last executing test programs:

4.350799642s ago: executing program 1 (id=404):
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private, @in6=@dev, 0x0, 0x0, 0x0, 0x3900, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@private=0xa010102, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioperm(0x45, 0x1c, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x48)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x1}}, './file0\x00'})
setsockopt$inet6_dccp_int(r0, 0x21, 0x6, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1\x00'})
sendmsg$nl_route(r1, 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r2)
syz_io_uring_setup(0x10d, 0x0, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r3, r4, 0x0)
socket(0x840000000002, 0x3, 0x100)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030040000b05d25a806c8c6394f90324fc60100002000a000200053582c137153e3704640180fc5409000c00", 0x33fe0}], 0x1}, 0x0)
socket$packet(0x11, 0x3, 0x300)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'})

4.307383882s ago: executing program 1 (id=406):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e8, 0x0, 0x111, 0x4b4, 0xd4, 0xd4feffff, 0x220, 0x202, 0x225, 0x220, 0x278, 0x3, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x15}, @empty, [0x0, 0x0, 0x0, 0xffffff00], [], 'veth1_vlan\x00', 'ip6_vti0\x00', {}, {}, 0x0, 0x0, 0x1}, 0x0, 0xa4, 0xd4}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x0, 0x5, 0x1}, {0x2, 0x3, 0x1}, 0xb, 0x8a}}}, {{@ipv6={@mcast2, @private1, [0x0, 0xffffff00], [0x0, 0x0, 0x0, 0xffffff00], 'veth1_to_hsr\x00', 'erspan0\x00', {}, {0xff}, 0xff, 0x0, 0x3}, 0x0, 0xe0, 0x14c, 0x0, {}, [@common=@unspec=@limit={{0x3c}}]}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x9, 0x400, 0x5, 0x0, 0x0, "763fd202d140618d35c66fa46cd244301ba9042fd5a92a1bac0c8d2c1f930e9a3a307dd819bd11ca9f039034b2fff02819482adf0ef843a82d00f31d00b366c9"}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x344)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4000ec0c393d2c", @ANYRES16=r2, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e00000000000000000014000380100003800c00018008000100b3f5ffff"], 0x40}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r3)
openat$audio1(0xffffff9c, &(0x7f0000000200), 0x500, 0x0)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a"], 0x54}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000540)={'wpan1\x00', <r7=>0x0})
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='%\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010028bd7000fcdbdf250b00000006000a00a2aa000008000300", @ANYRES32=r7, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x2400c020}, 0x4008000)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$IEEE802154_ADD_IFACE(r5, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, r8, 0x200, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x41000)
sendmsg$TIPC_NL_KEY_FLUSH(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x104, r4, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xcf53d0}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_SOCK={0x48, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xb}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x51}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}]}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xee6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x78b3}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}]}]}, 0x104}, 0x1, 0x0, 0x0, 0x4000}, 0x11)

4.253385405s ago: executing program 1 (id=408):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b708000000020000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0xc0)
getdents(r0, &(0x7f00000002c0)=""/31, 0x1f)
getdents(r0, &(0x7f00000000c0)=""/201, 0xc9)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r3 = timerfd_create(0x9, 0x0)
ioprio_set$uid(0x3, 0x0, 0x6000)
timerfd_settime(r3, 0x3, &(0x7f0000000200), 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xcc}, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000280))
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000000000800080000014000091ff0f00004500f5ff06ff00010100fc5e15f4c3d3fbd80dad0000abfa"], 0x125)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r5 = openat$binder_debug(0xffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x2, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000380)='sched_kthread_work_execute_start\x00', r7}, 0x18)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r6, 0x20000005)
r8 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)

4.163217907s ago: executing program 0 (id=409):
r0 = socket(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000010008500000022000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r3=>0x0)
io_submit(r3, 0x2, &(0x7f0000000900)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}, 0x0])
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$setperm(0x5, 0x0, 0x0)
lsetxattr$system_posix_acl(0x0, 0x0, 0x0, 0x5c, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000000940)={{0x8}, 'syz0\x00', 0x3e})
ioctl$UI_DEV_CREATE(r4, 0x5501)
write$input_event(r4, &(0x7f0000000180)={{}, 0x12, 0x203, 0xffffffff}, 0x8)
socket$pptp(0x18, 0x1, 0x2)
syz_clone(0xa0320080, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = socket(0x2b, 0x3, 0x1)
setsockopt$inet_int(r5, 0x0, 0xd, 0x0, 0xffffffffffffff83)
r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x38011, r6, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c00028008000100", @ANYRES32=r7, @ANYBLOB="0800ea5f5abbc61f"], 0x40}}, 0x0)

3.229857085s ago: executing program 1 (id=413):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x2812, &(0x7f0000000380)={0x0, 0x1ffffe, 0x2000, 0x3, 0x10b}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
mkdir(&(0x7f00000004c0)='./file0\x00', 0x143)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./bus\x00', &(0x7f00000000c0)='vxfs\x00', 0x18642, 0x0)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x4000000000000000, &(0x7f0000000000)={<r6=>0xffffffffffffffff}, 0x13f, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, &(0x7f0000000080)={0x7, 0x8, 0xfa00, {r6}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r5, &(0x7f0000000180)={0x1, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
r8 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r8, 0xc1205531, 0x0)
flock(r7, 0x5)
r9 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
poll(&(0x7f0000000280)=[{r9, 0xf762}], 0x1, 0xfffffffe)
ioctl$vim2m_VIDIOC_S_FMT(r9, 0xc0d05605, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r11, 0x8923, &(0x7f0000000000)={'virt_wifi0\x00', @broadcast})
openat$mixer(0xffffff9c, &(0x7f0000000200), 0x80, 0x0)
gettid()
timer_create(0x0, 0x0, 0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r13 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="ca96eaad8beecf4f0f09518f9164210000000000dbfd364cee0da770372c87c7a4b9adad85bac51cdc51cd19acf8a8dbfb6841315a6ed8b504e1b4f125294d5099a3ab39bbc01e3e7095e6999c2b7fa7ef0e52db74d59ce403adfa8bd0f11eb0b387bdf7d0ee750f17af00bcac0693", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x11, &(0x7f00000007c0)=ANY=[@ANYRES16, @ANYRES32=r13, @ANYRES64=r9, @ANYRES32=r13, @ANYRES16=r10], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff0d, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
flock(r12, 0x2)

3.000049127s ago: executing program 0 (id=415):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x1, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r2, &(0x7f0000000340)={0x2, 0x4e24, @loopback}, 0x10)
sendmsg$sock(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000500)="c4", 0x1}], 0x1}, 0x0)

2.887589255s ago: executing program 0 (id=418):
syz_open_dev$dri(0x0, 0x1, 0x30802)
syz_open_procfs(0x0, 0x0)
close(0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$bt_hci_HCI_DATA_DIR(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = socket(0x28, 0x5, 0x0)
r2 = socket(0x28, 0x5, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)}, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r2, 0x74)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
r3 = accept4$unix(r2, 0x0, 0x0, 0x0)
recvfrom$unix(r3, &(0x7f0000000140)=""/248, 0xffffffffffffff6e, 0xf2ff, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20000085)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0xc000)

2.790619793s ago: executing program 0 (id=420):
r0 = socket(0x2000000015, 0x80005, 0x0)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x40}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000040), 0x8)
syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000100)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128l-generic\x00'}, 0x58)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0xfffffffffffffcba, 0x800001f8, 0x106c1, 0x10)
ioctl$GIO_SCRNMAP(0xffffffffffffffff, 0x4b40, &(0x7f0000000400)=""/220)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(0xffffffffffffffff, 0xc1004110, &(0x7f0000000300)={0xff, [0x7, 0x5, 0xcd600000], [{0xb8f6, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x8001, 0x4a8817c2, 0x0, 0x0, 0x1, 0x1}, {0x3, 0xa, 0x1, 0x0, 0x0, 0x1}, {0x3ff, 0x3, 0x0, 0x0, 0x0, 0x1}, {0x3ff, 0xb49, 0x0, 0x0, 0x1}, {0x80000000, 0x89, 0x0, 0x1, 0x1}, {0x1, 0x1, 0x1, 0x1, 0x1}, {0x2, 0x9, 0x0, 0x0, 0x1, 0x1}, {0x0, 0xffff7fff, 0x1, 0x0, 0x0, 0x1}, {0x5, 0x401, 0x1, 0x1}, {0x200, 0x8, 0x0, 0x0, 0x0, 0x1}, {0x6, 0x2, 0x1, 0x1}]})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x10, 0x0, &(0x7f00000011c0)="a8478d3d42ab01d3d427e0866cf20770", 0x0, 0xfe, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x4c)
recvmmsg(0xffffffffffffffff, &(0x7f0000003480)=[{{0x0, 0x0, &(0x7f0000003080)=[{&(0x7f0000003140)=""/182, 0xb6}], 0x1}}], 0x1, 0x0, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
connect$tipc(r4, &(0x7f0000003100)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x7}}, 0x10)
sendmmsg$inet(r4, &(0x7f0000002f40)=[{{0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f00000002c0)="91199893b794f675ec88239fef317c764ee3a8ecbdc2a8c32d46f77944d1de9f924d05d3566b8eb8f5750393c669559d05543efa2927ef0d2b0fe3d4f8541f34e1c7c8ca2d1e811f67f3dc50fdd469af72a49e684e28a364f5da124dff2b55a5536aa670b82da70bf0f19cd420371848ddc41d65649fde307c1971599f2fec84845e32bb2b6ebda099de12e8b64842024389524a1c5a97608000d1030d99e2a6e23a0bc8", 0xa4}, {&(0x7f0000000380)="11a68683394e1541cc444dff7adf30f079408cb066a6f8f4d33c4f11850de78c586d1a2ccff92e8e83fb82e447d9b88de42182e9e8c97415f41ef8a504215a2b2fdb1404c9659fdb988d0f527c3675cf2bab11", 0x53}, {&(0x7f0000000400)="875ad17d55c11f1ea6ec6cd17661afc73209e32142961e4660591bf3ca40d05a507ac0b0e71f7ed4c63f52a003cc8102f20dc6e33b5dc6de64ac815cf87867507cc072f0cb762aa5deb8731a699d3c7c69f85266ba51eb244f20129de491adaeb0c2d2eb13c1f215ddff92b05148f0ad513018b14798e45e55ecb916d4dd89f2df7e33c470998f", 0x87}, {&(0x7f00000004c0)="1273dd9951adeaefffe3c4957c86dbff8693adf2202b620b3aec000cf330bb7249", 0x21}, {&(0x7f0000000500)="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", 0xbae}], 0x5}}], 0x300, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8)
bpf$MAP_CREATE(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="0b00000005000000010001000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000002000000000000000001260fc814c47a47bbc3d3077a04913e59c984022215b"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x7, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x200000, 0x10, &(0x7f0000000000), 0x143, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0\x00'})
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001300)=ANY=[@ANYRESOCT=r1, @ANYRES64=r3, @ANYRES64=r2], 0x24}}, 0x0)

2.620201686s ago: executing program 1 (id=422):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x14, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100d}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xcd764cc43805ecc8}}, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x6c00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

2.55110011s ago: executing program 1 (id=423):
syz_open_dev$dri(0x0, 0x1, 0x30802)
syz_open_procfs(0x0, 0x0)
close(0xffffffffffffffff)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r0, 0x560d, &(0x7f0000000480)={0x0, 0x0})
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$bt_hci_HCI_DATA_DIR(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = socket(0x28, 0x5, 0x0)
r3 = socket(0x28, 0x5, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)}, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r3, 0x74)
r4 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
writev(r5, &(0x7f0000000040)=[{&(0x7f0000000100)="0e9207", 0x3}], 0x1)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
r6 = accept4$unix(r3, 0x0, 0x0, 0x0)
recvfrom$unix(r6, &(0x7f0000000140)=""/248, 0xffffffffffffff6e, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20000085)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0xc000)

2.45080923s ago: executing program 2 (id=424):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0)
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0xfffffffffffffffe, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000180))
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='io.stat\x00', 0x26e1, 0x0)
close(r1)
socket$packet(0x11, 0x3, 0x300)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000280)={0x2, r1})
ioctl$SIOCSIFHWADDR(r1, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random="020000202000"})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket$inet(0x2, 0x3, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, r4, {<r5=>0xee00}}, './file1\x00'})
fsetxattr$security_capability(r3, &(0x7f00000000c0), &(0x7f00000001c0)=@v3={0x3000000, [{0xf6, 0xe}, {0x7fffffff, 0x5}], r5}, 0x18, 0x2)
close(0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r7, 0x89f1, &(0x7f00000002c0)={'gre0\x00', &(0x7f0000000140)=@ethtool_cmd={0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, [0x0, 0xfffffffc]}})
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0x541b, &(0x7f0000000040)={<r8=>0xffffffffffffffff})
close_range(r8, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c0000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="01980000000201040000128008000100736974002000028014000b00fc00000000000006000000000000000108000300ffffffff819a25108605c6d3424170c2000010a1c5127a5c4b7e8026382be8162142f3c7c82050fa"], 0x4c}}, 0x0)

