last executing test programs:

7.403583312s ago: executing program 1 (id=263):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000006380)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000100)={0x50, 0x0, r4, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
r6 = dup3(r5, r3, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x40305829, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc, 0x2}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0xffffffffffffffff, <r7=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x1c)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000240)={'ip6_vti0\x00', &(0x7f00000002c0)={'ip6gre0\x00', <r8=>0x0, 0x2f, 0x5, 0x7, 0x9, 0x24, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7800, 0x8000, 0x10000, 0xfffffe00}})
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000340)=0xffffffffffffffff, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{0x1, <r10=>0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)}, 0x1c)
r11 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000400000000000000", @ANYRES32, @ANYBLOB="0100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="02000000040000000400000000000000005c65c0608cdda27693f682ea42e6e60000000001000000000000a39e79ceedeae716f97093e756aaaa8a26ab002df7407e9e1c21e674535cc9370000000085fcb072e9171bb9c3ae7c65e5d4295e0c38015e1cfd13a37e3980eb31ae3403d2e448bfedeaccd57e75898e5a9701a52c584364bac377c7fe9e3d1d67795897791abd6a62d5d8d832d600b7f072e70a34a71c5f8068bfb95c4384570e8e75e3dcb2cb0397960ec3d5b1e6822b7cddcdd835ee5552f454758617076c1f1c05b4354e55a94923caba16bbca6ef1cd6c8b53b84e21d60139caa61f000000000000"], 0x50)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r12, 0x0)
pipe(&(0x7f0000000080)={<r13=>0xffffffffffffffff})
r14 = socket$inet_udp(0x2, 0x2, 0x0)
close(r14)
splice(r13, 0x0, 0xffffffffffffffff, 0x0, 0xf, 0xc)
r15 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000700)=ANY=[@ANYRESOCT=r2, @ANYRES32, @ANYBLOB="0100008000000100000000800000000000000000212101460de5c183fcbf87cf1a3574c59ed15259a195d10a", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000010000000400"/28], 0x50)
r16 = openat$procfs(0xffffff9c, &(0x7f0000000780)='/proc/cgroups\x00', 0x0, 0x0)
r17 = creat(&(0x7f0000000540)='./bus\x00', 0x0)
quotactl_fd$Q_GETQUOTA(r17, 0xffffffff80000700, 0x0, 0x0)
r18 = openat$dlm_plock(0xffffff9c, &(0x7f00000007c0), 0x2200c0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x2b, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000346c5d800ef54ce8000800000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b70500000800000085000000a50000004fa7ffff040000000274040007000000473000000800000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000000000008500000086000000950000000000000018530000030000000000000000000000bf91000000000000b7020000030000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x1ff80000, 0x77, &(0x7f00000001c0)=""/119, 0x41000, 0x20, '\x00', r8, 0x0, r9, 0x8, &(0x7f0000000540)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000580)={0x1, 0xf, 0x7, 0x800}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000000800)=[r10, r11, r12, r18, r15, r16, r17, r18, r0], &(0x7f0000000840)=[{0x4, 0x4, 0xf, 0x8}, {0x4, 0x3, 0x7, 0xc}, {0x1, 0x2, 0x9}, {0x5, 0x5, 0xc, 0x6}, {0x1, 0x1, 0xf, 0x2}, {0x1, 0x2, 0x10, 0x8}, {0x4, 0x1, 0x8, 0x5}, {0x1, 0x2, 0xf, 0x3}, {0x0, 0x5, 0x200010, 0xc}], 0x10, 0x79, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r19=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="341bdb03", @ANYRES16=r1, @ANYBLOB="cf0400000000000000001300000008000300", @ANYRES32=r19, @ANYBLOB], 0x1c}}, 0x8040)

7.403182786s ago: executing program 1 (id=264):
ioperm(0x0, 0x8, 0x400)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x4, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
epoll_create1(0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, 0x0, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x13, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8880}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000002440)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
sched_setaffinity(0xffffffffffffffff, 0x8, &(0x7f0000000540)=0x5)
bind$alg(0xffffffffffffffff, &(0x7f00000023c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32\x00'}, 0x58)
r3 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet6(r3, &(0x7f0000847fff)="03", 0xfffffffffffffd9f, 0x0, 0x0, 0x25)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r2, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x3, 0x3, &(0x7f0000000180)=[0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0], 0x0, 0xfa, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f0000000300), &(0x7f0000000340), 0x8, 0x2a, 0x8, 0x8, &(0x7f0000000380)}}, 0x10)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000140)={0x2867}, 0x8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000002100010000000000000000000200000800000005001500"/36], 0x24}}, 0x0)
bpf$BPF_PROG_ATTACH(0x9, &(0x7f0000000580)=ANY=[@ANYRES32=r4, @ANYRES32, @ANYBLOB="1100000000000000", @ANYRES32=r2, @ANYBLOB="8654910f34608200fe5af2eb5c715bc69baaab841f6e78ff75b6727916a95c0de873f3a6a7a132694cbdb5a16a96be5fabb512e1a4c64344ca6356835eead037a6661915d3eb85b590845c52518d7e7fe868cdbc73a664604fe576c6f26032f9459c57bd29270b7bb626d5355c5d73a0590376a9cc74141228108f18dc42bc4297507a3b5e4d7953e7b496a3919d1bacab64f568f4abe6afd382d153ad468a0bce9a2e384ebf35a3e17350af83aa094ae1ff1345172f3e189af30cf037aae8e84d98588e89c2e74680583c835877afcc1ee2c9", @ANYRES32=r2, @ANYBLOB, @ANYRES64=0x0], 0x20)
waitid(0x1, r0, 0x0, 0x4, 0x0)

7.18857868s ago: executing program 1 (id=269):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000500), 0x0, 0x0)
read$msr(r0, &(0x7f0000000f40)=""/102400, 0x19000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = inotify_init1(0x0)
fcntl$setown(r2, 0x8, 0xffffffffffffffff)
fcntl$getownex(r2, 0x10, &(0x7f0000000100)={0x0, <r3=>0x0})
rt_sigqueueinfo(r3, 0x7, &(0x7f0000000000)={0x0, 0x0, 0xfffffffe})
ptrace$peeksig(0x4209, r3, &(0x7f0000000000)={0x2, 0x0, 0x2}, &(0x7f0000000540)=[{}, {}])
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r4, &(0x7f0000000080), 0x10)
sendmsg$can_bcm(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="0500"/12, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000000000000000800de00000000874fdf8a"], 0x48}}, 0x0)
sendmsg$can_bcm(r4, &(0x7f00000001c0)={&(0x7f0000000040), 0x10, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="0500"/12, @ANYRESDEC=r3, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0x48}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0xf0ffffffffffff, 0x0, 0x2404c804}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)={0x98, 0x2, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x1}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xce0b6b04d8243865}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0x2b3}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x49}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x5d37}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xa01}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xc80c}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x23}]}]}, 0x98}, 0x1, 0x0, 0x0, 0xc1}, 0x4004)
get_robust_list(0x0, 0x0, &(0x7f0000000400))
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000008c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x8)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$vcs(0xffffff9c, &(0x7f0000000140), 0x183000, 0x0)
listen(r6, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'md5-generic\x00'}, 0x5a)
r8 = accept4(r7, 0x0, 0x0, 0x0)
write(r8, &(0x7f0000000040)="cb", 0xfffffdef)

4.550234388s ago: executing program 1 (id=285):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='proc\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000080)=""/55, 0x37)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000dd0200000000000002006e657464650400696d0000000f000200c3657464657673696d3000000d9674c43cfe39c09a391f3f41b0b722d3cd4b0e8140e077f82af55e26846fcae05f6a93ab053016d2eb7ce4951c357e8af1bc0b733f02d5076fa43a495d9a38317ff8c56195c4da37"], 0x34}}, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0xd6, 0x8, 0x0)

1.948811066s ago: executing program 3 (id=296):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000640)="cd", 0x1}], 0x1, 0x0)
io_setup(0x2007, &(0x7f0000000200)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000840)=[&(0x7f0000000080)={0x1802, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
splice(r0, 0x0, r3, 0x0, 0x4ff9c, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6], 0x0, 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001c40)=ANY=[@ANYBLOB], &(0x7f0000000340)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x8, 0x10, &(0x7f0000000880), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r8, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x8, 0x0, 0x0}}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r9, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='rpcb_unregister\x00', r10, 0x0, 0x2}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x1fe)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f00000003c0)=@filter={'filter\x00', 0x42, 0x4, 0x2c8, 0xffffffff, 0x94, 0x1b8, 0x0, 0xffffffff, 0xffffffff, 0x29c, 0x29c, 0x29c, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x3e020000, 0x70, 0x94, 0x0, {0x88000000}}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x4}}}, {{@uncond, 0x0, 0x94, 0xbc, 0x0, {0x122}, [@common=@inet=@dscp={{0x24}}]}, @common=@inet=@SET1={0x28}}, {{@uncond, 0x0, 0xc0, 0xe4, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00'}}]}, @REJECT={0x24}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x324)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b0f, &(0x7f0000000000)={'wlan1\x00', @random="00000c37d7ac"})
r11 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
ioctl$VHOST_SET_LOG_FD(r11, 0x4004af07, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r12 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r13 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0)
write$dsp(r13, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r13, 0x5001, 0x0)
io_uring_setup(0x4da6, &(0x7f0000000080)={0x0, 0x38b1, 0x0, 0x3, 0x2})
ioctl$SNDCTL_DSP_SETFMT(r13, 0xc0045005, 0x0)
close_range(r12, 0xffffffffffffffff, 0x0)

1.407440214s ago: executing program 0 (id=299):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x1f}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x12}]}}}]}]}], {0x14}}, 0xb8}}, 0x0)

1.328201437s ago: executing program 0 (id=300):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000002400)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000023c0)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x5}}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002440)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {}, {}, {0xc}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

1.191273598s ago: executing program 0 (id=302):
r0 = syz_open_dev$evdev(&(0x7f00000003c0), 0x0, 0x0) (async)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) (async)
r2 = getpgrp(r1)
ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000100)={&(0x7f0000000000)=""/141, 0x8d}) (async)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
readv(r0, &(0x7f0000002140)=[{&(0x7f00000010c0)=""/29, 0x1d}], 0x1) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x1, 0x0) (async)
getpeername$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
io_setup(0x8, &(0x7f00000001c0)=<r4=>0x0) (async)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk', 0x1, 0x0)
io_submit(r4, 0x1, &(0x7f0000000400)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r5, &(0x7f0000000300)="d0c668072b39", 0x6}]) (async)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000001c0)={0x1b, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0xd3, '\x00', r3, r5, 0x2, 0x4, 0x5, 0x0, @void, @value, @void, @value}, 0x50) (async)
r6 = getpid()
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
r7 = socket$inet(0x2, 0x3, 0x6)
setsockopt$sock_int(r7, 0x1, 0x2e, &(0x7f0000000180)=0x207f, 0x4) (async)
shutdown(r7, 0x0)
recvmmsg(r7, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)
io_destroy(r4)

1.167806366s ago: executing program 2 (id=303):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000300000000030000005800018044000400200001000a000000000000000000000000002d00004d00000000002d00000000200002000a00000000000000fe8000000000000000000000000000bb000000000d0001007564703a73"], 0x6c}}, 0x0)

1.039915633s ago: executing program 2 (id=304):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4, 0x0, 0x0, 0x0, 0x0, 0xc}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x5], 0x0, 0x202})
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000240)={[{0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x6, 0x0, 0x0, 0xe}, {0x2db}], 0xfffffffd})
ioctl$KVM_RUN(r2, 0xae80, 0x2900)

