last executing test programs:

42.350613906s ago: executing program 0 (id=1086):
r0 = socket(0x21, 0x2, 0x10000000000002)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000680)={{{@in=@multicast1, @in6}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000080)=0xe8)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'ipvlan1\x00'})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000e00)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000000380), &(0x7f0000000100)=0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4841}, 0x40080)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, 0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)="89ef1284c86555bfe69b541fc18b8f329814f57bd00b1b3a")
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000872000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6e684000)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)

34.470647557s ago: executing program 0 (id=1086):
r0 = socket(0x21, 0x2, 0x10000000000002)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000680)={{{@in=@multicast1, @in6}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000080)=0xe8)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'ipvlan1\x00'})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000e00)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000000380), &(0x7f0000000100)=0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4841}, 0x40080)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, 0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)="89ef1284c86555bfe69b541fc18b8f329814f57bd00b1b3a")
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000872000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6e684000)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)

26.60087982s ago: executing program 0 (id=1086):
r0 = socket(0x21, 0x2, 0x10000000000002)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000680)={{{@in=@multicast1, @in6}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000080)=0xe8)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'ipvlan1\x00'})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000e00)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000000380), &(0x7f0000000100)=0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4841}, 0x40080)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, 0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)="89ef1284c86555bfe69b541fc18b8f329814f57bd00b1b3a")
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000872000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6e684000)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)

18.671397631s ago: executing program 0 (id=1086):
r0 = socket(0x21, 0x2, 0x10000000000002)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000680)={{{@in=@multicast1, @in6}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000080)=0xe8)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'ipvlan1\x00'})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000e00)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000000380), &(0x7f0000000100)=0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4841}, 0x40080)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, 0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)="89ef1284c86555bfe69b541fc18b8f329814f57bd00b1b3a")
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000872000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6e684000)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)

10.13439714s ago: executing program 0 (id=1086):
r0 = socket(0x21, 0x2, 0x10000000000002)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000680)={{{@in=@multicast1, @in6}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000080)=0xe8)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'ipvlan1\x00'})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000e00)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000000380), &(0x7f0000000100)=0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4841}, 0x40080)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, 0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)="89ef1284c86555bfe69b541fc18b8f329814f57bd00b1b3a")
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000872000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6e684000)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)

3.696981802s ago: executing program 3 (id=1435):
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x2, 0x80805, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x5608, 0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r3, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0, 0x1})
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r3, 0x7a6, &(0x7f00000000c0)={0xfffffffffffffffe, 0x2, 0x9, 0x203, 0x0, 0x6})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r5, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0x6, 0x1}}, 0x20)
bpf$LINK_DETACH(0x22, &(0x7f00000001c0)=r6, 0x4)
bpf$LINK_DETACH(0x22, &(0x7f00000000c0)=r6, 0x4)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e23, 0xd7e, @empty, 0x7}, 0x1c)
recvmmsg(r4, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000300)=""/154, 0x9a}, {&(0x7f0000000b00)=""/176, 0xff25}, {&(0x7f0000003300)=""/4082, 0xff2}, {&(0x7f0000000680)=""/122, 0x6a}, {&(0x7f0000000c00)=""/223, 0xe1}], 0x5}, 0x1}], 0x64, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r4, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r7, @ANYBLOB="030704707900000000000100040004000180"], 0x18}}, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000140))

2.668039798s ago: executing program 3 (id=1436):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000002c0)={0x2001}, 0x10, 0x0)
landlock_restrict_self(r1, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0)=@o_path={0x0}, 0x18)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000009000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="02000000050000f59004"])
bind$unix(r0, &(0x7f0000003000)=@file={0x1}, 0x6e)
listen(r0, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(r6, 0x0, 0x482, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r6, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e24, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x6}}, 0x0, 0x0, 0x42, 0x0, "b2ca2f0ab7ec983d1b36b29d937cee471d369b0990d008275e6c1a06f6a80c1c642c7b126264fcb0a71a6d351b85575064fff99f60c04e7cc011dff3b09dd11b7cb2c64bf838ba632112448850a547d2"}, 0xd8)
r7 = landlock_create_ruleset(&(0x7f00000002c0)={0x2, 0x3}, 0x18, 0x0)
landlock_restrict_self(r7, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r1}, 0x8)
ioctl$KVM_SET_MSRS(r11, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="040000200000000090040000000000000100000000000000920b00000070000040000000000400"/72])
close_range(r8, 0xffffffffffffffff, 0x0)