1.864947446s ago: executing program 2 (id=425):
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRESHEX=0x0])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000000c0), 0x8, 0x541101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0x1)
r2 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f00000001c0)={"f2efe21e", 0x0, 0x6, 0x4d, 0x4, 0x1ff, "2179d46fd08e3c0ced34c7d0c7e6d7", "7ca24a13", "a31c00", '\f\x00', ["1af0b1ba1cb8fd54c9c9b587", "fdc5d486544d03c4370dbd00", "33af343c60abc64f2fdc9ddf", "9b3842fc63849f62b6eb1c3c"]})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000700000000000000540000000800030000000000"], 0x1c}}, 0x0)
close(r3)
ioctl$CEC_TRANSMIT(r2, 0xc0386105, &(0x7f0000000440)={0xfff, 0x0, 0x4, 0x0, 0x2, 0x4063, "57c1169b6664ea61326ac71ae7213059", 0xb5, 0x0, 0xfd})
r5 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r5, 0x2def, 0x4000, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[])
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r8, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r8, &(0x7f0000000700)='\t', 0x1, 0x24048044, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0xff0f000000000000)
timerfd_create(0x1, 0x80800)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756e6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r9}, 0xc)
openat(r1, &(0x7f0000000240)='./file0\x00', 0x46281, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ptrace$poke(0x5, 0x0, &(0x7f0000000140), 0x7)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000100))

1.80399241s ago: executing program 3 (id=427):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 32)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x39, &(0x7f0000000b00)={&(0x7f00000006c0)=ANY=[@ANYBLOB="3d527b2c980f58e77be89a6b9ba7164f532a5fea7e3d91f4a25a5426052c826fc03beef8afdaed7e298bbe543e2b2e14b0dbac8dcdaff822d082eb58e663d1ed383ffee63cb83fee93836b308447c55a73326dadf1660a5e91ea8ebfb39c2ae65bd456ebe6f0dd1f876092de43f9e55f4cae40a3ea04f94d559905ff3da015a3552be0af23"], 0x68}}, 0x0) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f28000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0) (async, rerun: 64)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 64)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[], 0xe8}}, 0x0) (async)
r2 = socket(0x1, 0x803, 0x0) (async, rerun: 32)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84) (rerun: 32)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r3, 0x84, 0x8, 0x0, 0x0)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x114}], 0x1}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, 0x0, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="b00000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000008000128009000100766c616e00000000700002800c0002001f0000001f0000000600010001000000580003800c00010004000000030000000c000100bd000000040000000c00010005000000000000000c000100090000009e0000000c000100020000000000ffff0c00010005000000080000000c000100c50000000800000008000500", @ANYRES32=r5, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB], 0xb0}, 0x1, 0x0, 0x0, 0x600}, 0x0) (async)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="5c0000000206010600000000000000000000000014000780080011400000000005001500060000000500010006000000050005000a00000005000400000000000900020073797a310000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0) (async)
r8 = fsmount(0xffffffffffffffff, 0x0, 0x8)
ioctl$IOCTL_VMCI_VERSION2(r8, 0x7a7, &(0x7f0000000300)=0x80000) (async, rerun: 64)
socket(0x3, 0x1, 0x9d) (async, rerun: 64)
socket$nl_rdma(0x10, 0x3, 0x14) (async)
syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') (async)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) (async)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r9, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15)
r10 = dup(r9)
write$FUSE_BMAP(r10, &(0x7f0000000080)={0x18, 0xfffffffffffffffe, 0x0, {0x4}}, 0x18)

1.750895568s ago: executing program 3 (id=428):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x18, 0x3d, 0x9, 0x0, 0x0, {0x1}, [@typed={0x4, 0x200}]}, 0x18}}, 0x0)

1.750531753s ago: executing program 3 (id=429):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x2}, {0x5, 0x2, 0x13, 0x2}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000040)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$LINK_GET_NEXT_ID(0x1f, 0x0, 0x0)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000001800), 0x4)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0)
utimensat(r2, &(0x7f0000000000)='./file0\x00', 0x0, 0x1100)
recvmsg$unix(r2, &(0x7f0000000800)={&(0x7f0000000480), 0x6e, &(0x7f0000000380), 0x0, &(0x7f00000007c0)}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
syz_io_uring_setup(0x49e2, &(0x7f0000000140), &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r6, 0xe0, &(0x7f0000000480)={0x0, <r7=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r8 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r7}, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={r8, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd6e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000300)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r9, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000c80)={'lo\x00', <r11=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, r11, {0x0, 0xffe0}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x3, 0x1, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x51}, 0x20040000)

1.250545255s ago: executing program 0 (id=430):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b708000000020000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0xc0)
getdents(r0, &(0x7f00000002c0)=""/31, 0x1f)
getdents(r0, &(0x7f00000000c0)=""/201, 0xc9)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r3 = timerfd_create(0x9, 0x0)
ioprio_set$uid(0x3, 0x0, 0x6000)
timerfd_settime(r3, 0x3, &(0x7f0000000200), 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xcc}, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000280))
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000000000800080000014000091ff0f00004500f5ff06ff00010100fc5e15f4c3d3fbd80dad0000abfa"], 0x125)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r5 = openat$binder_debug(0xffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x2, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000380)='sched_kthread_work_execute_start\x00', r7}, 0x18)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
listen(r6, 0x20000005)
r8 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)

1.250322761s ago: executing program 2 (id=431):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x2812, &(0x7f0000000380)={0x0, 0x1ffffe, 0x2000, 0x3, 0x10b}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
mkdir(&(0x7f00000004c0)='./file0\x00', 0x143)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./bus\x00', &(0x7f00000000c0)='vxfs\x00', 0x18642, 0x0)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x4000000000000000, &(0x7f0000000000)={<r6=>0xffffffffffffffff}, 0x13f, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, &(0x7f0000000080)={0x7, 0x8, 0xfa00, {r6}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r5, &(0x7f0000000180)={0x1, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x80000002, 0x141100)
r7 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r7, 0xc1205531, 0x0)
flock(0xffffffffffffffff, 0x5)
r8 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
poll(&(0x7f0000000280)=[{r8, 0xf762}], 0x1, 0xfffffffe)
ioctl$vim2m_VIDIOC_S_FMT(r8, 0xc0d05605, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r10, 0x8923, &(0x7f0000000000)={'virt_wifi0\x00', @broadcast})
openat$mixer(0xffffff9c, &(0x7f0000000200), 0x80, 0x0)
gettid()
timer_create(0x0, 0x0, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r12 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="ca96eaad8beecf4f0f09518f9164210000000000dbfd364cee0da770372c87c7a4b9adad85bac51cdc51cd19acf8a8dbfb6841315a6ed8b504e1b4f125294d5099a3ab39bbc01e3e7095e6999c2b7fa7ef0e52db74d59ce403adfa8bd0f11eb0b387bdf7d0ee750f17af00bcac0693", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x11, &(0x7f00000007c0)=ANY=[@ANYRES16, @ANYRES32=r12, @ANYRES64=r8, @ANYRES32=r12, @ANYRES16=r9], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff0d, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
flock(r11, 0x2)

836.74724ms ago: executing program 3 (id=432):
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r1 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, 0x108)
sched_getparam(0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x1006}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) (async)
socketpair$unix(0x1, 0x2, 0x0, 0x0) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$CDROM_SEND_PACKET(r3, 0x5393, &(0x7f0000000100)={"4689d4c4841a41c9e4641d9d", &(0x7f0000000000)="bb", 0x20000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0})
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x14d802, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, 0xffffffffffffffff, 0x63) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c080000", @ANYRES16, @ANYBLOB="310300000000000000000900000008000300", @ANYRES32, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x8895}, 0x0) (async)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x80000}}}, 0x108)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (async)
syz_clone(0x8210a580, &(0x7f0000002140), 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x8, 0x2) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_dev$usbfs(&(0x7f0000000380), 0x3a, 0x2080)
r4 = getpid() (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r5, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r6, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r4}}]}, 0x3c}}, 0x0)

581.063315ms ago: executing program 2 (id=433):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x11, &(0x7f0000000840)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x23}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='tlb_flush\x00', r1, 0xffffffff}, 0x10)

580.782708ms ago: executing program 2 (id=434):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000480)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
dup2(r1, r0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x20002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000140)=',8Z', 0x3)
r7 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$inet(r7, 0x0, 0x4000085)
socket$kcm(0x10, 0x2, 0x0)

450.399454ms ago: executing program 3 (id=435):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x1, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r2, &(0x7f0000000340)={0x2, 0x4e24, @loopback}, 0x10)
sendmsg$sock(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000500)="c4", 0x1}], 0x1}, 0x0)

370.746471ms ago: executing program 3 (id=436):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a500000095000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0)
r3 = syz_open_dev$cec(&(0x7f00000001c0), 0x0, 0x100)
ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f00000003c0)=0x32)
ioctl$CEC_S_MODE(r2, 0x40046109, &(0x7f0000000240)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2)
r7 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000000)={r6, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0xc0086202, &(0x7f0000000440)=0x2)
r8 = syz_open_dev$vim2m(&(0x7f0000000500), 0x0, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000400000000000000082038851000000600000018000000", @ANYRES32, @ANYBLOB="00000000010300006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x1e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r8, 0xc0f8565c, &(0x7f0000000000)={0x0, 0x1000, 0x2, {0x1, @sliced={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x657]}}})
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000040)=0x454e, 0x4)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000d00)={'batadv_slave_1\x00', <r10=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000240)={0x28, r9, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}]}, 0x28}}, 0x0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f00000000c0)='ocfs2_dlmfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000000)='./file1\x00')

130.73503ms ago: executing program 2 (id=437):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b708000000020000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0xc0)
getdents(r0, &(0x7f00000002c0)=""/31, 0x1f)
getdents(r0, &(0x7f00000000c0)=""/201, 0xc9)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r3 = timerfd_create(0x9, 0x0)
ioprio_set$uid(0x3, 0x0, 0x6000)
timerfd_settime(r3, 0x3, &(0x7f0000000200), 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xcc}, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000280))
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000000000800080000014000091ff0f00004500f5ff06ff00010100fc5e15f4c3d3fbd80dad0000abfa"], 0x125)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r5 = openat$binder_debug(0xffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x2, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000380)='sched_kthread_work_execute_start\x00', r7}, 0x18)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r6, 0x20000005)
r8 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)

