(0x7f0000000900), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
unshare(0x22020400)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[], 0xd)
r3 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40082104, &(0x7f00000001c0)={0x0, 0x0, 0xffffffffffffffff, 0xfffffffe})
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r5, 0x4b47, &(0x7f0000000080)={0x0, 0x7f, 0x20f})
openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000240)={{{@in=@loopback, @in=@private=0xa010100, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x80000001}, {0x3}, 0x0, 0x0, 0x0, 0x1f77104cdd89d482}, {{@in=@dev, 0x0, 0x2b}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x1b}}}, 0xe4)
mknodat$loop(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000faffffff0000000000000000850000002c0000008500000005000000950000"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.020633573s ago: executing program 1 (id=443):
r0 = memfd_secret(0x0)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b708000000dfff007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r0)
ioctl$SCSI_IOCTL_GET_PCI(r3, 0x2284, &(0x7f0000000000))

2.019940913s ago: executing program 1 (id=444):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x40040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f00000000c0)={0x4, 0x8})
readv(r0, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x20}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0e00000004000000040000000300000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYBLOB], 0x48)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0200000004000000080000000100666bb9c31fac7ddd58ef5afd1b50f3957cf30000687d1f4e1459073bd8e0601fa73a70b9aa5aa786562a3c451e719f7ffc71d0c36acc3d08911acebc7220c0b5a540000000000004000064538c3ccbdf7d789ad1bf17d9d94eae04866aedd86f28ead3a56215d42f079e29953cae0d9b765b0b8283a1f7812e0000000000005ef21357db374b28be3ff7326ee2f2d7bc7f577208e7bef95d7a685391884771031753a3616caf1f", @ANYRES32=0x0, @ANYBLOB='\x00'/14, @ANYRES16=r2, @ANYRES64=r4, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000480)=ANY=[@ANYBLOB="1808000060000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000020b702000014000000be73a0b7030000000000008500000005000002bc0908000000000035090100000000009500000000070000b7020000000000007b9a00fe000000006609000000000000dbaaf0ff50000000bf8620000000000007080000f8ffffffbfa400000000000007040000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000b700000000000000950000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$loop(&(0x7f0000000300), 0x2, 0x40000)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f00000002c0)={0x0, 0x0, 0x27f})
ioctl$sock_bt_hci(r6, 0x800448d3, 0x0)
inotify_init1(0x80800)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)
sendto$inet6(r8, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
shutdown(r8, 0x1)

1.539979983s ago: executing program 0 (id=445):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a03020000000000000000020000000900020073797a30000000000900010073797a3000000000140003800800024000000000080001400000000014000000110001"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x30, 0x16, 0xa, 0x801, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x4}]}], {0x14}}, 0x58}}, 0x0)

1.539809511s ago: executing program 0 (id=446):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000380)=0x8, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4)
sendmmsg$inet6(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000340)="bb1cdca1950d1b232ce0244d93aa106f2a499c9b5405eeda6af2450ff2b0bcd97c89fd5bb5f76ac8a9c573237275a8c10c6cf731f00d3229a3", 0x39}, {&(0x7f0000000540)="99e7441dd5d7c19d29ea7abd7a3268189f03e5e8d291177ed03e3c86d27a944ebcffc5ddba0a01709a80ebd34d37a7074699a1c102839733d3f85e22bf81d23594ee4c1b584446d04987892cb071156f3d7e41cfc05f941f6877cd7c6dcfa5b7a863afe4e9e8f634f5c4ef25ece96b62b15005b6dde2667acbae270613b6559c1bb0e2d4017a3d1deafa7817b69aaa685a9876bea763946ece87e97007d1ef34cf52eefdaa05ee1de14a60897f8a3a2019ec", 0xb2}, {&(0x7f0000000600)="ec2c6c1da17b6fd606fcf427333ba17df57a32f11e8c0aca79b6e8c2f6669b3848875bec013c81bfca6764485047c453f5d2ab74e1096017c216a6387cf637e5cfa23b2a66df17d1694194d44327b78d713ac4fcaea04cc551731260469ecee67bcd3df3dbd25d0723e491e875383596643f31d2be0ad9b5839217089f1323e76e34bbb8efd4b9563ab3611a9df4c268025b0ff7273cc6c6b53e54eeffa0cfcded3e487d3707b90d13900f3d7846f87d29cdc9c97e735160c313fae2fb961f7417050f5515bce2214c507530155606994191c89423777f594dd820780ca434c514", 0xe1}, {&(0x7f0000000b40)="ae43fca408b50cc7d9a1725c2ef2932090a25a7d70e0313df3d0e2e7820008e231e83c86465164e4abcf4e24c3fc2db9f6fb89efefed5c1b47d9ac01381c7bbb6ab8a6b6f36bc0b68742ae9e8229b5b72aa83e3b9deb8762f45dfbf9b109a0fa6206166305673d0c05cfd2fbd994d050b67e6d9fb9a9527770d71734eb29583e6e9b7518c95d805aeac31d634b0efffe3d2b7178", 0x94}, {&(0x7f0000000940)="627f33009436c19975ccfa9385c8c4798fade4caeab322b77e7ec95e25d7c25e002e60344b1c2a51dff99867d73c331c75a68f8a6733f8f581eb762b2f132260198995a89d08060545ccf412d0faa7d850297588a08f40e90919c954970fd2d7598a317464c1f34637002b836c0ec527fc790be4f4755f90bb05c3b33a224a84cd276dc1dad4fb6e01f0355903e11fc51b25ea05d7ab7125f4cb9c4aedd64b0741c712491ad3ea0241704c98a49fd1c15e9585f797fcb03432561420014e692967191bb17c256b99bd891adc0d8d8ce93167e37adc4411931f859c262f4f20eb21f8323bf0", 0xe5}, {&(0x7f0000000400)="a756b3", 0x3}, {&(0x7f0000000a40)="f54bcf6dea0a0953773322b72583370e30f8b9a2711f0965888fbec9a590bac982bd385851df74753f21b138e3a0cb01befb5e5f501ff451923a89e7bf5d3368fe7aec72692530fabc7717316caac71eda0103f074cd7e430555fca5d00714a54c58f77dc9c67b5c13e0bac95e0c1a6f0ecabfbf5e31408f64f93f44cc2b6e3403943f5be6406c8bfdb90dec3f7f716caf94f4eab754612c7d189dcf96d3f0b2694202f7f4378a59474ccec503303bfe773f39322bf95aed675347401b117b022c52a18358dade3e4a6a5b8e486c10b14406", 0xd2}, {&(0x7f0000000480)="73cdfa0744e27653b929b65b3103098b78df6eb98c295fe3974cedbec9dc024acafcdc4cf4c408c1226d81b40597f14657ffedc90ffaa3df", 0x38}, {&(0x7f00000007c0)="80fb5010a1331b3fba6607e02da650e5b295534b907e163a83b74e46a6333eca012e324bf98922e2f008555e17ddba76eac48a9d105952fae6b2a68474259e34ebc60ed8188c420493281748430e8aaed72a7d5dfc3cf588adb55ce4d4dfe89d78a48949e46347e37809a3f102319304c3a08f315d96dddcb3a55417bca588243b83741f875a21fe0414fac5e7131382cc989f9240915e8d19c3d7d42be3d7c769aebbcb899bd7716c1194b3214dd986ddd3f7bc9bd184816b8711b57bd5d84180925634e82c8ac34aa6298ddb733b285871ca664cdadcba7c5fb9e6796cb2daefc70822756d", 0xe6}, {&(0x7f0000000c40)="6052aef8b889f6cca93b612aeaef0b7f463c844234448da6ca1d912df865b6c8cb1818a1b1e9f359018ab2fb5f2bb976593aed85a4d587f8f2d327e1cc37009caccd350cccd8", 0x46}], 0xa}}], 0x1, 0x0)

1.460221875s ago: executing program 0 (id=447):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}, {0x0, 0x80}, {}, {}, {0x4}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c0000000200000000000000020000040800000000000000030000000000000000000000020000000000000000000000000000020000"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0600000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="ff0f000401e3b8000000000000000000000000000000deff00000000"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x109042, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./bus\x00', 0x85)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_on}]})
creat(&(0x7f0000000340)='./file0/file0\x00', 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
setxattr$security_ima(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100), &(0x7f0000000200)=ANY=[], 0x52, 0x0)
open$dir(0x0, 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
shutdown(r2, 0x1)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7c, &(0x7f00000000c0), &(0x7f0000000180)=0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000011000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8140000b80200000800009b0000009500"/96], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0, 0x8})
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r4, 0xc2c85513, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)

1.098520647s ago: executing program 1 (id=448):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x80000000000001, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x1, 0x130, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB]}, 0x50)
syz_emit_ethernet(0x8e, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
quotactl_fd$Q_SETQUOTA(r1, 0xffffffff80000800, 0xee01, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8)
getsockname$packet(r1, &(0x7f00000000c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000100)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', r2, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sched_getscheduler(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000140)={0x3, &(0x7f0000000080)=[{0x1, 0x2, 0x9e, 0x2}, {0x6, 0x4a, 0x6, 0x81}, {0xa, 0x5, 0x9, 0x2}]})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x700, 0x0, 0x0, 0x1, 0x1000000000000, &(0x7f0000000780)="cb"})
r4 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f0000010300)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000010380)=""/47, 0x2f}], 0x4)
syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r4, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

715.120658ms ago: executing program 0 (id=449):
openat$tun(0xffffff9c, &(0x7f0000000040), 0x200200, 0x0)
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="03040000b500000000000000feefffff"], 0xc8)

630.643547ms ago: executing program 0 (id=450):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x4019031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2000000002)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
listen(0xffffffffffffffff, 0xcbe)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
r4 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_STREAMOFF(r4, 0x40045612, &(0x7f0000000080)=0x2)
socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000340)={&(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0], 0x4})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)

478.725917ms ago: executing program 1 (id=451):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x1004, 0x345581)
r1 = dup(r0)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000001740)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, <r4=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1a, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="18020000000000000080ed41f000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @tracing, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r4, r3, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xb9, &(0x7f000000cf3d)=""/185, 0x41000, 0x2, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=@base={0x12, 0x2, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='\a'], 0x10)
close(0x3)
close(r6)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1, 0x3, 0x261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f00000008c0)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}, {}, {0x85, 0x0, 0x0, 0x16}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, 0xffffffffffffffff, 0x0, 0xa002a0}, 0x38)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r8, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280))
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB="02ac9f000100000000000000040000000000000010000000000000002000000000000000"], 0x24, 0x0)
listxattr(&(0x7f0000001e80)='./file0\x00', 0x0, 0x2)
r9 = syz_io_uring_setup(0x235, &(0x7f00000002c0)={0x0, 0x4533, 0x10100, 0x0, 0x82b1}, &(0x7f0000000180)=<r10=>0x0, &(0x7f0000000340)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/reserved_size', 0x10000, 0xa4)
io_uring_enter(r9, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
pipe2(&(0x7f0000000340)={<r12=>0xffffffffffffffff}, 0x0)
read$FUSE(r12, &(0x7f0000000480)={0x2020}, 0x2020)

599.018µs ago: executing program 2 (id=452):
r0 = memfd_secret(0x0)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b708000000dfff007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r0)
ioctl$SCSI_IOCTL_GET_PCI(r3, 0x2284, &(0x7f0000000000))

286.656µs ago: executing program 2 (id=453):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x29)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000005000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
brk(0x6)

0s ago: executing program 2 (id=454):
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000050000000000000000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c0004804800018008000100666962003c000280080003400000000c08000140000000020800014000000030080002"], 0x122}}, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(0xffffffffffffffff, 0x541b, 0x0) (async)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(0xffffffffffffffff, 0x541b, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000200)={'vxcan1\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r2}, 0x18)
sendmsg$can_j1939(r1, &(0x7f00000002c0)={&(0x7f00000000c0)={0x1d, 0x0, 0x0, {0x0, 0x1ee, 0x2}}, 0x18, &(0x7f00000004c0)={&(0x7f0000000140)='\x00', 0x1}}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) (async)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
iopl(0x3) (async)
iopl(0x3)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10)
pwritev2(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000040)="d0600b401f39b97bf93ecf49759e94b4519a0de2f87e5c417273a5dce55efb335b22dce602ca972f116438489fdab766171401f130eb1c9e78ec70db15755f97ca197fc3da0b85ea0d2f7bdffcc1caa5810430b5448f4ae272489f5c7ac1e4660c4f7b0446d5457181924a3d4dbfdfee93a14379adfe7c1effdacb69a945", 0x7e}], 0x1, 0xa, 0x6e6f2b53, 0x10)
syz_open_dev$usbfs(&(0x7f0000000480), 0xc, 0x141341) (async)
r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0xc, 0x141341)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000000)=@usbdevfs_driver={0x8, 0x8, &(0x7f0000000780)="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"})
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0xff88) (async)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0xff88)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58) (async)
bind$alg(r6, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, 0x0, 0x0)
accept4(r6, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000100)) (async)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000100))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/custom1\x00', 0x0, 0x0) (async)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/custom1\x00', 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xe, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
ioctl$BINDER_THREAD_EXIT(r7, 0x40046208, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:28457' (ED25519) to the list of known hosts.