979.796785ms ago: executing program 3 (id=305):
r0 = socket$kcm(0x29, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000280)={&(0x7f0000000000)=@phonet={0x23, 0x8, 0x6, 0x7}, 0x80, &(0x7f0000000080), 0x0, &(0x7f00000000c0)=[{0xd4, 0x1b, 0x5, "78d1b4c88d896bd056eb17db7a83b6a7f37106db0c44d52a0de43fa3b9194cd468f43b96a2d0ce4e83dc848eeb85bb1a673dc06299e128f48f8af1b0206fddffa24761fc9abe495b54b31c19d07bb626d1ea7f3fdb1ced2a37d067e9bf3deb830f5b88031558d58d3fdf20914a89fc2d67f42ba45dd8b3733b8b0caa437b1b4f6dbeb03ebc0cbe11ec7e9e88fc877d01d9ddb3a565013615366ab1c62a45cb6b99e37b3223e6dbc8e778e94374318f6b9ec0d8a1c087e5ca58a44adb3f67e45d00c74543464363"}, {0x40, 0xff, 0xe, "f06a4ab9cb03e60454397cf2bb7bc4a476e29df5bb0a334c7648dd25ddc8c1b82f0c15aac9158b4b58ade7b267df8f02b2e303"}, {0x74, 0x88, 0x5, "115305c7328993f5e1696a4cf31cb1414c9035eb0469042f3087f65140577e3c67219ccb638dce57969337a86549a3fb24ee1f2691ace8ced82d86ef068f8fcfcf8a72c4dad4f5115545163031064028bd8eeefb1b6fa1fbef9bfb1ee1da99b2d337bd050236fd"}], 0x188}, 0x4000000)
r1 = openat$sysctl(0xffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
write$sysctl(r1, &(0x7f0000000300)='6\x00', 0x2)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r2=>r1, {0x1}}, './file0\x00'})
syz_io_uring_setup(0x942, &(0x7f0000000380)={0x0, 0x1818, 0x4, 0x0, 0x324, 0x0, r2}, &(0x7f0000000400), &(0x7f0000000440))
sendmsg$kcm(r2, &(0x7f0000001a00)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000480)="6abfb690ece9fd4235db31ac66db5c296bab407404f2857747a88e53fc1fe2cbde0017c128a620d730e94e852fa656d927c07386760b738a9af6eb047e5c2274866edf72d81d071c22df9a91304099aaacf447b756ab1f5fd64c196620846d5f84909f53e09fecc619d7a06ba5f6de536a2f50629b11d340e1902f84ab97ec9e5707", 0x82}], 0x1, &(0x7f0000000580)=[{0x40, 0x107, 0xfffff801, "9ac369fa3ff09aafdf2e3fb5382dae01a60fce60d6d185806f6a224482326730c026c1def3dd789217ab1b1f8c3186876b88d05f"}, {0x104, 0x29, 0x1, "94e88cf3eb3136597ea8deb95502408795a329fc0fd322dbae5553c517c44b5d49d00301c55af8a55808fe421b6e92e70f64053d2e65abde31e0b31b8c3ac79784439d6a3652eb34586c45e37291202895048fbba628d9603f2f217896705171367cc0f063e82d05a2888d99606f0d3b372788b9cabd4fd6911b38909b47e8278d606312634368c1e826c59ee569bc8c6628b8eb2d3948141ae07f66dd6861933c4d525782ecb597902f63ebc353dd91ba49be52147e15d16d68e184ceae548605695ba74b8589e23b86b567ba13ad6529fac4d0af6d644320ca36d680800cb669152242da31eda4281b14a713888e252e8c1fe04c"}, {0xbc, 0x10b, 0x6, "1b015612dd4daa33dfea7b98f5e25b45a21e52767aee06a0d7556d44dad836ddda3968dae601110a1f6e94e9acc28f1114e1af30481379dffb321274fd5e6ff5770b3737ca69bd30aa0ac6f02100cba8de39f8f0f283a2a75c42aad888e60fa2b4f608104d85ac49efd5e5b59b3af78dba800c9cbe1055cdfa78d8f9b8b02d2f0482c4173158ebdd430c0e1f75d0b5c952e644f150fc61859d9c19d22c7a42922737a69cbddeb3b190bda8337b86"}, {0xd0, 0x104, 0x5, "e580deb492911a2d05522ed0355e8709afc7586c5fe1f023daf4e5db33c553a2abc1d618e5a853be5a5971b21b7bcecc3a8f3930565aeedf9147086802e2c7f8077cc887b99df2dbf8547eeebaf220936c6ddbd66b3587c00622a2da65dd9cf1d82be7e8b8879543f3d6b815df752ef73b86359c848f10638bdbe077a947d7e28fa0deff0bf045c27845a2d5f2260657578d4abd8f1ceba07bfe77c00729539655fde977196061c13dc6c5ebdb23b9fc250420632e8b279637571f051f21a788f74428ab"}, {0x28, 0x10c, 0x9, "09fa2503771b142642153f688802469704c90e23bf29abaf97"}, {0xf0, 0x102, 0x7f, "fd45bd9a6a272cc66243e5b814f1c0de20caecd7316abc544472632ba9676d0e7715019f55642cdae79bf2ad5e9acbffe908a6c917b13a58f83e772d148ad28775fe4f64df2483115ce055c4e3e61b0fa00ebfbc811bdf9960ebef975e8836dfb44b0d7a83964213d0023907f100d44e60a41a890ec56f7d4a26ea667e2c5ee04fa2cc34fa6dee9a88c54dda711805bd0b1d049cc7cca1fe2252db357c0babb48613937e6af00564832245b1e303a94de858b2cb06a1d111550eb25d3281d196df5974a503df8f3d40dae2c491529349fb3b646801d09f320606312bc6f68b2dd56e"}, {0x100c, 0x1, 0x2, "042d3777747a831cb92176a0526b04c7aed4d413e12a7757768745867631ca4a43d788e36ae354604f60303d14e7f02ea7e9d6757a5ac27a92b276591255c73026214066c6274231a4d829440b4086cff16aa8ea75b9be701bfef52ca9f49ffdcbb1a3a5b4ef40e18c16ca20ce3b930654a08e4f8b26cef3fc156fee145e8eb47ddf66eb7246653a7fd6c412492f8942b7b95941ad41953e6303ab4bb10f798c12400276c6f7f68a8f54dea0b60394191401523614660be32e0ed50a01041ad33cf8d4326e23056f76bf6ef31e7542d91e50df7fb91ddf72d12944ab7633aba3355e68b94e66efb799da98a51cb608daff188730cd8b4cc7f3ddb117db4dde14bb66d58b39c5b31feae0d95baef12832509178f50790652397b89936a77cbe9a1cabbd4c2d418b38953d4c316299ebc66f48f8eb11f60aeb97a77f365d358e7825eb128243dbe117501e3584ba2c5fc2562a985b7bed6a58700c602b8ba24450de152ad19624510cbeb282a3544cdc34dbd593a0ea718aaa09b9dd2d63b4f3a7f8147faf1977feff5db969b460778a371cebedde0074e6bb9eacb0acad3bdde8dc82b8434a540aadef9e5ba389283c8e16e4c77874155cd5ae13653b810bc777002f11f244d3228dff0da836f5f19c785b73d8887d7b9e8905b9d33ff5587c34d9f39e3f23d4a7ed3841a78ed2609a29d0943eb85c1b9bea258874206a69907af205d6924dd128139495dbd369b6835b1f661a5b9ecd441e0fef445c7df3a30b36f9df604eb95c6cc568c9ee455ad9f11bed419ca6a1e78f18247a8d0b445e7d180391f327755e0cbc37da863d8e61556fb119e7f0a04c7c4fd6da00a5962463ef8ea10dd5fe092479e7acb3968f6af224b2290bfb0d7cc7930438f9d51e96200c63b8fd843ed1d90a3af7f11453e39a91cf8afa0adbf190b1d4127c0a28a8b1595c52b30543a58a93c7f1bcec330bce53856c2efc09c526ace4ca05972925073fba897b67b4f7e9ec7933347614121c178f7f9c1812c61fa26efcbc9484a51a58c15e4acfe3b51e5fcacb1c6e7f9a33ed33344c80b9120af0e38c589d4cedac6ad30a05af53a52a3e03292b24fe83a57c453ceaf959b55622699fddd8838abf53f399897fa33cbade7ee363d2c0cdc15b1578987e2d2b2d9509144021f0fd0e4f84a7900396598069b0c99744131e5d95a0345f7f743d52e96d4eb5d41ba31cbb443d52ada3bf375d283288f2cdc974f56883a99e3a22a0dc121e542f5529879ee1ff564c87461205e0359a93c0e50668044fcaf48f2969818a705427a3cb0986a351cdd5ebf342aee758cda869eafedbf2b7cda1709b1697f4f37c5f3084e9e37d5703534e1583d82e871f51745e01ddd35b74edf15f00a2c9a796e969bc0b31973e9814161224d80b235d341fbcc205469f5fbfb69e53cb0f7679584c6777b6a6767fa08b6601a94c861681dada0491324b7f1a0c28543ea43faa37ec7683d58d3781be1ce6b464ca9f95ce75fce5332c7c17041d2d4274b1bdd8bb4ff4a7b4fa549c6d251b636f3c97e6a1bb1acea28e3c04ac9e807e09ded13400d58d11636c328230a787d1e7c540b86c5776c283d6a0db1ff1c1ce27a285af7c95d9ff6dd4c8d163faa6e809a60163ae08464575e07ea5f834175e367f6e40dff13efe0afaf7773f529be5a05b11aee389f83bba9f8b426d2268421988e8fe63ccccda8d7dff8dccaa9414fd43a8890bc923a89c0c885310d015a98711285c3de7946a6495d0dfb2bfcb693b99bbbbeacc034edabb91487406a7c4f8ea882d85ddd0161e57f9a5a26440321bbccc63ad641abafc22d4738866b112e673511e3fa7e11abe1badb23411f515ce71d9b5be4a098e1354295094853b882361863419748f55a792774cfbb93b8c0d3fce2c585682e1dae946d5557f300b47fb9535338e6884a1ad93ec5851c9bf82320af533847a0a569f562cdbe6fea93b87a2193cf717cab61d5f1f7f5caca04c0a06576f49573414e66d47ff8e283cf11ee72353ac1796c91d71813b51b5810f0016b254fe4fd39e3e5977eb7ca58552ef10e5c986a6b480f8f238e62c59c66b4b11dacc2c41c14310279ec8ef4b71271b98d8de3550c28a9b62d5da57e21b8abcabbb1d23edfd6eb460c46edc294cf4aceee35fb6d58af12c886634684856ab51b8319770dbac08d6259b163e7bd8270e392b94314efd38542527c19ee989416e92a3929da8bfed198f9ba4931298df7508c21e7b553a2551ed3d67a6a9149447bebb53d636959b47f13602990d079c84b92778c0cd39885168e760bc81d958cd11170f0d92fab6ec2cadf980a60764c1dc41e2a90850978e201448c29b6374db1c718f38dc4af73335643dac9f20520ae3c2a763f00b2f6982da6c1af29779890588df6d7aba2406211d1fbcd0be5fe0341787e210b23fd1c18a1e734e8d4a93a77d3d40492a8b20d4122aa8fb8169f1fa8d70a52caf960be28a986ed75518287f46e0257ac5a209415a09f2b6189af9fd8bad5b21f8f8662b9f170ac2c9a7055ad16c58f190297d6ef6899dab61df93501cfe644b69290863f146aa53781bd09844f4b7daea09c0a736f7d748709b6acad08a26080d55bef9425b70fd4d329a31f28f22c930f6b69a62430f6ba2ff1d75449824ec55ec95ed949b43cc29c368e7668b937bca5b5cc4f14d11cf684da9eb50bef1285015649f61bfee9674783d779b8bec371ba4c1dfb499834abec4fb0f35e61e8d83dc6e80301d7939ac6020373b192945cbf4753fd85a9d2639920ebf381647f11b67b8f27a6fe97b53f06ad6689c02ec675296fd9c711d1d8914edade374540b0047eb40536ed648488b6f496ad6c7da40950352e119c1abc973ff4bd2f3f8bb44e2138a7cacbf73c519b1ac5289fc2fbf3651dd171cbc8f15b8b8eb2458120d71881bb65422e26317acf06e1d483f268e7950a62be1911b7a94b3a8777a457964866c96828ed9f2d32d4725e8f3782477c1b583681f84bcf1fa207e91a864acbb5c7f1dcfcb8c6517f4b74e0cb574d0f42b123003d3161bf437fc937b98d990b31f8184868f379b11d6e04c7eee67b0166aa50043f4d18775ea80009516e1265c6d92fe465b4397df0682b6630b1db328cbcea483ca2a80d5301948affbe663cd1c5c5d9f95db767e07a426ce46a941a8089466ebfa15f0df15cdabb911a45284f573aa455e0c809265305f3c1c519f02347d4f7e000ef69a526e32f0cec7d309aa18ddbffc0c58245278872a3f6db2e04a0430aa387d7dd3a54dc933349aaf6f91f7dcfc8b6b49daa960362865a23c98925c2de0fc1e63cc08a77ddfc274eebc9a5cdb3f9ab8e634a313fa899df40a1c6dc7c7a07444f28dcc2bd2d24414701cdded549b72e14d64f654f2ebe999f4d639cb75a66c76ee44ab44d34c7001ddfafd8e0376ad268f37c4d041883372c49a73c6b87b5dd8a7367ba0b1d7a5f77405d463e85bb4f11eb9101c738fb8e0111d1307f44255c7e596fc7bc64e87f872a0bdb8623fc69753443e1780d34276b1bf2ae14eaab16543c327f2f4e4c06ef9570ca7f525da918a681d8c6837a549bff645d42844c9a9cb448d7466465baad57b71b5ad6cf73aba56bb89aa4b1a1392c77fe9f1375c2245eb3311b09e72318919993d7ea093b4d06e3d7cb66536210102058e944e19a9f55ec85643aa7d70a38483d2b09cb74566ef3c511154a79db584c0ed3ef40045825a33efe6ed815938ed2ff843735fe8090b3e787d5ccf73d4a76eba04715802f6061de2784bfdf60b7df2ef209889cf8d9a3419611c8b968f574ba4bae508c9a124eb6c47bbcdadd74a060948465550abd57da089a450c96e35ba58cc07df71e318da8ead1bf3659c6e9c31d6bfcfbbded94e4b877bc358ec9eb2eebb3656e28b8b41d29318add32ad040ae68dee14d7619a47471e34b718564fd0debeaf6620675e91e227f19cba62c89441b84886189d1c643d871630fd2a04a153878977810eb700339a5327de1af24dc898613d2a04d8f59e0f747b4da91ae002979b58494e63ce935c70988a5f676b0d4f35a993b5a8e279360fc1c73d701d250b1aaaddfb85e6e42e01b7aa7609c9dac3a00596ad5d2bb19265b333a83f260a37cf0ddbbaf5908acb1f67fe3659f4bb790dca2dda067530adeed3a8e9dd920d01db6ed9c9642b2f924917a532ab326e3549eeefd4537e5f6e4b0d8c94411cdaabd8a48dd78005073cdb9c0e54b230ff33fe92dd5d96dcd7996b5e83bd53a11d84235bdff891e2197f87ca053ea2cb664695ce519505c825ac68b716d9d97f92ac5b68984f1ba554b16dbc07759c8e6689fdc151c16915cadda602be8b9337d86704b6df8864c8d92606ad6af9058ac55fe0febbc4f03f0d67c1ce33c0c9172873beb5796c840843ea165410ce738a426040a40edb172a521da11c87feacb9ef59d9d26dec8cef46eee0ad198e48caf3f48eb65049a4208b95cf4ae42264a8dd5095d46459ee783598c58e44dd3c070003630c14cf92b106de3d3f782e9f43399d039d100a5f6abfe874f90bf12708abd87621cdcd8e75406a1c246fe1317f21be49a204931341dd3773de9c5f83d554109a594541bf17eac43418e68540628814b41e034f2bce618778dc0652ec45aaa6112c35834a3803d238e0cf89e8ee79b6c32fe0904bda33d287362bb74a7df3f7f16625f029244fa9ce049f631b294ee4810bf2ef6a53e78a140fc9985eb0a3c562b294746d1d40956b85774627f14e3ace19b77fd219609835046b47dbaf950698862713b3cb1688a12eaa509f4238e1d6611b5d6cf94253aa5b7f5082ee6227dff26f7a50ca666d1fddd71e2fac527d7c0fc50749d7caeebd9d55d6703d314e9dbfd93d5f7c77aa1403275fbd3eaeab6bbc4a788e360d8766b78eef89ac827f36a742b8ecd8a0bfaa4c268c1e5c13b673442d53a462a34221b69a79ab1c42c1c3e04f51bec4e432eab776cb759e0d131e66143ad239e30a3c324f4079fbdb85ded1f809b46c6c406b21c5e3f4e9478614fae599ae79da5ce9de137acc5713b395b304441eab388ee003da7cd41519ccac8f3db60520611b35cc5951941a5d3d776e6999cc41ed52d897bd1d397c34d72132bb3666768cc86f70b41a119e37d4091faebd37f7c5d94f5bde44b76e4bf07f30c532c9088c7434a89446ef05cc26b32822746337d6f85658e712986b5576eebf7ac44329f06d0a8ad6eca8f50c437c27c4b536574f8cacf16e1eeda8a0e004072c5d4593668e0e24d19ada0f9eef5f6a8761a2e043ae93feb63ba978f66c419483dfa833c7815cc3ca7f570250927cd39dc1743ff8628d05e90f12886cd896383a3dc9f46db9b13f84b2d285a1702f3335a6ebd9181039b450ee83b388ef12eedc57747444e1397712fcec90c1bda7e2c8741efee3e68159bf44f9ee056d55aa461785fbe2ac6d7c635e522835b425e1c0fccdeff4a5342c5199b41c2f115b8aad95582dc9662eeefaa952e412560366b6057e7a58c5b93efaacf88b450b03e9bffa877bda4d1f7b1328c2bb664d569520fe6708a25a78c40bbf702dea5d32a6178cc85ab1eaf81ff135c33c30b8397333d7d193cf5bf271c10eddf72fda5d23a7a6cea6ef8481183939ce82af39762b2ae0285c1c07bcb88560dd12f165406ac7f46af533fe0a034f491a0b90d65ea11ed49a1ea0d76f33e1ea2ba98fcca241dae7a93f1eb60fe2ec593c43c70a987f7589ba41ae71bce88f41f171311d2c79abb3dce9508ed7b8a3ea8"}, {0x60, 0x10c, 0x0, "3ff2d60032148f0573501d5367cd6b23105ad1bc36a513cbfd94da4fc04ec7a3edd53e437d8fc5f4b541a3a1c9336a0ea30d7836ccb959f920df3438461f1c47e3487f4c2ff82aa6a2750f900647f48c7429"}], 0x1454}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$MEDIA_REQUEST_IOC_QUEUE(r2, 0x7c80, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000001a40)=0x61c, 0x4)
ioctl$VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000001a80)={0x82, 0x7, 0x2, "a732e6a3b6de3e8b4d050b0410f6466a949a49d62ef3b2c31ed8a46f125d7a46", 0x36314d59})
sendto$inet(r2, &(0x7f0000001ac0)="476f7113ee8cbbba76e01c9f1ed33cb11c4dcbb2d10dfac968e83694190608077a3db5e942097f48d9de44d53717264541a35400cf7a680b2f7ef5a339992d418afa6baacdf24be1b862ae5f2ce05560187e2c6094a23f00ce8a71a6eadcf6a875fe1087c4ec113e53861e08f1e8eb4fccfab08e646a5a7ab9ae1bf804468120a196d1f53632f489c5321a39509899495042fb3ca887c6836a4484a1f7390bde48d811906137d5804787bd9bbf8eec6dc69219801a81bdc798d5e801ec46e1", 0xbf, 0x4000000, &(0x7f0000001b80)={0x2, 0x4e21, @private=0xa010100}, 0x10)
pipe(&(0x7f0000001bc0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$inet_opts(r2, 0x0, 0x9, &(0x7f0000001c00)="0f67c5ab4ffa785ee2ce59a4826f913d527bbf2b9a146f5dde67e2d2344fe720f023a2f9c1", 0x25)
setsockopt$RDS_RECVERR(r2, 0x114, 0x5, &(0x7f0000001c40)=0x1, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001c80)={<r5=>0xffffffffffffffff})
bpf$OBJ_GET_MAP(0x7, &(0x7f0000001d00)=@generic={&(0x7f0000001cc0)='./file0\x00'}, 0x14)
openat$vnet(0xffffff9c, &(0x7f0000001d40), 0x2, 0x0)
write$sysctl(r3, &(0x7f0000001d80)='7\x00', 0x2)
openat$zero(0xffffff9c, &(0x7f0000001dc0), 0x1e10677478921562, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000001e00), 0x9, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(r6, 0xc06464ce, &(0x7f0000001e40)={0x0, 0xd, 0x200, 0x2, 0x2, [], [0x7, 0x1, 0xe0000, 0x7fffffff], [0x0, 0x0, 0x6, 0x1], [0x1, 0x1, 0x8, 0x7]})
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000001f00)=@security={'security\x00', 0xe, 0x4, 0x750, 0xffffffff, 0x0, 0x480, 0x0, 0xffffffff, 0xffffffff, 0x688, 0x688, 0x688, 0xffffffff, 0x4, &(0x7f0000001ec0), {[{{@ipv6={@loopback, @ipv4={'\x00', '\xff\xff', @remote}, [0xff, 0xffffffff, 0xffffff00, 0xff0000ff], [0xff000000, 0x0, 0xff000000, 0xff000000], 'macvlan1\x00', 'veth0_virt_wifi\x00', {0xff}, {}, 0x29, 0x1, 0x2, 0x21}, 0x0, 0x424, 0x480, 0x0, {}, [@common=@inet=@hashlimit2={{0x150}, {'veth0\x00', {0x7, 0x3, 0x10, 0x6, 0x8, 0x9, 0x0, 0x40, 0x18}, {0x10001}}}, @common=@unspec=@bpf1={{0x230}, @fd={0x2, 0x0, r2}}]}, @common=@inet=@HMARK={0x5c, 'HMARK\x00', 0x0, {@ipv6=@loopback, [0xff, 0xff, 0x0, 0xffffff00], 0x4e24, 0x4e21, 0x4e22, 0x4e22, 0x1, 0x1, 0x7, 0x8, 0x5}}}, {{@uncond, 0x0, 0xec, 0x11c, 0x0, {}, [@common=@eui64={{0x24}}, @common=@hl={{0x24}, {0x0, 0xb}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x12f2, 0x4, 0x3, 0x1}}}, {{@uncond, 0x0, 0xa4, 0xec}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x0, 0xd, {0x9}}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x7ac)
ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f00000026c0)={0x3, [0x8, 0x1, 0x11]})
sendmsg$NL80211_CMD_ADD_TX_TS(r2, &(0x7f00000027c0)={&(0x7f0000002700)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002780)={&(0x7f0000002740)={0x24, 0x0, 0x0, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x4000800)
bind$ax25(r4, &(0x7f0000002800)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x3}, [@default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, &(0x7f0000002880)=0x8, 0x7, 0x3)
socket(0xb, 0x6, 0x1)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000028c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0xb9ae, '\x00', 0x0, r5, 0x1, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f0000002cc0)={'syztnl2\x00', &(0x7f0000002c40)={'ip6tnl0\x00', 0x0, 0x29, 0x3, 0x0, 0x7, 0x4, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x10, 0x80, 0xd, 0x1}})

979.415932ms ago: executing program 0 (id=306):
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x0)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
userfaultfd(0x80001) (fail_nth: 1)

900.098527ms ago: executing program 3 (id=307):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x2, 0x0) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 64)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async, rerun: 64)
read$msr(0xffffffffffffffff, &(0x7f0000032680)=""/102382, 0x19041)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0) (async, rerun: 64)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x0) (async, rerun: 64)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000704000/0x4000)=nil, 0x4000}}) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) (async)
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
r1 = inotify_init1(0x0) (async)
r2 = inotify_init() (async)
setreuid(0xee00, 0xffffffffffffffff) (async, rerun: 32)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0) (async, rerun: 32)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) (async)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) (async)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00')
read$FUSE(r3, &(0x7f0000000600)={0x2020}, 0xffffffb5) (async, rerun: 32)
inotify_add_watch(r2, &(0x7f0000000040)='./control\x00', 0x5000410) (async, rerun: 32)
inotify_add_watch(r1, &(0x7f0000000180)='./control\x00', 0xa4000960) (async)
rmdir(&(0x7f0000000100)='./file1\x00')
r4 = openat$vimc1(0xffffff9c, 0x0, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r7=>0x0}) (rerun: 32)
sendmsg$NL80211_CMD_JOIN_IBSS(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB="204e000ab006dc981d6fd143a45800", @ANYRES16=r6, @ANYRESHEX=r5, @ANYRES32=r4, @ANYRES64=r7], 0x3c}}, 0x0)
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0) (async)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000340)={<r8=>0x0}, &(0x7f0000000240)=0xc)
setpriority(0x1, r8, 0x4)

899.667494ms ago: executing program 2 (id=308):
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x121300)
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000000)=0xd, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x8d91, @local, 0x9}, 0x1c)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), 0xffffffffffffffff)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @multicast1}, 0x10)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0xfffff800)
read$char_usb(r1, &(0x7f0000000380)=""/210, 0xd2)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000480)={'wpan3\x00'})
r2 = socket(0x1d, 0x3, 0x1)
getsockopt$nfc_llcp(r2, 0x65, 0x3, 0x0, 0x20001008)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00'})
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="041c05f2c9000000"], 0x8)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x121300) (async)
socket(0x840000000002, 0x3, 0xff) (async)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000000)=0xd, 0x4) (async)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x8d91, @local, 0x9}, 0x1c) (async)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), 0xffffffffffffffff) (async)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @multicast1}, 0x10) (async)
syz_open_dev$char_usb(0xc, 0xb4, 0xfffff800) (async)
read$char_usb(r1, &(0x7f0000000380)=""/210, 0xd2) (async)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000480)={'wpan3\x00'}) (async)
socket(0x1d, 0x3, 0x1) (async)
getsockopt$nfc_llcp(r2, 0x65, 0x3, 0x0, 0x20001008) (async)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan4\x00'}) (async)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="041c05f2c9000000"], 0x8) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (async)

899.450991ms ago: executing program 3 (id=309):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000002400)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000023c0)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x5}}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002440)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {}, {}, {0xc}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

830.156172ms ago: executing program 0 (id=310):
r0 = userfaultfd(0x801)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xf0ffffff)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000600))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f00002b3000/0x2000)=nil, 0x800000, 0x0, 0x300000000000000})

827.537019ms ago: executing program 3 (id=311):
syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0xfffffffc, 0x10100}, &(0x7f0000000000)=<r0=>0x0, &(0x7f00000001c0)=<r1=>0x0)
r2 = socket(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x2e, &(0x7f0000000040)=0x3, 0x4)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000100))
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3})
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000040))
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
rseq(&(0x7f00000002c0), 0xfffffffffffffcc2, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000340)={0x2, 0x4e22, @multicast1}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x28004814, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
poll(&(0x7f00000000c0)=[{r5, 0x84ef}], 0x1, 0x4000)
shutdown(r5, 0x1)

826.439331ms ago: executing program 0 (id=312):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000640)="cd", 0x1}], 0x1, 0x0)
io_setup(0x2007, &(0x7f0000000200)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000840)=[&(0x7f0000000080)={0x1802, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
splice(r0, 0x0, r3, 0x0, 0x4ff9c, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6], 0x0, 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001c40)=ANY=[@ANYBLOB], &(0x7f0000000340)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x8, 0x10, &(0x7f0000000880), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r8, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x8, 0x0, 0x0}}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r9, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='rpcb_unregister\x00', r10, 0x0, 0x2}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x1fe)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f00000003c0)=@filter={'filter\x00', 0x42, 0x4, 0x2c8, 0xffffffff, 0x94, 0x1b8, 0x0, 0xffffffff, 0xffffffff, 0x29c, 0x29c, 0x29c, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x3e020000, 0x70, 0x94, 0x0, {0x88000000}}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x4}}}, {{@uncond, 0x0, 0x94, 0xbc, 0x0, {0x122}, [@common=@inet=@dscp={{0x24}}]}, @common=@inet=@SET1={0x28}}, {{@uncond, 0x0, 0xc0, 0xe4, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00'}}]}, @REJECT={0x24}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x324)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b0f, &(0x7f0000000000)={'wlan1\x00', @random="00000c37d7ac"})
r11 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
ioctl$VHOST_SET_LOG_FD(r11, 0x4004af07, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r12 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r13 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0)
write$dsp(r13, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r13, 0x5001, 0x0)
io_uring_setup(0x4da6, &(0x7f0000000080)={0x0, 0x38b1, 0x0, 0x3, 0x2})
ioctl$SNDCTL_DSP_SETFMT(r13, 0xc0045005, 0x0)
close_range(r12, 0xffffffffffffffff, 0x0)

791.787087ms ago: executing program 2 (id=313):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/handlers\x00', 0x0, 0x0)
preadv2(r0, &(0x7f00000004c0)=[{&(0x7f0000000200)=""/100, 0x64}], 0x1, 0x2d, 0x0, 0x1000000)

789.200534ms ago: executing program 3 (id=314):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect(r2, &(0x7f00000004c0)=@rc={0x1f, @none, 0x8}, 0x80)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r3, &(0x7f00000001c0)=[{&(0x7f0000000040)="4f3bfde51b257f40", 0x8}], 0x1)
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4, 0x0, 0x0, 0x0, 0x0, 0xc}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x5], 0x0, 0x202})
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000240)={[{0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x6, 0x0, 0x0, 0xe}, {0x2db}], 0xfffffffd})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_open_dev$vim2m(&(0x7f0000000240), 0x1000, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_DQBUF(r6, 0xc044560f, &(0x7f0000000380)=@mmap={0x0, 0x1, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}})
ioctl$vim2m_VIDIOC_STREAMOFF(r6, 0x40045612, &(0x7f0000000100)=0x1)
r7 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r5, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, r7, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_TYPE={0x5}, @FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_V6={0x14, 0x9, @private1}]}, 0x44}}, 0x0)
r8 = syz_init_net_socket$ax25(0x3, 0x5, 0x3c)
ioctl$vim2m_VIDIOC_ENUM_FMT(r6, 0xc0405602, &(0x7f00000002c0)={0x4, 0x2, 0x1, "b331cd6a22d39a243f691105c662d3e6cef483aa7f024f91f2889430a64a9715", 0x32314142})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

739.527217ms ago: executing program 2 (id=315):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xf, &(0x7f00000003c0)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000240)=ANY=[@ANYBLOB="00000000210001002cbd7000fedbdf2502149402800000000013001f00000000000b003f00000000000c400000000000000006"], 0x60}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
io_uring_setup(0x177f, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xfffffffd})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)

550.201626ms ago: executing program 2 (id=316):
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = socket(0x28, 0x5, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = memfd_create(&(0x7f00000024c0)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x00\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?&^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xe3\xe5\x19T\xff\x01\x00\x00\xe2\x9f\xd9\xae\xcf>/\x05V%$6\x9fU\x86\xbe\xcbx\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xb2\xae\xda\xa9\xf6\x92\xaf4\xb5|W\r0{\xdc\xa0D\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\xaa\xe6\x05\xe4\xc3\x90\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{a?\xd0\xe1{\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\x97.A\x84\x1d\xc2\x86\x89{\xba\xe3J\xc2t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6Pr\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xba\x9d\xce\xb3%QF\x03\b\x9dh\xfd\x91\xea\xce\x06\a\xba`\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8\x83\x87+nM\x11\x1c\xb0*8\v\x1e\xcf\x03\xd3\xe8,?\x87\x84\\/y\xed\x01#?\xab\x1c\x11\x00\xc5\x8d\x82\x9c\xd6B[\xc9\x00\xf5]\x81\xf3\xfd\x06M\xbe\xf9\xba\x9em\xe9\"\x03\x933P\xa3\xcc\x9b\f\xa7\x8f\x91O\xc9\xb9\x10M\x8b\xd0\xc0\xb8L\xbd\x1c4\xb59\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xdc\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10D\xb9\xe6\xff\x04K%yH\xe5W\xfb\x82\xac\x19,\\D\x91T\xfd\x9c\xb8\x8b\x88\xa5\xcc\x8fI\x00\xf0\xc9%\n\xa7\xd6\x0f:\xb0\xf5?\xc3\x88\x1e\xbb-\xa6\xecA\x92\xaf\xa4Xl\v\xa5\xca\v|\xe2L\xac\x80\xc7\x15\x96fh\x83\x15\xc7\xea\xd5\xe8\x89W\x11\xd7oC\xe4\x06\xa8[O\xe6\x1d=\x87\x93\x0f\x87I\xdf\xb1\xeb\x89\x11.\x01\x00\r`\x1e8\x94\xb7\xbc\xc3\xad\xf1\x92/(A=A\x8b\xa5I\xd7\xd3#\xb0\x89\x9e5\x12\xa4\x9a\va\xdf\xf4\xea\xc6\xc7\x10g\x1d\xd5\xb0\xbb\xd2\xfc]fC\x8d\x0f\xa6q\x0f\xef\x90\xfe\x94k\xf1\x98\xfa\xbbb\xb1\x00\x99\xf7\xfd\'\xae\x906\xe0\xaa\xdbtWWH\xa4L\xb5po,\xdfN\x0f8\t\xe7X_H\xd4\xe3\xb2,oj\xac\xd7\xbd\xd0\xadW\x1f<\xd0s\xa8\x1f(\x00/ \xe4]@\xf7mA\xe8\xd1\xf4:\xb3\xeb\x81\xb9\x018\x1c\x95%o\x13\xa4\xad\xd8\xf9\xd2\x95\xa8\x81\xbe\xbc\xa6\x14_o\xfb\xdaL\xcb\xda\x9a\xec\xce\xd18&\xfbG\xa1\f\xf4\xd5u\xb0xE)j\x1b\xecL\xa1\xdc\xabUiN\xdet\xc7Q\xe6\xa4\x99-\xba\x16\xe5\xba!\xbdCI#\x03', 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x20051, r2, 0xce9e1000)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000040000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = fsopen(&(0x7f0000000080)='binder\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r3, 0x6, 0x0, 0x0, 0x0)