0s ago: executing program 0 (id=438):
r0 = socket(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000010008500000022000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000900)=[&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffffffffffff, 0x0, 0x0, 0x8, 0xffff000000000000, 0x2, r2}])
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$setperm(0x5, 0x0, 0x0)
lsetxattr$system_posix_acl(0x0, 0x0, 0x0, 0x5c, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000000940)={{0x8}, 'syz0\x00', 0x3e})
ioctl$UI_DEV_CREATE(r4, 0x5501)
write$input_event(r4, &(0x7f0000000180)={{}, 0x12, 0x203, 0xffffffff}, 0x8)
socket$pptp(0x18, 0x1, 0x2)
syz_clone(0xa0320080, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = socket(0x2b, 0x3, 0x1)
setsockopt$inet_int(r5, 0x0, 0xd, 0x0, 0xffffffffffffff83)
r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x38011, r6, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c00028008000100", @ANYRES32=r7, @ANYBLOB="0800ea5f5abbc61f"], 0x40}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:11990' (ED25519) to the list of known hosts.
[   41.349701][ T5932] cgroup: Unknown subsys name 'net'
[   41.469363][ T5932] cgroup: Unknown subsys name 'cpuset'
[   41.473459][ T5932] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   42.224440][ T5932] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   44.799028][ T5947] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   44.802101][ T5947] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   44.809493][ T5955] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   44.811919][ T5955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   44.814661][ T5955] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   44.817381][ T5955] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   44.819402][ T5951] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   44.819693][ T5955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   44.821957][ T5951] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   44.824168][ T5955] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   44.826219][ T5958] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   44.828803][ T5955] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   44.832389][ T5958] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   44.833011][ T5955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   44.835309][ T5958] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   44.838063][ T5959] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   44.838354][ T5951] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   44.838973][ T5951] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   44.839143][ T5951] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   44.840664][ T5958] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   44.843781][ T5959] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   44.845293][ T5947] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   44.857514][ T5947] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   44.859801][ T5947] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.016411][ T5950] chnl_net:caif_netlink_parms(): no params data found
[   45.032500][ T5944] chnl_net:caif_netlink_parms(): no params data found
[   45.062381][ T5943] chnl_net:caif_netlink_parms(): no params data found
[   45.079378][ T5956] chnl_net:caif_netlink_parms(): no params data found
[   45.141208][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.143780][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.146077][ T5944] bridge_slave_0: entered allmulticast mode
[   45.149084][ T5944] bridge_slave_0: entered promiscuous mode
[   45.161210][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.163360][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.165612][ T5950] bridge_slave_0: entered allmulticast mode
[   45.168227][ T5950] bridge_slave_0: entered promiscuous mode
[   45.196005][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.198447][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.201220][ T5944] bridge_slave_1: entered allmulticast mode
[   45.203753][ T5944] bridge_slave_1: entered promiscuous mode
[   45.219071][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.221213][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.223417][ T5950] bridge_slave_1: entered allmulticast mode
[   45.225728][ T5950] bridge_slave_1: entered promiscuous mode
[   45.280028][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.282826][ T5956] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.285783][ T5956] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.288295][ T5956] bridge_slave_0: entered allmulticast mode
[   45.291053][ T5956] bridge_slave_0: entered promiscuous mode
[   45.294468][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.299551][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.318303][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.321923][ T5956] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.324115][ T5956] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.326313][ T5956] bridge_slave_1: entered allmulticast mode
[   45.328824][ T5956] bridge_slave_1: entered promiscuous mode
[   45.354395][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.357624][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.360506][ T5943] bridge_slave_0: entered allmulticast mode
[   45.363001][ T5943] bridge_slave_0: entered promiscuous mode
[   45.392141][ T5956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.397829][ T5944] team0: Port device team_slave_0 added
[   45.399948][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.402759][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.405662][ T5943] bridge_slave_1: entered allmulticast mode
[   45.409252][ T5943] bridge_slave_1: entered promiscuous mode
[   45.413774][ T5950] team0: Port device team_slave_0 added
[   45.416467][ T5956] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.420443][ T5944] team0: Port device team_slave_1 added
[   45.463467][ T5950] team0: Port device team_slave_1 added
[   45.472486][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   45.474612][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.483165][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   45.488959][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.510900][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   45.513066][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.521537][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   45.526080][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.539698][ T5956] team0: Port device team_slave_0 added
[   45.544781][ T5956] team0: Port device team_slave_1 added
[   45.558343][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0
[   45.560650][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.568998][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   45.596060][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1
[   45.598478][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.608251][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   45.625771][ T5943] team0: Port device team_slave_0 added
[   45.629522][ T5943] team0: Port device team_slave_1 added
[   45.652018][ T5956] batman_adv: batadv0: Adding interface: batadv_slave_0
[   45.654752][ T5956] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.664887][ T5956] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   45.699912][ T5944] hsr_slave_0: entered promiscuous mode
[   45.702927][ T5944] hsr_slave_1: entered promiscuous mode
[   45.707029][ T5956] batman_adv: batadv0: Adding interface: batadv_slave_1
[   45.709735][ T5956] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.717569][ T5956] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   45.722379][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0
[   45.725186][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.734040][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   45.747832][ T5950] hsr_slave_0: entered promiscuous mode
[   45.751298][ T5950] hsr_slave_1: entered promiscuous mode
[   45.754160][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   45.757926][ T5950] Cannot create hsr debugfs directory
[   45.762973][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1
[   45.765350][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.773996][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   45.853656][ T5956] hsr_slave_0: entered promiscuous mode
[   45.856994][ T5956] hsr_slave_1: entered promiscuous mode
[   45.859974][ T5956] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   45.863145][ T5956] Cannot create hsr debugfs directory
[   45.884900][ T5943] hsr_slave_0: entered promiscuous mode
[   45.887706][ T5943] hsr_slave_1: entered promiscuous mode
[   45.890181][ T5943] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   45.892487][ T5943] Cannot create hsr debugfs directory
[   46.070163][ T5944] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   46.076387][ T5944] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   46.079810][ T5944] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   46.082992][ T5944] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   46.098307][ T5950] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   46.102662][ T5950] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   46.109562][ T5950] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   46.113010][ T5950] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   46.137746][ T5943] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   46.141404][ T5943] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   46.144784][ T5943] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   46.149613][ T5943] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   46.165565][ T5956] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   46.170072][ T5956] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   46.177311][ T5956] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   46.182154][ T5956] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   46.221461][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.232242][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.240621][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   46.252729][ T1224] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.254765][ T1224] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.262199][ T5950] 8021q: adding VLAN 0 to HW filter on device team0
[   46.265521][ T1224] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.267731][ T1224] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.280089][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.284429][ T5956] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.287798][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.289738][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.294770][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.296695][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.314379][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[   46.318128][ T5956] 8021q: adding VLAN 0 to HW filter on device team0
[   46.325890][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.328114][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.338715][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.340909][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.344309][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.346444][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.357651][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.360028][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.374911][ T5943] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   46.379885][ T5943] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   46.398932][ T5956] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   46.402602][ T5956] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   46.421784][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.442960][ T5944] veth0_vlan: entered promiscuous mode
[   46.449794][ T5944] veth1_vlan: entered promiscuous mode
[   46.463684][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.467938][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.479998][ T5944] veth0_macvtap: entered promiscuous mode
[   46.492574][ T5944] veth1_macvtap: entered promiscuous mode
[   46.496483][ T5956] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.512890][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   46.515828][ T5950] veth0_vlan: entered promiscuous mode
[   46.526337][ T5943] veth0_vlan: entered promiscuous mode
[   46.528564][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   46.532032][ T5944] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   46.534743][ T5944] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   46.537790][ T5944] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   46.540414][ T5944] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   46.547717][ T5950] veth1_vlan: entered promiscuous mode
[   46.552722][ T5943] veth1_vlan: entered promiscuous mode
[   46.562992][ T5956] veth0_vlan: entered promiscuous mode
[   46.573203][ T5950] veth0_macvtap: entered promiscuous mode
[   46.579868][ T5950] veth1_macvtap: entered promiscuous mode
[   46.582824][ T5956] veth1_vlan: entered promiscuous mode
[   46.591162][ T5943] veth0_macvtap: entered promiscuous mode
[   46.605652][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.608971][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.612122][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0
[   46.614321][ T5943] veth1_macvtap: entered promiscuous mode
[   46.617692][ T5956] veth0_macvtap: entered promiscuous mode
[   46.625834][ T5956] veth1_macvtap: entered promiscuous mode
[   46.630967][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.633764][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.637146][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1
[   46.642967][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   46.645436][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   46.658493][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.661285][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.663869][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.666635][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.670069][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[   46.673352][  T385] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   46.674290][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.675731][  T385] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   46.679131][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.684350][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.688687][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.691602][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.694707][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.699076][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_0
[   46.704010][ T5950] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   46.706649][ T5950] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   46.709524][ T5950] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   46.712688][ T5950] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   46.716376][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.719790][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.722729][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.725792][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.729440][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_1
[   46.732727][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.735527][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.738284][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.740973][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.743490][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.746153][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.749345][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[   46.754207][ T5956] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   46.757312][ T5956] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   46.759812][ T5956] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   46.762300][ T5956] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   46.770255][ T5943] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   46.772920][ T5943] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   46.775596][ T5943] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   46.778455][ T5943] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   46.789179][ T5944] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   46.821710][ T1224] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   46.824246][ T1224] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   46.838369][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   46.840526][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   46.855515][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   46.859168][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   46.860970][ T1224] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   46.863533][ T1224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   46.879977][ T6008] capability: warning: `syz.3.4' uses deprecated v2 capabilities in a way that may be insecure
[   46.883063][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   46.885506][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   46.888425][   T64] Bluetooth: hci1: command tx timeout
[   46.888628][ T5947] Bluetooth: hci0: command tx timeout
[   46.897271][ T5947] Bluetooth: hci2: command tx timeout
[   46.897289][   T64] Bluetooth: hci3: command tx timeout
[   46.901402][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   46.903806][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.022070][ T6019] input: syz0 as /devices/virtual/input/input5
[   47.027810][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   47.237465][ T6031] input: syz0 as /devices/virtual/input/input6
[   47.929276][ T6047] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7'.