[   34.156419][ T5866] cgroup: Unknown subsys name 'net'
[   34.317146][ T5866] cgroup: Unknown subsys name 'cpuset'
[   34.320691][ T5866] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   35.097848][ T5866] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   37.249306][ T5945] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   37.250104][ T5938] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   37.252042][ T5945] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   37.256323][ T5945] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   37.256511][ T5938] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   37.258308][ T5945] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   37.260342][ T5938] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   37.262440][ T5945] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   37.265380][ T5938] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   37.266248][ T5945] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   37.268876][ T5938] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   37.272024][ T5945] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   37.272740][ T5938] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   37.274297][ T5945] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   37.277070][ T5938] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   37.278252][ T5949] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   37.279817][ T5949] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   37.279858][ T5945] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   37.280068][ T5945] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   37.280173][ T5945] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   37.293727][ T5949] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   37.295865][ T5949] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   37.296219][ T5950] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   37.297963][ T5949] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   37.443003][ T5939] chnl_net:caif_netlink_parms(): no params data found
[   37.455612][ T5936] chnl_net:caif_netlink_parms(): no params data found
[   37.502905][ T5940] chnl_net:caif_netlink_parms(): no params data found
[   37.529644][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.532017][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.534085][ T5936] bridge_slave_0: entered allmulticast mode
[   37.536143][ T5936] bridge_slave_0: entered promiscuous mode
[   37.539258][ T5944] chnl_net:caif_netlink_parms(): no params data found
[   37.568333][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.570246][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.572114][ T5936] bridge_slave_1: entered allmulticast mode
[   37.574466][ T5936] bridge_slave_1: entered promiscuous mode
[   37.586278][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.588164][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.590039][ T5939] bridge_slave_0: entered allmulticast mode
[   37.592060][ T5939] bridge_slave_0: entered promiscuous mode
[   37.610016][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.612429][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.614406][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.616394][ T5939] bridge_slave_1: entered allmulticast mode
[   37.618353][ T5939] bridge_slave_1: entered promiscuous mode
[   37.654614][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.701078][ T5936] team0: Port device team_slave_0 added
[   37.704126][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.714441][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.716260][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.718111][ T5940] bridge_slave_0: entered allmulticast mode
[   37.720075][ T5940] bridge_slave_0: entered promiscuous mode
[   37.723039][ T5936] team0: Port device team_slave_1 added
[   37.726454][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.736789][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.738657][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.740555][ T5944] bridge_slave_0: entered allmulticast mode
[   37.742525][ T5944] bridge_slave_0: entered promiscuous mode
[   37.747011][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.748934][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.750806][ T5940] bridge_slave_1: entered allmulticast mode
[   37.752821][ T5940] bridge_slave_1: entered promiscuous mode
[   37.795198][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.797071][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.798949][ T5944] bridge_slave_1: entered allmulticast mode
[   37.800927][ T5944] bridge_slave_1: entered promiscuous mode
[   37.822710][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.826356][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.828201][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.834974][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.839733][ T5939] team0: Port device team_slave_0 added
[   37.851900][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.863435][ T5939] team0: Port device team_slave_1 added
[   37.865477][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.867280][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.873892][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.877834][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.889571][ T5940] team0: Port device team_slave_0 added
[   37.908585][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.911942][ T5940] team0: Port device team_slave_1 added
[   37.922625][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.924574][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.931110][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.956225][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.958078][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.965466][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.978376][ T5944] team0: Port device team_slave_0 added
[   37.980795][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.982643][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.989824][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.006511][ T5936] hsr_slave_0: entered promiscuous mode
[   38.008963][ T5936] hsr_slave_1: entered promiscuous mode
[   38.012759][ T5944] team0: Port device team_slave_1 added
[   38.023412][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.025361][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.032764][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.048932][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.050780][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.057969][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.078686][ T5939] hsr_slave_0: entered promiscuous mode
[   38.080591][ T5939] hsr_slave_1: entered promiscuous mode
[   38.082423][ T5939] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   38.084946][ T5939] Cannot create hsr debugfs directory
[   38.095303][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.097087][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.103648][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.130932][ T5940] hsr_slave_0: entered promiscuous mode
[   38.132816][ T5940] hsr_slave_1: entered promiscuous mode
[   38.134700][ T5940] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   38.136676][ T5940] Cannot create hsr debugfs directory
[   38.187051][ T5944] hsr_slave_0: entered promiscuous mode
[   38.189100][ T5944] hsr_slave_1: entered promiscuous mode
[   38.190870][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   38.192825][ T5944] Cannot create hsr debugfs directory
[   38.327197][ T5939] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   38.333884][ T5939] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   38.337477][ T5939] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   38.343754][ T5939] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   38.355739][ T5944] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   38.359299][ T5944] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   38.363233][ T5944] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   38.367004][ T5944] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   38.386803][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.389290][ T5939] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.392224][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.394884][ T5939] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.402148][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.404143][ T5944] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.406108][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.407979][ T5944] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.412997][ T5940] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   38.417183][ T5940] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   38.426185][ T5940] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   38.432745][ T1139] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.436062][ T1139] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.442553][ T1139] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.448053][ T1139] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.461470][ T5940] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   38.477995][ T5936] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   38.481893][ T5936] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   38.486721][ T5936] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   38.491860][ T5936] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   38.517197][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.538633][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.542366][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   38.556587][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[   38.559772][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.561573][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.564414][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.566275][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.583568][ T1135] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.585591][ T1135] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.589740][ T1135] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.591611][ T1135] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.602870][ T5944] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   38.623603][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.630478][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.645440][ T5936] 8021q: adding VLAN 0 to HW filter on device team0
[   38.653496][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.656088][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.661292][ T5940] 8021q: adding VLAN 0 to HW filter on device team0
[   38.668447][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.671086][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.676608][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.679161][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.686463][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.689059][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.709613][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.743577][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.761719][ T5944] veth0_vlan: entered promiscuous mode
[   38.771146][ T5939] veth0_vlan: entered promiscuous mode
[   38.775342][ T5944] veth1_vlan: entered promiscuous mode
[   38.780348][ T5939] veth1_vlan: entered promiscuous mode
[   38.798608][ T5944] veth0_macvtap: entered promiscuous mode
[   38.809654][ T5944] veth1_macvtap: entered promiscuous mode
[   38.814020][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.819338][ T5939] veth0_macvtap: entered promiscuous mode
[   38.825070][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.828042][ T5939] veth1_macvtap: entered promiscuous mode
[   38.830823][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.835759][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.838932][ T5944] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.841272][ T5944] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.843521][ T5944] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.846310][ T5944] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.859182][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.862220][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.865610][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.874467][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.877236][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.880290][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.889579][ T5939] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.892862][ T5939] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.895491][ T5939] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.897718][ T5939] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.907276][ T5936] veth0_vlan: entered promiscuous mode
[   38.941302][ T5940] veth0_vlan: entered promiscuous mode
[   38.943443][ T5936] veth1_vlan: entered promiscuous mode
[   38.954925][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.957060][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.957222][ T5940] veth1_vlan: entered promiscuous mode
[   38.963477][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.965982][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.986174][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.986996][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.987510][ T5936] veth0_macvtap: entered promiscuous mode
[   38.988934][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.989068][ T5936] veth1_macvtap: entered promiscuous mode
[   38.990845][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.007484][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.011267][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.014845][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.017663][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.021195][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.028098][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.031898][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.036175][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.039907][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.044442][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.052944][ T5940] veth0_macvtap: entered promiscuous mode
[   39.054898][ T5944] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   39.058488][ T5940] veth1_macvtap: entered promiscuous mode
[   39.062181][ T5936] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.066925][ T5936] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.070134][ T5936] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.072616][ T5936] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.099272][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.100334][ T5998] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'.
[   39.101982][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.102001][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.102009][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.102014][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.102021][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.102448][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.128872][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.132017][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.134881][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.137571][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.140099][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.142770][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.146277][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.163736][ T5940] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.167454][ T5940] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.170309][ T5940] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.173212][ T5940] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.188696][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.191979][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.208145][   T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.212322][   T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.221057][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.223667][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.238377][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.240384][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.304704][ T5942] Bluetooth: hci0: command tx timeout
[   39.307040][ T5942] Bluetooth: hci1: command tx timeout
[   39.307079][ T5946] Bluetooth: hci2: command tx timeout
[   39.346121][ T6004] sp0: Synchronizing with TNC
[   39.385510][ T5946] Bluetooth: hci3: command tx timeout
[   40.027641][ T6015] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   40.666429][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   40.896104][ T6026] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   41.383183][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   41.385594][ T5946] Bluetooth: hci0: command tx timeout
[   41.385871][ T5942] Bluetooth: hci1: command tx timeout
[   41.385919][ T5949] Bluetooth: hci2: command tx timeout
[   41.474055][ T5946] Bluetooth: hci3: command tx timeout
[   41.587309][ T6035] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   41.895057][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   41.997458][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   42.100159][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   42.197112][ T6043] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   42.407140][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   42.509534][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   42.611868][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   42.714284][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   43.018269][ T6051] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   43.464077][ T5946] Bluetooth: hci1: command tx timeout
[   43.474148][ T5946] Bluetooth: hci0: command tx timeout
[   43.474182][ T5949] Bluetooth: hci2: command tx timeout
[   43.478163][ T6063] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   43.513083][ T6064] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   43.543953][ T5949] Bluetooth: hci3: command tx timeout
[   43.544233][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   43.946489][ T6067] sp0: Synchronizing with TNC
[   45.277234][ T6076] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   45.543946][ T5949] Bluetooth: hci2: command tx timeout
[   45.544115][ T5946] Bluetooth: hci0: command tx timeout
[   45.545555][ T5949] Bluetooth: hci1: command tx timeout
[   45.623918][ T5949] Bluetooth: hci3: command tx timeout
[   47.630752][ T6138] veth0_virt_wifi: entered promiscuous mode
[   47.648048][ T6138] veth0_virt_wifi: left promiscuous mode
[   47.793752][ T6143] netlink: 36 bytes leftover after parsing attributes in process `syz.1.48'.
[   47.882895][ T6146] syzkaller1: entered promiscuous mode
[   47.885071][ T6146] syzkaller1: entered allmulticast mode
[   47.891400][   T39] audit: type=1326 audit(1733474911.688:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.49" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x0
[   48.094650][ T6160] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   48.212387][ T6166] netlink: 8 bytes leftover after parsing attributes in process `syz.2.56'.
[   48.214928][ T6166] netlink: 8 bytes leftover after parsing attributes in process `syz.2.56'.
[   48.217575][ T6166] netlink: 2 bytes leftover after parsing attributes in process `syz.2.56'.