2.497367265s ago: executing program 2 (id=1438):
r0 = socket$inet_sctp(0x2, 0x400000000001, 0x84)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00ad158c8a87e47db553000000000000000000000000000000000000000000000000000000b2efad8590b936918ee13b5dbfcd64537434d830670a236febb5a695033efb363fabc05659d30b818b8c772da9ebb6e41a17fa03f2590390f49b7e71d26284f1372d6efc663f9135be3c84d0718d95902815d60b4f6bdb87ca96b23993acbe8e9208aff1c305a7990330a38cb247d4fa7a7d52ac5c6f58b969b0f8963c25ca92c14c72e7ab6464b4225442f40b4e76e636fa7faa3070aeae61384730000000000002"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000005c0)=ANY=[@ANYBLOB="18004c25dfb09215a7cc6de400006832816f9700000096ed13b83d7b73508b", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x2d)
r3 = syz_io_uring_setup(0x2ddd, &(0x7f00000004c0)={0x0, 0x890, 0x400, 0x2, 0xbd, 0x0, r0}, &(0x7f0000000240), &(0x7f00000003c0)=<r4=>0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000280)={0x0, 0xa696}, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r5, r4, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(r3, 0xa3d, 0x0, 0x0, 0x0, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r7=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r6, 0xc02064b6, &(0x7f00000001c0)={r7, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
readv(r6, &(0x7f0000000480)=[{&(0x7f0000000180)=""/19, 0x13}], 0x1)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r6, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r6, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[<r9=>0x0], &(0x7f0000000280), 0x1, r8, 0xeeeeeeee})
ioctl$DRM_IOCTL_MODE_ATOMIC(r6, 0xc03864bc, &(0x7f0000000380)={0x401, 0x1, &(0x7f00000000c0)=[r8], &(0x7f0000000200), &(0x7f0000000300)=[r9], &(0x7f0000000580)})
r10 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'netdevsim0\x00', <r11=>0x0})
r12 = socket$inet6(0xa, 0x400000000001, 0x0)
sendto$inet6(r12, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$SO_TIMESTAMPING(r12, 0x1, 0x25, &(0x7f0000000180)=0x80000010b8, 0x4)
setsockopt$inet6_tcp_TLS_TX(r12, 0x6, 0x1, &(0x7f0000000040)=@ccm_128={{0x304}, "be3c771821625978", "ef71aa1820cdca51e0137ff39d47fb85", "d3d06f71", "27dcc486b551a46c"}, 0x28)
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xfff1, 0xffff}, {0x0, 0xfff1}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x7ff}]}, 0x2c}}, 0x0)
r13 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000001e00)={'bond0\x00', <r14=>0x0})
setsockopt$packet_add_memb(r13, 0x107, 0x1, &(0x7f0000001e40)={r14, 0x3, 0x6}, 0x10)
r15 = socket$nl_generic(0x10, 0x3, 0x10)
r16 = syz_genetlink_get_family_id$tipc2(&(0x7f00000008c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_FLUSH(r15, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000900)=ANY=[@ANYBLOB="60dbab8e", @ANYRES16=r16, @ANYBLOB="01002bbd7000ffdadf2518000000"], 0x14}, 0x1, 0x0, 0x0, 0x20040004}, 0x0)