[   47.947078][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   47.949634][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   47.952221][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   47.954747][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   47.991183][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   47.997068][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   47.999651][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.002558][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.005079][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.294436][ T6053] input: syz0 as /devices/virtual/input/input7
[   48.296226][ T6059] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7'.
[   48.967304][   T64] Bluetooth: hci2: command tx timeout
[   48.969020][   T64] Bluetooth: hci3: command tx timeout
[   48.970657][   T64] Bluetooth: hci0: command tx timeout
[   48.972269][   T64] Bluetooth: hci1: command tx timeout
[   49.063180][ T6066] Invalid ELF header magic: != ELF
[   49.776191][ T6071] =======================================================
[   49.776191][ T6071] WARNING: The mand mount option has been deprecated and
[   49.776191][ T6071]          and is ignored by this kernel. Remove the mand
[   49.776191][ T6071]          option from the mount to silence this warning.
[   49.776191][ T6071] =======================================================
[   49.789811][ T6071] syz.3.12: attempt to access beyond end of device
[   49.789811][ T6071] nbd3: rw=0, sector=2, nr_sectors = 2 limit=0
[   49.794567][ T6071] syz.3.12: attempt to access beyond end of device
[   49.794567][ T6071] nbd3: rw=0, sector=16, nr_sectors = 2 limit=0
[   50.061963][ T6078] input: syz0 as /devices/virtual/input/input8
[   50.653298][ T6082] random: crng reseeded on system resumption
[   50.662191][ T6082] warning: `syz.3.14' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   50.935724][ T6086] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16'.
[   50.991843][ T6086] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   51.073041][   T64] Bluetooth: hci1: command tx timeout
[   51.073807][ T5947] Bluetooth: hci2: command tx timeout
[   51.119112][ T5959] Bluetooth: hci0: command tx timeout
[   51.847589][ T5959] Bluetooth: hci3: command tx timeout
[   51.988580][ T6112] usb 2-1: USB disconnect, device number 2
[   52.007957][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   52.564636][ T6114] hub 2-0:1.0: USB hub found
[   52.567000][ T6114] hub 2-0:1.0: 6 ports detected
[   52.578437][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   52.761502][ T1334] usb 2-1: new high-speed USB device number 3 using ehci-pci
[   52.951113][ T1334] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   52.954564][ T1334] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   52.958935][ T1334] usb 2-1: Product: QEMU USB Tablet
[   52.960610][ T1334] usb 2-1: Manufacturer: QEMU
[   52.962044][ T1334] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   52.984085][ T1334] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0002/input/input9
[   53.057177][ T1334] hid-generic 0003:0627:0001.0002: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   53.079834][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   53.127176][ T5959] Bluetooth: hci1: command tx timeout
[   53.136989][ T5959] Bluetooth: hci0: command tx timeout
[   53.139095][ T5959] Bluetooth: hci2: command tx timeout
[   53.155578][ T6134] input: syz0 as /devices/virtual/input/input10
[   53.217334][ T1224] wlan1: Trigger new scan to find an IBSS to join
[   54.017057][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   54.116084][ T6145] lo speed is unknown, defaulting to 1000
[   54.120385][ T6145] lo speed is unknown, defaulting to 1000
[   54.123431][ T6145] lo speed is unknown, defaulting to 1000
[   54.156952][ T5974] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   54.169403][ T6150] »»»»»»: renamed from lo (while UP)
[   54.259746][ T6145] infiniband s
z1: set active
[   54.261297][ T6145] infiniband s
z1: added »»»»»»
[   54.291157][ T6145] RDS/IB: s
z1: added
[   54.292879][ T6145] smc: adding ib device s
z1 with port count 1
[   54.295109][ T6145] smc:    ib device s
z1 port 1 has pnetid 
[   54.298236][ T6155] input: syz0 as /devices/virtual/input/input11
[   54.334989][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   54.375512][ T5974] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   54.381882][ T6145] »»»»»» speed is unknown, defaulting to 1000
[   54.384545][ T5974] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   54.387646][ T5974] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   54.390379][ T5974] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.395376][ T6143] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   54.400651][ T5974] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   54.420162][ T6145] »»»»»» speed is unknown, defaulting to 1000
[   54.460946][ T6145] »»»»»» speed is unknown, defaulting to 1000
[   54.499380][ T6145] »»»»»» speed is unknown, defaulting to 1000
[   54.508240][  T103] »»»»»» speed is unknown, defaulting to 1000
[   54.512501][   T30] »»»»»» speed is unknown, defaulting to 1000
[   54.619265][  T103] usb 7-1: USB disconnect, device number 2
[   54.830540][ T6143] netlink: 'syz.2.25': attribute type 10 has an invalid length.
[   54.834123][ T6143] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.837064][ T6143] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.841522][ T6157] udevd[6157]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   54.844434][ T6143] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.848480][ T6143] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.851072][ T6143] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.853284][ T6143] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.858739][ T6143] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   55.378819][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   55.649750][ T6173] loop7: detected capacity change from 0 to 16384
[   55.922100][ T6180] IPv6: NLM_F_CREATE should be specified when creating new route
[   56.017815][ T6181] loop7: detected capacity change from 16384 to 16383
[   56.044251][ T6188] evm: overlay not supported
[   56.051268][   T40] audit: type=1804 audit(1735930943.346:2): pid=6188 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.34" name="/newroot/9/bus/bus" dev="overlay" ino=78 res=1 errno=0
[   56.192627][ T5945] Buffer I/O error on dev loop7, logical block 2047, async page read
[   56.204464][ T6178] Buffer I/O error on dev loop7, logical block 2047, async page read
[   56.208222][ T6178] Buffer I/O error on dev loop7, logical block 2047, async page read
[   56.212368][ T6178] Buffer I/O error on dev loop7, logical block 2047, async page read
[   56.271903][ T6199] netlink: 8 bytes leftover after parsing attributes in process `syz.0.32'.
[   56.407063][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   56.472378][ T5945] Buffer I/O error on dev loop7, logical block 2047, async page read
[   56.812227][ T5945] Buffer I/O error on dev loop7, logical block 4095, async page read
[   56.863833][ T6216] input: syz0 as /devices/virtual/input/input12
[   56.901447][ T6217] input: syz0 as /devices/virtual/input/input13
[   57.050030][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   57.368678][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   57.447058][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   58.336959][   T39] wlan1: Trigger new scan to find an IBSS to join
[   58.507406][   T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   58.524493][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   58.549336][ T6243] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.553598][ T6243] batadv_slave_0: entered promiscuous mode
[   58.696311][ T6262] netlink: 36 bytes leftover after parsing attributes in process `syz.2.45'.
[   58.727048][ T6264] input: syz0 as /devices/virtual/input/input14
[   59.162356][ T6279] program syz.0.47 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   59.288754][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   59.299015][   T11] wlan1: Creating new IBSS network, BSSID 46:e0:19:4a:8a:8f
[   59.530488][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   59.814044][ T6289] input: syz0 as /devices/virtual/input/input15
[   59.928828][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   59.931487][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   60.060400][ T6292] can0: slcan on ptm0.
[   60.568964][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   61.094279][ T6291] can0 (unregistered): slcan off ptm0.
[   61.607087][ T1334] net_ratelimit: 1 callbacks suppressed
[   61.607099][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   62.649086][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   62.970452][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   63.687199][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   64.727212][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   65.767188][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   66.007214][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   66.807287][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   67.632282][ T6339] syz.2.55 uses obsolete (PF_INET,SOCK_PACKET)
[   67.692646][ T6348] input: syz0 as /devices/virtual/input/input16
[   67.850392][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   68.027361][   T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   68.887014][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   69.140523][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   69.537178][ T5974] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   69.565211][ T6386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   69.568375][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   69.612798][ T6388] netlink: 'syz.2.61': attribute type 11 has an invalid length.
[   69.957038][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   70.036997][  T103] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   70.177875][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   70.271380][  T103] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   70.274691][  T103] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   70.278222][  T103] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[   70.280952][  T103] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[   70.284461][  T103] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[   70.289668][  T103] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   70.292408][  T103] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   70.294723][  T103] usb 7-1: Product: syz
[   70.295927][  T103] usb 7-1: Manufacturer: syz
[   70.300168][  T103] cdc_wdm 7-1:1.0: skipping garbage
[   70.301950][  T103] cdc_wdm 7-1:1.0: skipping garbage
[   70.305661][  T103] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   70.307787][  T103] cdc_wdm 7-1:1.0: Unknown control protocol
[   70.512350][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.514836][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.517010][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.518943][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.521116][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.523207][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.526095][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.528435][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.530797][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.532700][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.534734][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.536639][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.538701][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.540607][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.542558][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.544520][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.546480][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.548502][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.550443][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   70.552335][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   70.554773][    T9] usb 7-1: USB disconnect, device number 3
[   70.554822][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[   70.600397][ T6403] ISOFS: Unable to identify CD-ROM format.
[   70.810680][ T1411] ieee802154 phy0 wpan0: encryption failed: -22
[   70.813167][ T1411] ieee802154 phy1 wpan1: encryption failed: -22
[   70.967061][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   72.007274][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   73.047093][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   73.209702][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   74.087363][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   75.127559][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   75.938361][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   76.167921][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   76.247339][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   76.568353][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.109118][ T6420] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.66'.
[   77.116305][ T6420] netlink: zone id is out of range
[   77.118675][ T6420] netlink: zone id is out of range
[   77.120238][ T6420] netlink: zone id is out of range
[   77.121772][ T6420] netlink: zone id is out of range
[   77.123317][ T6420] netlink: zone id is out of range
[   77.207213][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.209049][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.216021][ T6427] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[   77.240618][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.305959][ T6441] netlink: 'syz.3.69': attribute type 1 has an invalid length.
[   77.975762][ T6450] input: syz0 as /devices/virtual/input/input18
[   78.247009][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.299696][ T6462] input: syz0 as /devices/virtual/input/input19
[   78.762938][   T40] audit: type=1804 audit(1735930966.056:3): pid=6467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.74" name="/newroot/18/file0/file0" dev="9p" ino=39059499 res=1 errno=0
[   78.856817][   T40] audit: type=1800 audit(1735930966.146:4): pid=6468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.74" name="bus" dev="9p" ino=39059510 res=0 errno=0
[   78.872925][   T40] audit: type=1800 audit(1735930966.166:5): pid=6468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.74" name="bus" dev="9p" ino=39059510 res=0 errno=0
[   79.287048][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   79.297254][ T6477] input: syz0 as /devices/virtual/input/input20
[   79.738321][ T6484] binder: 6478:6484 ioctl c0306201 0 returned -14
[   80.168766][ T6491] »»»»»» speed is unknown, defaulting to 1000
[   80.928441][   T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   81.053940][ T2190] cfg80211: failed to load regulatory.db
[   82.148077][ T6517] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.87'.
[   82.150873][ T6517] net_ratelimit: 257 callbacks suppressed
[   82.150880][ T6517] netlink: zone id is out of range
[   82.154277][ T6517] netlink: zone id is out of range
[   82.155828][ T6517] netlink: zone id is out of range
[   82.182586][ T6517] netlink: zone id is out of range
[   82.184213][ T6517] netlink: zone id is out of range
[   82.185770][ T6517] netlink: zone id is out of range
[   82.447439][ T6520] »»»»»» speed is unknown, defaulting to 1000
[   82.487220][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   82.595167][ T6528] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   82.597930][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   82.605731][ T6528] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   83.233293][ T6541] netlink: 8 bytes leftover after parsing attributes in process `syz.1.95'.
[   83.237150][ T6541] random: crng reseeded on system resumption
[   84.016972][   T35] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   84.070102][ T6566] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.103'.
[   84.081791][ T6564] netfs: Couldn't get user pages (rc=-14)
[   84.176996][   T35] usb 8-1: Using ep0 maxpacket: 8
[   84.180094][   T35] usb 8-1: config index 0 descriptor too short (expected 74, got 45)
[   84.182647][   T35] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   84.185824][   T35] usb 8-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[   84.189882][   T35] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   84.192722][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.252129][   T35] usbtmc 8-1:16.0: bulk endpoints not found
[   84.829660][ T6581] syz.1.107 (6581): drop_caches: 0
[   85.003291][ T6595] netlink: 128 bytes leftover after parsing attributes in process `syz.2.112'.
[   85.035882][ T6599] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.114'.
[   85.330077][ T6610] binder: 6609:6610 unknown command 0
[   85.331797][ T6610] binder: 6609:6610 ioctl c0306201 20000580 returned -22
[   85.676518][ T6622] netlink: 8 bytes leftover after parsing attributes in process `syz.2.121'.
[   85.796262][ T6627] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.123'.
[   85.844771][ T6631] bridge_slave_0: left allmulticast mode
[   85.846533][ T6631] bridge_slave_0: left promiscuous mode
[   85.848712][ T6631] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.853264][ T6631] bridge_slave_1: left allmulticast mode
[   85.855001][ T6631] bridge_slave_1: left promiscuous mode
[   85.856741][ T6631] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.866048][ T6631] bond0: (slave bond_slave_0): Releasing backup interface
[   85.874591][ T6631] bond0: (slave bond_slave_1): Releasing backup interface
[   85.885389][ T6631] team0: Port device team_slave_0 removed
[   85.895552][ T6631] team0: Port device team_slave_1 removed
[   85.898179][ T6631] batman_adv: batadv0: Removing interface: batadv_slave_0
[   85.903325][ T6631] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   85.905589][ T6631] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.922898][ T6634] team0: Mode changed to "broadcast"