[   48.345403][ T6170] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.370874][ T6173] bridge0: port 3(syz_tun) entered blocking state
[   48.372899][ T6173] bridge0: port 3(syz_tun) entered disabled state
[   48.376203][ T6173] syz_tun: entered allmulticast mode
[   48.384897][ T6173] syz_tun: entered promiscuous mode
[   48.387948][ T6173] bridge0: port 3(syz_tun) entered blocking state
[   48.389673][ T6173] bridge0: port 3(syz_tun) entered forwarding state
[   48.423850][ T6173] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.467470][ T6178] futex_wake_op: syz.3.61 tries to shift op by -1; fix this program
[   48.562617][   T39] audit: type=1326 audit(1733474912.358:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6177 comm="syz.3.61" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f00579 code=0x0
[   48.585250][ T6183] bridge0: port 3(syz_tun) entered blocking state
[   48.587168][ T6183] bridge0: port 3(syz_tun) entered disabled state
[   48.589154][ T6183] syz_tun: entered allmulticast mode
[   48.591719][ T6183] syz_tun: entered promiscuous mode
[   48.593434][ T6183] bridge0: port 3(syz_tun) entered blocking state
[   48.595128][ T6183] bridge0: port 3(syz_tun) entered forwarding state
[   48.699557][   T39] audit: type=1326 audit(1733474912.498:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.2.64" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[   48.713890][   T39] audit: type=1326 audit(1733474912.498:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.2.64" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[   48.724976][   T39] audit: type=1326 audit(1733474912.498:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.2.64" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f97579 code=0x7ffc0000
[   48.738561][   T39] audit: type=1326 audit(1733474912.498:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.2.64" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[   48.749499][   T39] audit: type=1326 audit(1733474912.498:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.2.64" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[   48.757309][   T39] audit: type=1326 audit(1733474912.508:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.2.64" exe="/syz-executor" sig=0 arch=40000003 syscall=248 compat=1 ip=0xf7f97579 code=0x7ffc0000
[   48.764940][   T39] audit: type=1326 audit(1733474912.508:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.2.64" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[   48.771500][   T39] audit: type=1326 audit(1733474912.508:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.2.64" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[   48.794199][ T6192] Zero length message leads to an empty skb
[   48.802198][ T6189] netlink: 24 bytes leftover after parsing attributes in process `syz.2.64'.
[   48.956735][ T6203] netlink: 16 bytes leftover after parsing attributes in process `syz.1.72'.
[   48.959787][ T6203] netlink: 8 bytes leftover after parsing attributes in process `syz.1.72'.
[   48.966397][ T6203] ip6gretap1: entered allmulticast mode
[   49.017568][ T6201] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   49.896878][ T6216] sp0: Synchronizing with TNC
[   49.982904][ T6223] FAULT_INJECTION: forcing a failure.
[   49.982904][ T6223] name failslab, interval 1, probability 0, space 0, times 1
[   49.988329][ T6223] CPU: 2 UID: 0 PID: 6223 Comm: syz.1.77 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   49.992072][ T6223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.995873][ T6223] Call Trace:
[   49.997069][ T6223]  <TASK>
[   49.998127][ T6223]  dump_stack_lvl+0x16c/0x1f0
[   49.999847][ T6223]  should_fail_ex+0x497/0x5b0
[   50.001561][ T6223]  ? fs_reclaim_acquire+0xae/0x150
[   50.003397][ T6223]  should_failslab+0xc2/0x120
[   50.005091][ T6223]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   50.007403][ T6223]  ? __alloc_skb+0x2b3/0x380
[   50.009090][ T6223]  __alloc_skb+0x2b3/0x380
[   50.010738][ T6223]  ? __pfx___alloc_skb+0x10/0x10
[   50.012512][ T6223]  netlink_ack+0x164/0xb20
[   50.014152][ T6223]  ? preempt_schedule_thunk+0x1a/0x30
[   50.015965][ T6223]  netlink_rcv_skb+0x327/0x410
[   50.017238][ T6223]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[   50.018945][ T6223]  ? __mutex_lock+0x30d/0xa60
[   50.020677][ T6223]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   50.022596][ T6223]  ? rcu_is_watching+0x12/0xc0
[   50.024385][ T6223]  xfrm_netlink_rcv+0x71/0x90
[   50.025972][ T6223]  netlink_unicast+0x53c/0x7f0
[   50.027598][ T6223]  ? __pfx_netlink_unicast+0x10/0x10
[   50.029387][ T6223]  ? __phys_addr_symbol+0x30/0x80
[   50.031087][ T6223]  ? __check_object_size+0x488/0x710
[   50.032983][ T6223]  netlink_sendmsg+0x8b8/0xd70
[   50.034648][ T6223]  ? __pfx_netlink_sendmsg+0x10/0x10
[   50.036454][ T6223]  ____sys_sendmsg+0x9ae/0xb40
[   50.038267][ T6223]  ? __pfx_____sys_sendmsg+0x10/0x10
[   50.040084][ T6223]  ? get_compat_msghdr+0x11b/0x170
[   50.041709][ T6223]  ___sys_sendmsg+0x135/0x1e0
[   50.043003][ T6223]  ? __pfx____sys_sendmsg+0x10/0x10
[   50.044436][ T6223]  ? __pfx_lock_release+0x10/0x10
[   50.045724][ T6223]  ? trace_lock_acquire+0x14e/0x1f0
[   50.047076][ T6223]  ? __fget_files+0x206/0x3a0
[   50.048331][ T6223]  __sys_sendmsg+0x16e/0x220
[   50.049552][ T6223]  ? __pfx___sys_sendmsg+0x10/0x10
[   50.050877][ T6223]  __do_fast_syscall_32+0x73/0x120
[   50.052238][ T6223]  do_fast_syscall_32+0x32/0x80
[   50.053504][ T6223]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   50.055126][ T6223] RIP: 0023:0xf746e579
[   50.056152][ T6223] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   50.061009][ T6223] RSP: 002b:00000000f515657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[   50.063134][ T6223] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200003c0
[   50.065139][ T6223] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   50.067104][ T6223] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   50.069148][ T6223] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   50.071200][ T6223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   50.073238][ T6223]  </TASK>
[   50.554203][ T6238] syz.1.83 uses obsolete (PF_INET,SOCK_PACKET)
[   50.564806][ T6241] bridge0: port 3(syz_tun) entered blocking state
[   50.566726][ T6241] bridge0: port 3(syz_tun) entered disabled state
[   50.568857][ T6241] syz_tun: entered allmulticast mode
[   50.571445][ T6241] syz_tun: entered promiscuous mode
[   50.573766][ T6241] bridge0: port 3(syz_tun) entered blocking state
[   50.576114][ T6241] bridge0: port 3(syz_tun) entered forwarding state
[   50.731102][ T6254] netlink: 'syz.0.89': attribute type 1 has an invalid length.
[   50.745072][ T6254] 8021q: adding VLAN 0 to HW filter on device bond1
[   50.757102][ T6254] bond1: (slave ip6gretap1): making interface the new active one
[   50.759481][ T6254] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   50.761643][ T6254] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   50.763688][ T6254] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[   50.780567][ T6259] netlink: 16 bytes leftover after parsing attributes in process `syz.2.90'.
[   50.787398][ T6259] ip6gretap1: entered allmulticast mode
[   50.794136][  T834] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   50.804782][ T1135] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   50.847140][   T35] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   50.896450][ T6268] dccp_close: ABORT with 2 bytes unread
[   50.979221][ T6270] sp0: Synchronizing with TNC
[   51.057111][ T6279] capability: warning: `syz.2.97' uses deprecated v2 capabilities in a way that may be insecure
[   51.135864][ T6282] netlink: 32 bytes leftover after parsing attributes in process `syz.2.98'.
[   51.214493][ T6283] netlink: 8 bytes leftover after parsing attributes in process `syz.2.98'.
[   51.232470][ T6283] vlan2: entered allmulticast mode
[   51.634201][   T78] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   51.639849][ T6295] ip6gretap1: entered allmulticast mode
[   51.855311][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   52.027531][ T6314] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   52.841064][ T6320] sp0: Synchronizing with TNC
[   52.876366][ T6324] netlink: 'syz.2.111': attribute type 1 has an invalid length.
[   52.984023][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   53.201117][ T6325] bond1: (slave ip6gretap2): Enslaving as a backup interface with an up link
[   54.104897][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   54.832101][ T6356] netlink: 'syz.2.118': attribute type 1 has an invalid length.
[   55.019660][ T6363] __nla_validate_parse: 4 callbacks suppressed
[   55.019676][ T6363] netlink: 4 bytes leftover after parsing attributes in process `syz.0.123'.
[   55.023222][ T6361] program syz.3.122 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   55.028320][ T6363] ip6gretap2: entered allmulticast mode
[   55.124324][ T6372] netlink: 8 bytes leftover after parsing attributes in process `syz.0.126'.
[   55.127098][ T6372] netlink: 20 bytes leftover after parsing attributes in process `syz.0.126'.
[   55.175218][ T6361] /dev/sr0: Can't open blockdev
[   55.231152][ T6377] sp0: Synchronizing with TNC
[   55.284627][ T6368] /dev/sr0: Can't open blockdev
[   55.485548][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   55.509609][ T6392] netlink: 16 bytes leftover after parsing attributes in process `syz.3.132'.
[   55.612862][ T6395] FAULT_INJECTION: forcing a failure.
[   55.612862][ T6395] name failslab, interval 1, probability 0, space 0, times 0
[   55.617580][ T6395] CPU: 1 UID: 0 PID: 6395 Comm: syz.3.133 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   55.620387][ T6395] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.623676][ T6395] Call Trace:
[   55.624806][ T6395]  <TASK>
[   55.625808][ T6395]  dump_stack_lvl+0x16c/0x1f0
[   55.627442][ T6395]  should_fail_ex+0x497/0x5b0
[   55.629047][ T6395]  ? fs_reclaim_acquire+0xae/0x150
[   55.630789][ T6395]  should_failslab+0xc2/0x120
[   55.632402][ T6395]  __kmalloc_cache_noprof+0x68/0x420
[   55.634217][ T6395]  ? trace_lock_acquire+0x14e/0x1f0
[   55.636143][ T6395]  hash_net_create+0x36b/0x1250
[   55.637769][ T6395]  ? __nla_parse+0x40/0x60
[   55.639322][ T6395]  ? __pfx_hash_net_create+0x10/0x10
[   55.641117][ T6395]  ip_set_create+0x62a/0x1400
[   55.642739][ T6395]  ? rcu_is_watching+0x12/0xc0
[   55.644377][ T6395]  ? __pfx_ip_set_create+0x10/0x10
[   55.646151][ T6395]  nfnetlink_rcv_msg+0x9c3/0x11e0
[   55.647859][ T6395]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   55.649720][ T6395]  ? find_held_lock+0x2d/0x110
[   55.651376][ T6395]  netlink_rcv_skb+0x165/0x410
[   55.653003][ T6395]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   55.654866][ T6395]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   55.656678][ T6395]  ? __pfx_aa_get_newest_label+0x10/0x10
[   55.658623][ T6395]  ? bpf_lsm_capable+0x9/0x10
[   55.660248][ T6395]  ? security_capable+0x7e/0x260
[   55.661785][ T6395]  ? ns_capable+0xd7/0x110
[   55.662930][ T6395]  nfnetlink_rcv+0x1b4/0x430
[   55.664176][ T6395]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   55.665458][ T6395]  ? netlink_deliver_tap+0x1ae/0xca0
[   55.666767][ T6395]  netlink_unicast+0x53c/0x7f0
[   55.668000][ T6395]  ? __pfx_netlink_unicast+0x10/0x10
[   55.669330][ T6395]  ? __phys_addr_symbol+0x30/0x80
[   55.670623][ T6395]  ? __check_object_size+0x488/0x710
[   55.672016][ T6395]  netlink_sendmsg+0x8b8/0xd70
[   55.673242][ T6395]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.674569][ T6395]  ____sys_sendmsg+0x9ae/0xb40
[   55.675780][ T6395]  ? __pfx_____sys_sendmsg+0x10/0x10
[   55.677094][ T6395]  ? get_compat_msghdr+0x11b/0x170
[   55.678366][ T6395]  ___sys_sendmsg+0x135/0x1e0
[   55.679569][ T6395]  ? __pfx____sys_sendmsg+0x10/0x10
[   55.680898][ T6395]  ? __pfx_lock_release+0x10/0x10
[   55.682171][ T6395]  ? trace_lock_acquire+0x14e/0x1f0
[   55.683512][ T6395]  ? __fget_files+0x206/0x3a0
[   55.684737][ T6395]  __sys_sendmsg+0x16e/0x220
[   55.686311][ T6395]  ? __pfx___sys_sendmsg+0x10/0x10
[   55.688103][ T6395]  __do_fast_syscall_32+0x73/0x120
[   55.689879][ T6395]  do_fast_syscall_32+0x32/0x80
[   55.691565][ T6395]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.693723][ T6395] RIP: 0023:0xf7f00579
[   55.695143][ T6395] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.700369][ T6395] RSP: 002b:00000000f4ee457c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[   55.702455][ T6395] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000040
[   55.704444][ T6395] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   55.706391][ T6395] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   55.708322][ T6395] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   55.710357][ T6395] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.712436][ T6395]  </TASK>
[   56.041885][ T6398] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[   56.365583][ T6412] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   56.644215][ T1135] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   56.846219][ T1146] tipc: Subscription rejected, illegal request
[   56.918203][ T6418] netlink: 16 bytes leftover after parsing attributes in process `syz.0.141'.