2.4910754s ago: executing program 1 (id=1439):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
r1 = socket(0x28, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x48, 0x24, 0x3fe3aa0262d8c783, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xd, 0xe}, {0xffff, 0xffff}, {0x3, 0xc}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x14, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0x3}, @TCA_FQ_CODEL_CE_THRESHOLD_SELECTOR={0x5, 0xa, 0x5}]}}]}, 0x48}}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', r3, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r4}, 0x10)
syz_io_uring_setup(0x6291, &(0x7f0000000340)={0x0, 0x622f, 0x400, 0x2, 0x54}, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x11c, 0x0, 0x0, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = getpid()
process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
syz_emit_ethernet(0x116, &(0x7f00000003c0)=ANY=[], 0x0)
r6 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r6, &(0x7f0000000480)={0x2, 0x4e22, @rand_addr=0x64010100}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="04000300", @ANYRES16=r9, @ANYBLOB="010000000000fddbdf250600000008000300", @ANYRES32=r10, @ANYBLOB="05005300010000000800050002000000"], 0x2c}}, 0x0)
sendmsg$NL80211_CMD_SET_KEY(r7, &(0x7f0000000240)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000900)=ANY=[@ANYBLOB="f47484f477cdb55dfc48c4778dab02b35de54f81f4b8698753f84bec407c6c1ce2f6327d472650baa3a3ab5d509079f8462358764bfdee360615abeb9a50c1ae864bbbc0e876e6f0d2c07d57c23aea2f3efa8faf3e36ff319de44f006cbc4fd9f37784ab2969e9c2b2651f73f4b1bebb9661e2555b121d033f2eedea5eb97db9cfdb8ea1fe6339ea58b86294612ead5837781716249f43e9ff", @ANYRES16=r9, @ANYBLOB="000124bd7000fddbdf250a00000008000300", @ANYRES32=r10, @ANYBLOB="0c009900020000001c00000004000b000a00070095c80b8f60239e3698f17e55c2000000050008000600000009000700097db593cd0000000a0006000802110000010000"], 0x60}}, 0x80d2)
socket(0x10, 0x0, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
syz_open_procfs$userns(0x0, &(0x7f0000000240))
sendmsg$DEVLINK_CMD_RELOAD(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="bb000000", @ANYRES16, @ANYBLOB="01000000000000000000250000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008a00", @ANYRESOCT=r0, @ANYBLOB="0cec1efb5b2279fd231765ba481e36a74ff56604b54b93b670e23cee245b26730e098b6f334653da2a740300d00772a82fba45eb21d6acfc1f40a55c69a33b3bc44a49bc69f2020b385babb0f4cbb3a8319a16b92f34c069088551d374fe9b8680bc6cc58fdee0f83de6604760205eff233b0769643dc90420769f7e7e34bf78d8c91421a0d6b51d49b39461b92261c54ea2df3fb373a07b257db1933ef46f59bdba8d38cdba4676c30b3e08fd42e2703ab6080454f261e86904282cb4e235b30132e74035809072c7b95c74d4a2bb3309d8580acdc21afe75f030115c5c75f1096140a8494e911d76f989971a4d4e270f94412a5706b1092985b523609edec75eab85e1e356c6a3077855e5c1cf9fd8caff593409cc091ffe79eeeaa8963b549c4f2501a2815b445a9e1f4a450c0d235edc0200000000000000df7b68a715ac5a3c0430bfdcd2e320cc218667d989e3a2e0637a2d899e4f94ef451d0028af"], 0x3c}, 0x1, 0x0, 0x0, 0x810}, 0x0)