[   85.932566][ T6631] tipc: Started in network mode
[   85.934644][ T6631] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   85.938233][ T6631] tipc: Enabled bearer <eth:team0>, priority 0
[   85.941081][ T6631] syz.1.124 (6631) used greatest stack depth: 21072 bytes left
[   86.074182][ T6642] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[   86.716917][    T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   86.717304][ T6656] netlink: 76 bytes leftover after parsing attributes in process `syz.2.131'.
[   86.722821][ T6656] netlink: 6 bytes leftover after parsing attributes in process `syz.2.131'.
[   86.789372][   T35] usb 8-1: USB disconnect, device number 2
[   86.839376][ T6663] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.133'.
[   86.876965][    T9] usb 5-1: Using ep0 maxpacket: 32
[   86.882293][    T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   86.888070][    T9] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   86.891685][    T9] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   86.895172][    T9] usb 5-1: Product: syz
[   86.896588][    T9] usb 5-1: Manufacturer: syz
[   86.898814][    T9] usb 5-1: SerialNumber: syz
[   86.906069][    T9] usb 5-1: config 0 descriptor??
[   86.908459][ T6648] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[   86.938094][    T9] tipc: Node number set to 11578026
[   86.966452][ T6671] netlink: 'syz.2.135': attribute type 10 has an invalid length.
[   86.970945][ T6671] batman_adv: batadv0: Adding interface: vlan1
[   86.972876][ T6671] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.980496][ T6671] batman_adv: batadv0: Interface activated: vlan1
[   87.116458][   T30] usb 5-1: USB disconnect, device number 2
[   87.687341][ T5989] net_ratelimit: 100 callbacks suppressed
[   87.687357][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   88.033289][ T6706] __nla_validate_parse: 1 callbacks suppressed
[   88.033300][ T6706] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.142'.
[   88.112834][ T6706] netlink: zone id is out of range
[   88.116480][ T6706] netlink: zone id is out of range
[   88.131694][ T6706] netlink: zone id is out of range
[   88.134680][ T6706] netlink: zone id is out of range
[   88.138006][ T6709] wireguard0: entered promiscuous mode
[   88.152319][ T6706] netlink: zone id is out of range
[   88.159869][ T6706] netlink: zone id is out of range
[   88.251561][ T6712] netlink: 40 bytes leftover after parsing attributes in process `syz.3.143'.
[   88.335446][ T6716] netlink: 36 bytes leftover after parsing attributes in process `syz.2.145'.
[   88.727865][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   89.230853][ T6730] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[   89.346200][ T6744] netlink: 112 bytes leftover after parsing attributes in process `syz.2.151'.
[   89.349165][ T6745] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   89.352057][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   89.361128][ T1131] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[   89.375938][ T6747] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.154'.
[   89.757617][ T6758] Zero length message leads to an empty skb
[   89.892910][ T6767] syz.0.159 (6767): drop_caches: 2
[   90.028725][ T6779] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   90.070011][ T6779] loop7: detected capacity change from 16383 to 16320
[   90.096045][ T6783] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.165'.
[   90.388302][ T6804] tipc: Started in network mode
[   90.389981][ T6804] tipc: Node identity b2227a678184, cluster identity 4711
[   90.392263][ T6804] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   90.905163][   T68] tipc: Resetting bearer <eth:syzkaller0>
[   90.963064][ T6784] tipc: Resetting bearer <eth:syzkaller0>
[   91.374805][ T6822] netlink: 'syz.3.174': attribute type 1 has an invalid length.
[   91.377479][ T6822] netlink: 224 bytes leftover after parsing attributes in process `syz.3.174'.
[   91.439552][ T6824] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.175'.
[   91.517169][ T1334] tipc: Node number set to 866548327
[   91.946071][ T6784] tipc: Disabling bearer <eth:syzkaller0>
[   91.961659][ T6833] loop7: detected capacity change from 0 to 16384
[   91.992137][ T6004] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[   92.518775][ T6852] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[   92.521347][ T6852] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   92.525405][ T6852] vhci_hcd vhci_hcd.0: Device attached
[   92.658696][ T6857] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.184'.
[   92.697011][ T5974] vhci_hcd: vhci_device speed not set
[   92.727978][ T6004] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[   92.756968][ T5974] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[   92.897027][ T1334] net_ratelimit: 30 callbacks suppressed
[   92.897039][ T1334] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   92.907109][ T4438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   93.120036][ T6854] vhci_hcd: connection reset by peer
[   93.123535][ T1131] vhci_hcd: stop threads
[   93.125285][ T1131] vhci_hcd: release socket
[   93.128076][ T1131] vhci_hcd: disconnect device
[   93.429903][ T6873] netlink: 'syz.1.187': attribute type 4 has an invalid length.
[   94.040030][ T6885] input: syz0 as /devices/virtual/input/input21
[   94.244747][ T6890] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.193'.
[   94.247792][ T6890] netlink: zone id is out of range
[   94.249395][ T6890] netlink: zone id is out of range
[   94.251057][ T6890] netlink: zone id is out of range
[   94.252676][ T6890] netlink: zone id is out of range
[   94.254270][ T6890] netlink: zone id is out of range
[   94.255831][ T6890] netlink: zone id is out of range
[   94.286315][ T6892] x_tables: ip6_tables: ipcomp match: only valid for protocol 108
[   94.434263][ T6895] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[   94.436281][ T6895] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   94.439925][ T6895] vhci_hcd vhci_hcd.0: Device attached
[   95.206999][ T4438] vhci_hcd: vhci_device speed not set
[   95.300381][ T4438] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[   95.315600][ T6918] netlink: 187320 bytes leftover after parsing attributes in process `syz.0.202'.
[   95.318532][ T6918] netlink: zone id is out of range
[   95.320225][ T6918] netlink: zone id is out of range
[   95.406949][ T6004] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[   95.421104][ T6929] No control pipe specified
[   95.685584][ T6004] usb 7-1: not running at top speed; connect to a high speed hub
[   95.708077][ T6004] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 1023, setting to 64
[   95.731798][ T6004] usb 7-1: New USB device found, idVendor=056a, idProduct=00de, bcdDevice= 0.40
[   95.735602][ T6004] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.739983][ T6896] vhci_hcd: connection reset by peer
[   95.741957][ T6004] usb 7-1: Manufacturer: 轧ꥊ榬�丞጗
[   95.742151][ T1131] vhci_hcd: stop threads
[   95.743824][ T6004] usb 7-1: SerialNumber: 穯蛚䉷혇耯ଫᡯ䮄콈渱鶙⼠ꬽ燹늋ᆡ�
[   95.748269][ T6907] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   95.749986][ T1131] vhci_hcd: release socket
[   95.752436][ T1131] vhci_hcd: disconnect device
[   95.968993][ T6004] usbhid 7-1:1.0: can't add hid device: -71
[   95.970936][ T6004] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[   95.975710][ T6004] usb 7-1: USB disconnect, device number 4
[   96.011109][ T2190] IPVS: starting estimator thread 0...
[   96.073522][ T6982] process 'syz.1.210' launched './file0' with NULL argv: empty string added
[   96.097095][ T6983] IPVS: using max 38 ests per chain, 91200 per kthread
[   96.121508][ T6988] cgroup: fork rejected by pids controller in /syz1
[   96.450683][ T7142] netlink: 28 bytes leftover after parsing attributes in process `syz.1.212'.
[   96.529751][ T7142] overlay: ./file0 is not a directory
[   96.532722][   T40] audit: type=1800 audit(1735930983.826:6): pid=7142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.212" name="bus" dev="9p" ino=39059510 res=0 errno=0
[   96.569241][ T7144] FAULT_INJECTION: forcing a failure.
[   96.569241][ T7144] name failslab, interval 1, probability 0, space 0, times 0
[   96.569287][ T7144] CPU: 1 UID: 0 PID: 7144 Comm: syz.2.213 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[   96.569300][ T7144] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.569307][ T7144] Call Trace:
[   96.569311][ T7144]  <TASK>
[   96.569316][ T7144]  dump_stack_lvl+0x16c/0x1f0
[   96.569333][ T7144]  should_fail_ex+0x497/0x5b0
[   96.569347][ T7144]  ? fs_reclaim_acquire+0xae/0x150
[   96.569361][ T7144]  should_failslab+0xc2/0x120
[   96.569378][ T7144]  __kmalloc_cache_noprof+0x68/0x420
[   96.569395][ T7144]  drm_atomic_helper_setup_commit+0x633/0x15e0
[   96.569415][ T7144]  drm_atomic_helper_commit+0xa9/0x380
[   96.569428][ T7144]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[   96.569440][ T7144]  drm_atomic_commit+0x232/0x300
[   96.569457][ T7144]  ? __pfx_drm_atomic_commit+0x10/0x10
[   96.569472][ T7144]  ? __pfx___drm_printfn_info+0x10/0x10
[   96.569490][ T7144]  ? drm_client_rotation+0x4d9/0x6a0
[   96.569506][ T7144]  drm_client_modeset_commit_atomic+0x6a2/0x7f0
[   96.569525][ T7144]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[   96.569538][ T7144]  ? __mutex_lock+0x1cc/0xa60
[   96.569562][ T7144]  ? __pfx_mark_lock+0x10/0x10
[   96.569583][ T7144]  drm_client_modeset_commit_locked+0x14d/0x580
[   96.569605][ T7144]  drm_client_modeset_commit+0x4f/0x80
[   96.569619][ T7144]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x130/0x180
[   96.569634][ T7144]  drm_fb_helper_set_par+0xd8/0x120
[   96.569645][ T7144]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[   96.569657][ T7144]  fb_set_var+0x7af/0x1130
[   96.569675][ T7144]  ? __pfx_fb_set_var+0x10/0x10
[   96.569695][ T7144]  ? find_held_lock+0x2d/0x110
[   96.569713][ T7144]  ? find_held_lock+0x2d/0x110
[   96.569728][ T7144]  ? is_bpf_text_address+0x8a/0x1a0
[   96.569745][ T7144]  ? __pfx_lock_release+0x10/0x10
[   96.569755][ T7144]  ? trace_lock_acquire+0x14e/0x1f0
[   96.569771][ T7144]  ? lock_acquire+0x2f/0xb0
[   96.569781][ T7144]  ? is_bpf_text_address+0x30/0x1a0
[   96.569796][ T7144]  ? bpf_ksym_find+0x124/0x1c0
[   96.569809][ T7144]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   96.569831][ T7144]  ? mark_lock+0xb5/0xc60
[   96.569847][ T7144]  ? __pfx_mark_lock+0x10/0x10
[   96.569863][ T7144]  ? fb_find_best_mode+0x1e7/0x2f0
[   96.569874][ T7144]  ? fb_videomode_to_var+0x13/0x610
[   96.569918][ T7144]  fbcon_resize+0x679/0x900
[   96.569936][ T7144]  ? __pfx_fbcon_resize+0x10/0x10
[   96.569960][ T7144]  ? __pfx_mark_lock+0x10/0x10
[   96.569976][ T7144]  ? __pfx_fbcon_resize+0x10/0x10
[   96.569990][ T7144]  vc_do_resize+0xd2e/0x10f0
[   96.570010][ T7144]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   96.570020][ T7144]  ? rcu_is_watching+0x12/0xc0
[   96.570034][ T7144]  ? __pfx_vc_do_resize+0x10/0x10
[   96.570046][ T7144]  ? lock_acquire+0x2f/0xb0
[   96.570055][ T7144]  ? down+0x2a/0xa0
[   96.570067][ T7144]  ? vt_ioctl+0x28cb/0x2fd0
[   96.570078][ T7144]  ? lock_acquire+0x2f/0xb0
[   96.570086][ T7144]  ? vt_ioctl+0x28cb/0x2fd0
[   96.570100][ T7144]  vt_ioctl+0x29e8/0x2fd0
[   96.570112][ T7144]  ? __pfx_vt_ioctl+0x10/0x10
[   96.570124][ T7144]  ? aa_get_newest_label+0x376/0x680
[   96.570139][ T7144]  ? __pfx_aa_get_newest_label+0x10/0x10
[   96.570154][ T7144]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   96.570167][ T7144]  ? apparmor_capable+0x114/0x1d0
[   96.570182][ T7144]  ? bpf_lsm_capable+0x9/0x10
[   96.570193][ T7144]  ? security_capable+0x7e/0x260
[   96.570209][ T7144]  vt_compat_ioctl+0x239/0x4e0
[   96.570221][ T7144]  ? __pfx_vt_compat_ioctl+0x10/0x10
[   96.570237][ T7144]  ? __fget_files+0x206/0x3a0
[   96.570249][ T7144]  ? __pfx_vt_compat_ioctl+0x10/0x10
[   96.570261][ T7144]  tty_compat_ioctl+0x2ee/0x4d0
[   96.570275][ T7144]  ? __pfx_tty_compat_ioctl+0x10/0x10
[   96.570289][ T7144]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   96.570301][ T7144]  __do_fast_syscall_32+0x73/0x120
[   96.570315][ T7144]  do_fast_syscall_32+0x32/0x80
[   96.570328][ T7144]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   96.570344][ T7144] RIP: 0023:0xf7ff7579
[   96.570353][ T7144] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   96.570363][ T7144] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   96.570374][ T7144] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000560a
[   96.570381][ T7144] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[   96.570388][ T7144] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   96.570394][ T7144] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   96.570401][ T7144] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   96.570414][ T7144]  </TASK>
[   96.943888][ T7160] input: syz0 as /devices/virtual/input/input22
[   97.711090][ T7173] netlink: 12 bytes leftover after parsing attributes in process `syz.3.220'.
[   97.717458][ T7173] netlink: 'syz.3.220': attribute type 12 has an invalid length.
[   97.847189][ T5974] vhci_hcd: vhci_device speed not set
[   97.946061][ T7187] program syz.0.225 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.961523][ T7189] FAULT_INJECTION: forcing a failure.
[   97.961523][ T7189] name failslab, interval 1, probability 0, space 0, times 0
[   97.966179][ T7189] CPU: 3 UID: 0 PID: 7189 Comm: syz.2.223 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[   97.969977][ T7189] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.973438][ T7189] Call Trace:
[   97.974495][ T7189]  <TASK>
[   97.975438][ T7189]  dump_stack_lvl+0x16c/0x1f0
[   97.976875][ T7189]  should_fail_ex+0x497/0x5b0
[   97.977830][ T7191] program syz.0.226 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.978363][ T7189]  ? fs_reclaim_acquire+0xae/0x150
[   97.982625][ T7189]  should_failslab+0xc2/0x120
[   97.984068][ T7189]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   97.985861][ T7189]  ? __alloc_skb+0x2b3/0x380
[   97.987305][ T7189]  __alloc_skb+0x2b3/0x380
[   97.988949][ T7189]  ? __pfx___alloc_skb+0x10/0x10
[   97.990528][ T7189]  ? lockdep_unlock+0x11a/0x290
[   97.992024][ T7189]  ? __lock_acquire+0x2070/0x3c40
[   97.993545][ T7189]  alloc_skb_with_frags+0xe4/0x850
[   97.995216][ T7189]  ? mark_lock+0xb5/0xc60
[   97.996574][ T7189]  sock_alloc_send_pskb+0x7f1/0x980
[   97.998254][ T7189]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[   98.000296][ T7189]  ? mark_held_locks+0x9f/0xe0
[   98.001825][ T7189]  ? __local_bh_enable_ip+0xa4/0x120
[   98.003479][ T7189]  j1939_sk_sendmsg+0x6d5/0x13c0
[   98.005057][ T7189]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[   98.006797][ T7189]  ____sys_sendmsg+0x9ae/0xb40
[   98.008783][ T7189]  ? __pfx_____sys_sendmsg+0x10/0x10
[   98.011006][ T7189]  ? get_compat_msghdr+0x11b/0x170
[   98.013172][ T7189]  ___sys_sendmsg+0x135/0x1e0
[   98.015192][ T7189]  ? __pfx____sys_sendmsg+0x10/0x10
[   98.017421][ T7189]  ? __pfx_lock_release+0x10/0x10
[   98.019722][ T7189]  ? trace_lock_acquire+0x14e/0x1f0
[   98.021949][ T7189]  ? __fget_files+0x206/0x3a0
[   98.023931][ T7189]  __sys_sendmsg+0x16e/0x220
[   98.025333][ T7189]  ? __pfx___sys_sendmsg+0x10/0x10
[   98.026905][ T7189]  __do_fast_syscall_32+0x73/0x120
[   98.028496][ T7189]  do_fast_syscall_32+0x32/0x80
[   98.029980][ T7189]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.031883][ T7189] RIP: 0023:0xf7ff7579
[   98.033114][ T7189] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   98.039080][ T7189] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   98.041583][ T7189] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[   98.043995][ T7189] RDX: 0000000000048005 RSI: 0000000000000000 RDI: 0000000000000000
[   98.046845][ T7189] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   98.049540][ T7189] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   98.051938][ T7189] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.054370][ T7189]  </TASK>
[   98.055420][    C3] vkms_vblank_simulate: vblank timer overrun
[   98.733436][ T7234] misc userio: The device must be registered before sending interrupts
[   98.736235][ T7235] misc userio: Invalid payload size
[   99.005033][ T7240] syz_tun: entered allmulticast mode
[   99.018517][ T7240] dvmrp1: entered allmulticast mode
[   99.023358][ T7239] syz_tun: left allmulticast mode
[   99.067921][ T7242] program syz.1.238 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   99.114455][ T7244] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   99.162176][ T7246] FAULT_INJECTION: forcing a failure.
[   99.162176][ T7246] name failslab, interval 1, probability 0, space 0, times 0
[   99.162194][ T7246] CPU: 0 UID: 0 PID: 7246 Comm: syz.1.240 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[   99.162207][ T7246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   99.162214][ T7246] Call Trace:
[   99.162217][ T7246]  <TASK>
[   99.162222][ T7246]  dump_stack_lvl+0x16c/0x1f0
[   99.162240][ T7246]  should_fail_ex+0x497/0x5b0
[   99.162255][ T7246]  ? fs_reclaim_acquire+0xae/0x150
[   99.162268][ T7246]  should_failslab+0xc2/0x120
[   99.162284][ T7246]  __kmalloc_noprof+0xce/0x4f0
[   99.162298][ T7246]  ? drm_atomic_state_init+0x17e/0x320
[   99.162316][ T7246]  drm_atomic_state_init+0x17e/0x320
[   99.162330][ T7246]  ? __kasan_kmalloc+0xaa/0xb0
[   99.162343][ T7246]  drm_atomic_state_alloc+0xd3/0x120
[   99.162359][ T7246]  drm_client_modeset_commit_atomic+0xd1/0x7f0
[   99.162373][ T7246]  ? drm_client_modeset_commit_locked+0x4c/0x580
[   99.162387][ T7246]  ? rcu_is_watching+0x12/0xc0
[   99.162401][ T7246]  ? trace_contention_end+0xee/0x140
[   99.162413][ T7246]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[   99.162425][ T7246]  ? __mutex_lock+0x1cc/0xa60
[   99.162447][ T7246]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   99.162464][ T7246]  drm_client_modeset_commit_locked+0x14d/0x580
[   99.162479][ T7246]  drm_fb_helper_pan_display+0x2a5/0x990