59.71758ms ago: executing program 1 (id=286):
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x9, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, "b3b0f0397d90f6175dee75b0b5bb930b00e7a944c0a51a320c6bb07a9315bea562385b0092a076c23f51f4111d5ea5a6cfdcd4eacf04fdb6b2a786fc56a096702c6d00f5b573785096ae126be5ef637d60f81dea7fb3f23745a0862cd43e69f079ec6cdc4499457428f112f08753ebadf70e6b6edafd955aacf693abc1bdb5771aaba8d94309b93c49dcf4658924eb952425b26a8acbd74bd17b65d4dca18f10143bb49dec74d530872d2dfb438294fac1391818ac01e993c6a684b47cc66b0b18322a46a1a913512235f6ec142283b5068dea0e0aa968bb9482b68940411b86db32674fd21b51a835505331278a182d227a0df48d70da50"}}}, 0x102)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x0, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_disconn_rsp={{0x7, 0x10, 0x4}, {0x3, 0xd}}]}}, 0x11)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000200)={'ip6gre0\x00', &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0, 0x4, 0x40, 0x5, 0x2, 0x3d, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7800, 0x8, 0xfffffff7, 0x9}})
setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000240)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, r1}, 0xc)
setsockopt$inet_int(r0, 0x0, 0x1, &(0x7f0000000280)=0x5, 0x4)
syz_emit_vhci(&(0x7f00000002c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xac}, "be1a3cda3abfc5f2df346a49f7f3d89b55a4f65ba1df760e5bef9746e0925e5290957fac11cfc602af3ad521c6bf1c1de9fdb4c36761262d0ace3b67acc8ad029aa21ee5f7b1e99da8b1c56abafbccd12a8cbd8b59b37eb4fbd0796c52f8a1ab364392335bcc200206b5d7ff875b29ef16a83ace48895d5dc1933aa7960a7089097d629618fe9ffa86a869d948a6e50c8b85b8aef2bd355b53bee386792719d166142f5f694f32afe0a956a2"}, 0xb0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000000380)={0x8000000000000001, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r2=>0x0}], 0xfa, "be041cdb3a565d"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000001380)={{r2, 0xa, 0x2cb1, 0x4, 0x0, 0x76, 0xd2e, 0x5120, 0xc, 0x0, 0x5, 0x9, 0x8, 0x3, 0x8}, 0x28, [0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = syz_io_uring_complete(0x0)
mkdirat(r3, &(0x7f0000001440)='./file0\x00', 0x0)

0s ago: executing program 1 (id=317):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$kcm(0xa, 0x2, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
syz_open_procfs(0x0, &(0x7f0000000100)='net/llc/core\x00')
socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet6_dccp(0xa, 0x6, 0x0)
socket(0x10, 0x3, 0x0)
unshare(0x68040200)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000680001000000000000000000020000000000000004000400080001"], 0x24}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x10005, 0x3, 0x10000, 0x1000, &(0x7f0000000000/0x1000)=nil})
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140), 0x2, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x82, 0x1000040, 0x0, 0x0, 0x2004cb, 0x5, 0x62, 0x5f7, 0x2, 0x6, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff, 0x8001], 0x100000, 0x40c01})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xff2e)
socket(0x9, 0x800, 0x1)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x5, 0x401, 0x0, 0x6, 0x11})
getpid()