[   57.398958][ T6426] syzkaller1: entered promiscuous mode
[   57.400776][ T6426] syzkaller1: entered allmulticast mode
[   57.406385][   T39] kauditd_printk_skb: 49 callbacks suppressed
[   57.406394][   T39] audit: type=1326 audit(1733474921.208:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6425 comm="syz.1.144" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x0
[   57.507862][ T6434] netlink: 24 bytes leftover after parsing attributes in process `syz.2.145'.
[   57.774643][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   58.244724][ T6442] netlink: 'syz.1.149': attribute type 1 has an invalid length.
[   58.253398][ T6442] 8021q: adding VLAN 0 to HW filter on device bond1
[   58.288796][ T6445] netlink: 16 bytes leftover after parsing attributes in process `syz.1.150'.
[   58.409913][ T6450] Bluetooth: MGMT ver 1.23
[   58.457897][ T6458] netlink: 4 bytes leftover after parsing attributes in process `syz.2.154'.
[   58.463342][ T6458] input: syz1 as /devices/virtual/input/input5
[   58.605763][ T6465] gretap0: entered promiscuous mode
[   58.607395][ T6465] macsec1: entered promiscuous mode
[   58.609097][ T6465] macsec1: entered allmulticast mode
[   58.610562][ T6465] gretap0: entered allmulticast mode
[   58.614216][ T6465] gretap0: left allmulticast mode
[   58.615705][ T6465] gretap0: left promiscuous mode
[   58.704762][ T6461] netlink: 12 bytes leftover after parsing attributes in process `syz.1.155'.
[   58.712443][ T6470] netlink: 'syz.0.157': attribute type 5 has an invalid length.
[   58.737216][ T6469] binder: Unknown parameter 'smackfsroot'
[   58.750214][ T6469] ubi0: attaching mtd0
[   58.752263][ T6469] ubi0: scanning is finished
[   58.753504][ T6469] ubi0: empty MTD device detected
[   58.904023][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   58.913748][ T6469] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[   58.918659][ T6469] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   58.921473][ T6469] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[   58.926134][ T6469] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[   58.928633][ T6469] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   58.930949][ T6469] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[   58.935007][ T6469] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2636852935
[   58.938445][ T6469] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   58.941816][ T6482] ubi0: background thread "ubi_bgt0d" started, PID 6482
[   59.004039][ T6483] bridge1: entered promiscuous mode
[   59.005768][ T6483] bridge1: entered allmulticast mode
[   59.216807][ T6493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.164'.
[   59.461635][ T6499] overlayfs: failed to resolve './file0': -2
[   60.024383][   T11] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   60.424098][ T5949] Bluetooth: hci0: command tx timeout
[   60.658578][ T6528] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   61.144669][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   61.218134][ T6543] warning: `syz.2.174' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   61.890832][ T6560] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   62.264084][   T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   62.790784][ T6573] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   62.863679][ T6583] program syz.0.193 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   62.917780][ T6584] dccp_close: ABORT with 15584 bytes unread
[   63.088092][ T6593] sp0: Synchronizing with TNC
[   63.374713][   T11] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   63.626983][ T6608] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[   63.629006][ T6608] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   64.057958][ T6621] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   64.749499][ T6626] sp0: Synchronizing with TNC
[   64.757082][ T6630] FAULT_INJECTION: forcing a failure.
[   64.757082][ T6630] name failslab, interval 1, probability 0, space 0, times 0
[   64.762568][ T6630] CPU: 3 UID: 0 PID: 6630 Comm: syz.0.208 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   64.765149][ T6630] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.767671][ T6630] Call Trace:
[   64.768465][ T6630]  <TASK>
[   64.769168][ T6630]  dump_stack_lvl+0x16c/0x1f0
[   64.770283][ T6630]  should_fail_ex+0x497/0x5b0
[   64.771405][ T6630]  ? fs_reclaim_acquire+0xae/0x150
[   64.772602][ T6630]  should_failslab+0xc2/0x120
[   64.773717][ T6630]  __kmalloc_noprof+0xce/0x4f0
[   64.774855][ T6630]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   64.776179][ T6630]  ? tomoyo_realpath_from_path+0xbf/0x710
[   64.777533][ T6630]  tomoyo_realpath_from_path+0xbf/0x710
[   64.778841][ T6630]  ? tomoyo_path_number_perm+0x235/0x5b0
[   64.780170][ T6630]  tomoyo_path_number_perm+0x248/0x5b0
[   64.781456][ T6630]  ? tomoyo_path_number_perm+0x235/0x5b0
[   64.782784][ T6630]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   64.784214][ T6630]  ? __pfx_lock_release+0x10/0x10
[   64.785417][ T6630]  ? trace_lock_acquire+0x14e/0x1f0
[   64.786660][ T6630]  ? lock_acquire+0x2f/0xb0
[   64.787757][ T6630]  ? __fget_files+0x40/0x3a0
[   64.788862][ T6630]  ? __fget_files+0x206/0x3a0
[   64.789992][ T6630]  security_file_ioctl_compat+0x9b/0x240
[   64.791323][ T6630]  __do_compat_sys_ioctl+0x4e/0x2c0
[   64.792551][ T6630]  __do_fast_syscall_32+0x73/0x120
[   64.793779][ T6630]  do_fast_syscall_32+0x32/0x80
[   64.794966][ T6630]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   64.796566][ T6630] RIP: 0023:0xf7fa6579
[   64.797515][ T6630] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   64.802163][ T6630] RSP: 002b:00000000f512657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[   64.804163][ T6630] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000000004c04
[   64.806033][ T6630] RDX: 00000000200004c0 RSI: 0000000000000000 RDI: 0000000000000000
[   64.807919][ T6630] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   64.809772][ T6630] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   64.811701][ T6630] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   64.813577][ T6630]  </TASK>
[   64.815095][    C3] vkms_vblank_simulate: vblank timer overrun
[   64.819170][ T6630] ERROR: Out of memory at tomoyo_realpath_from_path.
[   65.144918][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   65.856540][ T6655] __nla_validate_parse: 1 callbacks suppressed
[   65.856561][ T6655] netlink: 8 bytes leftover after parsing attributes in process `syz.1.214'.
[   66.077902][ T6664] FAULT_INJECTION: forcing a failure.
[   66.077902][ T6664] name failslab, interval 1, probability 0, space 0, times 0
[   66.081236][ T6664] CPU: 2 UID: 0 PID: 6664 Comm: syz.3.217 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   66.083957][ T6664] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.086754][ T6664] Call Trace:
[   66.087648][ T6664]  <TASK>
[   66.088441][ T6664]  dump_stack_lvl+0x16c/0x1f0
[   66.089723][ T6664]  should_fail_ex+0x497/0x5b0
[   66.091000][ T6664]  ? fs_reclaim_acquire+0xae/0x150
[   66.092354][ T6664]  should_failslab+0xc2/0x120
[   66.093594][ T6664]  __kmalloc_noprof+0xce/0x4f0
[   66.094897][ T6664]  ? iter_file_splice_write+0x1cd/0x10b0
[   66.096406][ T6664]  iter_file_splice_write+0x1cd/0x10b0
[   66.097859][ T6664]  ? __pfx_filemap_splice_read+0x10/0x10
[   66.099381][ T6664]  ? __pfx_iter_file_splice_write+0x10/0x10
[   66.100975][ T6664]  ? __pfx_iter_file_splice_write+0x10/0x10
[   66.102532][ T6664]  direct_splice_actor+0x18f/0x6c0
[   66.103894][ T6664]  splice_direct_to_actor+0x346/0xa40
[   66.105309][ T6664]  ? __pfx_direct_splice_actor+0x10/0x10
[   66.106842][ T6664]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   66.108393][ T6664]  ? __fget_files+0x1fc/0x3a0
[   66.109684][ T6664]  do_splice_direct+0x178/0x250
[   66.110985][ T6664]  ? __pfx_do_splice_direct+0x10/0x10
[   66.112507][ T6664]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   66.114066][ T6664]  ? bpf_lsm_file_permission+0x9/0x10
[   66.115526][ T6664]  ? security_file_permission+0x71/0x210
[   66.117016][ T6664]  do_sendfile+0xaed/0xe30
[   66.118218][ T6664]  ? __pfx_do_sendfile+0x10/0x10
[   66.119549][ T6664]  ? __fget_files+0x206/0x3a0
[   66.120838][ T6664]  __ia32_compat_sys_sendfile+0x1e7/0x230
[   66.122350][ T6664]  ? ksys_write+0x1ba/0x250
[   66.123570][ T6664]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[   66.125237][ T6664]  __do_fast_syscall_32+0x73/0x120
[   66.126597][ T6664]  do_fast_syscall_32+0x32/0x80
[   66.127926][ T6664]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   66.129619][ T6664] RIP: 0023:0xf7f00579
[   66.130709][ T6664] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   66.135779][ T6664] RSP: 002b:00000000f508657c EFLAGS: 00000292 ORIG_RAX: 00000000000000bb
[   66.137968][ T6664] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000003
[   66.140080][ T6664] RDX: 0000000000000000 RSI: 000000000000003f RDI: 0000000000000000
[   66.142182][ T6664] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   66.144271][ T6664] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   66.146364][ T6664] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   66.148497][ T6664]  </TASK>
[   66.298261][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   66.641134][ T6675] netlink: 96 bytes leftover after parsing attributes in process `syz.0.220'.
[   66.731633][ T6680] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   66.865300][ T6683] sp0: Synchronizing with TNC
[   67.157706][ T6696] netfs: Couldn't get user pages (rc=-14)
[   67.166662][ T6700] netlink: 96 bytes leftover after parsing attributes in process `syz.1.229'.
[   67.209466][ T6702] loop7: detected capacity change from 0 to 16384
[   67.275061][ T6702] I/O error, dev loop7, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   67.277593][ T6702] Buffer I/O error on dev loop7, logical block 1, async page read
[   67.279658][ T6702] Dev loop7: unable to read RDB block 8
[   67.281225][ T6702] I/O error, dev loop7, sector 24 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   67.283611][ T6702] Buffer I/O error on dev loop7, logical block 3, async page read
[   67.289250][ T6707] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[   67.291405][ T6702]  loop7: unable to read partition table
[   67.293542][ T6702] loop_reread_partitions: partition scan of loop7 (K‹>¤i)ßí/480�• #Ð	…$qÝZ”©þ•I‘ŠçýÎ[†u±@3bÏàôüÏûj!5MMñ]
z) failed (rc=-5)
[   67.294454][ T6707] Buffer I/O error on dev loop7, logical block 0, lost async page write
[   67.441075][ T6712] FAULT_INJECTION: forcing a failure.