[   99.162500][ T7246]  fb_pan_display+0x477/0x7d0
[   99.162515][ T7246]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[   99.162533][ T7246]  bit_update_start+0x49/0x1f0
[   99.162551][ T7246]  fbcon_switch+0xc11/0x14f0
[   99.162571][ T7246]  ? __pfx_fbcon_switch+0x10/0x10
[   99.162596][ T7246]  ? __pfx_bit_cursor+0x10/0x10
[   99.162606][ T7246]  ? fbcon_cursor+0x409/0x5f0
[   99.162622][ T7246]  ? is_console_locked+0x9/0x20
[   99.162636][ T7246]  ? con_is_visible+0x65/0x150
[   99.162650][ T7246]  redraw_screen+0x2bf/0x760
[   99.162663][ T7246]  ? __pfx_redraw_screen+0x10/0x10
[   99.162680][ T7246]  fbcon_do_set_font+0x5e7/0x910
[   99.162700][ T7246]  fbcon_set_def_font+0x18b/0x2b0
[   99.162717][ T7246]  con_font_op+0xa60/0xf50
[   99.162732][ T7246]  ? __might_fault+0x13b/0x190
[   99.162748][ T7246]  ? __pfx_con_font_op+0x10/0x10
[   99.162763][ T7246]  ? lock_acquire+0x2f/0xb0
[   99.162773][ T7246]  ? __might_fault+0xe3/0x190
[   99.162793][ T7246]  vt_compat_ioctl+0x36b/0x4e0
[   99.162805][ T7246]  ? __pfx_vt_compat_ioctl+0x10/0x10
[   99.162821][ T7246]  ? __fget_files+0x206/0x3a0
[   99.162833][ T7246]  ? __pfx_vt_compat_ioctl+0x10/0x10
[   99.162845][ T7246]  tty_compat_ioctl+0x2ee/0x4d0
[   99.162859][ T7246]  ? __pfx_tty_compat_ioctl+0x10/0x10
[   99.162873][ T7246]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   99.162885][ T7246]  __do_fast_syscall_32+0x73/0x120
[   99.162899][ T7246]  do_fast_syscall_32+0x32/0x80
[   99.162913][ T7246]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   99.162928][ T7246] RIP: 0023:0xf7f15579
[   99.162938][ T7246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   99.162947][ T7246] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   99.162958][ T7246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004b72
[   99.162965][ T7246] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000
[   99.162972][ T7246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   99.162978][ T7246] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   99.162985][ T7246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   99.162998][ T7246]  </TASK>
[   99.229996][ T7252] bridge0: port 3(syz_tun) entered blocking state
[   99.230121][ T7252] bridge0: port 3(syz_tun) entered disabled state
[   99.293271][ T7252] syz_tun: entered allmulticast mode
[   99.294913][ T7252] syz_tun: entered promiscuous mode
[   99.297777][ T7252] bridge0: port 3(syz_tun) entered blocking state
[   99.299718][ T7252] bridge0: port 3(syz_tun) entered forwarding state
[   99.469805][ T7275] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.251'.
[   99.474004][ T7275] net_ratelimit: 4 callbacks suppressed
[   99.474040][ T7275] netlink: zone id is out of range
[   99.477917][ T7275] netlink: zone id is out of range
[   99.479793][ T7275] netlink: zone id is out of range
[   99.482096][ T7275] netlink: zone id is out of range
[   99.485393][ T7275] netlink: zone id is out of range
[   99.488506][ T7275] netlink: zone id is out of range
[  100.397026][ T4438] vhci_hcd: vhci_device speed not set
[  100.474915][    C2] vcan0: j1939_tp_rxtimer: 0xffff888063b1a000: rx timeout, send abort
[  100.478512][    C2] vcan0: j1939_xtp_rx_abort_one: 0xffff888063b1a000: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  100.602320][ T7313] input: syz0 as /devices/virtual/input/input23
[  100.644823][ T7314] netlink: 188 bytes leftover after parsing attributes in process `syz.3.264'.
[  100.654103][ T7314] netlink: 'syz.3.264': attribute type 1 has an invalid length.
[  101.145235][  T103] libceph: connect (1)[c::]:6789 error -101
[  101.150941][  T103] libceph: mon0 (1)[c::]:6789 connect error
[  101.440244][  T103] libceph: connect (1)[c::]:6789 error -101
[  101.442724][  T103] libceph: mon0 (1)[c::]:6789 connect error
[  101.450158][ T7345] »»»»»» speed is unknown, defaulting to 1000
[  101.626066][ T7360] input: syz0 as /devices/virtual/input/input24
[  101.899034][ T7371] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  101.901024][ T7371] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  101.903741][ T7371] vhci_hcd vhci_hcd.0: Device attached
[  101.945937][ T7324] ceph: No mds server is up or the cluster is laggy
[  101.961143][  T103] libceph: connect (1)[c::]:6789 error -101
[  101.964575][  T103] libceph: mon0 (1)[c::]:6789 connect error
[  101.977977][ T7383] netlink: 4 bytes leftover after parsing attributes in process `syz.2.284'.
[  102.039298][ T7387] IPv6: addrconf: prefix option has invalid lifetime
[  102.588493][ T7378] vhci_hcd: connection closed
[  102.589351][ T1131] vhci_hcd: stop threads
[  102.591817][ T1131] vhci_hcd: release socket
[  102.593518][ T1131] vhci_hcd: disconnect device
[  102.647633][ T4438] vhci_hcd: vhci_device speed not set
[  103.011831][ T7406] FAULT_INJECTION: forcing a failure.
[  103.011831][ T7406] name failslab, interval 1, probability 0, space 0, times 0
[  103.015274][ T7406] CPU: 1 UID: 0 PID: 7406 Comm: syz.0.291 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  103.018100][ T7406] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.020920][ T7406] Call Trace:
[  103.021811][ T7406]  <TASK>
[  103.022625][ T7406]  dump_stack_lvl+0x16c/0x1f0
[  103.023895][ T7406]  should_fail_ex+0x497/0x5b0
[  103.025162][ T7406]  ? fs_reclaim_acquire+0xae/0x150
[  103.026550][ T7406]  should_failslab+0xc2/0x120
[  103.027818][ T7406]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  103.029372][ T7406]  ? __alloc_skb+0x2b3/0x380
[  103.030628][ T7406]  __alloc_skb+0x2b3/0x380
[  103.031829][ T7406]  ? __pfx___alloc_skb+0x10/0x10
[  103.033159][ T7406]  ? aa_get_newest_label+0x376/0x680
[  103.034603][ T7406]  ? rcu_is_watching+0x12/0xc0
[  103.035899][ T7406]  alloc_skb_with_frags+0xe4/0x850
[  103.037294][ T7406]  sock_alloc_send_pskb+0x7f1/0x980
[  103.038698][ T7406]  ? security_capable+0x7e/0x260
[  103.040022][ T7406]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  103.041534][ T7406]  ? msg_zerocopy_realloc+0x42f/0x890
[  103.042977][ T7406]  __ip6_append_data.isra.0+0x2ac3/0x45e0
[  103.044543][ T7406]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  103.046024][ T7406]  ? __pfx___ip6_append_data.isra.0+0x10/0x10
[  103.047639][ T7406]  ? ip6_mtu+0x231/0x4a0
[  103.048822][ T7406]  ? ip6_setup_cork+0xc60/0x1460
[  103.050233][ T7406]  ip6_make_skb+0x30b/0x4e0
[  103.051458][ T7406]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  103.052931][ T7406]  ? __pfx_ip6_make_skb+0x10/0x10
[  103.054289][ T7406]  ? sk_dst_check+0x1da/0x540
[  103.055558][ T7406]  ? udpv6_sendmsg+0x2510/0x3040
[  103.056895][ T7406]  udpv6_sendmsg+0x2510/0x3040
[  103.058193][ T7406]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  103.059678][ T7406]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  103.061047][ T7406]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  103.062513][ T7406]  ? __pfx_aa_sk_perm+0x10/0x10
[  103.063847][ T7406]  ? __import_iovec+0x1f2/0x6d0
[  103.065159][ T7406]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  103.066536][ T7406]  ? inet6_sendmsg+0x105/0x140
[  103.067821][ T7406]  inet6_sendmsg+0x105/0x140
[  103.069064][ T7406]  ____sys_sendmsg+0x649/0xb40
[  103.070356][ T7406]  ? __pfx_____sys_sendmsg+0x10/0x10
[  103.071770][ T7406]  ? get_compat_msghdr+0x11b/0x170
[  103.073148][ T7406]  ___sys_sendmsg+0x135/0x1e0
[  103.074441][ T7406]  ? __pfx____sys_sendmsg+0x10/0x10
[  103.075836][ T7406]  ? trace_lock_acquire+0x14e/0x1f0
[  103.077236][ T7406]  __sys_sendmmsg+0x2fa/0x420
[  103.078511][ T7406]  ? __pfx___sys_sendmmsg+0x10/0x10
[  103.079898][ T7406]  ? fput+0x67/0x440
[  103.080939][ T7406]  ? ksys_write+0x1ba/0x250
[  103.082140][ T7406]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  103.083590][ T7406]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  103.085279][ T7406]  __do_fast_syscall_32+0x73/0x120
[  103.086669][ T7406]  do_fast_syscall_32+0x32/0x80
[  103.088022][ T7406]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  103.089708][ T7406] RIP: 0023:0xf7f55579
[  103.090809][ T7406] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  103.095906][ T7406] RSP: 002b:00000000f506455c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  103.098153][ T7406] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020003cc0
[  103.100245][ T7406] RDX: 0000000000000172 RSI: 0000000004001c00 RDI: 0000000000000000
[  103.102338][ T7406] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  103.104428][ T7406] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  103.106529][ T7406] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.108628][ T7406]  </TASK>
[  103.190399][ T7410] input: syz1 as /devices/virtual/input/input25
[  103.531994][ T7433] input: syz0 as /devices/virtual/input/input26
[  104.989326][ T7473] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  104.993935][ T7473] overlayfs: fs on './file0' does not support file handles, falling back to xino=off.
[  105.270029][ T7489] input: syz0 as /devices/virtual/input/input28
[  105.367207][    C3] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  105.541865][ T7501] raw_sendmsg: syz.0.315 forgot to set AF_INET. Fix it!
[  105.896627][ T7507] No control pipe specified
[  105.931912][ T7518] netlink: 48 bytes leftover after parsing attributes in process `syz.1.318'.
[  106.155218][ T7519] netlink: 'syz.1.318': attribute type 10 has an invalid length.
[  106.158837][ T7519] netlink: 40 bytes leftover after parsing attributes in process `syz.1.318'.
[  106.187318][ T7519] team0: Port device geneve0 added
[  106.298638][ T7494] netlink: 32 bytes leftover after parsing attributes in process `syz.2.312'.
[  106.307090][ T7494] »»»»»» speed is unknown, defaulting to 1000
[  107.153552][ T7552] netlink: 'syz.1.326': attribute type 5 has an invalid length.
[  107.157313][ T7553] netlink: 'syz.1.326': attribute type 5 has an invalid length.
[  107.465317][ T7564] netlink: 187320 bytes leftover after parsing attributes in process `syz.0.329'.
[  107.469214][ T7564] netlink: zone id is out of range
[  107.470928][ T7564] netlink: zone id is out of range
[  107.475025][ T7564] netlink: zone id is out of range
[  107.477314][ T7564] netlink: zone id is out of range
[  107.480751][ T7564] netlink: zone id is out of range
[  107.507483][ T7566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.330'.
[  107.688478][ T7576] 0000: renamed from bridge_slave_0 (while UP)
[  107.695751][ T7576] bridge0: port 1(0000) entered disabled state
[  107.736187][   T40] audit: type=1400 audit(1735930995.026:7): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=7580 comm="syz.3.335"
[  107.972720][ T7601] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[  108.440776][ T7614] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.340'.
[  108.443419][ T7614] netlink: zone id is out of range
[  108.444957][ T7614] netlink: zone id is out of range
[  108.446408][ T7614] netlink: zone id is out of range
[  108.453184][ T7614] netlink: zone id is out of range
[  108.455396][ T7614] netlink: zone id is out of range
[  108.816636][ T7640] FAULT_INJECTION: forcing a failure.
[  108.816636][ T7640] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  108.831932][ T7640] CPU: 3 UID: 0 PID: 7640 Comm: syz.0.349 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  108.835134][ T7640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.838366][ T7640] Call Trace:
[  108.839383][ T7640]  <TASK>
[  108.840284][ T7640]  dump_stack_lvl+0x16c/0x1f0
[  108.841721][ T7640]  should_fail_ex+0x497/0x5b0
[  108.843153][ T7640]  ? fs_reclaim_acquire+0xae/0x150
[  108.844716][ T7640]  should_fail_alloc_page+0xe7/0x130
[  108.846513][ T7640]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  108.848366][ T7640]  ? mark_lock+0xb5/0xc60
[  108.849688][ T7640]  __alloc_pages_noprof+0x190/0x25b0
[  108.851393][ T7640]  ? __pfx_mark_lock+0x10/0x10
[  108.852853][ T7640]  ? hlock_class+0x4e/0x130
[  108.854247][ T7640]  ? mark_lock+0xb5/0xc60
[  108.855561][ T7640]  ? hlock_class+0x4e/0x130
[  108.856941][ T7640]  ? __pfx_mark_lock+0x10/0x10
[  108.858393][ T7640]  ? mark_lock+0xb5/0xc60
[  108.859710][ T7640]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  108.861418][ T7640]  ? hlock_class+0x4e/0x130
[  108.862803][ T7640]  ? mark_lock+0xb5/0xc60
[  108.864130][ T7640]  ? __pfx_mark_lock+0x10/0x10
[  108.865574][ T7640]  ? hlock_class+0x4e/0x130
[  108.866970][ T7640]  ? __lock_acquire+0xcc5/0x3c40
[  108.868474][ T7640]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  108.870275][ T7640]  ? policy_nodemask+0xea/0x4e0
[  108.872068][ T7640]  alloc_pages_mpol_noprof+0x2c9/0x610
[  108.873729][ T7640]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  108.875550][ T7640]  ? __lock_acquire+0xcc5/0x3c40
[  108.877058][ T7640]  folio_alloc_mpol_noprof+0x36/0xd0
[  108.878655][ T7640]  vma_alloc_folio_noprof+0xee/0x1b0
[  108.880245][ T7640]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  108.882031][ T7640]  ? find_held_lock+0x2d/0x110
[  108.883487][ T7640]  do_pte_missing+0x2017/0x3e00
[  108.885000][ T7640]  __handle_mm_fault+0x103c/0x2a40
[  108.886569][ T7640]  ? __pfx___handle_mm_fault+0x10/0x10
[  108.888271][ T7640]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  108.889998][ T7640]  ? find_vma+0xc0/0x140
[  108.891297][ T7640]  ? __pfx_find_vma+0x10/0x10
[  108.892729][ T7640]  handle_mm_fault+0x3fa/0xaa0
[  108.894156][ T7640]  do_user_addr_fault+0x7a3/0x13f0
[  108.895673][ T7640]  exc_page_fault+0x5c/0xc0
[  108.897053][ T7640]  asm_exc_page_fault+0x26/0x30
[  108.898726][ T7640] RIP: 0010:_copy_to_iter+0x52a/0x1400
[  108.900364][ T7640] Code: e8 db 6d 02 fd 48 8b 4c 24 18 44 89 e6 48 8b 44 24 28 4c 8d 2c 01 4c 89 ef e8 b2 e5 64 fd 0f 01 cb 4c 89 e1 4c 89 f7 4c 89 ee <f3> a4 0f 1f 00 0f 01 ca 4c 89 e0 4d 29 e7 48 29 c8 49 01 cf 48 01
[  108.906113][ T7640] RSP: 0018:ffffc900069179c0 EFLAGS: 00050246
[  108.907923][ T7640] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000096
[  108.910284][ T7640] RDX: ffffed10000be013 RSI: ffff8880005f0000 RDI: 0000000020004c80
[  108.912651][ T7640] RBP: ffffc90006917bc8 R08: 0000000000000000 R09: ffffed10000be012
[  108.915016][ T7640] R10: ffff8880005f0095 R11: 0000000000000000 R12: 0000000000000096
[  108.917392][ T7640] R13: ffff8880005f0000 R14: 0000000020004c80 R15: 0000000000000096
[  108.919775][ T7640]  ? __pfx__copy_to_iter+0x10/0x10
[  108.921318][ T7640]  ? __virt_addr_valid+0x1a4/0x590
[  108.922859][ T7640]  ? __virt_addr_valid+0x5e/0x590
[  108.924387][ T7640]  ? __phys_addr_symbol+0x30/0x80
[  108.925937][ T7640]  ? __check_object_size+0x4a1/0x710
[  108.927808][ T7640]  seq_read_iter+0xd00/0x12b0
[  108.929315][ T7640]  seq_read+0x39f/0x4e0
[  108.930631][ T7640]  ? __pfx_seq_read+0x10/0x10
[  108.932088][ T7640]  ? __pfx_seq_read+0x10/0x10
[  108.933516][ T7640]  proc_reg_read+0x23d/0x330
[  108.934929][ T7640]  ? __pfx_proc_reg_read+0x10/0x10
[  108.936489][ T7640]  vfs_read+0x1df/0xbe0
[  108.937753][ T7640]  ? __fget_files+0x1fc/0x3a0
[  108.939197][ T7640]  ? __pfx___mutex_lock+0x10/0x10
[  108.940730][ T7640]  ? __pfx_vfs_read+0x10/0x10
[  108.942167][ T7640]  ? __fget_files+0x206/0x3a0
[  108.943600][ T7640]  ksys_read+0x12b/0x250
[  108.944889][ T7640]  ? __pfx_ksys_read+0x10/0x10
[  108.946916][ T7640]  __do_fast_syscall_32+0x73/0x120
[  108.948604][ T7640]  do_fast_syscall_32+0x32/0x80
[  108.950090][ T7640]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.952012][ T7640] RIP: 0023:0xf7f55579
[  108.953255][ T7640] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.959402][ T7640] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[  108.961926][ T7640] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020004c80
[  108.964295][ T7640] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  108.966677][ T7640] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  108.969074][ T7640] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  108.971456][ T7640] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.973809][ T7640]  </TASK>
[  108.974858][    C3] vkms_vblank_simulate: vblank timer overrun
[  109.230425][ T7645] syz.0.351: attempt to access beyond end of device
[  109.230425][ T7645] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  109.237307][ T7645] FAT-fs (nbd0): unable to read boot sector
[  109.244498][ T7648] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.350'.
[  110.395689][ T7679] vivid-007: disconnect
[  110.465687][ T7679] FAULT_INJECTION: forcing a failure.
[  110.465687][ T7679] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  110.469600][ T7679] CPU: 1 UID: 0 PID: 7679 Comm: syz.3.359 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  110.472829][ T7679] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.476010][ T7679] Call Trace:
[  110.477029][ T7679]  <TASK>
[  110.477942][ T7679]  dump_stack_lvl+0x16c/0x1f0
[  110.479364][ T7679]  should_fail_ex+0x497/0x5b0
[  110.480788][ T7679]  _copy_to_user+0x32/0xd0
[  110.482145][ T7679]  __copy_siginfo_to_user32+0x97/0xf0
[  110.483771][ T7679]  ? __pfx___copy_siginfo_to_user32+0x10/0x10
[  110.485602][ T7679]  ? _raw_spin_unlock_irq+0x23/0x50
[  110.487167][ T7679]  ? siginfo_layout+0x177/0x290
[  110.488633][ T7679]  ia32_setup_rt_frame+0x6ce/0xb30
[  110.490177][ T7679]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  110.491857][ T7679]  ? __pfx_vfs_read+0x10/0x10
[  110.493275][ T7679]  ? __fget_files+0x40/0x3a0
[  110.494680][ T7679]  arch_do_signal_or_restart+0x47b/0x7e0
[  110.496371][ T7679]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  110.498239][ T7679]  ? ksys_read+0x1ba/0x250
[  110.499587][ T7679]  ? __pfx_ksys_read+0x10/0x10
[  110.501041][ T7679]  syscall_exit_to_user_mode+0x150/0x2a0
[  110.502741][ T7679]  __do_fast_syscall_32+0x80/0x120
[  110.504283][ T7679]  do_fast_syscall_32+0x32/0x80
[  110.505769][ T7679]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.507667][ T7679] RIP: 0023:0xf7f40577
[  110.508902][ T7679] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 <cd> 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00
[  110.514650][ T7679] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[  110.517127][ T7679] RAX: 0000000000000003 RBX: 0000000000000008 RCX: 0000000020005740