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:38072' (ED25519) to the list of known hosts.
[   34.914559][ T5314] cgroup: Unknown subsys name 'net'
[   35.059643][ T5314] cgroup: Unknown subsys name 'cpuset'
[   35.064237][ T5314] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   35.778182][ T5314] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   38.347660][ T4782] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   38.356267][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   38.359140][ T5342] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   38.364841][ T5342] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   38.367447][ T5342] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   38.369535][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   38.384088][ T5348] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   38.393549][ T5348] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   38.407049][   T64] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   38.409839][   T64] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   38.414730][   T64] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   38.419507][   T64] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   38.422345][   T64] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   38.425406][   T64] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   38.427935][ T5347] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   38.428592][ T5354] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   38.433388][ T5354] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   38.433891][ T5347] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   38.436753][ T5354] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   38.438402][ T5347] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   38.440711][ T5354] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   38.443069][ T5347] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   38.447705][ T5347] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   38.450821][ T5342] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   38.521696][ T5341] chnl_net:caif_netlink_parms(): no params data found
[   38.653338][ T5341] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.655645][ T5341] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.657964][ T5341] bridge_slave_0: entered allmulticast mode
[   38.660047][ T5341] bridge_slave_0: entered promiscuous mode
[   38.672028][ T5341] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.674078][ T5341] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.676837][ T5341] bridge_slave_1: entered allmulticast mode
[   38.679467][ T5341] bridge_slave_1: entered promiscuous mode
[   38.708820][ T5341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.719668][ T5352] chnl_net:caif_netlink_parms(): no params data found
[   38.725824][ T5341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.791947][ T5341] team0: Port device team_slave_0 added
[   38.800194][ T5345] chnl_net:caif_netlink_parms(): no params data found
[   38.807293][ T5350] chnl_net:caif_netlink_parms(): no params data found
[   38.813244][ T5341] team0: Port device team_slave_1 added
[   38.917010][ T5352] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.918938][ T5352] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.920760][ T5352] bridge_slave_0: entered allmulticast mode
[   38.922769][ T5352] bridge_slave_0: entered promiscuous mode
[   38.987378][ T5352] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.990019][ T5352] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.992665][ T5352] bridge_slave_1: entered allmulticast mode
[   38.995628][ T5352] bridge_slave_1: entered promiscuous mode
[   38.999391][ T5341] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.001231][ T5341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.007902][ T5341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.060585][ T5341] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.063118][ T5341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.072571][ T5341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.084252][ T5345] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.087005][ T5345] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.089621][ T5345] bridge_slave_0: entered allmulticast mode
[   39.092649][ T5345] bridge_slave_0: entered promiscuous mode
[   39.109064][ T5352] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.114769][ T5352] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.140127][ T5345] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.142045][ T5345] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.143932][ T5345] bridge_slave_1: entered allmulticast mode
[   39.146069][ T5345] bridge_slave_1: entered promiscuous mode
[   39.210395][ T5350] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.212997][ T5350] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.215641][ T5350] bridge_slave_0: entered allmulticast mode
[   39.219018][ T5350] bridge_slave_0: entered promiscuous mode
[   39.234488][ T5341] hsr_slave_0: entered promiscuous mode
[   39.238963][ T5341] hsr_slave_1: entered promiscuous mode
[   39.259954][ T5352] team0: Port device team_slave_0 added
[   39.264498][ T5352] team0: Port device team_slave_1 added
[   39.267193][ T5350] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.269657][ T5350] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.272103][ T5350] bridge_slave_1: entered allmulticast mode
[   39.274958][ T5350] bridge_slave_1: entered promiscuous mode
[   39.292268][ T5345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.343193][ T5345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.347328][ T5352] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.349142][ T5352] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.355714][ T5352] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.360768][ T5350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.367826][ T5350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.380054][ T5352] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.381916][ T5352] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.388569][ T5352] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.438057][ T5345] team0: Port device team_slave_0 added
[   39.442294][ T5345] team0: Port device team_slave_1 added
[   39.448783][ T5350] team0: Port device team_slave_0 added
[   39.479103][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.481651][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.490432][ T5345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.495231][ T5350] team0: Port device team_slave_1 added
[   39.507387][ T5352] hsr_slave_0: entered promiscuous mode
[   39.509839][ T5352] hsr_slave_1: entered promiscuous mode
[   39.512067][ T5352] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   39.514713][ T5352] Cannot create hsr debugfs directory
[   39.536706][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.538568][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.546215][ T5345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.569162][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.571030][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.580170][ T5350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.586410][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.588904][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.598043][ T5350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.702030][ T5345] hsr_slave_0: entered promiscuous mode
[   39.704765][ T5345] hsr_slave_1: entered promiscuous mode
[   39.707888][ T5345] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   39.710606][ T5345] Cannot create hsr debugfs directory
[   39.755968][ T5350] hsr_slave_0: entered promiscuous mode
[   39.758819][ T5350] hsr_slave_1: entered promiscuous mode
[   39.761298][ T5350] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   39.764030][ T5350] Cannot create hsr debugfs directory
[   39.929992][ T5341] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   39.934298][ T5341] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   39.954784][ T5341] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   39.958326][ T5341] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   39.999917][ T5352] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   40.004394][ T5352] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   40.009018][ T5352] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   40.013338][ T5352] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   40.034993][ T5350] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   40.038904][ T5350] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   40.042253][ T5350] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   40.046298][ T5350] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   40.078197][ T5345] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   40.082714][ T5345] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   40.087727][ T5345] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   40.094517][ T5345] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   40.143490][ T5341] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.169615][ T5341] 8021q: adding VLAN 0 to HW filter on device team0
[   40.189689][ T1186] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.192431][ T1186] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.221855][ T5345] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.226149][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.228020][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.239136][ T5352] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.266270][ T5345] 8021q: adding VLAN 0 to HW filter on device team0
[   40.275165][ T5350] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.280554][ T5352] 8021q: adding VLAN 0 to HW filter on device team0
[   40.287994][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.290607][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.301480][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.304058][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.314551][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.317159][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.321945][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.324395][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.335797][ T5350] 8021q: adding VLAN 0 to HW filter on device team0
[   40.346607][ T1186] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.349350][ T1186] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.364049][ T1186] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.366397][ T1186] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.398761][ T5352] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   40.456285][   T64] Bluetooth: hci0: command tx timeout
[   40.458926][ T5341] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.482301][ T5341] veth0_vlan: entered promiscuous mode
[   40.490029][ T5341] veth1_vlan: entered promiscuous mode
[   40.504217][ T5341] veth0_macvtap: entered promiscuous mode
[   40.513330][ T5341] veth1_macvtap: entered promiscuous mode
[   40.526116][   T64] Bluetooth: hci3: command tx timeout
[   40.526187][ T5341] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.536107][   T64] Bluetooth: hci1: command tx timeout
[   40.537732][   T64] Bluetooth: hci2: command tx timeout
[   40.541785][ T5341] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.552803][ T5352] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.558809][ T5341] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.561387][ T5341] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.564507][ T5341] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.569837][ T5341] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.608948][ T5345] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.620376][ T5352] veth0_vlan: entered promiscuous mode
[   40.644460][ T5352] veth1_vlan: entered promiscuous mode
[   40.645518][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   40.649735][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   40.667851][ T5350] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.684144][ T5352] veth0_macvtap: entered promiscuous mode
[   40.690101][ T5352] veth1_macvtap: entered promiscuous mode
[   40.693256][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   40.695379][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   40.699942][ T5345] veth0_vlan: entered promiscuous mode
[   40.707193][ T5345] veth1_vlan: entered promiscuous mode
[   40.713485][ T5352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.719326][ T5352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.722814][ T5352] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.734059][ T5341] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   40.738027][ T5352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.741922][ T5352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.744980][ T5352] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.751602][ T5352] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.754575][ T5352] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.757798][ T5352] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.760728][ T5352] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.770424][ T5350] veth0_vlan: entered promiscuous mode
[   40.800692][ T5345] veth0_macvtap: entered promiscuous mode
[   40.804115][ T5350] veth1_vlan: entered promiscuous mode
[   40.808676][ T5345] veth1_macvtap: entered promiscuous mode
[   40.850358][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.854274][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.858560][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.862303][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.865605][ T5404] loop0: detected capacity change from 0 to 7
[   40.867834][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.871980][ T5404] Dev loop0: unable to read RDB block 7
[   40.874158][ T5404]  loop0: AHDI p2
[   40.875483][ T5404] loop0: partition table partially beyond EOD, truncated
[   40.896442][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.899939][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.903152][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.905743][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.909504][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.915715][ T1194] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   40.922916][ T5350] veth0_macvtap: entered promiscuous mode
[   40.925155][ T1194] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   40.935040][ T5345] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.938904][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   40.944168][ T5345] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.949122][ T5345] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.952410][ T5345] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.969338][ T5350] veth1_macvtap: entered promiscuous mode
[   41.003021][   T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.003545][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.006613][   T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.011424][ T5405] netlink: 256 bytes leftover after parsing attributes in process `syz.3.5'.
[   41.015188][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.018136][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.021762][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.024374][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.029108][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.034256][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.047820][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.052572][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.056639][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.060570][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.063991][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.068527][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.073892][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.092627][ T5350] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.094916][ T5350] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.097927][ T5350] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.100349][ T5350] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.105795][ T4839] Dev loop0: unable to read RDB block 7
[   41.108911][ T4839]  loop0: AHDI p2
[   41.110037][ T4839] loop0: partition table partially beyond EOD, truncated
[   41.140298][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.142400][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.163230][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.165292][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.174062][   T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.176347][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   41.180402][   T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.182738][ T5409] binder: 5407:5409 ioctl c0306201 0 returned -14
[   41.185057][ T1194] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.188526][ T1194] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.259051][ T4839] Dev loop0: unable to read RDB block 7
[   41.260684][ T4839]  loop0: AHDI p2
[   41.261670][ T4839] loop0: partition table partially beyond EOD, truncated
[   41.290090][ T5416] process 'syz.0.6' launched './file0' with NULL argv: empty string added
[   41.307428][ T5416] netlink: 'syz.0.6': attribute type 4 has an invalid length.
[   41.322550][ T5416] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6'.
[   41.400457][ T4839] Dev loop0: unable to read RDB block 7
[   41.402978][ T4839]  loop0: AHDI p2
[   41.403990][ T4839] loop0: partition table partially beyond EOD, truncated
[   41.518287][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   41.879847][ T4839] Dev loop0: unable to read RDB block 7
[   41.881880][ T4839]  loop0: AHDI p2
[   41.885711][ T4839] loop0: partition table partially beyond EOD, truncated
[   41.926795][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   41.930292][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   41.933697][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   42.536021][   T64] Bluetooth: hci0: command tx timeout
[   42.605987][   T64] Bluetooth: hci1: command tx timeout
[   42.616163][   T64] Bluetooth: hci2: command tx timeout
[   42.616188][ T4782] Bluetooth: hci3: command tx timeout
[   42.830862][ T5446] syz.1.9(5446): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[   43.179827][ T5449] binder: 5447:5449 ioctl c0306201 20000680 returned -14
[   43.461381][ T5452] Zero length message leads to an empty skb
[   43.975446][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   44.231811][ T5457] mmap: syz.0.15 (5457) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   44.598018][ T5464] netlink: 28 bytes leftover after parsing attributes in process `syz.2.18'.
[   44.615970][ T4782] Bluetooth: hci0: command tx timeout
[   44.686020][ T4782] Bluetooth: hci3: command tx timeout
[   44.696070][ T4782] Bluetooth: hci2: command tx timeout
[   44.697983][ T4782] Bluetooth: hci1: command tx timeout
[   44.721689][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   44.728925][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.731653][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.840888][ T5473] netlink: 36 bytes leftover after parsing attributes in process `syz.2.21'.
[   44.906829][ T5381] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   45.165168][ T5381] usb 8-1: config 190 has an invalid descriptor of length 0, skipping remainder of the config
[   45.170466][ T5381] usb 8-1: config 190 has no interfaces?
[   45.172034][ T5381] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[   45.175309][ T5381] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   45.685041][ T5485] netlink: 'syz.2.23': attribute type 10 has an invalid length.
[   45.733343][ T5485] team0: Port device netdevsim0 added
[   45.759640][ T5485] netlink: 'syz.2.23': attribute type 10 has an invalid length.
[   45.790012][ T5485] team0: Port device netdevsim0 removed
[   45.809497][ T5485] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[   46.038757][ T5484] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   46.662975][ T5497] netlink: 92 bytes leftover after parsing attributes in process `syz.2.26'.
[   46.665458][ T5497] netlink: 92 bytes leftover after parsing attributes in process `syz.2.26'.
[   46.696169][   T64] Bluetooth: hci0: command tx timeout
[   46.766660][   T64] Bluetooth: hci1: command tx timeout
[   46.767504][ T4782] Bluetooth: hci2: command tx timeout
[   46.767545][ T5342] Bluetooth: hci3: command tx timeout
[   46.998521][ T5500] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   47.034952][ T5500] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[   47.037580][ T5500] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   47.042234][ T5500] vhci_hcd vhci_hcd.0: Device attached
[   47.149396][ T5510] team0: entered promiscuous mode
[   47.151165][ T5510] team_slave_0: entered promiscuous mode
[   47.159151][ T5510] team_slave_1: entered promiscuous mode
[   47.186274][ T5510] FAULT_INJECTION: forcing a failure.
[   47.186274][ T5510] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   47.197862][ T5381] usb 8-1: string descriptor 0 read error: -71
[   47.205565][ T5381] usb 8-1: USB disconnect, device number 2
[   47.206062][ T5510] CPU: 2 UID: 0 PID: 5510 Comm: syz.1.30 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   47.209886][ T5510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   47.212657][ T5510] Call Trace:
[   47.213546][ T5510]  <TASK>
[   47.214325][ T5510]  dump_stack_lvl+0x16c/0x1f0
[   47.215567][ T5510]  should_fail_ex+0x497/0x5b0
[   47.216802][ T5510]  _copy_from_iter+0x29b/0x13e0
[   47.218097][ T5510]  ? __pfx__copy_from_iter+0x10/0x10
[   47.219457][ T5510]  ? __virt_addr_valid+0x1a4/0x590
[   47.220780][ T5510]  ? __virt_addr_valid+0x5e/0x590
[   47.222097][ T5510]  ? __phys_addr_symbol+0x30/0x80
[   47.223424][ T5510]  ? __check_object_size+0x4a1/0x710
[   47.224809][ T5510]  netlink_sendmsg+0x813/0xd70
[   47.226087][ T5510]  ? __pfx_netlink_sendmsg+0x10/0x10
[   47.227470][ T5510]  sock_write_iter+0x4fe/0x5b0
[   47.228741][ T5510]  ? __pfx_sock_write_iter+0x10/0x10
[   47.230120][ T5510]  ? bpf_lsm_file_permission+0x9/0x10
[   47.231513][ T5510]  ? security_file_permission+0x71/0x210
[   47.232983][ T5510]  vfs_write+0x6b5/0x1140
[   47.234129][ T5510]  ? __pfx_sock_write_iter+0x10/0x10
[   47.235515][ T5510]  ? trace_lock_acquire+0x14a/0x1d0
[   47.236879][ T5510]  ? __pfx_vfs_write+0x10/0x10
[   47.238139][ T5510]  ? __fget_files+0x40/0x3f0
[   47.239355][ T5510]  ksys_write+0x1fa/0x260
[   47.240493][ T5510]  ? __pfx_ksys_write+0x10/0x10
[   47.241721][ T5510]  __do_fast_syscall_32+0x73/0x120
[   47.243067][ T5510]  do_fast_syscall_32+0x32/0x80
[   47.244344][ T5510]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   47.246009][ T5510] RIP: 0023:0xf7f67579
[   47.247079][ T5510] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   47.251967][ T5510] RSP: 002b:00000000f56e656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   47.254115][ T5510] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[   47.256185][ T5510] RDX: 0000000000000027 RSI: 0000000000000000 RDI: 0000000000000000
[   47.258236][ T5510] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   47.260267][ T5510] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   47.262303][ T5510] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   47.264364][ T5510]  </TASK>
[   47.267458][ T5509] team0: left promiscuous mode
[   47.268820][ T5509] team_slave_0: left promiscuous mode
[   47.270398][ T5509] team_slave_1: left promiscuous mode
[   47.291759][ T5506] vhci_hcd: connection closed
[   47.297293][  T208] vhci_hcd: stop threads
[   47.300143][  T208] vhci_hcd: release socket
[   47.304083][  T208] vhci_hcd: disconnect device
[   47.306025][   T73] usb 18-1: SetAddress Request (2) to port 0
[   47.307724][   T73] usb 18-1: new SuperSpeed USB device number 2 using vhci_hcd
[   47.988663][ T5531] xt_CT: No such helper "syz0"
[   48.660202][ T5550] netlink: 20 bytes leftover after parsing attributes in process `syz.2.41'.
[   48.676352][   T39] audit: type=1326 audit(1728087058.410:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.2.41" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f66579 code=0x0
[   48.796044][   T35] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   48.946391][   T35] usb 6-1: Using ep0 maxpacket: 8
[   48.951848][   T35] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[   48.954478][   T35] usb 6-1: config 0 has no interface number 0
[   48.956810][   T35] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   48.960518][   T35] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   48.963797][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   48.970541][   T35] usb 6-1: config 0 descriptor??
[   48.980342][   T35] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   49.354740][ T5560] capability: warning: `syz.1.39' uses deprecated v2 capabilities in a way that may be insecure
[   49.436046][   T62] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   49.589737][   T62] usb 5-1: config 190 has an invalid descriptor of length 0, skipping remainder of the config
[   49.596183][   T62] usb 5-1: config 190 has no interfaces?
[   49.599946][   T62] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[   49.606773][   T62] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   49.655759][ T5568] netlink: 4 bytes leftover after parsing attributes in process `syz.2.48'.
[   49.662687][ T5568] netlink: 4 bytes leftover after parsing attributes in process `syz.2.48'.
[   49.708787][ T5565] bond_slave_0: entered promiscuous mode
[   49.710514][ T5565] bond_slave_1: entered promiscuous mode
[   49.714883][ T5565] bond_slave_0: left promiscuous mode
[   49.717105][ T5565] bond_slave_1: left promiscuous mode
[   49.815220][   T45] Bluetooth: Error in BCSP hdr checksum
[   50.057968][   T12] Bluetooth: Error in BCSP hdr checksum
[   50.226566][   T25] usb 6-1: USB disconnect, device number 2
[   50.238808][   T25] iowarrior 6-1:0.1: I/O-Warror #0 now disconnected
[   50.336980][  T208] Bluetooth: Error in BCSP hdr checksum
[   50.609474][   T62] usb 5-1: string descriptor 0 read error: -71
[   50.612298][   T62] usb 5-1: USB disconnect, device number 2
[   50.664951][ T5583] netlink: 40 bytes leftover after parsing attributes in process `syz.2.52'.
[   50.676811][    C2] Unknown status report in ack skb
[   50.738561][ T5587] FAULT_INJECTION: forcing a failure.
[   50.738561][ T5587] name failslab, interval 1, probability 0, space 0, times 1
[   50.741732][ T5587] CPU: 2 UID: 0 PID: 5587 Comm: syz.2.54 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   50.744344][ T5587] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.747063][ T5587] Call Trace:
[   50.747891][ T5587]  <TASK>
[   50.748633][ T5587]  dump_stack_lvl+0x16c/0x1f0
[   50.749833][ T5587]  should_fail_ex+0x497/0x5b0
[   50.751012][ T5587]  ? fs_reclaim_acquire+0xae/0x160
[   50.752316][ T5587]  should_failslab+0xc2/0x120
[   50.753505][ T5587]  __kmalloc_cache_noprof+0x6b/0x310
[   50.754826][ T5587]  ? rtnl_newlink+0x49/0xa0
[   50.755970][ T5587]  rtnl_newlink+0x49/0xa0
[   50.757542][ T5587]  ? __pfx_rtnl_newlink+0x10/0x10
[   50.759212][ T5587]  rtnetlink_rcv_msg+0x3c7/0xea0
[   50.760562][ T5587]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   50.762016][ T5587]  ? __pfx___dev_queue_xmit+0x10/0x10
[   50.763432][ T5587]  netlink_rcv_skb+0x165/0x410
[   50.764696][ T5587]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   50.766227][ T5587]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   50.767652][ T5587]  ? netlink_deliver_tap+0x1ae/0xcf0
[   50.769051][ T5587]  netlink_unicast+0x53c/0x7f0
[   50.770335][ T5587]  ? __pfx_netlink_unicast+0x10/0x10
[   50.771666][ T5587]  ? __phys_addr_symbol+0x30/0x80
[   50.772961][ T5587]  ? __check_object_size+0x4a1/0x710
[   50.774378][ T5587]  netlink_sendmsg+0x8b8/0xd70
[   50.775664][ T5587]  ? __pfx_netlink_sendmsg+0x10/0x10
[   50.777065][ T5587]  ? lock_acquire+0x2f/0xb0
[   50.778300][ T5587]  ____sys_sendmsg+0x9ae/0xb40
[   50.779587][ T5587]  ? __pfx_____sys_sendmsg+0x10/0x10
[   50.780987][ T5587]  ? get_compat_msghdr+0x11b/0x170
[   50.782359][ T5587]  ? __pfx___lock_acquire+0x10/0x10
[   50.783715][ T5587]  ___sys_sendmsg+0x135/0x1e0
[   50.784915][ T5587]  ? __pfx____sys_sendmsg+0x10/0x10
[   50.786262][ T5587]  ? lock_acquire+0x2f/0xb0
[   50.787464][ T5587]  ? __fget_files+0x40/0x3f0
[   50.788695][ T5587]  ? fdget+0x176/0x210
[   50.789791][ T5587]  __sys_sendmsg+0x117/0x1f0
[   50.790997][ T5587]  ? __pfx___sys_sendmsg+0x10/0x10
[   50.792358][ T5587]  ? __fget_files+0x244/0x3f0
[   50.793624][ T5587]  __do_fast_syscall_32+0x73/0x120
[   50.794985][ T5587]  do_fast_syscall_32+0x32/0x80
[   50.796237][ T5587]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   50.797874][ T5587] RIP: 0023:0xf7f66579
[   50.798965][ T5587] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   50.804022][ T5587] RSP: 002b:00000000f56e656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   50.806233][ T5587] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000600
[   50.808238][ T5587] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 0000000000000000
[   50.810257][ T5587] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   50.812308][ T5587] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   50.814391][ T5587] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   50.816475][ T5587]  </TASK>
[   50.850845][ T5592] FAULT_INJECTION: forcing a failure.
[   50.850845][ T5592] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.855409][ T5592] CPU: 3 UID: 0 PID: 5592 Comm: syz.1.56 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   50.859021][ T5592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.862728][ T5592] Call Trace:
[   50.863925][ T5592]  <TASK>
[   50.864995][ T5592]  dump_stack_lvl+0x16c/0x1f0
[   50.866869][ T5592]  should_fail_ex+0x497/0x5b0
[   50.868557][ T5592]  _copy_to_iter+0x48b/0x13e0
[   50.870232][ T5592]  ? __pfx__copy_to_iter+0x10/0x10
[   50.872019][ T5592]  ? __up_read+0x1fb/0x760
[   50.873617][ T5592]  ? __pfx_pin_user_pages_remote+0x10/0x10
[   50.875644][ T5592]  ? down_read+0xc9/0x330
[   50.877179][ T5592]  ? __pfx___up_read+0x10/0x10
[   50.878854][ T5592]  copy_page_to_iter+0xf1/0x180
[   50.880570][ T5592]  process_vm_rw_core.constprop.0+0x5c9/0x9f0
[   50.882720][ T5592]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[   50.885005][ T5592]  ? copy_compat_iovec_from_user+0x11b/0x180
[   50.887129][ T5592]  ? copy_compat_iovec_from_user+0x80/0x180
[   50.889187][ T5592]  process_vm_rw+0x301/0x360
[   50.890820][ T5592]  ? __pfx_process_vm_rw+0x10/0x10
[   50.892613][ T5592]  ? ksys_write+0x21e/0x260
[   50.894221][ T5592]  ? __pfx_lock_release+0x10/0x10
[   50.896036][ T5592]  ? ksys_write+0x1ad/0x260
[   50.897645][ T5592]  ? __pfx_ksys_write+0x10/0x10
[   50.899350][ T5592]  __ia32_sys_process_vm_readv+0xdf/0x1b0
[   50.901338][ T5592]  ? lockdep_hardirqs_on+0x7c/0x110
[   50.903184][ T5592]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   50.905505][ T5592]  __do_fast_syscall_32+0x73/0x120
[   50.907316][ T5592]  do_fast_syscall_32+0x32/0x80
[   50.909015][ T5592]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   50.911290][ T5592] RIP: 0023:0xf7f67579