[   67.441075][ T6712] name failslab, interval 1, probability 0, space 0, times 0
[   67.446074][ T6712] CPU: 0 UID: 0 PID: 6712 Comm: syz.0.231 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   67.448694][ T6712] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.451241][ T6712] Call Trace:
[   67.452059][ T6712]  <TASK>
[   67.452779][ T6712]  dump_stack_lvl+0x16c/0x1f0
[   67.453941][ T6712]  should_fail_ex+0x497/0x5b0
[   67.455111][ T6712]  ? fs_reclaim_acquire+0xae/0x150
[   67.456333][ T6712]  should_failslab+0xc2/0x120
[   67.457481][ T6712]  __kmalloc_noprof+0xce/0x4f0
[   67.458659][ T6712]  ? drm_atomic_state_init+0xe4/0x320
[   67.459965][ T6712]  drm_atomic_state_init+0xe4/0x320
[   67.461228][ T6712]  ? __kasan_kmalloc+0xaa/0xb0
[   67.462390][ T6712]  drm_atomic_state_alloc+0xd3/0x120
[   67.463729][ T6712]  drm_client_modeset_commit_atomic+0xd1/0x7f0
[   67.465222][ T6712]  ? drm_client_modeset_commit_locked+0x4c/0x580
[   67.466749][ T6712]  ? trace_contention_end+0xee/0x140
[   67.468019][ T6712]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[   67.469717][ T6712]  ? __pfx___mutex_lock+0x10/0x10
[   67.470993][ T6712]  drm_client_modeset_commit_locked+0x14d/0x580
[   67.472587][ T6712]  drm_client_modeset_commit+0x4f/0x80
[   67.474006][ T6712]  drm_fb_helper_lastclose+0xc7/0x160
[   67.475416][ T6712]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[   67.476990][ T6712]  drm_fbdev_client_restore+0x2c/0x40
[   67.478389][ T6712]  drm_client_dev_restore+0x188/0x2a0
[   67.479792][ T6712]  drm_release+0x2c2/0x360
[   67.480968][ T6712]  ? __pfx_drm_release+0x10/0x10
[   67.482262][ T6712]  __fput+0x3f8/0xb60
[   67.483325][ T6712]  task_work_run+0x14e/0x250
[   67.484545][ T6712]  ? __pfx_task_work_run+0x10/0x10
[   67.485880][ T6712]  ? __pfx___do_sys_close_range+0x10/0x10
[   67.487372][ T6712]  syscall_exit_to_user_mode+0x27b/0x2a0
[   67.488835][ T6712]  __do_fast_syscall_32+0x80/0x120
[   67.490187][ T6712]  do_fast_syscall_32+0x32/0x80
[   67.491491][ T6712]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   67.493141][ T6712] RIP: 0023:0xf7fa6579
[   67.494207][ T6712] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   67.499169][ T6712] RSP: 002b:00000000f510557c EFLAGS: 00000292 ORIG_RAX: 00000000000001b4
[   67.501325][ T6712] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000009
[   67.503388][ T6712] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   67.505436][ T6712] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   67.507487][ T6712] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   67.509536][ T6712] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.511592][ T6712]  </TASK>
[   67.512936][   T78] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   67.617153][ T6714] bridge0: port 3(syz_tun) entered disabled state
[   67.628307][ T6714] syz_tun (unregistering): left allmulticast mode
[   67.630062][ T6714] syz_tun (unregistering): left promiscuous mode
[   67.631753][ T6714] bridge0: port 3(syz_tun) entered disabled state
[   67.883922][ T6720] 9pnet: Unknown protocol version 9p20\++}
[   68.017212][ T1135] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.098895][ T1135] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.198774][ T1135] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.238486][ T5946] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   68.241727][ T5946] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.271901][ T1135] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.274098][ T5946] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.279323][ T5946] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   68.283589][ T5946] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   68.285868][ T5946] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   68.405822][ T1135] bridge_slave_1: left allmulticast mode
[   68.409071][ T1135] bridge_slave_1: left promiscuous mode
[   68.419146][ T1135] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.425534][ T1135] bridge_slave_0: left allmulticast mode
[   68.427087][ T1135] bridge_slave_0: left promiscuous mode
[   68.428610][ T1135] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.644000][   T45] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   68.714756][ T1135] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   68.721265][ T1135] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   68.729057][ T1135] bond0 (unregistering): Released all slaves
[   68.808894][ T6722] lo: entered promiscuous mode
[   68.863255][ T6721] lo: left promiscuous mode
[   68.916570][ T6736] chnl_net:caif_netlink_parms(): no params data found
[   69.064847][ T6736] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.067192][ T6736] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.069110][ T6736] bridge_slave_0: entered allmulticast mode
[   69.071148][ T6736] bridge_slave_0: entered promiscuous mode
[   69.092501][ T6736] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.096893][ T6736] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.098821][ T6736] bridge_slave_1: entered allmulticast mode
[   69.100971][ T6736] bridge_slave_1: entered promiscuous mode
[   69.123092][ T6736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.127221][ T6736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.151926][ T6736] team0: Port device team_slave_0 added
[   69.170576][ T1135] hsr_slave_0: left promiscuous mode
[   69.172656][ T1135] hsr_slave_1: left promiscuous mode
[   69.177374][ T1135] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   69.179646][ T1135] batman_adv: batadv0: Removing interface: batadv_slave_0
[   69.184669][ T1135] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   69.186824][ T1135] batman_adv: batadv0: Removing interface: batadv_slave_1
[   69.206650][ T1135] veth1_macvtap: left promiscuous mode
[   69.208453][ T1135] veth0_macvtap: left promiscuous mode
[   69.210047][ T1135] veth1_vlan: left promiscuous mode
[   69.212075][ T1135] veth0_vlan: left promiscuous mode
[   69.719880][ T1135] team0 (unregistering): Port device team_slave_1 removed
[   69.754053][   T11] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   69.789807][ T1135] team0 (unregistering): Port device team_slave_0 removed
[   69.877916][ T6760] netlink: 20 bytes leftover after parsing attributes in process `syz.1.243'.
[   69.881575][ T6760] netlink: 20 bytes leftover after parsing attributes in process `syz.1.243'.
[   69.881642][   T39] audit: type=1800 audit(1733474933.678:62): pid=6763 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.244" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   69.943331][ T6761] mmap: syz.1.243 (6761) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   70.304753][ T6736] team0: Port device team_slave_1 added
[   70.344668][ T5946] Bluetooth: hci2: command tx timeout
[   70.481562][ T6736] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.489091][ T6736] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.497872][ T6736] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.501572][ T6736] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.503422][ T6736] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.512350][ T6736] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.574250][ T6736] hsr_slave_0: entered promiscuous mode
[   70.576375][ T6736] hsr_slave_1: entered promiscuous mode
[   70.578203][ T6736] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.580379][ T6736] Cannot create hsr debugfs directory
[   70.685550][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[   70.687391][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[   70.710559][ T6736] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   70.732228][ T6736] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   70.736159][ T6736] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   70.739498][ T6736] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   70.799920][ T6736] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.813427][ T6736] 8021q: adding VLAN 0 to HW filter on device team0
[   70.817060][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.818875][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.828245][   T78] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.830049][   T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.863331][ T6736] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.884041][   T78] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   70.953141][ T6736] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.640206][ T6736] veth0_vlan: entered promiscuous mode
[   71.679766][ T6736] veth1_vlan: entered promiscuous mode
[   71.694974][ T6736] veth0_macvtap: entered promiscuous mode
[   71.697682][ T6736] veth1_macvtap: entered promiscuous mode
[   71.703708][ T6736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.706467][ T6736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.708954][ T6736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.711644][ T6736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.714362][ T6736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.717080][ T6736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.721104][ T6736] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.724457][ T6736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.727440][ T6736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.729985][ T6736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.732660][ T6736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.735237][ T6736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.737876][ T6736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.740881][ T6736] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.754886][ T6736] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.757196][ T6736] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.759446][ T6736] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.761665][ T6736] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.800019][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.808702][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.829214][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.831251][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.848141][   T39] audit: type=1326 audit(1733474935.648:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.2.257" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x0
[   71.886602][ T6835] netlink: 96 bytes leftover after parsing attributes in process `syz.4.239'.
[   71.933089][   T39] audit: type=1326 audit(1733474935.728:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6839 comm="syz.4.258" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x0
[   71.953997][ T6842] FAULT_INJECTION: forcing a failure.
[   71.953997][ T6842] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   71.958711][ T6842] CPU: 1 UID: 0 PID: 6842 Comm: syz.2.257 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   71.962148][ T6842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   71.965858][ T6842] Call Trace:
[   71.967003][ T6842]  <TASK>
[   71.967999][ T6842]  dump_stack_lvl+0x16c/0x1f0
[   71.969581][ T6842]  should_fail_ex+0x497/0x5b0
[   71.971171][ T6842]  _copy_from_user+0x2e/0xd0
[   71.972304][ T6843] usb 1-1: USB disconnect, device number 2
[   71.972710][ T6842]  get_old_itimerspec32+0x83/0x1e0
[   71.975977][ T6842]  ? __pfx_get_old_itimerspec32+0x10/0x10
[   71.977867][ T6842]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   71.979484][ T6842]  __ia32_sys_timer_settime32+0x1a6/0x2c0
[   71.980961][ T6842]  ? __pfx___ia32_sys_timer_settime32+0x10/0x10
[   71.982576][ T6842]  ? ksys_write+0x1ba/0x250
[   71.983744][ T6842]  __do_fast_syscall_32+0x73/0x120
[   71.985059][ T6842]  do_fast_syscall_32+0x32/0x80
[   71.986352][ T6842]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   71.987988][ T6842] RIP: 0023:0xf7f97579
[   71.989039][ T6842] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   71.993994][ T6842] RSP: 002b:00000000f50f557c EFLAGS: 00000292 ORIG_RAX: 0000000000000104
[   71.996366][ T6842] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000ffffffff
[   71.998365][ T6842] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[   72.000434][ T6842] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   72.002755][ T6842] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   72.005577][ T6842] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   72.007833][ T6842]  </TASK>
[   72.062849][ T6843] random: crng reseeded on system resumption
[   72.263938][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   72.423998][ T5946] Bluetooth: hci2: command tx timeout
[   72.657501][ T6828] delete_channel: no stack
[   73.004116][ T6896] netlink: 96 bytes leftover after parsing attributes in process `syz.4.266'.
[   73.369230][ T6898] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   73.549556][ T6906] Illegal XDP return value 6906 on prog  (id 48) dev N/A, expect packet loss!