[  110.519501][ T7679] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  110.521864][ T7679] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.524222][ T7679] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.526593][ T7679] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.528965][ T7679]  </TASK>
[  110.584295][ T7684] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.360'.
[  110.587219][ T7680] overlay: Unknown parameter '/'
[  110.655916][ T7678] vivid-007: reconnect
[  110.703089][ T7690] FAULT_INJECTION: forcing a failure.
[  110.703089][ T7690] name failslab, interval 1, probability 0, space 0, times 0
[  110.707945][ T7690] CPU: 1 UID: 0 PID: 7690 Comm: syz.2.362 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  110.711114][ T7690] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.714336][ T7690] Call Trace:
[  110.715361][ T7690]  <TASK>
[  110.716269][ T7690]  dump_stack_lvl+0x16c/0x1f0
[  110.717721][ T7690]  should_fail_ex+0x497/0x5b0
[  110.719160][ T7690]  should_failslab+0xc2/0x120
[  110.720590][ T7690]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  110.722208][ T7690]  ? skb_clone+0x190/0x3f0
[  110.723568][ T7690]  skb_clone+0x190/0x3f0
[  110.724867][ T7690]  netlink_deliver_tap+0xafd/0xca0
[  110.726422][ T7690]  netlink_unicast+0x5e1/0x7f0
[  110.728126][ T7690]  ? __pfx_netlink_unicast+0x10/0x10
[  110.729835][ T7690]  ? __phys_addr_symbol+0x30/0x80
[  110.731356][ T7690]  ? __check_object_size+0x488/0x710
[  110.732952][ T7690]  netlink_sendmsg+0x8b8/0xd70
[  110.734411][ T7690]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.736010][ T7690]  ____sys_sendmsg+0x9ae/0xb40
[  110.737467][ T7690]  ? __pfx_____sys_sendmsg+0x10/0x10
[  110.739076][ T7690]  ? get_compat_msghdr+0x11b/0x170
[  110.740639][ T7690]  ___sys_sendmsg+0x135/0x1e0
[  110.742079][ T7690]  ? __pfx____sys_sendmsg+0x10/0x10
[  110.743654][ T7690]  ? __pfx_lock_release+0x10/0x10
[  110.745175][ T7690]  ? trace_lock_acquire+0x14e/0x1f0
[  110.746761][ T7690]  ? __fget_files+0x206/0x3a0
[  110.748189][ T7690]  __sys_sendmsg+0x16e/0x220
[  110.749601][ T7690]  ? __pfx___sys_sendmsg+0x10/0x10
[  110.751168][ T7690]  __do_fast_syscall_32+0x73/0x120
[  110.752723][ T7690]  do_fast_syscall_32+0x32/0x80
[  110.754232][ T7690]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.756144][ T7690] RIP: 0023:0xf7ff7579
[  110.757398][ T7690] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.763156][ T7690] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  110.765654][ T7690] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240
[  110.768202][ T7690] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  110.770585][ T7690] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.772951][ T7690] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.775322][ T7690] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.777701][ T7690]  </TASK>
[  111.180639][ T7708] netlink: 28 bytes leftover after parsing attributes in process `syz.0.369'.
[  111.304709][ T7712] netlink: 187320 bytes leftover after parsing attributes in process `syz.0.370'.
[  111.403193][ T7721] Cannot find add_set index 0 as target
[  112.188085][ T7747] FAULT_INJECTION: forcing a failure.
[  112.188085][ T7747] name failslab, interval 1, probability 0, space 0, times 0
[  112.197107][ T7747] CPU: 1 UID: 0 PID: 7747 Comm: syz.2.380 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  112.200314][ T7747] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.204238][ T7747] Call Trace:
[  112.205256][ T7747]  <TASK>
[  112.206184][ T7747]  dump_stack_lvl+0x16c/0x1f0
[  112.207689][ T7747]  should_fail_ex+0x497/0x5b0
[  112.209120][ T7747]  ? fs_reclaim_acquire+0xae/0x150
[  112.210701][ T7747]  should_failslab+0xc2/0x120
[  112.212134][ T7747]  __kmalloc_node_noprof+0xd1/0x520
[  112.213811][ T7747]  ? lock_acquire+0x2f/0xb0
[  112.215191][ T7747]  ? __might_fault+0xe3/0x190
[  112.216649][ T7747]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  112.218317][ T7747]  ? __might_fault+0xe3/0x190
[  112.219798][ T7747]  __kvmalloc_node_noprof+0xad/0x1a0
[  112.221392][ T7747]  xt_alloc_table_info+0x3e/0xa0
[  112.222909][ T7747]  compat_do_replace+0x20b/0x500
[  112.224502][ T7747]  ? __pfx_compat_do_replace+0x10/0x10
[  112.226163][ T7747]  ? aa_get_newest_label+0x376/0x680
[  112.227833][ T7747]  ? __pfx_aa_get_newest_label+0x10/0x10
[  112.229531][ T7747]  ? bpf_lsm_capable+0x9/0x10
[  112.230982][ T7747]  ? security_capable+0x7e/0x260
[  112.232480][ T7747]  do_ip6t_set_ctl+0x686/0xc20
[  112.234012][ T7747]  ? __mutex_lock+0x1cc/0xa60
[  112.235437][ T7747]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  112.237161][ T7747]  ? __mutex_unlock_slowpath+0x164/0x690
[  112.238956][ T7747]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  112.240823][ T7747]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  112.242655][ T7747]  nf_setsockopt+0x8a/0xf0
[  112.244264][ T7747]  ipv6_setsockopt+0x135/0x170
[  112.245661][ T7747]  udpv6_setsockopt+0x7d/0xd0
[  112.247073][ T7747]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  112.248819][ T7747]  do_sock_setsockopt+0x222/0x480
[  112.250378][ T7747]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  112.252006][ T7747]  ? lock_acquire+0x2f/0xb0
[  112.253344][ T7747]  __sys_setsockopt+0x1a0/0x230
[  112.254819][ T7747]  __ia32_sys_setsockopt+0xbc/0x160
[  112.256343][ T7747]  ? lockdep_hardirqs_on+0x7c/0x110
[  112.257952][ T7747]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  112.259945][ T7747]  __do_fast_syscall_32+0x73/0x120
[  112.261500][ T7747]  do_fast_syscall_32+0x32/0x80
[  112.263067][ T7747]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.264989][ T7747] RIP: 0023:0xf7ff7579
[  112.266238][ T7747] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  112.272146][ T7747] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  112.274681][ T7747] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029
[  112.277061][ T7747] RDX: 0000000000000040 RSI: 00000000200006c0 RDI: 0000000000000344
[  112.279469][ T7747] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  112.281914][ T7747] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  112.284267][ T7747] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.286982][ T7747]  </TASK>
[  112.662702][ T7771] input: syz0 as /devices/virtual/input/input29
[  112.834460][ T7782] FAULT_INJECTION: forcing a failure.
[  112.834460][ T7782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.842563][ T7782] CPU: 3 UID: 0 PID: 7782 Comm: syz.3.389 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  112.846606][ T7782] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.850712][ T7782] Call Trace:
[  112.852044][ T7782]  <TASK>
[  112.853233][ T7782]  dump_stack_lvl+0x16c/0x1f0
[  112.855094][ T7782]  should_fail_ex+0x497/0x5b0
[  112.856969][ T7782]  _copy_from_user+0x2e/0xd0
[  112.858797][ T7782]  move_addr_to_kernel+0x68/0x160
[  112.860690][ T7782]  __get_compat_msghdr+0x3f1/0x4d0
[  112.862733][ T7782]  get_compat_msghdr+0xd3/0x170
[  112.864604][ T7782]  ? __pfx_get_compat_msghdr+0x10/0x10
[  112.866794][ T7782]  ___sys_sendmsg+0x1b0/0x1e0
[  112.868610][ T7782]  ? __pfx____sys_sendmsg+0x10/0x10
[  112.870700][ T7782]  ? trace_lock_acquire+0x14e/0x1f0
[  112.872690][ T7782]  __sys_sendmmsg+0x2fa/0x420
[  112.874555][ T7782]  ? __pfx___sys_sendmmsg+0x10/0x10
[  112.876608][ T7782]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  112.878937][ T7782]  ? fput+0x67/0x440
[  112.880517][ T7782]  ? ksys_write+0x1ba/0x250
[  112.882259][ T7782]  ? __pfx_ksys_write+0x10/0x10
[  112.884215][ T7782]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  112.886408][ T7782]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  112.888939][ T7782]  __do_fast_syscall_32+0x73/0x120
[  112.890988][ T7782]  do_fast_syscall_32+0x32/0x80
[  112.892800][ T7782]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.895322][ T7782] RIP: 0023:0xf7f40579
[  112.896891][ T7782] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  112.904399][ T7782] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  112.907614][ T7782] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0
[  112.910647][ T7782] RDX: 0000000000000001 RSI: 0000000000000041 RDI: 0000000000000000
[  112.913719][ T7782] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  112.916792][ T7782] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  112.919850][ T7782] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.922900][ T7782]  </TASK>
[  113.234591][ T7788] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.393'.
[  113.238905][ T7788] net_ratelimit: 17 callbacks suppressed
[  113.238914][ T7788] netlink: zone id is out of range
[  113.244021][ T7788] netlink: zone id is out of range
[  113.244040][ T7788] netlink: zone id is out of range
[  113.244049][ T7788] netlink: zone id is out of range
[  113.244055][ T7788] netlink: zone id is out of range
[  113.250906][ T7788] netlink: zone id is out of range
[  113.252708][ T7788] netlink: zone id is out of range
[  113.657954][ T7819] /dev/nullb0: Can't open blockdev
[  113.662198][ T7818] /dev/nullb0: Can't open blockdev
[  114.493543][ T7837] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.404'.
[  114.496481][ T7837] netlink: zone id is out of range
[  114.500865][ T7837] netlink: zone id is out of range
[  114.502481][ T7837] netlink: zone id is out of range
[  114.563222][ T7844] Cannot find add_set index 0 as target
[  114.619941][ T7842] 9pnet_fd: Insufficient options for proto=fd
[  114.732541][ T7856] input: syz0 as /devices/virtual/input/input30
[  116.505451][ T7915] random: crng reseeded on system resumption
[  116.596972][   T25] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  116.746918][   T25] usb 6-1: Using ep0 maxpacket: 8
[  116.750041][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  116.753634][   T25] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  116.756579][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.764106][   T25] usb 6-1: config 0 descriptor??
[  116.976784][   T25] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  117.286972][ T5947] Bluetooth: hci1: command tx timeout
[  118.410547][ T7957] net_ratelimit: 7 callbacks suppressed
[  118.410558][ T7957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.417630][ T7957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.420897][ T7957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.424040][ T7957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.426612][ T7957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.431615][ T7956] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.669567][  T103] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.997713][ T7969] input: syz0 as /devices/virtual/input/input32
[  119.293051][   T11] wlan1: Trigger new scan to find an IBSS to join
[  119.295587][   T11] ------------[ cut here ]------------
[  119.297329][   T11] WARNING: CPU: 1 PID: 11 at net/mac80211/scan.c:1213 ieee80211_request_ibss_scan+0x7b8/0x9a0
[  119.300362][   T11] Modules linked in:
[  119.301705][   T11] CPU: 1 UID: 0 PID: 11 Comm: kworker/u32:0 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  119.306125][   T11] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.309395][   T11] Workqueue: events_unbound cfg80211_wiphy_work
[  119.311261][   T11] RIP: 0010:ieee80211_request_ibss_scan+0x7b8/0x9a0
[  119.313215][   T11] Code: e9 3b fb ff ff e8 88 df 08 f7 be 04 00 00 00 bf 06 00 00 00 41 bd 04 00 00 00 e8 b3 e1 08 f7 e9 3b fd ff ff e8 69 df 08 f7 90 <0f> 0b 90 bb ea ff ff ff e9 6e fc ff ff 48 c7 c7 54 18 1d 90 e8 6f
[  119.318965][   T11] RSP: 0018:ffffc900001d7988 EFLAGS: 00010293
[  119.320777][   T11] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8a906fc0
[  119.323122][   T11] RDX: ffff88801c6f2440 RSI: ffffffff8a907057 RDI: 0000000000000005
[  119.325453][   T11] RBP: ffff888065751720 R08: 0000000000000005 R09: 0000000000000000
[  119.327858][   T11] R10: 0000000000000000 R11: 0000000000000003 R12: 0000000000000005
[  119.330192][   T11] R13: 0000000000000006 R14: dffffc0000000000 R15: ffff888066fa0e40
[  119.332510][   T11] FS:  0000000000000000(0000) GS:ffff88802b500000(0000) knlGS:0000000000000000
[  119.335140][   T11] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  119.337121][   T11] CR2: 00000000f3ef0218 CR3: 000000001f2d2000 CR4: 0000000000352ef0
[  119.339441][   T11] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  119.341783][   T11] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  119.344106][   T11] Call Trace:
[  119.345097][   T11]  <TASK>
[  119.345987][   T11]  ? __warn+0xea/0x3c0
[  119.347317][   T11]  ? ieee80211_request_ibss_scan+0x7b8/0x9a0
[  119.349104][   T11]  ? report_bug+0x3c0/0x580
[  119.350480][   T11]  ? handle_bug+0x54/0xa0
[  119.351764][   T11]  ? exc_invalid_op+0x17/0x50
[  119.352279][ T1334] usb 6-1: USB disconnect, device number 2
[  119.353166][   T11]  ? asm_exc_invalid_op+0x1a/0x20
[  119.356566][   T11]  ? ieee80211_request_ibss_scan+0x720/0x9a0
[  119.358417][   T11]  ? ieee80211_request_ibss_scan+0x7b7/0x9a0
[  119.360228][   T11]  ? ieee80211_request_ibss_scan+0x7b8/0x9a0
[  119.362042][   T11]  ? ieee80211_request_ibss_scan+0x7b7/0x9a0
[  119.364044][   T11]  ieee80211_ibss_work+0x107f/0x14c0
[  119.365634][   T11]  ? __pfx_ieee80211_ibss_work+0x10/0x10
[  119.367483][   T11]  ? lock_acquire.part.0+0x11b/0x380
[  119.369103][   T11]  ? find_held_lock+0x2d/0x110
[  119.370541][   T11]  ? skb_dequeue+0x126/0x180
[  119.371929][   T11]  ? mark_held_locks+0x9f/0xe0
[  119.373462][   T11]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  119.373477][   T11]  ? lockdep_hardirqs_on+0x7c/0x110
[  119.373490][   T11]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  119.373503][   T11]  ieee80211_iface_work+0xd01/0xf00
[  119.380348][   T11]  cfg80211_wiphy_work+0x3de/0x560
[  119.381884][   T11]  process_one_work+0x958/0x1b30
[  119.383352][   T11]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  119.385031][   T11]  ? __pfx_process_one_work+0x10/0x10
[  119.386682][   T11]  ? rcu_is_watching+0x12/0xc0
[  119.388453][   T11]  ? assign_work+0x1a0/0x250
[  119.390370][   T11]  worker_thread+0x6c8/0xf00
[  119.392236][   T11]  ? __pfx_worker_thread+0x10/0x10
[  119.393918][   T11]  kthread+0x2c1/0x3a0
[  119.395138][   T11]  ? _raw_spin_unlock_irq+0x23/0x50
[  119.396693][   T11]  ? __pfx_kthread+0x10/0x10
[  119.398123][   T11]  ret_from_fork+0x45/0x80
[  119.399472][   T11]  ? __pfx_kthread+0x10/0x10
[  119.400883][   T11]  ret_from_fork_asm+0x1a/0x30
[  119.402326][   T11]  </TASK>
[  119.403272][   T11] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  119.405397][   T11] CPU: 1 UID: 0 PID: 11 Comm: kworker/u32:0 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  119.408544][   T11] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.411730][   T11] Workqueue: events_unbound cfg80211_wiphy_work
[  119.413586][   T11] Call Trace:
[  119.414575][   T11]  <TASK>
[  119.415439][   T11]  dump_stack_lvl+0x3d/0x1f0
[  119.416855][   T11]  panic+0x71d/0x800
[  119.418053][   T11]  ? __pfx_panic+0x10/0x10
[  119.419397][   T11]  ? show_trace_log_lvl+0x29d/0x3d0
[  119.420994][   T11]  ? check_panic_on_warn+0x1f/0xb0
[  119.422548][   T11]  ? ieee80211_request_ibss_scan+0x7b8/0x9a0
[  119.424359][   T11]  check_panic_on_warn+0xab/0xb0
[  119.425859][   T11]  __warn+0xf6/0x3c0
[  119.427040][   T11]  ? ieee80211_request_ibss_scan+0x7b8/0x9a0
[  119.428811][   T11]  report_bug+0x3c0/0x580
[  119.430245][   T11]  handle_bug+0x54/0xa0
[  119.431715][   T11]  exc_invalid_op+0x17/0x50
[  119.433088][   T11]  asm_exc_invalid_op+0x1a/0x20
[  119.434588][   T11] RIP: 0010:ieee80211_request_ibss_scan+0x7b8/0x9a0
[  119.436566][   T11] Code: e9 3b fb ff ff e8 88 df 08 f7 be 04 00 00 00 bf 06 00 00 00 41 bd 04 00 00 00 e8 b3 e1 08 f7 e9 3b fd ff ff e8 69 df 08 f7 90 <0f> 0b 90 bb ea ff ff ff e9 6e fc ff ff 48 c7 c7 54 18 1d 90 e8 6f
[  119.442207][   T11] RSP: 0018:ffffc900001d7988 EFLAGS: 00010293
[  119.444038][   T11] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8a906fc0
[  119.446406][   T11] RDX: ffff88801c6f2440 RSI: ffffffff8a907057 RDI: 0000000000000005
[  119.448770][   T11] RBP: ffff888065751720 R08: 0000000000000005 R09: 0000000000000000
[  119.451173][   T11] R10: 0000000000000000 R11: 0000000000000003 R12: 0000000000000005
[  119.453524][   T11] R13: 0000000000000006 R14: dffffc0000000000 R15: ffff888066fa0e40
[  119.456145][   T11]  ? ieee80211_request_ibss_scan+0x720/0x9a0
[  119.457985][   T11]  ? ieee80211_request_ibss_scan+0x7b7/0x9a0
[  119.459793][   T11]  ? ieee80211_request_ibss_scan+0x7b7/0x9a0
[  119.461607][   T11]  ieee80211_ibss_work+0x107f/0x14c0
[  119.463202][   T11]  ? __pfx_ieee80211_ibss_work+0x10/0x10
[  119.464888][   T11]  ? lock_acquire.part.0+0x11b/0x380
[  119.466482][   T11]  ? find_held_lock+0x2d/0x110
[  119.467930][   T11]  ? skb_dequeue+0x126/0x180
[  119.469349][   T11]  ? mark_held_locks+0x9f/0xe0
[  119.470856][   T11]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  119.472607][   T11]  ? lockdep_hardirqs_on+0x7c/0x110
[  119.474194][   T11]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  119.475934][   T11]  ieee80211_iface_work+0xd01/0xf00
[  119.477511][   T11]  cfg80211_wiphy_work+0x3de/0x560
[  119.479069][   T11]  process_one_work+0x958/0x1b30
[  119.480561][   T11]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  119.482243][   T11]  ? __pfx_process_one_work+0x10/0x10
[  119.483883][   T11]  ? rcu_is_watching+0x12/0xc0
[  119.485335][   T11]  ? assign_work+0x1a0/0x250
[  119.486755][   T11]  worker_thread+0x6c8/0xf00
[  119.488168][   T11]  ? __pfx_worker_thread+0x10/0x10
[  119.489714][   T11]  kthread+0x2c1/0x3a0
[  119.491058][   T11]  ? _raw_spin_unlock_irq+0x23/0x50
[  119.492655][   T11]  ? __pfx_kthread+0x10/0x10
[  119.494037][   T11]  ret_from_fork+0x45/0x80
[  119.495377][   T11]  ? __pfx_kthread+0x10/0x10
[  119.496783][   T11]  ret_from_fork_asm+0x1a/0x30
[  119.498236][   T11]  </TASK>
[  119.499664][   T11] Kernel Offset: disabled
[  119.501015][   T11] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:03:26  Registers:
info registers vcpu 0