[   50.912762][ T5592] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   50.919655][ T5592] RSP: 002b:00000000f56e656c EFLAGS: 00000296 ORIG_RAX: 000000000000015b
[   50.922721][ T5592] RAX: ffffffffffffffda RBX: 000000000000002d RCX: 0000000020008400
[   50.925541][ T5592] RDX: 0000000000000002 RSI: 0000000020008640 RDI: 0000000000000286
[   50.928332][ T5592] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   50.930992][ T5592] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   50.933760][ T5592] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   50.935927][ T5592]  </TASK>
[   51.626066][ T1283] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   51.806070][ T5342] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   51.840706][ T1283] usb 5-1: config 0 has no interfaces?
[   51.842197][ T1283] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   51.876038][ T1283] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   51.890851][ T1283] usb 5-1: config 0 descriptor??
[   51.909060][ T5614] pim6reg: entered allmulticast mode
[   51.947896][ T5622] netlink: 40 bytes leftover after parsing attributes in process `syz.3.63'.
[   51.956831][    C1] Unknown status report in ack skb
[   52.206622][ T1441] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   52.302807][   T62] usb 5-1: USB disconnect, device number 3
[   52.375971][ T1441] usb 7-1: Using ep0 maxpacket: 8
[   52.376050][   T73] usb 18-1: device descriptor read/8, error -110
[   52.381308][ T1441] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[   52.385938][ T1441] usb 7-1: config 0 has no interface number 0
[   52.387454][ T1441] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   52.390105][ T1441] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   52.392302][ T1441] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.399098][ T1441] usb 7-1: config 0 descriptor??
[   52.404069][ T1441] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   52.586254][ T5635] netlink: 180 bytes leftover after parsing attributes in process `syz.3.67'.
[   52.588974][ T5635] netlink: 64 bytes leftover after parsing attributes in process `syz.3.67'.
[   52.591388][ T5635] FAULT_INJECTION: forcing a failure.
[   52.591388][ T5635] name failslab, interval 1, probability 0, space 0, times 0
[   52.594610][ T5635] CPU: 3 UID: 0 PID: 5635 Comm: syz.3.67 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   52.597337][ T5635] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   52.600118][ T5635] Call Trace:
[   52.601002][ T5635]  <TASK>
[   52.601801][ T5635]  dump_stack_lvl+0x16c/0x1f0
[   52.603053][ T5635]  should_fail_ex+0x497/0x5b0
[   52.604297][ T5635]  ? fs_reclaim_acquire+0xae/0x160
[   52.605667][ T5635]  should_failslab+0xc2/0x120
[   52.607053][ T5635]  kmem_cache_alloc_node_noprof+0x71/0x310
[   52.608619][ T5635]  ? __alloc_skb+0x2b3/0x380
[   52.609885][ T5635]  __alloc_skb+0x2b3/0x380
[   52.611062][ T5635]  ? __pfx___alloc_skb+0x10/0x10
[   52.612366][ T5635]  netlink_ack+0x164/0xb20
[   52.613572][ T5635]  netlink_rcv_skb+0x327/0x410
[   52.614960][ T5635]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   52.616485][ T5635]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   52.617888][ T5635]  ? __pfx_aa_get_newest_label+0x10/0x10
[   52.619370][ T5635]  ? bpf_lsm_capable+0x9/0x10
[   52.620617][ T5635]  ? security_capable+0x7e/0x260
[   52.622005][ T5635]  ? ns_capable+0xd7/0x110
[   52.623375][ T5635]  nfnetlink_rcv+0x1b4/0x430
[   52.624649][ T5635]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   52.626032][ T5635]  ? netlink_deliver_tap+0x1ae/0xcf0
[   52.627412][ T5635]  netlink_unicast+0x53c/0x7f0
[   52.628673][ T5635]  ? __pfx_netlink_unicast+0x10/0x10
[   52.630065][ T5635]  ? __phys_addr_symbol+0x30/0x80
[   52.631384][ T5635]  ? __check_object_size+0x488/0x710
[   52.632779][ T5635]  netlink_sendmsg+0x8b8/0xd70
[   52.634208][ T5635]  ? __pfx_netlink_sendmsg+0x10/0x10
[   52.635639][ T5635]  ? lock_acquire+0x2f/0xb0
[   52.636035][   T73] usb 18-1: SetAddress Request (3) to port 0
[   52.636850][ T5635]  ____sys_sendmsg+0x9ae/0xb40
[   52.638528][   T73] usb 18-1: new SuperSpeed USB device number 3 using vhci_hcd
[   52.639727][ T5635]  ? __pfx_____sys_sendmsg+0x10/0x10
[   52.643069][ T5635]  ? get_compat_msghdr+0x11b/0x170
[   52.644421][ T5635]  ? __pfx___lock_acquire+0x10/0x10
[   52.645816][ T5635]  ___sys_sendmsg+0x135/0x1e0
[   52.647055][ T5635]  ? __pfx____sys_sendmsg+0x10/0x10
[   52.648497][ T5635]  ? lock_acquire+0x2f/0xb0
[   52.649682][ T5635]  ? __fget_files+0x40/0x3f0
[   52.650939][ T5635]  ? fdget+0x176/0x210
[   52.652005][ T5635]  __sys_sendmsg+0x117/0x1f0
[   52.653228][ T5635]  ? __pfx___sys_sendmsg+0x10/0x10
[   52.654591][ T5635]  ? __fget_files+0x244/0x3f0
[   52.656123][ T5635]  __do_fast_syscall_32+0x73/0x120
[   52.657897][ T5635]  do_fast_syscall_32+0x32/0x80
[   52.659586][ T5635]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   52.661730][ T5635] RIP: 0023:0xf7fc2579
[   52.663110][ T5635] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   52.669627][ T5635] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   52.672454][ T5635] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000400
[   52.675135][ T5635] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   52.677769][ T5635] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   52.680133][ T5635] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   52.682775][ T5635] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   52.685485][ T5635]  </TASK>
[   53.349495][ T5666] binder: BINDER_SET_CONTEXT_MGR already set
[   53.351308][ T5666] binder: 5665:5666 ioctl 4018620d 20000100 returned -16
[   53.392997][ T5671] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   53.606944][ T5673] fuse: Bad value for 'user_id'
[   53.608526][ T5673] fuse: Bad value for 'user_id'
[   53.730987][ T1441] usb 7-1: USB disconnect, device number 2
[   53.735716][ T1441] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected
[   54.176512][ T5691] FAULT_INJECTION: forcing a failure.
[   54.176512][ T5691] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   54.181102][ T5691] CPU: 3 UID: 0 PID: 5691 Comm: syz.1.83 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   54.185007][ T5691] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.188909][ T5691] Call Trace:
[   54.190109][ T5691]  <TASK>
[   54.191150][ T5691]  dump_stack_lvl+0x16c/0x1f0
[   54.192828][ T5691]  should_fail_ex+0x497/0x5b0
[   54.194181][ T5691]  ? fs_reclaim_acquire+0xae/0x160
[   54.195500][ T5691]  should_fail_alloc_page+0xe7/0x130
[   54.196853][ T5691]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   54.198442][ T5691]  __alloc_pages_noprof+0x190/0x25c0
[   54.199796][ T5691]  ? stack_depot_save_flags+0x31b/0x900
[   54.201214][ T5691]  ? __pfx_lock_release+0x10/0x10
[   54.202805][ T5691]  ? hlock_class+0x4e/0x130
[   54.204151][ T5691]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   54.205665][ T5691]  ? __pfx___lock_acquire+0x10/0x10
[   54.207033][ T5691]  ? kasan_save_stack+0x42/0x60
[   54.208313][ T5691]  ? kasan_save_stack+0x33/0x60
[   54.209615][ T5691]  ? kasan_save_track+0x14/0x30
[   54.210907][ T5691]  ? __kasan_slab_alloc+0x89/0x90
[   54.212392][ T5691]  ? kmem_cache_alloc_node_noprof+0x153/0x310
[   54.214553][ T5691]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   54.216702][ T5691]  ? policy_nodemask+0xea/0x4e0
[   54.218493][ T5691]  alloc_pages_mpol_noprof+0x2c9/0x610
[   54.220504][ T5691]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   54.222642][ T5691]  ? do_raw_spin_lock+0x12d/0x2c0
[   54.224359][ T5691]  ? lock_acquire+0x2f/0xb0
[   54.225958][ T5691]  ? kasan_populate_vmalloc_pte+0xfb/0x160
[   54.228002][ T5691]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[   54.230178][ T5691]  get_free_pages_noprof+0xc/0x40
[   54.232016][ T5691]  kasan_populate_vmalloc_pte+0x2d/0x160
[   54.234043][ T5691]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[   54.236239][ T5691]  __apply_to_page_range+0x5fd/0xd30
[   54.238148][ T5691]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[   54.240342][ T5691]  ? __pfx___apply_to_page_range+0x10/0x10
[   54.242441][ T5691]  ? insert_vmap_area+0x2ef/0x4d0
[   54.244206][ T5691]  alloc_vmap_area+0x93e/0x2a70
[   54.245990][ T5691]  ? __pfx_alloc_vmap_area+0x10/0x10
[   54.247904][ T5691]  __get_vm_area_node+0x17e/0x2d0
[   54.249662][ T5691]  __vmalloc_node_range_noprof+0x26a/0x15a0
[   54.251176][ T5691]  ? dev_map_alloc+0x38e/0x4e0
[   54.252406][ T5691]  ? dev_map_alloc+0x38e/0x4e0
[   54.253609][ T5691]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   54.255148][ T5691]  ? rcu_is_watching+0x12/0xc0
[   54.256355][ T5691]  ? trace_kmalloc+0x2d/0xe0
[   54.257525][ T5691]  ? __kmalloc_node_noprof+0x22f/0x440
[   54.258929][ T5691]  ? dev_map_alloc+0x38e/0x4e0
[   54.260124][ T5691]  __bpf_map_area_alloc+0xea/0x190
[   54.261421][ T5691]  ? dev_map_alloc+0x38e/0x4e0
[   54.262955][ T5691]  dev_map_alloc+0x38e/0x4e0
[   54.264610][ T5691]  map_create+0x5c5/0x1ed0
[   54.265893][ T5691]  ? __pfx_lock_release+0x10/0x10
[   54.267739][ T5691]  ? trace_lock_acquire+0x14a/0x1d0
[   54.269597][ T5691]  ? __pfx_map_create+0x10/0x10
[   54.271328][ T5691]  ? lock_acquire+0x2f/0xb0
[   54.272935][ T5691]  ? __might_fault+0xe3/0x190
[   54.274628][ T5691]  ? __might_fault+0xe3/0x190
[   54.276041][ T1283] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   54.276226][ T5691]  __sys_bpf+0x506a/0x5780
[   54.279773][ T5691]  ? ksys_write+0x21e/0x260
[   54.281479][ T5691]  ? __pfx___sys_bpf+0x10/0x10
[   54.283244][ T5691]  ? vfs_write+0x14d/0x1140
[   54.284883][ T5691]  ? __mutex_unlock_slowpath+0x164/0x650
[   54.286873][ T5691]  ? fput+0x30/0x390
[   54.288238][ T5691]  ? ksys_write+0x1ad/0x260
[   54.289909][ T5691]  ? __pfx_ksys_write+0x10/0x10
[   54.291677][ T5691]  __ia32_sys_bpf+0x76/0xe0
[   54.293282][ T5691]  __do_fast_syscall_32+0x73/0x120
[   54.294877][ T5691]  do_fast_syscall_32+0x32/0x80
[   54.296592][ T5691]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   54.298460][ T5691] RIP: 0023:0xf7f67579
[   54.299486][ T5691] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   54.304481][ T5691] RSP: 002b:00000000f56c556c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   54.306550][ T5691] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020004080
[   54.308578][ T5691] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[   54.310626][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   54.312978][ T5691] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   54.315841][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   54.318717][ T5691]  </TASK>
[   54.437371][ T1283] usb 8-1: config 0 has no interfaces?
[   54.438934][ T1283] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   54.442316][ T1283] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.453784][ T1283] usb 8-1: config 0 descriptor??
[   54.884519][ T5276] usb 8-1: USB disconnect, device number 3
[   55.072719][ T5722] kvm: requested 6704 ns i8254 timer period limited to 200000 ns
[   55.173936][ T5722] kvm: requested 39390 ns i8254 timer period limited to 200000 ns
[   55.185850][ T5722] kvm: requested 84647 ns i8254 timer period limited to 200000 ns
[   55.240284][ T5722] kvm: requested 98895 ns i8254 timer period limited to 200000 ns
[   55.251586][ T5722] kvm: requested 77942 ns i8254 timer period limited to 200000 ns
[   55.272042][ T5722] kvm: requested 97219 ns i8254 timer period limited to 200000 ns
[   55.279327][ T5722] kvm: requested 91352 ns i8254 timer period limited to 200000 ns
[   55.353286][ T5722] kvm: requested 100571 ns i8254 timer period limited to 200000 ns
[   55.355674][ T5744] netlink: 20 bytes leftover after parsing attributes in process `syz.0.89'.
[   55.369012][ T5722] kvm: requested 39390 ns i8254 timer period limited to 200000 ns
[   55.377133][ T5722] kvm: requested 92190 ns i8254 timer period limited to 200000 ns
[   55.662472][ T5753] vivid-003: =================  START STATUS  =================
[   55.674134][ T5753] vivid-003: Radio HW Seek Mode: Bounded
[   55.677791][ T5753] vivid-003: Radio Programmable HW Seek: false
[   55.679912][ T5753] vivid-003: RDS Rx I/O Mode: Block I/O
[   55.683011][ T5753] vivid-003: Generate RBDS Instead of RDS: false
[   55.684946][ T5753] vivid-003: RDS Reception: true
[   55.686934][ T5753] vivid-003: RDS Program Type: 0 inactive
[   55.688537][ T5753] vivid-003: RDS PS Name:  inactive
[   55.689999][ T5753] vivid-003: RDS Radio Text:  inactive
[   55.691460][ T5753] vivid-003: RDS Traffic Announcement: false inactive
[   55.693244][ T5753] vivid-003: RDS Traffic Program: false inactive
[   55.695018][ T5753] vivid-003: RDS Music: false inactive
[   55.697069][ T5753] vivid-003: ==================  END STATUS  ==================
[   55.918110][ T5764] netlink: 4 bytes leftover after parsing attributes in process `syz.3.95'.
[   55.923779][ T5764] FAULT_INJECTION: forcing a failure.
[   55.923779][ T5764] name failslab, interval 1, probability 0, space 0, times 0
[   55.931065][ T5741] syz.0.89: page allocation failure: order:1, mode:0x10cc0(GFP_KERNEL|__GFP_NORETRY), nodemask=(null),cpuset=/,mems_allowed=0-1
[   55.933644][ T5764] CPU: 3 UID: 0 PID: 5764 Comm: syz.3.95 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   55.937182][ T5764] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.939919][ T5764] Call Trace:
[   55.940782][ T5764]  <TASK>
[   55.941569][ T5764]  dump_stack_lvl+0x16c/0x1f0
[   55.942801][ T5764]  should_fail_ex+0x497/0x5b0
[   55.944039][ T5764]  ? fs_reclaim_acquire+0xae/0x160
[   55.945391][ T5764]  should_failslab+0xc2/0x120
[   55.946632][ T5764]  __kmalloc_noprof+0xcb/0x410
[   55.947871][ T5764]  nla_strdup+0xc6/0x150
[   55.948978][ T5764]  nf_tables_newobj+0x1123/0x1a70
[   55.950299][ T5764]  ? __pfx_nf_tables_newobj+0x10/0x10
[   55.951675][ T5764]  ? trace_lock_acquire+0x14a/0x1d0
[   55.953033][ T5764]  ? __nla_parse+0x40/0x60
[   55.954197][ T5764]  nfnetlink_rcv_batch+0x1a28/0x24e0
[   55.955578][ T5764]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[   55.957045][ T5764]  ? __pfx_lock_release+0x10/0x10
[   55.958374][ T5764]  ? __local_bh_enable_ip+0xa4/0x120
[   55.959753][ T5764]  ? lockdep_hardirqs_on+0x7c/0x110
[   55.961115][ T5764]  ? __pfx___dev_queue_xmit+0x10/0x10
[   55.962525][ T5764]  ? __nla_parse+0x40/0x60
[   55.963685][ T5764]  nfnetlink_rcv+0x3c3/0x430
[   55.964884][ T5764]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   55.966219][ T5764]  netlink_unicast+0x53c/0x7f0
[   55.967405][ T5764]  ? __pfx_netlink_unicast+0x10/0x10
[   55.968774][ T5764]  ? __phys_addr_symbol+0x30/0x80
[   55.970029][ T5764]  ? __check_object_size+0x488/0x710
[   55.971331][ T5764]  netlink_sendmsg+0x8b8/0xd70
[   55.972527][ T5764]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.973815][ T5764]  ? lock_acquire+0x2f/0xb0
[   55.974987][ T5764]  ____sys_sendmsg+0x9ae/0xb40
[   55.976191][ T5764]  ? __pfx_____sys_sendmsg+0x10/0x10
[   55.977480][ T5764]  ? get_compat_msghdr+0x11b/0x170
[   55.978799][ T5764]  ? __pfx___lock_acquire+0x10/0x10
[   55.980056][ T5764]  ___sys_sendmsg+0x135/0x1e0
[   55.981207][ T5764]  ? __pfx____sys_sendmsg+0x10/0x10
[   55.982490][ T5764]  ? lock_acquire+0x2f/0xb0
[   55.983642][ T5764]  ? __fget_files+0x40/0x3f0
[   55.984817][ T5764]  ? fdget+0x176/0x210
[   55.985872][ T5764]  __sys_sendmsg+0x117/0x1f0
[   55.987045][ T5764]  ? __pfx___sys_sendmsg+0x10/0x10
[   55.988343][ T5764]  ? __fget_files+0x244/0x3f0
[   55.989488][ T5764]  __do_fast_syscall_32+0x73/0x120
[   55.990722][ T5764]  do_fast_syscall_32+0x32/0x80
[   55.991986][ T5764]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.993573][ T5764] RIP: 0023:0xf7fc2579
[   55.994630][ T5764] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.999252][ T5764] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   56.001355][ T5764] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240
[   56.003233][ T5764] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   56.005175][ T5764] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   56.007123][ T5764] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   56.009037][ T5764] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   56.011026][ T5764]  </TASK>
[   56.011828][ T5741] CPU: 2 UID: 0 PID: 5741 Comm: syz.0.89 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   56.014446][ T5741] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.017122][ T5741] Call Trace:
[   56.017970][ T5741]  <TASK>
[   56.018703][ T5741]  dump_stack_lvl+0x16c/0x1f0
[   56.019891][ T5741]  warn_alloc+0x24d/0x3a0
[   56.020968][ T5741]  ? __pfx_warn_alloc+0x10/0x10
[   56.022196][ T5741]  ? psi_memstall_leave+0x17d/0x250
[   56.023492][ T5741]  ? __alloc_pages_direct_compact+0x1b1/0x590
[   56.024995][ T5741]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[   56.026595][ T5741]  ? psi_memstall_leave+0x17d/0x250
[   56.027925][ T5741]  __alloc_pages_noprof+0x15ae/0x25c0
[   56.029285][ T5741]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   56.030733][ T5741]  ? lockdep_hardirqs_on+0x7c/0x110
[   56.032058][ T5741]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   56.033541][ T5741]  ? policy_nodemask+0xea/0x4e0
[   56.034783][ T5741]  alloc_pages_mpol_noprof+0x2c9/0x610
[   56.036163][ T5741]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   56.037666][ T5741]  ? alloc_pages_mpol_noprof+0x315/0x610
[   56.039071][ T5741]  kimage_alloc_pages+0x75/0x300
[   56.040295][ T5741]  kimage_alloc_control_pages+0x148/0x8e0
[   56.041702][ T5741]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[   56.043254][ T5741]  do_kexec_load+0x38a/0x8c0
[   56.044407][ T5741]  ? __pfx_do_kexec_load+0x10/0x10
[   56.045730][ T5741]  __do_compat_sys_kexec_load+0x2cf/0x330
[   56.047138][ T5741]  ? __pfx___do_compat_sys_kexec_load+0x10/0x10
[   56.048724][ T5741]  __do_fast_syscall_32+0x73/0x120
[   56.049993][ T5741]  do_fast_syscall_32+0x32/0x80
[   56.051228][ T5741]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   56.052725][ T5741] RIP: 0023:0xf7f28579
[   56.053783][ T5741] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   56.058481][ T5741] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 000000000000011b
[   56.060500][ T5741] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000001
[   56.062420][ T5741] RDX: 00000000200012c0 RSI: 0000000000160000 RDI: 0000000000000000
[   56.064317][ T5741] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   56.066249][ T5741] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   56.068150][ T5741] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   56.070096][ T5741]  </TASK>
[   56.093769][ T5741] Mem-Info:
[   56.094611][ T5741] active_anon:2489 inactive_anon:3 isolated_anon:0
[   56.094611][ T5741]  active_file:12287 inactive_file:22881 isolated_file:0
[   56.094611][ T5741]  unevictable:768 dirty:497 writeback:0
[   56.094611][ T5741]  slab_reclaimable:4906 slab_unreclaimable:50365
[   56.094611][ T5741]  mapped:17249 shmem:879 pagetables:643
[   56.094611][ T5741]  sec_pagetables:318 bounce:0
[   56.094611][ T5741]  kernel_misc_reclaimable:0
[   56.094611][ T5741]  free:23997 free_pcp:523 free_cma:0
[   56.109635][ T5741] Node 0 active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:92kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:6144kB dirty:88kB writeback:0kB shmem:1532kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9844kB pagetables:1232kB sec_pagetables:1208kB all_unreclaimable? no
[   56.119213][ T5741] Node 1 active_anon:9964kB inactive_anon:8kB active_file:49148kB inactive_file:91432kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:62852kB dirty:1900kB writeback:0kB shmem:1984kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1404kB pagetables:1340kB sec_pagetables:64kB all_unreclaimable? no
[   56.127468][ T5741] Node 0 DMA free:776kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   56.134200][ T5741] lowmem_reserve[]: 0 273 0 0 0
[   56.135503][ T5741] Node 0 DMA32 free:16132kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:88kB unevictable:1536kB writepending:88kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:152kB local_pcp:0kB free_cma:0kB
[   56.144465][ T5741] lowmem_reserve[]: 0 0 0 0 0
[   56.145703][ T5741] Node 1 DMA32 free:80640kB boost:8192kB min:55336kB low:67120kB high:78904kB reserved_highatomic:0KB active_anon:10016kB inactive_anon:8kB active_file:49160kB inactive_file:91416kB unevictable:1536kB writepending:1904kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:2124kB local_pcp:416kB free_cma:0kB
[   56.153274][ T5741] lowmem_reserve[]: 0 0 0 0 0
[   56.154502][ T5741] Node 0 DMA: 50*4kB (UE) 10*8kB (UE) 23*16kB (UE) 4*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 776kB
[   56.158118][ T5741] Node 0 DMA32: 76*4kB (UMEH) 30*8kB (MEH) 19*16kB (UMEH) 32*32kB (UMEH) 33*64kB (ME) 18*128kB (ME) 4*256kB (ME) 7*512kB (M) 3*1024kB (UM) 1*2048kB (M) 0*4096kB = 16016kB
[   56.162455][ T5741] Node 1 DMA32: 380*4kB (UME) 479*8kB (UME) 469*16kB (M) 382*32kB (UME) 259*64kB (UME) 35*128kB (UM) 16*256kB (M) 14*512kB (UM) 3*1024kB (M) 4*2048kB (M) 3*4096kB (M) = 80952kB
[   56.167115][ T5741] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   56.169569][ T5741] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   56.171886][ T5741] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   56.174252][ T5741] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   56.176912][ T5741] 36794 total pagecache pages
[   56.178193][ T5741] 744 pages in swap cache
[   56.179298][ T5741] Free swap  = 110392kB
[   56.180340][ T5741] Total swap = 124996kB
[   56.181398][ T5741] 524155 pages RAM
[   56.182358][ T5741] 0 pages HighMem/MovableOnly
[   56.183523][ T5741] 206681 pages reserved
[   56.184573][ T5741] 0 pages cma reserved
[   56.225049][ T5766] overlayfs: missing 'lowerdir'
[   56.381116][ T5741] kexec: Could not allocate control_code_buffer
[   56.711209][ T5785] netlink: 'syz.2.101': attribute type 3 has an invalid length.
[   56.713905][ T5785] netlink: 'syz.2.101': attribute type 3 has an invalid length.
[   57.130717][ T5802] xt_CT: No such helper "syz0"
[   57.206947][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:2. Sending cookies.
[   57.736270][   T73] usb 18-1: device descriptor read/8, error -110
[   57.846428][   T73] usb usb18-port1: attempt power cycle
[   57.996050][   T73] usb 18-1: SetAddress Request (4) to port 0
[   57.998404][   T73] usb 18-1: new SuperSpeed USB device number 4 using vhci_hcd
[   58.286848][ T5845] FAULT_INJECTION: forcing a failure.
[   58.286848][ T5845] name failslab, interval 1, probability 0, space 0, times 0
[   58.290476][ T5845] CPU: 3 UID: 0 PID: 5845 Comm: syz.0.115 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   58.293041][ T5845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.295467][ T5845] Call Trace:
[   58.296222][ T5845]  <TASK>
[   58.296915][ T5845]  dump_stack_lvl+0x16c/0x1f0
[   58.298005][ T5845]  should_fail_ex+0x497/0x5b0
[   58.299097][ T5845]  ? fs_reclaim_acquire+0xae/0x160
[   58.300257][ T5845]  should_failslab+0xc2/0x120
[   58.301334][ T5845]  __kmalloc_noprof+0xcb/0x410
[   58.302472][ T5845]  tomoyo_encode2+0x100/0x3e0
[   58.303561][ T5845]  tomoyo_realpath_from_path+0x1a7/0x710
[   58.304825][ T5845]  tomoyo_check_open_permission+0x2a7/0x3b0
[   58.306679][ T5845]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[   58.308724][ T5845]  ? __pfx___lock_acquire+0x10/0x10
[   58.310424][ T5845]  ? __pfx___lock_acquire+0x10/0x10
[   58.312043][ T5845]  ? mnt_get_write_access+0x6a/0x300
[   58.313526][ T5845]  ? __pfx_hook_file_open+0x10/0x10
[   58.314707][ T5845]  tomoyo_file_open+0xcf/0x100
[   58.316070][ T5845]  security_file_open+0x64c/0x9d0
[   58.317691][ T5845]  ? mnt_get_write_access+0x20c/0x300
[   58.319430][ T5845]  do_dentry_open+0x57c/0x1530
[   58.320999][ T5845]  ? inode_permission+0xdd/0x5f0
[   58.322484][ T5845]  vfs_open+0x82/0x3f0
[   58.323697][ T5845]  ? may_open+0x1f2/0x400
[   58.324752][ T5845]  path_openat+0x1e6a/0x2d60
[   58.325921][ T5845]  ? __pfx_path_openat+0x10/0x10
[   58.327472][ T5845]  ? __pfx___lock_acquire+0x10/0x10
[   58.329178][ T5845]  do_filp_open+0x1dc/0x430
[   58.330672][ T5845]  ? __pfx_do_filp_open+0x10/0x10
[   58.332322][ T5845]  ? _raw_spin_unlock+0x28/0x50
[   58.333822][ T5845]  ? alloc_fd+0x2d7/0x6c0
[   58.335066][ T5845]  do_sys_openat2+0x17a/0x1e0
[   58.336580][ T5845]  ? __pfx_do_sys_openat2+0x10/0x10
[   58.338009][ T5845]  ? __fget_files+0x244/0x3f0
[   58.339117][ T5845]  __ia32_sys_creat+0xcc/0x120
[   58.340546][ T5845]  ? __pfx___ia32_sys_creat+0x10/0x10
[   58.342268][ T5845]  ? __pfx_ksys_write+0x10/0x10
[   58.343796][ T5845]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   58.345913][ T5845]  ? lockdep_hardirqs_on+0x7c/0x110
[   58.347541][ T5845]  __do_fast_syscall_32+0x73/0x120
[   58.349013][ T5845]  do_fast_syscall_32+0x32/0x80
[   58.350170][ T5845]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   58.351661][ T5845] RIP: 0023:0xf7f28579
[   58.352729][ T5845] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   58.358212][ T5845] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000008
[   58.360174][ T5845] RAX: ffffffffffffffda RBX: 0000000020000080 RCX: 0000000000000040
[   58.362429][ T5845] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   58.364848][ T5845] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   58.367424][ T5845] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   58.369880][ T5845] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   58.372341][ T5845]  </TASK>
[   58.390196][ T5845] ERROR: Out of memory at tomoyo_realpath_from_path.
[   59.007128][ T5857] netlink: 4 bytes leftover after parsing attributes in process `syz.3.119'.
[   59.555970][ T5408] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   59.657803][ T5872] netlink: 4 bytes leftover after parsing attributes in process `syz.1.124'.
[   59.908833][ T5276] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   60.056001][ T5276] usb 6-1: device descriptor read/64, error -71
[   60.295990][ T5276] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   60.425982][ T5276] usb 6-1: device descriptor read/64, error -71
[   60.536181][ T5276] usb usb6-port1: attempt power cycle
[   60.885953][ T5276] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   60.906339][ T5276] usb 6-1: device descriptor read/8, error -71
[   61.155973][ T5276] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   61.176378][ T5276] usb 6-1: device descriptor read/8, error -71
[   61.286052][ T5276] usb usb6-port1: unable to enumerate USB device
[   62.162721][ T1283] IPVS: starting estimator thread 0...
[   62.247411][ T5902] IPVS: using max 16 ests per chain, 38400 per kthread
[   62.333255][ T5911] xt_CT: No such helper "syz0"
[   62.640532][ T5916] netlink: 'syz.1.138': attribute type 3 has an invalid length.
[   62.642697][ T5916] netlink: 'syz.1.138': attribute type 3 has an invalid length.
[   62.769284][ T5922] netlink: 'syz.1.142': attribute type 4 has an invalid length.
[   62.771402][ T5922] netlink: 'syz.1.142': attribute type 4 has an invalid length.
[   62.773398][ T5922] netlink: 126012 bytes leftover after parsing attributes in process `syz.1.142'.
[   62.852890][ T5927] pimreg: entered allmulticast mode
[   62.856801][ T5927] pimreg: left allmulticast mode
[   63.096119][   T73] usb 18-1: device descriptor read/8, error -110
[   63.225983][ T5276] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   63.336516][   T73] usb 18-1: SetAddress Request (5) to port 0
[   63.345141][   T73] usb 18-1: new SuperSpeed USB device number 5 using vhci_hcd
[   63.355956][ T5276] usb 6-1: device descriptor read/64, error -71
[   63.596096][ T5276] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[   63.709923][ T5939] netlink: 'syz.2.148': attribute type 4 has an invalid length.
[   63.712197][ T5939] netlink: 'syz.2.148': attribute type 4 has an invalid length.
[   63.714631][ T5939] netlink: 126012 bytes leftover after parsing attributes in process `syz.2.148'.
[   63.726318][ T5276] usb 6-1: device descriptor read/64, error -71
[   63.730443][ T5939] netlink: 'syz.2.148': attribute type 1 has an invalid length.
[   63.733611][ T5939] netlink: 'syz.2.148': attribute type 4 has an invalid length.
[   63.735562][ T5939] netlink: 'syz.2.148': attribute type 4 has an invalid length.
[   63.737653][ T5939] netlink: 127216 bytes leftover after parsing attributes in process `syz.2.148'.
[   63.836606][ T5276] usb usb6-port1: attempt power cycle
[   64.065942][ T5955] loop7: detected capacity change from 0 to 16384
[   64.128134][ T5949] create_pit_timer: 8 callbacks suppressed
[   64.128210][ T5949] kvm: requested 6704 ns i8254 timer period limited to 200000 ns
[   64.160286][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.164735][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.168988][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.172121][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.176179][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.179134][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.179160][ T5276] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[   64.185648][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.197046][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.200510][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.200696][ T5949] kvm: requested 39390 ns i8254 timer period limited to 200000 ns
[   64.203004][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.203099][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.206120][ T5276] usb 6-1: device descriptor read/8, error -71
[   64.208445][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.221303][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.224823][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.229318][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.233370][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.237317][ T5955] ldm_validate_partition_table(): Disk read failed.
[   64.239874][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.243085][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.245472][ T5955] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   64.248480][ T5955] Buffer I/O error on dev loop7, logical block 0, async page read
[   64.252647][ T5955] Dev loop7: unable to read RDB block 0
[   64.256287][ T5955]  loop7: unable to read partition table
[   64.258061][ T5955] loop_reread_partitions: partition scan of loop7 (K�>�i)��/480���#�	�$q�Z����I�����[�u�@3b������j!5MM�]
z) failed (rc=-5)
[   64.495990][ T5276] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[   64.516382][ T5276] usb 6-1: device descriptor read/8, error -71
[   64.626290][ T5276] usb usb6-port1: unable to enumerate USB device
[   64.656014][ T5977] netlink: 72 bytes leftover after parsing attributes in process `syz.2.160'.
[   64.666831][ T5977] Bluetooth: MGMT ver 1.23
[   64.820878][ T5981] netlink: 20 bytes leftover after parsing attributes in process `syz.2.161'.
[   65.283038][ T5979] kexec: Could not allocate control_code_buffer
[   65.329190][ T5984] netlink: 'syz.2.162': attribute type 1 has an invalid length.
[   65.331290][ T5984] netlink: 8 bytes leftover after parsing attributes in process `syz.2.162'.
[   65.692583][ T6011] netlink: 134672 bytes leftover after parsing attributes in process `syz.3.170'.
[   65.769298][ T6013] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[   66.115006][ T6019] tipc: Started in network mode