[   73.574189][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   74.113764][ T6929] sp0: Synchronizing with TNC
[   74.504230][ T5946] Bluetooth: hci2: command tx timeout
[   74.741170][ T6944] syzkaller0: entered allmulticast mode
[   74.765001][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   74.913971][ T6955] input: syz1 as /devices/virtual/input/input6
[   75.240823][ T6973] syz.0.287: vmalloc error: size 1847640064, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   75.248882][ T6973] CPU: 3 UID: 0 PID: 6973 Comm: syz.0.287 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   75.251662][ T6973] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.254659][ T6973] Call Trace:
[   75.255545][ T6973]  <TASK>
[   75.256318][ T6973]  dump_stack_lvl+0x16c/0x1f0
[   75.257540][ T6973]  warn_alloc+0x24d/0x3a0
[   75.258693][ T6973]  ? __pfx_warn_alloc+0x10/0x10
[   75.259954][ T6973]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   75.261461][ T6973]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   75.262882][ T6973]  ? kasan_save_stack+0x42/0x60
[   75.264146][ T6973]  ? kasan_save_stack+0x33/0x60
[   75.265408][ T6973]  ? kasan_save_track+0x14/0x30
[   75.266653][ T6973]  ? __kasan_kmalloc+0xaa/0xb0
[   75.267905][ T6973]  ? vb2_vmalloc_alloc+0xe2/0x3d0
[   75.269218][ T6973]  ? vb2_core_create_bufs+0x558/0xab0
[   75.270598][ T6973]  ? vb2_create_bufs+0x566/0x780
[   75.271899][ T6973]  ? vb2_ioctl_create_bufs+0x244/0x3e0
[   75.273319][ T6973]  __vmalloc_node_range_noprof+0x10df/0x1530
[   75.274888][ T6973]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   75.276230][ T6973]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   75.277858][ T6973]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   75.279190][ T6973]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   75.280592][ T6973]  vmalloc_user_noprof+0x6b/0x90
[   75.281875][ T6973]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   75.283209][ T6973]  vb2_vmalloc_alloc+0x11e/0x3d0
[   75.284507][ T6973]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   75.285910][ T6973]  __vb2_queue_alloc+0x896/0x1230
[   75.287205][ T6973]  ? vbi_out_queue_setup+0x1e3/0x2b0
[   75.288572][ T6973]  vb2_core_create_bufs+0x558/0xab0
[   75.289929][ T6973]  ? __pfx_vbi_out_queue_setup+0x10/0x10
[   75.291382][ T6973]  ? __pfx_vb2_core_create_bufs+0x10/0x10
[   75.292858][ T6973]  ? lock_acquire.part.0+0x11b/0x380
[   75.294234][ T6973]  vb2_create_bufs+0x566/0x780
[   75.295531][ T6973]  ? __pfx_vb2_create_bufs+0x10/0x10
[   75.296916][ T6973]  ? __video_do_ioctl+0x4a2/0xf00
[   75.298226][ T6973]  vb2_ioctl_create_bufs+0x244/0x3e0
[   75.299612][ T6973]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   75.301150][ T6973]  vidioc_create_bufs+0x7d/0xf0
[   75.302418][ T6973]  v4l_create_bufs+0x198/0x270
[   75.303687][ T6973]  __video_do_ioctl+0xaf0/0xf00
[   75.304953][ T6973]  ? __pfx___video_do_ioctl+0x10/0x10
[   75.306334][ T6973]  ? __kmalloc_noprof+0x23b/0x4f0
[   75.307661][ T6973]  ? video_usercopy+0x1b4/0x1520
[   75.308945][ T6973]  video_usercopy+0x427/0x1520
[   75.310206][ T6973]  ? __pfx___video_do_ioctl+0x10/0x10
[   75.311602][ T6973]  ? __pfx_video_usercopy+0x10/0x10
[   75.312957][ T6973]  v4l2_ioctl+0x1ba/0x250
[   75.314077][ T6973]  ? __fget_files+0x151/0x3a0
[   75.315312][ T6973]  v4l2_compat_ioctl32+0x214/0x2c0
[   75.316603][ T6973]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[   75.318046][ T6973]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   75.319425][ T6973]  __do_fast_syscall_32+0x73/0x120
[   75.320740][ T6973]  do_fast_syscall_32+0x32/0x80
[   75.321989][ T6973]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   75.323634][ T6973] RIP: 0023:0xf7fa6579
[   75.324694][ T6973] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   75.329600][ T6973] RSP: 002b:00000000f512657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[   75.331716][ T6973] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c0f8565c
[   75.333711][ T6973] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[   75.335728][ T6973] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   75.337730][ T6973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.339743][ T6973] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   75.341743][ T6973]  </TASK>
[   75.343719][ T6973] Mem-Info:
[   75.344689][ T6973] active_anon:11260 inactive_anon:0 isolated_anon:0
[   75.344689][ T6973]  active_file:13634 inactive_file:38082 isolated_file:0
[   75.344689][ T6973]  unevictable:1768 dirty:308 writeback:0
[   75.344689][ T6973]  slab_reclaimable:10074 slab_unreclaimable:57519
[   75.344689][ T6973]  mapped:30373 shmem:8179 pagetables:766
[   75.344689][ T6973]  sec_pagetables:295 bounce:0
[   75.344689][ T6973]  kernel_misc_reclaimable:0
[   75.344689][ T6973]  free:43917 free_pcp:3440 free_cma:0
[   75.357567][ T6973] Node 0 active_anon:3524kB inactive_anon:0kB active_file:0kB inactive_file:14952kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5240kB dirty:8kB writeback:0kB shmem:3136kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9372kB pagetables:644kB sec_pagetables:1128kB all_unreclaimable? yes
[   75.365731][ T6973] Node 1 active_anon:41516kB inactive_anon:0kB active_file:54536kB inactive_file:137376kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:114352kB dirty:1224kB writeback:0kB shmem:29580kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3076kB pagetables:2420kB sec_pagetables:52kB all_unreclaimable? no
[   75.365802][  T835] IPVS: starting estimator thread 0...
[   75.375456][ T6973] Node 0 DMA free:2992kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:56kB inactive_anon:0kB active_file:0kB inactive_file:1280kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:264kB local_pcp:204kB free_cma:0kB
[   75.382674][ T6973] lowmem_reserve[]: 0 273 0 0 0
[   75.384150][ T6973] Node 0 DMA32 free:25308kB boost:6144kB min:20048kB low:23524kB high:27000kB reserved_highatomic:4096KB active_anon:3468kB inactive_anon:0kB active_file:0kB inactive_file:13672kB unevictable:3536kB writepending:8kB present:1032196kB managed:306336kB mlocked:0kB bounce:0kB free_pcp:1424kB local_pcp:216kB free_cma:0kB
[   75.392723][ T6973] lowmem_reserve[]: 0 0 0 0 0
[   75.395769][ T6973] Node 1 DMA32 free:148496kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:41516kB inactive_anon:0kB active_file:54536kB inactive_file:137376kB unevictable:3536kB writepending:1224kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:11912kB local_pcp:1016kB free_cma:0kB
[   75.403459][ T6973] lowmem_reserve[]: 0 0 0 0 0
[   75.404772][ T6973] Node 0 DMA: 50*4kB (UE) 57*8kB (UE) 20*16kB (UME) 37*32kB (UME) 13*64kB (UME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2992kB
[   75.408542][ T6973] Node 0 DMA32: 613*4kB (UMEH) 189*8kB (UEH) 86*16kB (UMEH) 208*32kB (UMEH) 64*64kB (UME) 18*128kB (UM) 9*256kB (UM) 3*512kB (UM) 1*1024kB (U) 1*2048kB (M) 0*4096kB = 25308kB
[   75.413010][ T6973] Node 1 DMA32: 106*4kB (UM) 51*8kB (UME) 29*16kB (UME) 19*32kB (UME) 159*64kB (UME) 37*128kB (UME) 34*256kB (ME) 20*512kB (ME) 10*1024kB (ME) 4*2048kB (M) 23*4096kB (UM) = 148400kB
[   75.417875][ T6973] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   75.420378][ T6973] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[   75.422722][ T6973] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   75.425315][ T6973] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   75.427685][ T6973] 59898 total pagecache pages
[   75.428936][ T6973] 0 pages in swap cache
[   75.430027][ T6973] Free swap  = 124448kB
[   75.431106][ T6973] Total swap = 124996kB
[   75.432181][ T6973] 524155 pages RAM
[   75.433148][ T6973] 0 pages HighMem/MovableOnly
[   75.434559][ T6973] 206668 pages reserved
[   75.435663][ T6973] 0 pages cma reserved
[   75.449928][ T6967] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   75.464099][ T6975] IPVS: using max 38 ests per chain, 91200 per kthread
[   75.795761][   T25] cfg80211: failed to load regulatory.db
[   76.010897][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   76.387388][ T6981] sp0: Synchronizing with TNC
[   76.430447][ T6995] netlink: 'syz.4.294': attribute type 4 has an invalid length.
[   76.433571][ T6995] netlink: 'syz.4.294': attribute type 1 has an invalid length.
[   76.436791][ T6995] netlink: 88156 bytes leftover after parsing attributes in process `syz.4.294'.
[   76.481728][ T6998] netlink: 96 bytes leftover after parsing attributes in process `syz.2.295'.
[   76.584018][ T5946] Bluetooth: hci2: command tx timeout
[   76.618073][ T7009] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   76.891597][ T7013] FAULT_INJECTION: forcing a failure.
[   76.891597][ T7013] name failslab, interval 1, probability 0, space 0, times 0
[   76.896366][ T7013] CPU: 3 UID: 0 PID: 7013 Comm: syz.1.299 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   76.899968][ T7013] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.903626][ T7013] Call Trace:
[   76.904791][ T7013]  <TASK>
[   76.905835][ T7013]  dump_stack_lvl+0x16c/0x1f0
[   76.907522][ T7013]  should_fail_ex+0x497/0x5b0
[   76.909177][ T7013]  ? fs_reclaim_acquire+0xae/0x150
[   76.910952][ T7013]  should_failslab+0xc2/0x120
[   76.912589][ T7013]  __kmalloc_noprof+0xce/0x4f0
[   76.914198][ T7013]  ? skcipher_recvmsg+0xb5/0x1020
[   76.915930][ T7013]  ? sock_kmalloc+0x111/0x170
[   76.917557][ T7013]  sock_kmalloc+0x111/0x170
[   76.919133][ T7013]  af_alg_alloc_areq+0xbc/0x2e0
[   76.920754][ T7013]  skcipher_recvmsg+0x326/0x1020
[   76.922246][ T7013]  ? __pfx_skcipher_recvmsg+0x10/0x10
[   76.923871][ T7013]  sock_recvmsg+0x1f6/0x250
[   76.925391][ T7013]  ____sys_recvmsg+0x219/0x6b0
[   76.927055][ T7013]  ? __pfx_____sys_recvmsg+0x10/0x10
[   76.928909][ T7013]  ___sys_recvmsg+0x115/0x1a0
[   76.930576][ T7013]  ? __pfx____sys_recvmsg+0x10/0x10
[   76.932389][ T7013]  ? __fget_files+0x1fc/0x3a0
[   76.934005][ T7013]  ? trace_lock_acquire+0x14e/0x1f0
[   76.935818][ T7013]  ? __fget_files+0x206/0x3a0
[   76.937467][ T7013]  do_recvmmsg+0x55d/0x740
[   76.939028][ T7013]  ? __pfx_do_recvmmsg+0x10/0x10
[   76.940752][ T7013]  ? vfs_write+0x306/0x1150
[   76.942336][ T7013]  ? __fget_files+0x206/0x3a0
[   76.943958][ T7013]  __sys_recvmmsg+0x21e/0x280
[   76.945581][ T7013]  ? __pfx___sys_recvmmsg+0x10/0x10
[   76.947391][ T7013]  ? __pfx_ksys_write+0x10/0x10
[   76.949076][ T7013]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[   76.951242][ T7013]  ? lockdep_hardirqs_on+0x7c/0x110
[   76.953018][ T7013]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   76.955287][ T7013]  __do_fast_syscall_32+0x73/0x120
[   76.957039][ T7013]  do_fast_syscall_32+0x32/0x80
[   76.958737][ T7013]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   76.960920][ T7013] RIP: 0023:0xf746e579
[   76.962323][ T7013] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   76.968855][ T7013] RSP: 002b:00000000f515657c EFLAGS: 00000292 ORIG_RAX: 0000000000000151
[   76.971707][ T7013] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001840
[   76.974405][ T7013] RDX: 0000000000000001 RSI: 0000000040002020 RDI: 0000000000000000
[   76.976949][ T7013] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   76.979627][ T7013] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   76.982289][ T7013] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   76.984986][ T7013]  </TASK>
[   77.156947][ T7027] 9pnet_virtio: no channels available for device 
[   77.159421][   T39] audit: type=1326 audit(1733474940.958:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.167531][   T39] audit: type=1326 audit(1733474940.958:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.174987][   T39] audit: type=1326 audit(1733474940.968:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.184279][   T39] audit: type=1326 audit(1733474940.968:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.193022][   T39] audit: type=1326 audit(1733474940.968:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.201634][   T39] audit: type=1326 audit(1733474940.978:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=279 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.208229][   T39] audit: type=1326 audit(1733474940.978:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.214010][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   77.214348][   T39] audit: type=1326 audit(1733474940.978:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.222865][   T39] audit: type=1326 audit(1733474940.978:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.231297][   T39] audit: type=1326 audit(1733474940.978:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.1.303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[   77.499702][ T7034] netlink: 96 bytes leftover after parsing attributes in process `syz.2.306'.