CPU#0
RAX=00000004000008fb RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000004
RSI=00000000000000fb RDI=0000000000000004 RBP=0000000000000002 RSP=ffffc90000007e20
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffffff816b5cae
R12=0000000000000002 R13=0000000000000000 R14=ffff88802b63ed00 R15=ffff88801f674c01
RIP=ffffffff8147a098 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3e3a52 CR3=0000000000b32000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004c00000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000002f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85143475 RDI=ffffffff9a667200 RBP=ffffffff9a6671c0 RSP=ffffc900001d72e8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000007
R12=0000000000000000 R13=000000000000002f R14=ffffffff85143410 R15=0000000000000000
RIP=ffffffff8514349f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f3ef0218 CR3=000000001f2d2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000e000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000272c65 RBX=0000000000000002 RCX=ffffffff8b1a4819 RDX=0000000000000000
RSI=ffffffff8b4cd300 RDI=ffffffff8bb17100 RBP=ffffed10039df000 RSP=ffffc9000048fe08
R8 =0000000000000001 R9 =ffffed10056c6fed R10=ffff88802b637f6b R11=0000000000000000
R12=0000000000000002 R13=ffff88801cef8000 R14=ffffffff901ce550 R15=0000000000000000
RIP=ffffffff8b1a5bff RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020019f50 CR3=0000000025136000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7423ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000023e0f9 RBX=0000000000000003 RCX=ffffffff8b1a4819 RDX=0000000000000000
RSI=ffffffff8b4cd300 RDI=ffffffff8bb17100 RBP=ffffed10039df488 RSP=ffffc9000049fe08
R8 =0000000000000001 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000
R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901ce550 R15=0000000000000000
RIP=ffffffff8b1a5bff RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020021000 CR3=000000006d13a000 CR4=00352ef0
DR0=0000000000000003 DR1=0000000000000000 DR2=0000000100000004 DR3=0000000000000006 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000e000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000