[   66.119261][ T6019] tipc: Node identity , cluster identity 4711
[   66.120980][ T6019] tipc: Failed to obtain node identity
[   66.122499][ T6019] tipc: Enabling of bearer <eth:gre0> rejected, failed to enable media
[   66.410455][ T6023] kvm: requested 6704 ns i8254 timer period limited to 200000 ns
[   66.442563][ T6023] kvm: requested 39390 ns i8254 timer period limited to 200000 ns
[   66.447213][ T6023] kvm: requested 95542 ns i8254 timer period limited to 200000 ns
[   66.508697][ T6028] loop7: detected capacity change from 0 to 16384
[   66.629749][ T6028] ldm_validate_partition_table(): Disk read failed.
[   66.632533][ T6028] Dev loop7: unable to read RDB block 0
[   66.634342][ T6028]  loop7: unable to read partition table
[   66.636247][ T6028] loop_reread_partitions: partition scan of loop7 (K�>�i)��/480���#�	�$q�Z����I�����[�u�@3b������j!5MM�]
z) failed (rc=-5)
[   67.858021][ T6068] FAULT_INJECTION: forcing a failure.
[   67.858021][ T6068] name failslab, interval 1, probability 0, space 0, times 0
[   67.861876][ T6068] CPU: 0 UID: 0 PID: 6068 Comm: syz.0.187 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   67.864677][ T6068] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.867608][ T6068] Call Trace:
[   67.868488][ T6068]  <TASK>
[   67.869336][ T6068]  dump_stack_lvl+0x16c/0x1f0
[   67.870605][ T6068]  should_fail_ex+0x497/0x5b0
[   67.871844][ T6068]  ? fs_reclaim_acquire+0xae/0x160
[   67.873186][ T6068]  should_failslab+0xc2/0x120
[   67.874428][ T6068]  __kmalloc_node_noprof+0xd1/0x440
[   67.875798][ T6068]  ? __vmalloc_node_range_noprof+0x3d8/0x15a0
[   67.877453][ T6068]  __vmalloc_node_range_noprof+0x3d8/0x15a0
[   67.879095][ T6068]  ? xt_compat_init_offsets+0xe1/0x1f0
[   67.880580][ T6068]  ? __mutex_lock+0x1a6/0x9c0
[   67.881927][ T6068]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   67.883635][ T6068]  ? __pfx___mutex_lock+0x10/0x10
[   67.884950][ T6068]  ? hlock_class+0x4e/0x130
[   67.886209][ T6068]  ? __lock_acquire+0x163e/0x3ce0
[   67.887624][ T6068]  ? xt_compat_init_offsets+0xe1/0x1f0
[   67.889221][ T6068]  vmalloc_noprof+0x6b/0x90
[   67.890424][ T6068]  ? xt_compat_init_offsets+0xe1/0x1f0
[   67.891848][ T6068]  xt_compat_init_offsets+0xe1/0x1f0
[   67.893234][ T6068]  translate_compat_table+0x1f0/0x18c0
[   67.894688][ T6068]  ? __pfx_translate_compat_table+0x10/0x10
[   67.896237][ T6068]  ? __might_fault+0x13b/0x190
[   67.897503][ T6068]  ? __pfx_lock_release+0x10/0x10
[   67.898832][ T6068]  compat_do_replace+0x35d/0x500
[   67.900133][ T6068]  ? __pfx_compat_do_replace+0x10/0x10
[   67.901567][ T6068]  ? aa_get_newest_label+0x376/0x680
[   67.902942][ T6068]  ? __pfx_aa_get_newest_label+0x10/0x10
[   67.904403][ T6068]  ? bpf_lsm_capable+0x9/0x10
[   67.905659][ T6068]  ? security_capable+0x7e/0x260
[   67.907041][ T6068]  do_ipt_set_ctl+0x686/0xc10
[   67.908381][ T6068]  ? trace_contention_end+0xea/0x140
[   67.909781][ T6068]  ? __mutex_lock+0x1a6/0x9c0
[   67.911019][ T6068]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[   67.912321][ T6068]  ? __pfx___mutex_lock+0x10/0x10
[   67.913645][ T6068]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   67.915218][ T6068]  ? __pfx_do_ip_setsockopt+0x10/0x10
[   67.916620][ T6068]  ? nf_sockopt_find.constprop.0+0x221/0x290
[   67.918190][ T6068]  nf_setsockopt+0x8a/0xf0
[   67.919365][ T6068]  ip_setsockopt+0xcb/0xf0
[   67.920532][ T6068]  udp_setsockopt+0x7d/0xd0
[   67.921730][ T6068]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   67.923272][ T6068]  do_sock_setsockopt+0x222/0x480
[   67.924586][ T6068]  ? __pfx_do_sock_setsockopt+0x10/0x10
[   67.926032][ T6068]  ? fdget+0x176/0x210
[   67.927094][ T6068]  __sys_setsockopt+0x1a4/0x270
[   67.928364][ T6068]  ? __pfx___sys_setsockopt+0x10/0x10
[   67.929781][ T6068]  ? fput+0x30/0x390
[   67.930808][ T6068]  ? ksys_write+0x1ad/0x260
[   67.932001][ T6068]  ? __pfx_ksys_write+0x10/0x10
[   67.933279][ T6068]  __ia32_sys_setsockopt+0xbc/0x160
[   67.934656][ T6068]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.936010][ T6068]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   67.937723][ T6068]  __do_fast_syscall_32+0x73/0x120
[   67.939057][ T6068]  do_fast_syscall_32+0x32/0x80
[   67.940332][ T6068]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   67.941976][ T6068] RIP: 0023:0xf7f28579
[   67.943049][ T6068] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   67.948056][ T6068] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[   67.950209][ T6068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[   67.952195][ T6068] RDX: 0000000000000040 RSI: 0000000020000000 RDI: 0000000000000578
[   67.954232][ T6068] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   67.956254][ T6068] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   67.958287][ T6068] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.960321][ T6068]  </TASK>
[   67.964684][ T6068] warn_alloc: 1 callbacks suppressed
[   67.964698][ T6068] syz.0.187: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[   67.973678][ T6068] CPU: 3 UID: 0 PID: 6068 Comm: syz.0.187 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   67.976428][ T6068] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.979265][ T6068] Call Trace:
[   67.980142][ T6068]  <TASK>
[   67.980939][ T6068]  dump_stack_lvl+0x16c/0x1f0
[   67.982208][ T6068]  warn_alloc+0x24d/0x3a0
[   67.983358][ T6068]  ? __pfx_warn_alloc+0x10/0x10
[   67.984737][ T6068]  ? kasan_quarantine_reduce+0x1b8/0x1e0
[   67.986244][ T6068]  ? rcu_is_watching+0x12/0xc0
[   67.987512][ T6068]  ? trace_kmalloc+0x2d/0xe0
[   67.988733][ T6068]  ? __kmalloc_node_noprof+0x22f/0x440
[   67.990196][ T6068]  __vmalloc_node_range_noprof+0x114a/0x15a0
[   67.991771][ T6068]  ? xt_compat_init_offsets+0xe1/0x1f0
[   67.993202][ T6068]  ? __mutex_lock+0x1a6/0x9c0
[   67.994444][ T6068]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   67.996098][ T6068]  ? __pfx___mutex_lock+0x10/0x10
[   67.997423][ T6068]  ? hlock_class+0x4e/0x130
[   67.998704][ T6068]  ? __lock_acquire+0x163e/0x3ce0
[   68.000039][ T6068]  ? xt_compat_init_offsets+0xe1/0x1f0
[   68.001484][ T6068]  vmalloc_noprof+0x6b/0x90
[   68.002674][ T6068]  ? xt_compat_init_offsets+0xe1/0x1f0
[   68.004109][ T6068]  xt_compat_init_offsets+0xe1/0x1f0
[   68.005540][ T6068]  translate_compat_table+0x1f0/0x18c0
[   68.006973][ T6068]  ? __pfx_translate_compat_table+0x10/0x10
[   68.008528][ T6068]  ? __might_fault+0x13b/0x190
[   68.009795][ T6068]  ? __pfx_lock_release+0x10/0x10
[   68.011126][ T6068]  compat_do_replace+0x35d/0x500
[   68.012430][ T6068]  ? __pfx_compat_do_replace+0x10/0x10
[   68.013861][ T6068]  ? aa_get_newest_label+0x376/0x680
[   68.015344][ T6068]  ? __pfx_aa_get_newest_label+0x10/0x10
[   68.016832][ T6068]  ? bpf_lsm_capable+0x9/0x10
[   68.018102][ T6068]  ? security_capable+0x7e/0x260
[   68.019427][ T6068]  do_ipt_set_ctl+0x686/0xc10
[   68.020684][ T6068]  ? trace_contention_end+0xea/0x140
[   68.022087][ T6068]  ? __mutex_lock+0x1a6/0x9c0
[   68.023336][ T6068]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[   68.024705][ T6068]  ? __pfx___mutex_lock+0x10/0x10
[   68.026051][ T6068]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   68.027855][ T6068]  ? __pfx_do_ip_setsockopt+0x10/0x10
[   68.029268][ T6068]  ? nf_sockopt_find.constprop.0+0x221/0x290
[   68.030829][ T6068]  nf_setsockopt+0x8a/0xf0
[   68.032025][ T6068]  ip_setsockopt+0xcb/0xf0
[   68.033208][ T6068]  udp_setsockopt+0x7d/0xd0
[   68.034428][ T6068]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   68.035985][ T6068]  do_sock_setsockopt+0x222/0x480
[   68.037330][ T6068]  ? __pfx_do_sock_setsockopt+0x10/0x10
[   68.038787][ T6068]  ? fdget+0x176/0x210
[   68.039881][ T6068]  __sys_setsockopt+0x1a4/0x270
[   68.041175][ T6068]  ? __pfx___sys_setsockopt+0x10/0x10
[   68.042589][ T6068]  ? fput+0x30/0x390
[   68.043629][ T6068]  ? ksys_write+0x1ad/0x260
[   68.044830][ T6068]  ? __pfx_ksys_write+0x10/0x10
[   68.046153][ T6068]  __ia32_sys_setsockopt+0xbc/0x160
[   68.047514][ T6068]  ? lockdep_hardirqs_on+0x7c/0x110
[   68.048874][ T6068]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   68.050589][ T6068]  __do_fast_syscall_32+0x73/0x120
[   68.051940][ T6068]  do_fast_syscall_32+0x32/0x80
[   68.053338][ T6068]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.055013][ T6068] RIP: 0023:0xf7f28579
[   68.056072][ T6068] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   68.060886][ T6068] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[   68.063046][ T6068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[   68.065110][ T6068] RDX: 0000000000000040 RSI: 0000000020000000 RDI: 0000000000000578
[   68.067163][ T6068] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   68.069214][ T6068] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   68.071272][ T6068] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.073340][ T6068]  </TASK>
[   68.075327][ T6068] Mem-Info:
[   68.076601][ T6068] active_anon:2462 inactive_anon:129 isolated_anon:0
[   68.076601][ T6068]  active_file:4016 inactive_file:27552 isolated_file:0
[   68.076601][ T6068]  unevictable:768 dirty:454 writeback:0
[   68.076601][ T6068]  slab_reclaimable:4739 slab_unreclaimable:50349
[   68.076601][ T6068]  mapped:17231 shmem:900 pagetables:659
[   68.076601][ T6068]  sec_pagetables:316 bounce:0
[   68.076601][ T6068]  kernel_misc_reclaimable:0
[   68.076601][ T6068]  free:108921 free_pcp:1319 free_cma:0
[   68.088419][ T6068] Node 0 active_anon:0kB inactive_anon:0kB active_file:64kB inactive_file:32kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:6124kB dirty:92kB writeback:0kB shmem:1516kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9804kB pagetables:1224kB sec_pagetables:1208kB all_unreclaimable? no
[   68.096764][ T6068] Node 1 active_anon:9864kB inactive_anon:516kB active_file:16000kB inactive_file:110176kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:62800kB dirty:1724kB writeback:0kB shmem:2084kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1348kB pagetables:1412kB sec_pagetables:56kB all_unreclaimable? no
[   68.106379][ T6068] Node 0 DMA free:940kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:8kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:96kB local_pcp:8kB free_cma:0kB
[   68.113293][ T6068] lowmem_reserve[]: 0 273 0 0 0
[   68.114645][ T6068] Node 0 DMA32 free:19152kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:2048KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:84kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:2432kB local_pcp:0kB free_cma:0kB
[   68.122042][ T6068] lowmem_reserve[]: 0 0 0 0 0
[   68.123356][ T6068] Node 1 DMA32 free:415492kB boost:8192kB min:55336kB low:67120kB high:78904kB reserved_highatomic:0KB active_anon:9864kB inactive_anon:516kB active_file:16000kB inactive_file:110176kB unevictable:1536kB writepending:1724kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:3220kB local_pcp:956kB free_cma:0kB
[   68.133726][ T6068] lowmem_reserve[]: 0 0 0 0 0
[   68.135153][ T6068] Node 0 DMA: 38*4kB (UE) 28*8kB (UE) 26*16kB (UE) 6*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 984kB
[   68.139380][ T6068] Node 0 DMA32: 84*4kB (UMEH) 109*8kB (UMEH) 81*16kB (UMEH) 62*32kB (UMEH) 40*64kB (UME) 24*128kB (UME) 7*256kB (UME) 5*512kB (UM) 3*1024kB (UM) 1*2048kB (U) 0*4096kB = 19592kB
[   68.144687][ T6068] Node 1 DMA32: 647*4kB (UME) 814*8kB (UME) 600*16kB (UME) 322*32kB (UME) 165*64kB (UME) 109*128kB (UME) 56*256kB (UME) 41*512kB (UME) 29*1024kB (UME) 29*2048kB (UME) 58*4096kB (UM) = 415500kB
[   68.150107][ T6068] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   68.152621][ T6068] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   68.155042][ T6068] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   68.157720][ T6068] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   68.160253][ T6068] 33283 total pagecache pages
[   68.161634][ T6068] 815 pages in swap cache
[   68.162878][ T6068] Free swap  = 110532kB
[   68.164091][ T6068] Total swap = 124996kB
[   68.165276][ T6068] 524155 pages RAM
[   68.166441][ T6068] 0 pages HighMem/MovableOnly
[   68.167722][ T6068] 206681 pages reserved
[   68.168848][ T6068] 0 pages cma reserved
[   68.230633][ T6070] Driver unsupported XDP return value 0 on prog  (id 33) dev N/A, expect packet loss!
[   68.269760][ T6079] openvswitch: netlink: Actions may not be safe on all matching packets
[   68.292062][ T6081] FAULT_INJECTION: forcing a failure.
[   68.292062][ T6081] name failslab, interval 1, probability 0, space 0, times 0
[   68.295601][ T6081] CPU: 2 UID: 0 PID: 6081 Comm: syz.3.192 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   68.298336][ T6081] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.301118][ T6081] Call Trace:
[   68.302011][ T6081]  <TASK>
[   68.302797][ T6081]  dump_stack_lvl+0x16c/0x1f0
[   68.304046][ T6081]  should_fail_ex+0x497/0x5b0
[   68.305299][ T6081]  ? fs_reclaim_acquire+0xae/0x160
[   68.306655][ T6081]  should_failslab+0xc2/0x120
[   68.307899][ T6081]  kmem_cache_alloc_node_noprof+0x71/0x310
[   68.309452][ T6081]  ? alloc_vmap_area+0x636/0x2a70
[   68.310783][ T6081]  alloc_vmap_area+0x636/0x2a70
[   68.312075][ T6081]  ? __pfx_alloc_vmap_area+0x10/0x10
[   68.313478][ T6081]  __get_vm_area_node+0x17e/0x2d0
[   68.314807][ T6081]  __vmalloc_node_range_noprof+0x26a/0x15a0
[   68.316351][ T6081]  ? bpf_prog_calc_tag+0x100/0x780
[   68.317706][ T6081]  ? bpf_prog_calc_tag+0x100/0x780
[   68.319045][ T6081]  ? do_swap+0xbc/0x270
[   68.320142][ T6081]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   68.321801][ T6081]  ? bpf_prog_calc_tag+0x100/0x780
[   68.323156][ T6081]  vmalloc_noprof+0x6b/0x90
[   68.324355][ T6081]  ? bpf_prog_calc_tag+0x100/0x780
[   68.325714][ T6081]  bpf_prog_calc_tag+0x100/0x780
[   68.327017][ T6081]  ? __pfx_bpf_prog_calc_tag+0x10/0x10
[   68.328444][ T6081]  ? __pfx_add_subprog+0x10/0x10
[   68.329756][ T6081]  ? add_subprog_and_kfunc+0x5e5/0x1b80
[   68.331197][ T6081]  resolve_pseudo_ldimm64+0xcd/0x2950
[   68.332627][ T6081]  ? __pfx_add_subprog_and_kfunc+0x10/0x10
[   68.334180][ T6081]  ? __pfx_resolve_pseudo_ldimm64+0x10/0x10
[   68.335732][ T6081]  ? trace_kmalloc+0x2d/0xe0
[   68.337033][ T6081]  ? __kmalloc_node_noprof+0x22f/0x440
[   68.338472][ T6081]  ? bpf_lsm_binder_transfer_file+0x1/0x10
[   68.339986][ T6081]  ? __kvmalloc_node_noprof+0xad/0x1a0
[   68.341409][ T6081]  ? check_subprogs+0x57c/0x7d0
[   68.342705][ T6081]  bpf_check+0x72cb/0xc7c0
[   68.343894][ T6081]  ? __pfx_bpf_check+0x10/0x10
[   68.345170][ T6081]  ? find_held_lock+0x2d/0x110
[   68.346440][ T6081]  ? ktime_get_with_offset+0x13a/0x240
[   68.347867][ T6081]  ? trace_lock_acquire+0x14a/0x1d0
[   68.349255][ T6081]  ? ktime_get_with_offset+0x13a/0x240
[   68.350687][ T6081]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[   68.352175][ T6081]  ? lockdep_hardirqs_on+0x7c/0x110
[   68.353568][ T6081]  ? bpf_obj_name_cpy+0x156/0x1b0
[   68.354898][ T6081]  bpf_prog_load+0xe3f/0x2670
[   68.356335][ T6081]  ? __pfx_bpf_prog_load+0x10/0x10
[   68.357945][ T6081]  ? find_held_lock+0x2d/0x110
[   68.359510][ T6081]  __sys_bpf+0x4c8c/0x5780
[   68.360692][ T6081]  ? ksys_write+0x21e/0x260
[   68.361941][ T6081]  ? __pfx___sys_bpf+0x10/0x10
[   68.363265][ T6081]  ? vfs_write+0x14d/0x1140
[   68.364491][ T6081]  ? __mutex_unlock_slowpath+0x164/0x650
[   68.366000][ T6081]  ? fput+0x30/0x390
[   68.367042][ T6081]  ? ksys_write+0x1ad/0x260
[   68.368262][ T6081]  ? __pfx_ksys_write+0x10/0x10
[   68.369560][ T6081]  __ia32_sys_bpf+0x76/0xe0
[   68.370767][ T6081]  __do_fast_syscall_32+0x73/0x120
[   68.372118][ T6081]  do_fast_syscall_32+0x32/0x80
[   68.373420][ T6081]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.375078][ T6081] RIP: 0023:0xf7fc2579
[   68.376152][ T6081] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   68.381158][ T6081] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   68.383340][ T6081] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000440
[   68.385428][ T6081] RDX: 0000000000000070 RSI: 0000000000000000 RDI: 0000000000000000
[   68.387482][ T6081] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   68.389551][ T6081] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   68.391605][ T6081] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.393675][ T6081]  </TASK>
[   68.456655][   T73] usb 18-1: device descriptor read/8, error -110
[   68.544285][ T6083] netlink: 4 bytes leftover after parsing attributes in process `syz.0.190'.
[   68.548249][ T6083] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   68.551667][ T6083] batman_adv: batadv0: Removing interface: batadv_slave_0
[   68.554304][ T6083] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   68.560093][ T6083] batman_adv: batadv0: Removing interface: batadv_slave_1
[   68.566783][   T73] usb usb18-port1: unable to enumerate USB device
[   68.646447][ T6093] FAULT_INJECTION: forcing a failure.
[   68.646447][ T6093] name failslab, interval 1, probability 0, space 0, times 0
[   68.650888][ T6093] CPU: 1 UID: 0 PID: 6093 Comm: syz.3.195 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   68.654580][ T6093] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.658614][ T6093] Call Trace:
[   68.659914][ T6093]  <TASK>
[   68.661064][ T6093]  dump_stack_lvl+0x16c/0x1f0
[   68.662819][ T6093]  should_fail_ex+0x497/0x5b0
[   68.664716][ T6093]  ? fs_reclaim_acquire+0xae/0x160
[   68.666670][ T6093]  should_failslab+0xc2/0x120
[   68.668390][ T6093]  __kmalloc_noprof+0xcb/0x410
[   68.670125][ T6093]  nla_alloc_flow_actions+0x20/0x80
[   68.671972][ T6093]  ovs_nla_copy_actions+0x6a/0x330
[   68.673690][ T6093]  get_flow_actions+0xd6/0x1a0
[   68.675306][ T6093]  ? __pfx_get_flow_actions+0x10/0x10
[   68.677108][ T6093]  ? hlock_class+0x4e/0x130
[   68.678623][ T6093]  ? __lock_acquire+0xbdd/0x3ce0
[   68.680391][ T6093]  ovs_nla_init_match_and_action.constprop.0+0x1cb/0x380
[   68.682742][ T6093]  ? __pfx_ovs_nla_init_match_and_action.constprop.0+0x10/0x10
[   68.685441][ T6093]  ? ovs_nla_get_ufid+0xd0/0x1f0
[   68.687166][ T6093]  ovs_flow_cmd_set+0x27c/0xa00
[   68.688791][ T6093]  ? stack_trace_save+0x95/0xd0
[   68.690437][ T6093]  ? __pfx_ovs_flow_cmd_set+0x10/0x10
[   68.692351][ T6093]  ? kasan_save_stack+0x42/0x60
[   68.694045][ T6093]  ? kasan_save_stack+0x33/0x60
[   68.695757][ T6093]  ? kasan_save_track+0x14/0x30
[   68.697475][ T6093]  ? genl_family_rcv_msg_doit+0xbf/0x2f0
[   68.699447][ T6093]  ? genl_rcv_msg+0x565/0x800
[   68.701127][ T6093]  ? netlink_rcv_skb+0x165/0x410
[   68.702917][ T6093]  ? genl_rcv+0x28/0x40
[   68.704401][ T6093]  ? netlink_unicast+0x53c/0x7f0
[   68.706312][ T6093]  ? __sys_sendmsg+0x117/0x1f0
[   68.708122][ T6093]  ? __do_fast_syscall_32+0x73/0x120
[   68.710112][ T6093]  ? do_fast_syscall_32+0x32/0x80
[   68.711976][ T6093]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.714476][ T6093]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[   68.717197][ T6093]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   68.719866][ T6093]  genl_family_rcv_msg_doit+0x202/0x2f0
[   68.721952][ T6093]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   68.724232][ T6093]  ? bpf_lsm_capable+0x9/0x10
[   68.726054][ T6093]  ? security_capable+0x7e/0x260
[   68.727809][ T6093]  ? ns_capable+0xd7/0x110
[   68.729396][ T6093]  genl_rcv_msg+0x565/0x800
[   68.731023][ T6093]  ? __pfx_genl_rcv_msg+0x10/0x10
[   68.732779][ T6093]  ? __pfx_ovs_flow_cmd_set+0x10/0x10
[   68.734660][ T6093]  netlink_rcv_skb+0x165/0x410
[   68.736386][ T6093]  ? __pfx_genl_rcv_msg+0x10/0x10
[   68.738140][ T6093]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   68.739987][ T6093]  ? down_read+0xc9/0x330
[   68.741572][ T6093]  ? __pfx_down_read+0x10/0x10
[   68.743240][ T6093]  ? netlink_deliver_tap+0x1ae/0xcf0
[   68.745098][ T6093]  genl_rcv+0x28/0x40
[   68.746558][ T6093]  netlink_unicast+0x53c/0x7f0
[   68.748385][ T6093]  ? __pfx_netlink_unicast+0x10/0x10
[   68.750074][ T6093]  ? __phys_addr_symbol+0x30/0x80
[   68.752010][ T6093]  ? __check_object_size+0x488/0x710
[   68.753942][ T6093]  netlink_sendmsg+0x8b8/0xd70
[   68.755684][ T6093]  ? __pfx_netlink_sendmsg+0x10/0x10
[   68.757604][ T6093]  ? lock_acquire+0x2f/0xb0
[   68.759274][ T6093]  ____sys_sendmsg+0x9ae/0xb40
[   68.761053][ T6093]  ? __pfx_____sys_sendmsg+0x10/0x10
[   68.762916][ T6093]  ? get_compat_msghdr+0x11b/0x170
[   68.764755][ T6093]  ? __pfx___lock_acquire+0x10/0x10
[   68.766671][ T6093]  ___sys_sendmsg+0x135/0x1e0
[   68.768384][ T6093]  ? __pfx____sys_sendmsg+0x10/0x10
[   68.770283][ T6093]  ? lock_acquire+0x2f/0xb0
[   68.771930][ T6093]  ? __fget_files+0x40/0x3f0
[   68.773619][ T6093]  ? fdget+0x176/0x210
[   68.775065][ T6093]  __sys_sendmsg+0x117/0x1f0
[   68.776742][ T6093]  ? __pfx___sys_sendmsg+0x10/0x10
[   68.778606][ T6093]  ? __fget_files+0x244/0x3f0
[   68.780326][ T6093]  __do_fast_syscall_32+0x73/0x120
[   68.781694][ T6093]  do_fast_syscall_32+0x32/0x80
[   68.783289][ T6093]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.784922][ T6093] RIP: 0023:0xf7fc2579
[   68.786020][ T6093] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   68.791049][ T6093] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   68.793278][ T6093] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000
[   68.795360][ T6093] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[   68.797400][ T6093] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   68.799467][ T6093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   68.801510][ T6093] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.804166][ T6093]  </TASK>
[   68.809363][ T6093] openvswitch: netlink: Actions may not be safe on all matching packets
[   68.890807][ T6099] overlayfs: overlapping lowerdir path
[   69.073572][ T6105] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.200'.
[   69.969517][ T6132] netlink: 12 bytes leftover after parsing attributes in process `syz.3.209'.
[   69.982292][ T6133] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[   69.984076][ T6133] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   69.987535][ T6133] vhci_hcd vhci_hcd.0: Device attached
[   69.989376][ T6135] vhci_hcd: connection closed
[   69.990709][   T12] vhci_hcd: stop threads
[   69.994411][   T12] vhci_hcd: release socket
[   69.997608][   T12] vhci_hcd: disconnect device
[   70.696420][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[   70.698264][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[   70.905782][ T6160] netlink: 24 bytes leftover after parsing attributes in process `syz.0.215'.
[   70.962857][ T6162] netlink: 40 bytes leftover after parsing attributes in process `syz.0.216'.
[   71.223022][ T6168] validate_nla: 1 callbacks suppressed
[   71.223034][ T6168] netlink: 'syz.3.218': attribute type 3 has an invalid length.
[   71.229525][ T6168] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.218'.
[   71.773057][ T6190] FAULT_INJECTION: forcing a failure.
[   71.773057][ T6190] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.776717][ T6190] CPU: 0 UID: 0 PID: 6190 Comm: syz.0.225 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   71.779479][ T6190] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   71.782287][ T6190] Call Trace:
[   71.783175][ T6190]  <TASK>
[   71.783974][ T6190]  dump_stack_lvl+0x16c/0x1f0
[   71.785245][ T6190]  should_fail_ex+0x497/0x5b0
[   71.786514][ T6190]  _copy_from_user+0x30/0xf0
[   71.787742][ T6190]  input_event_from_user+0x22d/0x3b0
[   71.789147][ T6190]  ? __pfx_input_event_from_user+0x10/0x10
[   71.790700][ T6190]  ? input_inject_event+0x193/0x370
[   71.792083][ T6190]  evdev_write+0x377/0x750
[   71.793274][ T6190]  ? __pfx_evdev_write+0x10/0x10
[   71.794610][ T6190]  ? bpf_lsm_file_permission+0x9/0x10
[   71.796025][ T6190]  ? security_file_permission+0x71/0x210
[   71.797518][ T6190]  ? __pfx_evdev_write+0x10/0x10
[   71.798861][ T6190]  vfs_write+0x28e/0x1140
[   71.800006][ T6190]  ? __fget_files+0x23a/0x3f0
[   71.801249][ T6190]  ? __pfx_lock_release+0x10/0x10
[   71.802590][ T6190]  ? trace_lock_acquire+0x14a/0x1d0
[   71.803953][ T6190]  ? __pfx_vfs_write+0x10/0x10
[   71.805226][ T6190]  ? lock_acquire+0x2f/0xb0
[   71.806487][ T6190]  ? __fget_files+0x40/0x3f0
[   71.807706][ T6190]  ? __fget_files+0x244/0x3f0
[   71.808954][ T6190]  ksys_write+0x1fa/0x260
[   71.810504][ T6190]  ? __pfx_ksys_write+0x10/0x10
[   71.811795][ T6190]  __do_fast_syscall_32+0x73/0x120
[   71.813141][ T6190]  do_fast_syscall_32+0x32/0x80
[   71.814475][ T6190]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   71.816153][ T6190] RIP: 0023:0xf7f28579
[   71.817229][ T6190] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   71.822342][ T6190] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   71.824549][ T6190] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[   71.826661][ T6190] RDX: 00000000000012d8 RSI: 0000000000000000 RDI: 0000000000000000
[   71.828742][ T6190] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   71.830804][ T6190] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   71.832860][ T6190] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   71.834927][ T6190]  </TASK>
[   71.835834][    C0] vkms_vblank_simulate: vblank timer overrun
[   71.864107][ T6193] overlayfs: failed to resolve './file1': -2
[   71.867675][ T6193] random: crng reseeded on system resumption
[   71.929699][ T6198] 9pnet_fd: Insufficient options for proto=fd
[   72.039937][ T6207] input: syz0 as /devices/virtual/input/input5
[   72.149298][ T6210] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   72.916744][ T6241] netlink: 56 bytes leftover after parsing attributes in process `syz.0.241'.
[   72.947279][ T6241] syz.0.241 uses obsolete (PF_INET,SOCK_PACKET)
[   73.519043][   T39] audit: type=1326 audit(1728087083.260:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6255 comm="syz.3.245" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x0
[   73.694017][ T6271] netlink: 4 bytes leftover after parsing attributes in process `syz.2.251'.
[   73.737095][ T6246] Bluetooth: hci0: Opcode 0x0401 failed: -4
[   73.912777][ T6292] netlink: 'syz.0.259': attribute type 1 has an invalid length.
[   73.928712][ T6292] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.932462][ T6292] bond1: (slave batadv0): Enslaving as a backup interface with an up link
[   73.945727][ T6292] bond1 (unregistering): (slave batadv0): Releasing backup interface
[   73.952825][ T6292] bond1 (unregistering): Released all slaves
[   74.176287][ T6301] FAULT_INJECTION: forcing a failure.
[   74.176287][ T6301] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   74.179726][ T6301] CPU: 0 UID: 0 PID: 6301 Comm: syz.1.262 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   74.182356][ T6301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.185059][ T6301] Call Trace:
[   74.185919][ T6301]  <TASK>
[   74.186679][ T6301]  dump_stack_lvl+0x16c/0x1f0
[   74.187877][ T6301]  should_fail_ex+0x497/0x5b0
[   74.189076][ T6301]  ? fs_reclaim_acquire+0xae/0x160
[   74.190396][ T6301]  should_fail_alloc_page+0xe7/0x130
[   74.191755][ T6301]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   74.193324][ T6301]  ? __pfx_mark_lock+0x10/0x10
[   74.194557][ T6301]  ? hlock_class+0x4e/0x130
[   74.195951][ T6301]  __alloc_pages_noprof+0x190/0x25c0
[   74.197528][ T6301]  ? __pfx_mark_lock+0x10/0x10
[   74.198751][ T6301]  ? hlock_class+0x4e/0x130
[   74.199930][ T6301]  ? __lock_acquire+0xbdd/0x3ce0
[   74.201199][ T6301]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   74.202607][ T6301]  ? hlock_class+0x4e/0x130
[   74.203717][ T6301]  ? mark_lock+0xb5/0xc60
[   74.204787][ T6301]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   74.206313][ T6301]  ? policy_nodemask+0xea/0x4e0
[   74.207561][ T6301]  alloc_pages_mpol_noprof+0x2c9/0x610
[   74.209056][ T6301]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   74.211107][ T6301]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   74.212900][ T6301]  folio_alloc_mpol_noprof+0x36/0xd0
[   74.214265][ T6301]  vma_alloc_folio_noprof+0xee/0x1b0
[   74.215641][ T6301]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   74.217161][ T6301]  ? find_held_lock+0x2d/0x110
[   74.218385][ T6301]  do_pte_missing+0x2010/0x3e50
[   74.219704][ T6301]  __handle_mm_fault+0x100a/0x2a10
[   74.221003][ T6301]  ? __pfx_mt_find+0x10/0x10
[   74.222208][ T6301]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   74.223945][ T6301]  ? __pfx___handle_mm_fault+0x10/0x10
[   74.225612][ T6301]  ? find_vma+0xc0/0x140
[   74.226703][ T6301]  ? __pfx_find_vma+0x10/0x10
[   74.227903][ T6301]  handle_mm_fault+0x3fa/0xaa0
[   74.229142][ T6301]  do_user_addr_fault+0x7a3/0x13f0
[   74.230485][ T6301]  exc_page_fault+0x5c/0xc0
[   74.231633][ T6301]  asm_exc_page_fault+0x26/0x30
[   74.232910][ T6301] RIP: 0010:_copy_to_user+0xa7/0xc0
[   74.234251][ T6301] Code: 89 ee 48 89 ef e8 f9 1f 04 fd 4d 85 f6 75 b5 e8 3f 1e 04 fd 89 de 4c 89 e7 e8 65 6e 65 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 8d 66 66 2e 0f 1f 84 00 00 00
[   74.239063][ T6301] RSP: 0018:ffffc90006747d00 EFLAGS: 00050246
[   74.240612][ T6301] RAX: 0000000000000001 RBX: 00000000007ae000 RCX: 0000000000794000
[   74.242603][ T6301] RDX: 0000000000000000 RSI: ffffc9002d041000 RDI: 0000000020029000
[   74.244588][ T6301] RBP: 000000002000f000 R08: 0000000000000000 R09: fffff52005afa9ff
[   74.246583][ T6301] R10: ffffc9002d7d4fff R11: 0000000000000000 R12: ffffc9002d027000
[   74.248594][ T6301] R13: 00000000207bd000 R14: 0000000000000000 R15: 00000000007ae000
[   74.250603][ T6301]  kvm_get_dirty_log_protect+0x35e/0x790
[   74.252067][ T6301]  kvm_vm_compat_ioctl+0x376/0x440
[   74.253556][ T6301]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[   74.255440][ T6301]  ? trace_lock_acquire+0x14a/0x1d0
[   74.257219][ T6301]  ? __fget_files+0x244/0x3f0
[   74.258843][ T6301]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[   74.260723][ T6301]  __do_compat_sys_ioctl+0x259/0x2b0
[   74.262524][ T6301]  __do_fast_syscall_32+0x73/0x120
[   74.264269][ T6301]  do_fast_syscall_32+0x32/0x80
[   74.265990][ T6301]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   74.268176][ T6301] RIP: 0023:0xf7f67579
[   74.269606][ T6301] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   74.276181][ T6301] RSP: 002b:00000000f56e656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   74.279061][ T6301] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004010ae42
[   74.281672][ T6301] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000
[   74.284333][ T6301] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   74.286883][ T6301] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   74.289534][ T6301] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   74.292253][ T6301]  </TASK>
[   74.293457][    C0] vkms_vblank_simulate: vblank timer overrun
[   74.575548][ T6310] IPVS: set_ctl: invalid protocol: 135 172.20.20.36:20001
[   74.601807][ T6315] netlink: 8 bytes leftover after parsing attributes in process `syz.1.264'.
[   74.647819][ T5342] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[   74.652072][ T5342] CPU: 0 UID: 0 PID: 5342 Comm: kworker/u33:2 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   74.655251][ T5342] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.658267][ T5342] Workqueue: hci3 hci_rx_work
[   74.659703][ T5342] Call Trace:
[   74.660873][ T5342]  <TASK>
[   74.661984][ T5342]  dump_stack_lvl+0x16c/0x1f0
[   74.663693][ T5342]  sysfs_warn_dup+0x7f/0xa0
[   74.665070][ T5342]  sysfs_create_dir_ns+0x24d/0x2b0