[   77.816779][ T7057] sp0: Synchronizing with TNC
[   77.873387][ T7065] netlink: 96 bytes leftover after parsing attributes in process `syz.4.315'.
[   78.375768][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   78.499246][ T7085] dccp_close: ABORT with 15584 bytes unread
[   78.531473][ T7081] binder: 7076:7081 ioctl c0306201 20000680 returned -14
[   78.668144][ T7090] netlink: 4 bytes leftover after parsing attributes in process `syz.1.323'.
[   78.705760][ T7092] netlink: 96 bytes leftover after parsing attributes in process `syz.0.324'.
[   79.112831][ T7098] sp0: Synchronizing with TNC
[   79.574440][   T78] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   80.057373][ T7127] netlink: 96 bytes leftover after parsing attributes in process `syz.4.334'.
[   80.255229][    T9] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   80.440614][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[   80.443406][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[   80.446470][    T9] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   80.449806][    T9] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   80.452092][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.456713][    T9] usb 7-1: config 0 descriptor??
[   80.459528][ T7125] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   80.477324][ T7148] syzkaller1: entered promiscuous mode
[   80.479262][ T7148] syzkaller1: entered allmulticast mode
[   80.734182][   T11] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   80.869927][    T9] plantronics 0003:047F:FFFF.0002: unknown main item tag 0xd
[   80.873579][    T9] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   80.881065][    T9] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   81.153922][ T5946] Bluetooth: hci1: command 0x0406 tx timeout
[   81.190594][   T63] usb 7-1: USB disconnect, device number 2
[   81.295727][ T7168] netlink: 'syz.4.349': attribute type 4 has an invalid length.
[   81.306940][ T7168] netlink: 'syz.4.349': attribute type 4 has an invalid length.
[   81.359728][ T7171] dccp_close: ABORT with 1 bytes unread
[   81.994404][ T1135] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   82.519745][ T7191] Bluetooth: hci0: Opcode 0x0c20 failed: -4
[   83.067231][ T7201] Bluetooth: hci0: Opcode 0x080f failed: -4
[   83.134235][ T1135] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   83.274157][ T7233] sp0: Synchronizing with TNC
[   83.882721][   T39] kauditd_printk_skb: 49 callbacks suppressed
[   83.882731][   T39] audit: type=1326 audit(1733474947.678:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.365" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x0
[   84.043875][ T6001] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   84.194290][ T6001] usb 9-1: too many configurations: 65, using maximum allowed: 8
[   84.196960][ T6001] usb 9-1: config 0 has no interfaces?
[   84.199110][ T6001] usb 9-1: config 0 has no interfaces?
[   84.202156][ T6001] usb 9-1: config 0 has no interfaces?
[   84.207725][ T6001] usb 9-1: config 0 has no interfaces?
[   84.210251][ T6001] usb 9-1: config 0 has no interfaces?
[   84.212417][ T6001] usb 9-1: config 0 has no interfaces?
[   84.222853][ T6001] usb 9-1: config 0 has no interfaces?
[   84.226825][ T6001] usb 9-1: config 0 has no interfaces?
[   84.228232][ T6001] usb 9-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[   84.230454][ T6001] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.236877][ T6001] usb 9-1: config 0 descriptor??
[   84.244156][ T1135] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   84.255909][ T7272] loop2: detected capacity change from 0 to 7
[   84.259639][ T7272] Dev loop2: unable to read RDB block 7
[   84.261124][ T7272]  loop2: unable to read partition table
[   84.262619][ T7272] loop2: partition table beyond EOD, truncated
[   84.264883][ T7272] loop_reread_partitions: partition scan of loop2 (þ被—ü—ﴈР) failed (rc=-5)
[   84.274864][ T5946] Bluetooth: hci0: command 0x0c20 tx timeout
[   84.590815][ T5996] usb 9-1: USB disconnect, device number 2
[   84.705351][ T5355] Dev loop2: unable to read RDB block 7
[   84.706867][ T5355]  loop2: unable to read partition table
[   84.708367][ T5355] loop2: partition table beyond EOD, truncated
[   84.732677][ T5355] Dev loop2: unable to read RDB block 7
[   84.734351][ T5355]  loop2: unable to read partition table
[   84.735871][ T5355] loop2: partition table beyond EOD, truncated
[   84.966568][ T7298] xt_connbytes: Forcing CT accounting to be enabled
[   84.968514][ T7298] ip6t_REJECT: TCP_RESET illegal for non-tcp
[   85.082532][   T39] audit: type=1326 audit(1733474948.878:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.088356][   T39] audit: type=1326 audit(1733474948.888:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.095750][   T39] audit: type=1326 audit(1733474948.888:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.101100][   T39] audit: type=1326 audit(1733474948.888:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.106617][   T39] audit: type=1326 audit(1733474948.888:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.113600][   T39] audit: type=1326 audit(1733474948.888:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.122537][   T39] audit: type=1326 audit(1733474948.888:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.128643][   T39] audit: type=1326 audit(1733474948.888:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.134542][   T39] audit: type=1326 audit(1733474948.888:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7271 comm="syz.0.368" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7fc00000
[   85.172189][ T5946] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[   85.175776][ T5946] CPU: 3 UID: 0 PID: 5946 Comm: kworker/u33:5 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   85.179640][ T5946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.183474][ T5946] Workqueue: hci0 hci_rx_work
[   85.185010][ T5946] Call Trace:
[   85.186168][ T5946]  <TASK>
[   85.187210][ T5946]  dump_stack_lvl+0x16c/0x1f0
[   85.188862][ T5946]  sysfs_warn_dup+0x7f/0xa0
[   85.190501][ T5946]  sysfs_create_dir_ns+0x24d/0x2b0
[   85.192285][ T5946]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   85.194211][ T5946]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   85.196440][ T5946]  ? kobject_add_internal+0x12d/0x990
[   85.198273][ T5946]  ? do_raw_spin_unlock+0x172/0x230
[   85.200120][ T5946]  kobject_add_internal+0x2c8/0x990
[   85.201932][ T5946]  kobject_add+0x16f/0x240
[   85.203501][ T5946]  ? __pfx_kobject_add+0x10/0x10
[   85.205211][ T5946]  ? class_to_subsys+0x3e/0x160
[   85.206901][ T5946]  ? do_raw_spin_unlock+0x172/0x230
[   85.208699][ T5946]  ? kobject_put+0xab/0x5a0
[   85.210301][ T5946]  device_add+0x289/0x1a70
[   85.211869][ T5946]  ? __pfx_dev_set_name+0x10/0x10
[   85.213561][ T5946]  ? __pfx_device_add+0x10/0x10
[   85.215259][ T5946]  ? mgmt_send_event_skb+0x2f2/0x460
[   85.217032][ T5946]  hci_conn_add_sysfs+0x17e/0x230
[   85.218773][ T5946]  le_conn_complete_evt+0xfc6/0x1cd0
[   85.220590][ T5946]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   85.222515][ T5946]  ? __mutex_lock+0x1cc/0xa60
[   85.224148][ T5946]  hci_le_conn_complete_evt+0x23c/0x370
[   85.225965][ T5946]  hci_le_meta_evt+0x2e2/0x5d0
[   85.227572][ T5946]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   85.229668][ T5946]  hci_event_packet+0x666/0x1190
[   85.231365][ T5946]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   85.233182][ T5946]  ? __pfx_hci_event_packet+0x10/0x10
[   85.235021][ T5946]  ? mark_held_locks+0x9f/0xe0
[   85.236658][ T5946]  ? kcov_remote_start+0x3cf/0x6e0
[   85.238382][ T5946]  ? lockdep_hardirqs_on+0x7c/0x110
[   85.239939][ T5946]  hci_rx_work+0x2c5/0x16b0
[   85.241156][ T5946]  ? process_one_work+0x8bb/0x1b30
[   85.242510][ T5946]  process_one_work+0x958/0x1b30
[   85.243835][ T5946]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   85.245320][ T5946]  ? __pfx_process_one_work+0x10/0x10
[   85.246739][ T5946]  ? rcu_is_watching+0x12/0xc0
[   85.248002][ T5946]  ? assign_work+0x1a0/0x250
[   85.249238][ T5946]  worker_thread+0x6c8/0xf00
[   85.250461][ T5946]  ? __pfx_worker_thread+0x10/0x10
[   85.251809][ T5946]  kthread+0x2c1/0x3a0
[   85.252885][ T5946]  ? _raw_spin_unlock_irq+0x23/0x50
[   85.254226][ T5946]  ? __pfx_kthread+0x10/0x10
[   85.255446][ T5946]  ret_from_fork+0x45/0x80
[   85.256609][ T5946]  ? __pfx_kthread+0x10/0x10
[   85.257812][ T5946]  ret_from_fork_asm+0x1a/0x30
[   85.259077][ T5946]  </TASK>
[   85.260213][ T5946] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   85.261168][ T7319] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[   85.264562][ T5946] Bluetooth: hci0: failed to register connection device
[   85.268852][ T7319] binder: 7314:7319 ioctl c0306201 20000680 returned -14
[   85.375871][   T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   86.012951][ T7333] qnx4: no qnx4 filesystem (no root dir).
[   86.353923][ T5946] Bluetooth: hci0: command 0x0c20 tx timeout
[   86.402407][ T7360] netlink: 'syz.2.390': attribute type 21 has an invalid length.
[   86.486779][   T78] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   87.244992][ T7389] netlink: 24 bytes leftover after parsing attributes in process `syz.0.398'.
[   87.781574][ T7405] netlink: 16 bytes leftover after parsing attributes in process `syz.4.401'.
[   87.801323][ T7405] geneve2: entered promiscuous mode
[   87.802814][ T7405] geneve2: entered allmulticast mode
[   87.805878][ T7405] batman_adv: batadv0: Adding interface: geneve2
[   87.808675][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   87.811228][ T7405] batman_adv: batadv0: Interface activated: geneve2
[   88.121001][ T7410] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[   88.122827][ T7410] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   88.125990][ T7410] vhci_hcd vhci_hcd.0: Device attached
[   88.133953][ T7411] vhci_hcd: connection closed
[   88.136452][ T1146] vhci_hcd: stop threads
[   88.139234][ T1146] vhci_hcd: release socket
[   88.140399][ T1146] vhci_hcd: disconnect device
[   88.540148][ T7419] syz.1.406 (7419) used obsolete PPPIOCDETACH ioctl
[   88.724398][ T7424] netlink: 24 bytes leftover after parsing attributes in process `syz.2.407'.
[   89.198371][   T78] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   90.342634][ T7459] overlay: ./file0 is not a directory
[   90.349095][ T7458] trusted_key: syz.1.417 sent an empty control message without MSG_MORE.
[   90.353240][   T39] kauditd_printk_skb: 18 callbacks suppressed
[   90.353255][   T39] audit: type=1800 audit(1733474954.148:152): pid=7459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.420" name="bus" dev="9p" ino=37618134 res=0 errno=0
[   90.366184][  T102] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   90.393415][ T7459] syz.4.420: attempt to access beyond end of device
[   90.393415][ T7459] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[   90.397068][ T7459] efs: cannot read volume header
[   90.540708][ T7463] overlayfs: failed to resolve './file1': -2
[   90.546778][ T5946] Bluetooth: hci1: unexpected event for opcode 0x2036
[   90.630179][ T7468] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.780994][ T7468] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.880502][ T7468] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.959586][ T7468] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.070904][ T7468] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.083584][ T7468] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.089068][ T7468] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.095072][ T7468] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.194527][ T5946] Bluetooth: hci0: unexpected event for opcode 0x0c1c
[   91.278205][ T7492] netlink: 'syz.4.429': attribute type 10 has an invalid length.