[   74.666463][ T5342]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   74.668023][ T5342]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   74.669644][ T5342]  ? kobject_add_internal+0x12d/0x990
[   74.671101][ T5342]  ? do_raw_spin_unlock+0x172/0x230
[   74.672542][ T5342]  kobject_add_internal+0x2c8/0x990
[   74.674106][ T5342]  kobject_add+0x16f/0x240
[   74.675369][ T5342]  ? __pfx_kobject_add+0x10/0x10
[   74.676945][ T5342]  ? class_to_subsys+0x3e/0x160
[   74.678317][ T5342]  ? do_raw_spin_unlock+0x172/0x230
[   74.679922][ T5342]  ? kobject_put+0xab/0x5a0
[   74.681157][ T5342]  device_add+0x289/0x1a70
[   74.682413][ T5342]  ? __pfx_dev_set_name+0x10/0x10
[   74.683785][ T5342]  ? __pfx_device_add+0x10/0x10
[   74.685105][ T5342]  ? mgmt_send_event_skb+0x2f2/0x460
[   74.686515][ T5342]  hci_conn_add_sysfs+0x17e/0x230
[   74.687839][ T5342]  le_conn_complete_evt+0xfc7/0x1cf0
[   74.689266][ T5342]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   74.691274][ T5342]  ? trace_contention_end+0xea/0x140
[   74.693277][ T5342]  ? __mutex_lock+0x1a6/0x9c0
[   74.694787][ T5342]  hci_le_enh_conn_complete_evt+0x23d/0x380
[   74.696385][ T5342]  ? skb_pull_data+0x166/0x210
[   74.697676][ T5342]  hci_le_meta_evt+0x2e2/0x5d0
[   74.698946][ T5342]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[   74.700745][ T5342]  hci_event_packet+0x666/0x1190
[   74.702061][ T5342]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   74.703454][ T5342]  ? __pfx_hci_event_packet+0x10/0x10
[   74.704866][ T5342]  ? mark_held_locks+0x9f/0xe0
[   74.706401][ T5342]  ? kcov_remote_start+0x3cf/0x6e0
[   74.707839][ T5342]  ? lockdep_hardirqs_on+0x7c/0x110
[   74.709241][ T5342]  hci_rx_work+0x2c6/0x16c0
[   74.710907][ T5342]  ? lock_acquire+0x2f/0xb0
[   74.712511][ T5342]  ? process_one_work+0x8bb/0x1b30
[   74.714186][ T5342]  process_one_work+0x958/0x1b30
[   74.715945][ T5342]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   74.717602][ T5342]  ? __pfx_process_one_work+0x10/0x10
[   74.719550][ T5342]  ? assign_work+0x1a0/0x250
[   74.721275][ T5342]  worker_thread+0x6c8/0xf00
[   74.723008][ T5342]  ? __pfx_worker_thread+0x10/0x10
[   74.724869][ T5342]  kthread+0x2c1/0x3a0
[   74.726089][ T5342]  ? _raw_spin_unlock_irq+0x23/0x50
[   74.727459][ T5342]  ? __pfx_kthread+0x10/0x10
[   74.728685][ T5342]  ret_from_fork+0x45/0x80
[   74.730100][ T5342]  ? __pfx_kthread+0x10/0x10
[   74.731339][ T5342]  ret_from_fork_asm+0x1a/0x30
[   74.732616][ T5342]  </TASK>
[   74.733525][    C0] vkms_vblank_simulate: vblank timer overrun
[   74.735699][ T5342] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   74.740009][ T5342] Bluetooth: hci3: failed to register connection device
[   75.011889][ T6332] veth1_macvtap: entered allmulticast mode
[   75.086986][ T5342] Bluetooth: hci0: command 0x0401 tx timeout
[   75.187824][ T6349] IPVS: Error connecting to the multicast addr
[   75.811840][ T2788] cfg80211: failed to load regulatory.db
[   76.068710][ T6354] FAULT_INJECTION: forcing a failure.
[   76.068710][ T6354] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.072151][ T6354] CPU: 1 UID: 0 PID: 6354 Comm: syz.3.279 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   76.074891][ T6354] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.077697][ T6354] Call Trace:
[   76.078590][ T6354]  <TASK>
[   76.079377][ T6354]  dump_stack_lvl+0x16c/0x1f0
[   76.080649][ T6354]  should_fail_ex+0x497/0x5b0
[   76.081956][ T6354]  _copy_from_iter+0x29b/0x13e0
[   76.083248][ T6354]  ? preempt_schedule_common+0x44/0xc0
[   76.084694][ T6354]  ? __pfx__copy_from_iter+0x10/0x10
[   76.086121][ T6354]  ? __virt_addr_valid+0x2d3/0x590
[   76.087474][ T6354]  ? __virt_addr_valid+0x2e0/0x590
[   76.088814][ T6354]  ? __virt_addr_valid+0x5e/0x590
[   76.090113][ T6354]  ? __phys_addr_symbol+0x30/0x80
[   76.091447][ T6354]  ? __check_object_size+0x488/0x710
[   76.092847][ T6354]  netlink_sendmsg+0x813/0xd70
[   76.094123][ T6354]  ? __pfx_netlink_sendmsg+0x10/0x10
[   76.095522][ T6354]  ____sys_sendmsg+0x9ae/0xb40
[   76.096786][ T6354]  ? __pfx_____sys_sendmsg+0x10/0x10
[   76.098179][ T6354]  ? get_compat_msghdr+0x11b/0x170
[   76.099528][ T6354]  ? __pfx___lock_acquire+0x10/0x10
[   76.100909][ T6354]  ___sys_sendmsg+0x135/0x1e0
[   76.102209][ T6354]  ? __pfx____sys_sendmsg+0x10/0x10
[   76.103589][ T6354]  ? lock_acquire+0x2f/0xb0
[   76.104793][ T6354]  ? __fget_files+0x40/0x3f0
[   76.106041][ T6354]  ? fdget+0x176/0x210
[   76.107111][ T6354]  __sys_sendmsg+0x117/0x1f0
[   76.108324][ T6354]  ? __pfx___sys_sendmsg+0x10/0x10
[   76.109680][ T6354]  ? __fget_files+0x244/0x3f0
[   76.110922][ T6354]  __do_fast_syscall_32+0x73/0x120
[   76.112262][ T6354]  do_fast_syscall_32+0x32/0x80
[   76.113547][ T6354]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   76.115228][ T6354] RIP: 0023:0xf7fc2579
[   76.116297][ T6354] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   76.121273][ T6354] RSP: 002b:00000000f572556c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   76.123433][ T6354] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020000040
[   76.125503][ T6354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   76.127536][ T6354] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   76.129574][ T6354] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   76.131614][ T6354] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   76.133689][ T6354]  </TASK>
[   76.778215][ T5342] Bluetooth: hci3: command tx timeout
[   76.816168][ T1283] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   77.004408][ T1283] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[   77.007075][ T1283] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.009431][ T1283] usb 5-1: Product: syz
[   77.010645][ T1283] usb 5-1: Manufacturer: syz
[   77.012057][ T1283] usb 5-1: SerialNumber: syz
[   77.018966][ T1283] usb 5-1: config 0 descriptor??
[   77.284609][    T9] usb 5-1: USB disconnect, device number 5
[   77.414802][ T1186] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.474974][   T64] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   77.481506][   T64] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   77.484936][   T64] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   77.487840][   T64] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   77.490498][   T64] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   77.496486][   T64] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   77.498390][ T1186] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.548512][ T1186] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.599274][ T6379] chnl_net:caif_netlink_parms(): no params data found
[   77.656101][ T1186] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.714242][ T6379] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.716355][ T6379] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.718267][ T6379] bridge_slave_0: entered allmulticast mode
[   77.720772][ T6379] bridge_slave_0: entered promiscuous mode
[   77.727552][   T64] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   77.729874][   T64] Bluetooth: hci1: Injecting HCI hardware error event
[   77.733128][   T64] Bluetooth: hci1: hardware error 0x00
[   77.736622][ T6379] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.738541][ T6379] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.740546][ T6379] bridge_slave_1: entered allmulticast mode
[   77.744839][ T6379] bridge_slave_1: entered promiscuous mode
[   77.782022][ T6379] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.786818][ T6379] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.854717][ T6379] team0: Port device team_slave_0 added
[   77.876336][ T6379] team0: Port device team_slave_1 added
[   77.895427][ T1186] bridge_slave_1: left allmulticast mode
[   77.899110][ T1186] bridge_slave_1: left promiscuous mode
[   77.903530][ T1186] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.912852][ T1186] bridge_slave_0: left allmulticast mode
[   77.914844][ T1186] bridge_slave_0: left promiscuous mode
[   77.917488][ T1186] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.117084][ T6397] libceph: resolve '.
[   78.117084][ T6397] #)|.��f��ǝ�a���2s�o�w���?�'�%ЏKAq�f��C���z�e�Sb3L)Hy�o����������Ǥ�Y�M�����h�E$
[   78.117084][ T6397] ' (ret=-3): failed
[   78.157712][ T6397] No control pipe specified
[   78.457240][ T1186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.465442][ T1186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.474018][ T1186] bond0 (unregistering): Released all slaves
[   78.563776][ T6402] netlink: 8 bytes leftover after parsing attributes in process `syz.2.290'.
[   78.572239][ T6379] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.574540][ T6379] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.589881][ T6379] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.673998][ T6379] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.675979][ T6379] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.682286][ T6379] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.760152][ T6379] hsr_slave_0: entered promiscuous mode
[   78.781880][ T6379] hsr_slave_1: entered promiscuous mode
[   78.786641][ T6379] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   78.788623][ T6379] Cannot create hsr debugfs directory
[   78.801882][ T6410] FAULT_INJECTION: forcing a failure.
[   78.801882][ T6410] name failslab, interval 1, probability 0, space 0, times 0
[   78.805788][ T6410] CPU: 2 UID: 0 PID: 6410 Comm: syz.2.291 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   78.809373][ T6410] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.812742][ T6410] Call Trace:
[   78.813775][ T6410]  <TASK>
[   78.814763][ T6410]  dump_stack_lvl+0x16c/0x1f0
[   78.816096][ T6410]  should_fail_ex+0x497/0x5b0
[   78.817708][ T6410]  ? fs_reclaim_acquire+0xae/0x160
[   78.819336][ T6410]  should_failslab+0xc2/0x120
[   78.820498][ T6410]  kmem_cache_alloc_node_noprof+0x71/0x310
[   78.822312][ T6410]  ? copy_process+0x4a3/0x6f00
[   78.823744][ T6410]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.825391][ T6410]  copy_process+0x4a3/0x6f00
[   78.826825][ T6410]  ? get_pid_task+0xfc/0x250
[   78.828139][ T6410]  ? trace_lock_acquire+0x14a/0x1d0
[   78.829438][ T6410]  ? __pfx_copy_process+0x10/0x10
[   78.830650][ T6410]  ? find_held_lock+0x2d/0x110
[   78.831819][ T6410]  kernel_clone+0xfd/0x960
[   78.832921][ T6410]  ? __pfx_kernel_clone+0x10/0x10
[   78.834174][ T6410]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   78.835702][ T6410]  __do_compat_sys_ia32_clone+0xb7/0x100
[   78.837067][ T6410]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[   78.838785][ T6410]  __do_fast_syscall_32+0x73/0x120
[   78.840432][ T6410]  do_fast_syscall_32+0x32/0x80
[   78.841928][ T6410]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   78.843725][ T6410] RIP: 0023:0xf7f66579
[   78.844994][ T6410] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   78.849954][ T6410] RSP: 002b:00000000f56c551c EFLAGS: 00000246 ORIG_RAX: 0000000000000078
[   78.851953][ T6410] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[   78.853878][ T6410] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   78.855864][ T6410] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   78.857785][ T6410] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   78.859680][ T6410] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   78.861610][ T6410]  </TASK>
[   79.091997][ T1186] hsr_slave_0: left promiscuous mode
[   79.095121][ T1186] hsr_slave_1: left promiscuous mode
[   79.102889][ T1186] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.104862][ T1186] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.111224][ T1186] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   79.113482][ T1186] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.143053][ T1186] veth1_macvtap: left promiscuous mode
[   79.145397][ T1186] veth0_macvtap: left promiscuous mode
[   79.148911][ T1186] veth1_vlan: left promiscuous mode
[   79.150884][ T1186] veth0_vlan: left promiscuous mode
[   79.566294][ T5342] Bluetooth: hci2: command tx timeout
[   79.806031][   T64] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   79.853174][ T6425] autofs: Unknown parameter './file1'
[   80.087927][ T1186] team0 (unregistering): Port device team_slave_1 removed
[   80.161274][ T1186] team0 (unregistering): Port device team_slave_0 removed
[   80.676908][ T6443] netlink: 4 bytes leftover after parsing attributes in process `syz.0.300'.
[   80.689805][ T6444] netlink: 12 bytes leftover after parsing attributes in process `syz.0.300'.
[   80.814769][ T6456] tipc: Started in network mode
[   80.816775][ T6456] tipc: Node identity , cluster identity 4711
[   80.819166][ T6456] tipc: Failed to set node id, please configure manually
[   80.822574][ T6456] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   81.049832][ T6483] netlink: 4 bytes leftover after parsing attributes in process `syz.3.309'.
[   81.055846][ T6483] netlink: 12 bytes leftover after parsing attributes in process `syz.3.309'.
[   81.274387][ T6379] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   81.279109][ T6379] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   81.285112][ T6379] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   81.288888][ T6379] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   81.296504][ T6499] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[   81.325584][ T6379] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.334586][ T6379] 8021q: adding VLAN 0 to HW filter on device team0
[   81.342451][   T77] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.344374][   T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.361763][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.363762][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.407480][ T6379] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   81.557704][ T6379] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.657839][ T5342] Bluetooth: hci2: command tx timeout
[   81.707143][ T6379] veth0_vlan: entered promiscuous mode
[   81.712516][ T6379] veth1_vlan: entered promiscuous mode
[   81.727522][ T6379] veth0_macvtap: entered promiscuous mode
[   81.730760][ T6379] veth1_macvtap: entered promiscuous mode
[   81.739366][ T6379] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.742268][ T6379] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.744942][ T6379] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.748513][ T6379] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.751937][ T6379] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.756706][ T6379] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.759640][ T6379] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.762392][ T6379] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.765282][ T6379] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.768925][ T6379] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.773108][ T6379] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.777740][ T6379] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.780759][ T6379] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.783516][ T6379] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.815968][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.818000][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.835578][ T1194] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.837821][ T1194] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.061822][ T6508] 
[   82.062506][ T6508] ======================================================
[   82.064328][ T6508] WARNING: possible circular locking dependency detected
[   82.066182][ T6508] 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0 Not tainted
[   82.068499][ T6508] ------------------------------------------------------
[   82.071282][ T6508] syz.3.314/6508 is trying to acquire lock:
[   82.072820][ T6508] ffff888022d21258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sk_state_change+0x6d/0x3b0
[   82.075826][ T6508] 
[   82.075826][ T6508] but task is already holding lock:
[   82.077790][ T6508] ffff88805faef128 (&d->lock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x235/0x700
[   82.080121][ T6508] 
[   82.080121][ T6508] which lock already depends on the new lock.
[   82.080121][ T6508] 
[   82.082836][ T6508] 
[   82.082836][ T6508] the existing dependency chain (in reverse order) is:
[   82.085373][ T6508] 
[   82.085373][ T6508] -> #3 (&d->lock){+.+.}-{3:3}:
[   82.087465][ T6508]        __mutex_lock+0x175/0x9c0
[   82.088791][ T6508]        __rfcomm_dlc_close+0x235/0x700
[   82.090247][ T6508]        rfcomm_dlc_close+0x1eb/0x240
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   82.091743][ T6508]        __rfcomm_sock_close+0xa7/0x230
[   82.093783][ T6508]        rfcomm_sock_shutdown+0xd5/0x230
[   82.095330][ T6508]        rfcomm_sock_release+0x5d/0x140
[   82.096883][ T6508]        __sock_release+0xb0/0x270
[   82.098516][ T6508]        sock_close+0x1c/0x30
[   82.099777][ T6508]        __fput+0x3f6/0xb60
[   82.101001][ T6508]        task_work_run+0x14e/0x250
[   82.102775][ T6508]        get_signal+0x1d3/0x26d0
[   82.104552][ T6508]        arch_do_signal_or_restart+0x90/0x7e0
[   82.106860][ T6508]        syscall_exit_to_user_mode+0x150/0x2a0
[   82.109212][ T6508]        __do_fast_syscall_32+0x80/0x120
[   82.111312][ T6508]        do_fast_syscall_32+0x32/0x80
[   82.113350][ T6508]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.115777][ T6508] 
[   82.115777][ T6508] -> #2 (rfcomm_mutex){+.+.}-{3:3}:
[   82.118446][ T6508]        __mutex_lock+0x175/0x9c0
[   82.120401][ T6508]        rfcomm_dlc_exists+0x5f/0x1a0
[   82.122548][ T6508]        rfcomm_dev_ioctl+0xabc/0x1e70
[   82.124639][ T6508]        rfcomm_sock_compat_ioctl+0xba/0xe0
[   82.126817][ T6508]        compat_sock_ioctl+0x17b/0x7e0
[   82.128777][ T6508]        __do_compat_sys_ioctl+0x259/0x2b0
[   82.130830][ T6508]        __do_fast_syscall_32+0x73/0x120
[   82.132852][ T6508]        do_fast_syscall_32+0x32/0x80
[   82.134819][ T6508]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.137174][ T6508] 
[   82.137174][ T6508] -> #1 (rfcomm_ioctl_mutex){+.+.}-{3:3}:
[   82.139785][ T6508]        __mutex_lock+0x175/0x9c0
[   82.141371][ T6508]        rfcomm_dev_ioctl+0x9db/0x1e70
[   82.142872][ T6508]        rfcomm_sock_compat_ioctl+0xba/0xe0
[   82.144472][ T6508]        compat_sock_ioctl+0x17b/0x7e0
[   82.146075][ T6508]        __do_compat_sys_ioctl+0x259/0x2b0
[   82.148078][ T6508]        __do_fast_syscall_32+0x73/0x120
[   82.149573][ T6508]        do_fast_syscall_32+0x32/0x80
[   82.150997][ T6508]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.152787][ T6508] 
[   82.152787][ T6508] -> #0 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}:
[   82.155534][ T6508]        __lock_acquire+0x250b/0x3ce0
[   82.157284][ T6508]        lock_acquire.part.0+0x11b/0x380
[   82.159247][ T6508]        lock_sock_nested+0x3a/0xf0
[   82.161052][ T6508]        rfcomm_sk_state_change+0x6d/0x3b0
[   82.162951][ T6508]        __rfcomm_dlc_close+0x28c/0x700
[   82.164414][ T6508]        rfcomm_dlc_close+0x1eb/0x240
[   82.165901][ T6508]        __rfcomm_sock_close+0xa7/0x230
[   82.167472][ T6508]        rfcomm_sock_shutdown+0xd5/0x230
[   82.169001][ T6508]        rfcomm_sock_release+0x5d/0x140
[   82.170471][ T6508]        __sock_release+0xb0/0x270
[   82.171781][ T6508]        sock_close+0x1c/0x30
[   82.173364][ T6508]        __fput+0x3f6/0xb60
[   82.175000][ T6508]        task_work_run+0x14e/0x250
[   82.176650][ T6508]        get_signal+0x1d3/0x26d0
[   82.178047][ T6508]        arch_do_signal_or_restart+0x90/0x7e0
[   82.179699][ T6508]        syscall_exit_to_user_mode+0x150/0x2a0
[   82.181480][ T6508]        __do_fast_syscall_32+0x80/0x120
[   82.183462][ T6508]        do_fast_syscall_32+0x32/0x80
[   82.185106][ T6508]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.186972][ T6508] 
[   82.186972][ T6508] other info that might help us debug this:
[   82.186972][ T6508] 
[   82.190092][ T6508] Chain exists of:
[   82.190092][ T6508]   sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM --> rfcomm_mutex --> &d->lock
[   82.190092][ T6508] 
[   82.194010][ T6508]  Possible unsafe locking scenario:
[   82.194010][ T6508] 
[   82.195959][ T6508]        CPU0                    CPU1
[   82.197480][ T6508]        ----                    ----
[   82.199321][ T6508]   lock(&d->lock);
[   82.200698][ T6508]                                lock(rfcomm_mutex);
[   82.202711][ T6508]                                lock(&d->lock);
[   82.204415][ T6508]   lock(sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM);
[   82.206238][ T6508] 
[   82.206238][ T6508]  *** DEADLOCK ***
[   82.206238][ T6508] 
[   82.208993][ T6508] 3 locks held by syz.3.314/6508:
[   82.210727][ T6508]  #0: ffff888011e46808 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: __sock_release+0x86/0x270
[   82.213617][ T6508]  #1: ffffffff8fd51aa8 (rfcomm_mutex){+.+.}-{3:3}, at: rfcomm_dlc_close+0x33/0x240
[   82.216065][ T6508]  #2: ffff88805faef128 (&d->lock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x235/0x700
[   82.219129][ T6508] 
[   82.219129][ T6508] stack backtrace:
[   82.220936][ T6508] CPU: 0 UID: 0 PID: 6508 Comm: syz.3.314 Not tainted 6.12.0-rc1-syzkaller-00125-g0c559323bbaa #0
[   82.223804][ T6508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.226971][ T6508] Call Trace:
[   82.228166][ T6508]  <TASK>
[   82.229206][ T6508]  dump_stack_lvl+0x116/0x1f0
[   82.230758][ T6508]  print_circular_bug+0x419/0x5d0
[   82.232110][ T6508]  check_noncircular+0x31a/0x400
[   82.233455][ T6508]  ? __pfx_check_noncircular+0x10/0x10
[   82.234953][ T6508]  ? lockdep_lock+0xc6/0x200
[   82.236532][ T6508]  ? __pfx_lockdep_lock+0x10/0x10
[   82.238355][ T6508]  __lock_acquire+0x250b/0x3ce0
[   82.240021][ T6508]  ? __pfx___lock_acquire+0x10/0x10
[   82.241459][ T6508]  ? __mutex_trylock_common+0xea/0x250
[   82.243009][ T6508]  ? __pfx___mutex_trylock_common+0x10/0x10
[   82.244839][ T6508]  ? __rfcomm_dlc_close+0x235/0x700
[   82.246691][ T6508]  lock_acquire.part.0+0x11b/0x380
[   82.248335][ T6508]  ? rfcomm_sk_state_change+0x6d/0x3b0
[   82.249826][ T6508]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   82.251427][ T6508]  ? rcu_is_watching+0x12/0xc0
[   82.253015][ T6508]  ? trace_lock_acquire+0x14a/0x1d0
[   82.254745][ T6508]  ? rfcomm_sk_state_change+0x6d/0x3b0
[   82.256230][ T6508]  ? lock_acquire+0x2f/0xb0
[   82.257778][ T6508]  ? rfcomm_sk_state_change+0x6d/0x3b0
[   82.259796][ T6508]  lock_sock_nested+0x3a/0xf0
[   82.261613][ T6508]  ? rfcomm_sk_state_change+0x6d/0x3b0
[   82.263676][ T6508]  rfcomm_sk_state_change+0x6d/0x3b0
[   82.265602][ T6508]  __rfcomm_dlc_close+0x28c/0x700
[   82.267485][ T6508]  rfcomm_dlc_close+0x1eb/0x240
[   82.268876][ T6508]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   82.270549][ T6508]  __rfcomm_sock_close+0xa7/0x230
[   82.272427][ T6508]  rfcomm_sock_shutdown+0xd5/0x230
[   82.274296][ T6508]  rfcomm_sock_release+0x5d/0x140
[   82.276041][ T6508]  __sock_release+0xb0/0x270
[   82.277678][ T6508]  ? __pfx_sock_close+0x10/0x10
[   82.279323][ T6508]  sock_close+0x1c/0x30
[   82.280719][ T6508]  __fput+0x3f6/0xb60
[   82.282085][ T6508]  ? _raw_spin_unlock_irq+0x23/0x50
[   82.283452][ T6508]  task_work_run+0x14e/0x250
[   82.284770][ T6508]  ? __pfx_task_work_run+0x10/0x10
[   82.286338][ T6508]  get_signal+0x1d3/0x26d0
[   82.287886][ T6508]  ? kick_process+0xf6/0x1b0
[   82.289597][ T6508]  ? task_work_add+0x1d6/0x370
[   82.291259][ T6508]  ? __pfx_task_work_add+0x10/0x10
[   82.293016][ T6508]  ? __pfx_get_signal+0x10/0x10
[   82.294298][ T6508]  arch_do_signal_or_restart+0x90/0x7e0
[   82.295728][ T6508]  ? __pfx___sys_connect+0x10/0x10
[   82.297103][ T6508]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[   82.298710][ T6508]  ? rcu_is_watching+0x12/0xc0
[   82.299961][ T6508]  syscall_exit_to_user_mode+0x150/0x2a0
[   82.301438][ T6508]  __do_fast_syscall_32+0x80/0x120
[   82.302757][ T6508]  do_fast_syscall_32+0x32/0x80
[   82.304020][ T6508]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.305684][ T6508] RIP: 0023:0xf7fc2579
[   82.307010][ T6508] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.311933][ T6508] RSP: 002b:00000000f572556c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[   82.314084][ T6508] RAX: fffffffffffffffc RBX: 0000000000000006 RCX: 00000000200004c0
[   82.316169][ T6508] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000000
[   82.318179][ T6508] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.320189][ T6508] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   82.322232][ T6508] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.324269][ T6508]  </TASK>
[   82.760240][   T45] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.808977][   T45] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.859604][   T45] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.945349][   T45] bond0: (slave netdevsim0): Releasing backup interface
[   82.949302][   T45] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.065106][   T45] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.138477][   T45] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.209115][   T45] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.268790][   T45] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.370394][   T45] bridge_slave_1: left allmulticast mode
[   83.372284][   T45] bridge_slave_1: left promiscuous mode
[   83.374254][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.378667][   T45] bridge_slave_0: left allmulticast mode
[   83.380630][   T45] bridge_slave_0: left promiscuous mode
[   83.382613][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.386941][   T45] bridge_slave_1: left allmulticast mode
[   83.390463][   T45] bridge_slave_1: left promiscuous mode
[   83.392430][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.395745][   T45] bridge_slave_0: left allmulticast mode
[   83.398815][   T45] bridge_slave_0: left promiscuous mode
[   83.400972][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.726018][ T5342] Bluetooth: hci2: command 0x040f tx timeout
[   83.749516][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   83.753915][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   83.758417][   T45] bond0 (unregistering): Released all slaves
[   83.765501][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   83.769949][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   83.773287][   T45] bond0 (unregistering): Released all slaves
[   84.122446][   T45] hsr_slave_0: left promiscuous mode
[   84.124602][   T45] hsr_slave_1: left promiscuous mode
[   84.127021][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   84.129644][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[   84.132323][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   84.134752][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[   84.139075][   T45] hsr_slave_0: left promiscuous mode
[   84.141140][   T45] hsr_slave_1: left promiscuous mode
[   84.143196][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   84.145575][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[   84.148224][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   84.150656][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[   84.154908][   T45] veth1_macvtap: left promiscuous mode
[   84.157360][   T45] veth0_macvtap: left promiscuous mode
[   84.159382][   T45] veth1_vlan: left promiscuous mode
[   84.161281][   T45] veth0_vlan: left promiscuous mode
[   84.163596][   T45] veth0_macvtap: left promiscuous mode
[   84.165477][   T45] veth1_vlan: left promiscuous mode
[   84.167295][   T45] veth0_vlan: left promiscuous mode
[   84.349824][   T45] team0 (unregistering): Port device team_slave_1 removed
[   84.382104][   T45] team0 (unregistering): Port device team_slave_0 removed
[   84.485047][   T45] pim6reg (unregistering): left allmulticast mode
[   84.624034][   T45] team0 (unregistering): Port device team_slave_1 removed
[   84.660443][   T45] team0 (unregistering): Port device team_slave_0 removed
[   85.479860][   T45] IPVS: stop unused estimator thread 0...
[   86.320726][   T45] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.388801][   T45] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.460744][   T45] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.520090][   T45] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.568352][   T45] bridge_slave_1: left allmulticast mode
[   86.570819][   T45] bridge_slave_1: left promiscuous mode
[   86.572826][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.576401][   T45] bridge_slave_0: left allmulticast mode
[   86.578436][   T45] bridge_slave_0: left promiscuous mode
[   86.580445][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.691953][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   86.694865][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   86.697804][   T45] bond0 (unregistering): Released all slaves
[   86.952524][   T45] hsr_slave_0: left promiscuous mode
[   86.954968][   T45] hsr_slave_1: left promiscuous mode
[   86.957599][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.959820][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.962723][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.965252][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[   86.969778][   T45] veth1_macvtap: left promiscuous mode
[   86.971562][   T45] veth0_macvtap: left promiscuous mode
[   86.973528][   T45] veth1_vlan: left promiscuous mode
[   86.975499][   T45] veth0_vlan: left promiscuous mode
[   87.158882][   T45] team0 (unregistering): Port device team_slave_1 removed
[   87.193482][   T45] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
00:11:31  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85035855 RDI=ffffffff9a63a260 RBP=ffffffff9a63a220 RSP=ffffc9000ef9f1a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e32312e36
R12=0000000000000000 R13=0000000000000020 R14=ffffffff850357f0 R15=0000000000000000
RIP=ffffffff8503587f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000ff958ec0 CR3=0000000063dae000 CR4=00352ef0
DR0=0000000000000000 DR1=000000000000000a DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000807 RBX=dffffc0000000000 RCX=ffffc90003cec000 RDX=0000000000040000
RSI=ffffffff81f7b066 RDI=0000000000000003 RBP=ffff88801b8b80b0 RSP=ffffc9000f48f7b8
R8 =0000000000000003 R9 =000000000000001f R10=0000000000000008 R11=00000000000a201e
R12=00000000000000cf R13=0000000000000008 R14=0000000000000100 R15=0000000000442dc0
RIP=ffffffff818caf06 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055f945c2e000 CR3=0000000025da2000 CR4=00352ef0
DR0=0000000000000000 DR1=000000000000000a DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a
ZMM22=b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117
ZMM23=0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068
ZMM24=798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a
ZMM25=7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d
ZMM26=5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2
ZMM27=15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6
ZMM28=000000500000004f 0000004e0000004d 0000004c0000004b 0000004a00000049 0000004800000047 0000004600000045 0000004400000043 0000004200000041
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=5006000050060000 5006000050060000 5006000050060000 5006000050060000 5006000050060000 5006000050060000 5006000050060000 5006000050060000
info registers vcpu 2

CPU#2
RAX=00000000000c517c RBX=0000000000000002 RCX=ffffffff8b12f6f9 RDX=ffffed10056c7026
RSI=ffffffff8bb11fa0 RDI=ffffffff8164098c RBP=ffffed10036ec000 RSP=ffffc90000487e08
R8 =0000000000000000 R9 =ffffed10056c7025 R10=ffff88802b63812b R11=0000000000000001
R12=0000000000000002 R13=ffff88801b760000 R14=ffffffff901ccb08 R15=0000000000000000
RIP=ffffffff8b130adf RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000025da2000 CR4=00352ef0
DR0=0000000000000000 DR1=000000000000000a DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f800000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81c241d6 RDX=ffff888025f08000
RSI=ffffffff8b05fe3a RDI=ffffc900032c76a0 RBP=ffffc900032c76a0 RSP=ffffc900032c7628
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=00000000000a2012
R12=1ffff92000658ed0 R13=ffffc900032c76a0 R14=ffff888023c3b800 R15=0000000000000000
RIP=ffffffff8b05d3d0 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f97d4494d00 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055f945c32000 CR3=00000000298b6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a 3ae7a90a3ae7a90a
ZMM22=b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117 b2908117b2908117
ZMM23=0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068 0a5e80680a5e8068
ZMM24=798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a 798cbe5a798cbe5a
ZMM25=7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d 7dcd475d7dcd475d
ZMM26=5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2 5f19daf25f19daf2
ZMM27=15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6 15b3cae615b3cae6
ZMM28=000000500000004f 0000004e0000004d 0000004c0000004b 0000004a00000049 0000004800000047 0000004600000045 0000004400000043 0000004200000041
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=5006000050060000 5006000050060000 5006000050060000 5006000050060000 5006000050060000 5006000050060000 5006000050060000 5006000050060000