[   91.280401][ T7492] netlink: 55 bytes leftover after parsing attributes in process `syz.4.429'.
[   91.456211][ T7498] capability: warning: `syz.2.431' uses 32-bit capabilities (legacy support in use)
[   91.495859][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   92.733985][   T69] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   93.884782][   T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   93.922918][ T7546] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   94.577728][ T7549] binder: 7547:7549 ioctl c0306201 20000680 returned -14
[   94.585703][ T5946] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   94.588017][ T5946] Bluetooth: hci1: Injecting HCI hardware error event
[   94.593108][ T5949] Bluetooth: hci1: hardware error 0x00
[   95.015060][ T1146] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   95.391912][ T7564] netlink: 24 bytes leftover after parsing attributes in process `syz.2.454'.
[   95.398929][ T7564] ------------[ cut here ]------------
[   95.400511][ T7564] refcount_t: underflow; use-after-free.
[   95.402170][ T7564] WARNING: CPU: 1 PID: 7564 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210
[   95.404864][ T7564] Modules linked in:
[   95.406352][ T7564] CPU: 1 UID: 0 PID: 7564 Comm: syz.2.454 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   95.411004][ T7564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   95.413734][ T7564] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[   95.415601][ T7564] Code: ff 89 de e8 28 99 ff fc 84 db 0f 85 66 ff ff ff e8 3b 97 ff fc c6 05 22 b6 6b 0b 01 90 48 c7 c7 40 ec b0 8b e8 97 6c c0 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 18 97 ff fc 0f b6 1d fd b5 6b 0b 31
[   95.420551][ T7564] RSP: 0018:ffffc90003467928 EFLAGS: 00010286
[   95.422129][ T7564] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff815a1789
[   95.424277][ T7564] RDX: ffff888024e4c880 RSI: ffffffff815a1796 RDI: 0000000000000001
[   95.426878][ T7564] RBP: ffff88806cc133a4 R08: 0000000000000001 R09: 0000000000000000
[   95.429007][ T7564] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000002
[   95.431065][ T7564] R13: 0000000000000000 R14: ffff88806cc133a4 R15: 0000000000000001
[   95.433109][ T7564] FS:  0000000000000000(0000) GS:ffff88802b500000(0063) knlGS:00000000f5116b40
[   95.435603][ T7564] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   95.437319][ T7564] CR2: 00000000f50f5da4 CR3: 0000000062788000 CR4: 0000000000352ef0
[   95.439403][ T7564] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   95.441483][ T7564] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   95.443561][ T7564] Call Trace:
[   95.444500][ T7564]  <TASK>
[   95.445285][ T7564]  ? __warn+0xea/0x3c0
[   95.446367][ T7564]  ? preempt_schedule_notrace+0x62/0xe0
[   95.447870][ T7564]  ? refcount_warn_saturate+0x14a/0x210
[   95.449524][ T7564]  ? report_bug+0x3c0/0x580
[   95.450879][ T7564]  ? handle_bug+0x54/0xa0
[   95.452038][ T7564]  ? exc_invalid_op+0x17/0x50
[   95.453287][ T7564]  ? asm_exc_invalid_op+0x1a/0x20
[   95.454740][ T7564]  ? __warn_printk+0x199/0x350
[   95.456020][ T7564]  ? __warn_printk+0x1a6/0x350
[   95.457289][ T7564]  ? refcount_warn_saturate+0x14a/0x210
[   95.458773][ T7564]  ? refcount_warn_saturate+0x149/0x210
[   95.460224][ T7564]  sk_skb_reason_drop+0x183/0x1a0
[   95.461551][ T7564]  j1939_session_destroy+0x163/0x460
[   95.462961][ T7564]  j1939_session_put+0x64/0x90
[   95.464292][ T7564]  j1939_sk_sendmsg+0xe8f/0x13c0
[   95.465781][ T7564]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[   95.467224][ T7564]  ____sys_sendmsg+0x9ae/0xb40
[   95.468483][ T7564]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.469872][ T7564]  ? get_compat_msghdr+0x11b/0x170
[   95.471227][ T7564]  ___sys_sendmsg+0x135/0x1e0
[   95.472464][ T7564]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.473981][ T7564]  ? __pfx_lock_release+0x10/0x10
[   95.475367][ T7564]  ? trace_lock_acquire+0x14e/0x1f0
[   95.476814][ T7564]  ? __fget_files+0x206/0x3a0
[   95.478067][ T7564]  __sys_sendmsg+0x16e/0x220
[   95.479312][ T7564]  ? __pfx___sys_sendmsg+0x10/0x10
[   95.480822][ T7564]  ? __ia32_sys_futex_time32+0x1da/0x460
[   95.482340][ T7564]  __do_fast_syscall_32+0x73/0x120
[   95.483732][ T7564]  do_fast_syscall_32+0x32/0x80
[   95.485060][ T7564]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.486717][ T7564] RIP: 0023:0xf7f97579
[   95.487782][ T7564] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.492947][ T7564] RSP: 002b:00000000f511657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[   95.495335][ T7564] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000200002c0
[   95.497484][ T7564] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   95.499569][ T7564] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.501667][ T7564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   95.503768][ T7564] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.505903][ T7564]  </TASK>
[   95.506735][ T7564] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   95.508632][ T7564] CPU: 1 UID: 0 PID: 7564 Comm: syz.2.454 Not tainted 6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[   95.511388][ T7564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.514225][ T7564] Call Trace:
[   95.515119][ T7564]  <TASK>
[   95.515901][ T7564]  dump_stack_lvl+0x3d/0x1f0
[   95.517129][ T7564]  panic+0x71d/0x800
[   95.518163][ T7564]  ? __pfx_panic+0x10/0x10
[   95.519355][ T7564]  ? show_trace_log_lvl+0x29d/0x3d0
[   95.520753][ T7564]  ? check_panic_on_warn+0x1f/0xb0
[   95.522096][ T7564]  ? refcount_warn_saturate+0x14a/0x210
[   95.523549][ T7564]  check_panic_on_warn+0xab/0xb0
[   95.524839][ T7564]  __warn+0xf6/0x3c0
[   95.525882][ T7564]  ? preempt_schedule_notrace+0x62/0xe0
[   95.527363][ T7564]  ? refcount_warn_saturate+0x14a/0x210
[   95.528789][ T7564]  report_bug+0x3c0/0x580
[   95.529904][ T7564]  handle_bug+0x54/0xa0
[   95.530974][ T7564]  exc_invalid_op+0x17/0x50
[   95.532171][ T7564]  asm_exc_invalid_op+0x1a/0x20
[   95.533458][ T7564] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[   95.535067][ T7564] Code: ff 89 de e8 28 99 ff fc 84 db 0f 85 66 ff ff ff e8 3b 97 ff fc c6 05 22 b6 6b 0b 01 90 48 c7 c7 40 ec b0 8b e8 97 6c c0 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 18 97 ff fc 0f b6 1d fd b5 6b 0b 31
[   95.540176][ T7564] RSP: 0018:ffffc90003467928 EFLAGS: 00010286
[   95.541765][ T7564] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff815a1789
[   95.543856][ T7564] RDX: ffff888024e4c880 RSI: ffffffff815a1796 RDI: 0000000000000001
[   95.545911][ T7564] RBP: ffff88806cc133a4 R08: 0000000000000001 R09: 0000000000000000
[   95.547958][ T7564] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000002
[   95.550082][ T7564] R13: 0000000000000000 R14: ffff88806cc133a4 R15: 0000000000000001
[   95.552148][ T7564]  ? __warn_printk+0x199/0x350
[   95.553409][ T7564]  ? __warn_printk+0x1a6/0x350
[   95.554671][ T7564]  ? refcount_warn_saturate+0x149/0x210
[   95.556115][ T7564]  sk_skb_reason_drop+0x183/0x1a0
[   95.557446][ T7564]  j1939_session_destroy+0x163/0x460
[   95.558890][ T7564]  j1939_session_put+0x64/0x90
[   95.560188][ T7564]  j1939_sk_sendmsg+0xe8f/0x13c0
[   95.561486][ T7564]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[   95.562891][ T7564]  ____sys_sendmsg+0x9ae/0xb40
[   95.564139][ T7564]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.565515][ T7564]  ? get_compat_msghdr+0x11b/0x170
[   95.566886][ T7564]  ___sys_sendmsg+0x135/0x1e0
[   95.568114][ T7564]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.569486][ T7564]  ? __pfx_lock_release+0x10/0x10
[   95.570800][ T7564]  ? trace_lock_acquire+0x14e/0x1f0
[   95.572162][ T7564]  ? __fget_files+0x206/0x3a0
[   95.573397][ T7564]  __sys_sendmsg+0x16e/0x220
[   95.574659][ T7564]  ? __pfx___sys_sendmsg+0x10/0x10
[   95.575913][ T7564]  ? __ia32_sys_futex_time32+0x1da/0x460
[   95.577380][ T7564]  __do_fast_syscall_32+0x73/0x120
[   95.578719][ T7564]  do_fast_syscall_32+0x32/0x80
[   95.580030][ T7564]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.581666][ T7564] RIP: 0023:0xf7f97579
[   95.582742][ T7564] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.587675][ T7564] RSP: 002b:00000000f511657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[   95.589860][ T7564] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000200002c0
[   95.592022][ T7564] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   95.594119][ T7564] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.596215][ T7564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   95.598417][ T7564] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.600612][ T7564]  </TASK>
[   95.602055][ T7564] Kernel Offset: disabled
[   95.603707][ T7564] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:49:19  Registers:
info registers vcpu 0

CPU#0
RAX=000000000036d5bb RBX=0000000000000000 RCX=ffffffff8b1ab889 RDX=0000000000000000
RSI=ffffffff8b4cd0e0 RDI=ffffffff8bb13700 RBP=fffffbfff1b52ef8 RSP=ffffffff8da07e20
R8 =0000000000000001 R9 =ffffed1005686fed R10=ffff88802b437f6b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8da977c0 R14=ffffffff901cb150 R15=0000000000000000
RIP=ffffffff8b1acc6f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020087000 CR3=0000000062788000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000034 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85153155 RDI=ffffffff9a6682c0 RBP=ffffffff9a668280 RSP=ffffc90003467288
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000005
R12=0000000000000000 R13=0000000000000034 R14=ffffffff851530f0 R15=0000000000000000
RIP=ffffffff8515317f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50f5da4 CR3=0000000062788000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=fffffbfff2d36f99 RBX=fffffbfff2d36f99 RCX=ffffffff8175513e RDX=fffffbfff2d36f99
RSI=0000000000000008 RDI=ffffffff969b7cc0 RBP=fffffbfff2d36f98 RSP=ffffc90003007518
R8 =0000000000000000 R9 =fffffbfff2d36f98 R10=ffffffff969b7cc7 R11=0000000000000003
R12=0000000000000000 R13=ffff888025072440 R14=0000000000000021 R15=ffff888025072f98
RIP=ffffffff81fbefbf RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f7fb6e40 CR3=000000000db7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 005858585858582e 7a7973d0000000e4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ff0f0e0d0c0b0a09
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000010d537 RBX=0000000000000003 RCX=ffffffff8b1ab889 RDX=0000000000000000
RSI=ffffffff8b4cd0e0 RDI=ffffffff8bb13700 RBP=ffffed10039df488 RSP=ffffc9000049fe08
R8 =0000000000000001 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000
R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901cb150 R15=0000000000000000
RIP=ffffffff8b1acc6f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f72839b0 CR3=00000000439e0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000