2.32137301s ago: executing program 3 (id=1440):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='vegas\x00', 0x6)
r1 = creat(&(0x7f0000000040)='.\x00', 0x110)
fstat(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{}, 0x0, @in=@dev}}, &(0x7f0000000280)=0xe8)
statx(r1, &(0x7f00000002c0)='./file0\x00', 0x800, 0x8, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r4=>0x0, <r5=>0x0})
fstat(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000480)={{{@in=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@empty}, 0x0, @in6=@ipv4={""/10, ""/2, @dev}}}, &(0x7f0000000580)=0xe8)
r8 = geteuid()
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x800410, &(0x7f00000005c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@msize={'msize', 0x3d, 0x9c}}, {@privport}, {@dfltuid={'dfltuid', 0x3d, r2}}, {@msize={'msize', 0x3d, 0x8}}, {@access_uid={'access', 0x3d, r3}}, {@privport}], [{@audit}, {@euid_gt={'euid>', r4}}, {@uid_gt={'uid>', r6}}, {@pcr={'pcr', 0x3d, 0x20}}, {@fsuuid={'fsuuid', 0x3d, {[0x53, 0x62, 0x38, 0x34, 0x62, 0x61, 0x0, 0x62], 0x2d, [0x34, 0x39, 0x35], 0x2d, [0x63, 0x35, 0x64, 0x39], 0x2d, [0x62, 0x36, 0x62, 0x62], 0x2d, [0x0, 0x39, 0x32, 0x34, 0x30, 0x62, 0x31, 0x64]}}}, {@seclabel}, {@euid_eq={'euid', 0x3d, r7}}, {@fowner_gt={'fowner>', r8}}, {@permit_directio}]}})
r9 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
fchdir(r9)
r10 = signalfd4(r9, &(0x7f0000000740)={[0xfffffffffffffff8]}, 0x8, 0x1800)
fallocate(r10, 0x2, 0x10, 0xc8)
lstat(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0))
fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000840))
ioctl$DRM_IOCTL_ADD_CTX(r10, 0xc0086420, &(0x7f0000000880)={<r11=>0x0})
ioctl$DRM_IOCTL_DMA(r1, 0xc0406429, &(0x7f0000000980)={r11, 0x0, 0xfffffffffffffffd, &(0x7f00000008c0)=[0x3, 0x9, 0xc7, 0x7f60, 0x10000000, 0x0], 0x24, 0x5, 0x3ff, &(0x7f0000000900)=[0x101, 0x10, 0x5d240278, 0x80000000, 0xc9], &(0x7f0000000940)=[0x9, 0xfffffff9, 0x2, 0x39f, 0x0]})
ioctl$USBDEVFS_RELEASEINTERFACE(r1, 0x80045510, &(0x7f00000009c0)=0x4)
r12 = syz_open_dev$media(&(0x7f0000000a00), 0x1, 0x80040)
ioctl$MEDIA_IOC_G_TOPOLOGY(r12, 0xc0487c04, &(0x7f0000000fc0)={0x0, 0x8, 0x0, &(0x7f0000000a40)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x3, 0x0, &(0x7f0000000d40)=[{}, {}, {}], 0x4, 0x0, &(0x7f0000000ec0)=[{}, {}, {}, {}], 0x2, 0x0, &(0x7f0000000f40)=[{}, {}]})
ioctl$KDADDIO(r10, 0x4b34, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000001080)={0x4, &(0x7f0000001040)=[{0x9, 0x3, 0x8, 0x6}, {0x8, 0x5, 0xf7, 0x9}, {0x9, 0x5, 0x80, 0x6}, {0x5, 0x83, 0x4, 0x24000}]})
ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f00000010c0)=@generic={0x1, 0x9d, 0x761a0698})
ioctl$BLKIOOPT(r10, 0x1279, &(0x7f0000001100))
writev(r9, &(0x7f0000001440)=[{&(0x7f0000001140)="18d717f55753edaf12f065d011b1de71433980e10ffb2ea368a91583c3d87bae0c5f85dcbe80e8012a1626f0285f4ed4ea858e2eb0cb27151f9863256d3ecba36d1b5f3fd162bcbb681d9c62e9df05a5e020f5a61bd6c7335d3018c31e1dd2000d94c89183bf3ad8cda3e66308186ce48b0d9a3209e804b669d6291de6a380e3f10b4856cf11ef1f0ae1c30b50bdec8eedd128cc0576d51b3cd6ecc1462f99d30b40af2c02e0efd5b0b46c63cc49f1aff6b342f773777da2ad878e15e79e979f65c574b7a0d21d18", 0xc8}, {&(0x7f0000001240)="98d8b5ecbefec5ddf2e1a3efeb0f01b18c8ce5f960fcd68646cd07ab0aa9d9bc406e895c54ac23d1fda5c3b3933539eb7ac739883360e072e9618ac692e8f3b73423c1709032831d5123dc435993cc624a7c4ccf3975207c7643edd29ba98ba4ad6b843c0916ce0da182b590c6ef41d1be90311d25e868484d017bc10a4797bd3a713da70ad41c2a59e0e5b512d70d998b5d5f12fadefbcf716d63c15aab8544c266b1a862cdcf88bef7301bf0ab8a544c31ee42f7d69ae268a8fe755e2bd8c1034a0d73bcdf8132f9d55ad5b1fd8891e2b5d492f7b483bae2646e0b6ca78251f7b5d03cefd4f0debd09fb3e", 0xec}, {&(0x7f0000001340)="3db05e4e4d5ed09f62e889b04b02661d2a31450d1138ae2240e013dc296f7a83ad03408733fa1d770f79dddc256616753c57451cf05ecfb396562b554607d3693564ef", 0x43}, {&(0x7f00000013c0)="14b5f1c5ba0967ea22cf4a8459cdf69a2013b3af39cf7ea723cd87da4e583b1e95f8065d4ceda09515097a544e21b3cb8887d5b18281d2cdd59f5401418e735f1389f48c101e27cc3eaf38b949551767c5581416525f9e0299f9b3831f3905c0e2eb1182accd95c7023cddaa3d3bd155345fdcdf6d9b072904c009089ae2", 0x7e}], 0x4)
r13 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000001480), 0x0, 0x0)
ioctl$F2FS_IOC_RESIZE_FS(r13, 0x4008f510, &(0x7f00000014c0)=0xffffffffffffffff)
r14 = semget(0x0, 0x1, 0x500)
semctl$IPC_SET(r14, 0x0, 0x1, &(0x7f0000001580)={{0x2, r8, r5, r2, 0x0, 0x100, 0x6}, 0x6, 0x5, 0x0, 0x0, 0x0, 0x0, 0x6})

2.204597479s ago: executing program 1 (id=1441):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000240)={0x1, &(0x7f00000000c0)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x3, &(0x7f0000000000)=[{0x0, 0xc, 0x0, 0x8}, {0x0, 0xfc, 0x0, 0xfffffffc}, {0x2, 0x5, 0x0, 0x1}]})
ioctl$BTRFS_IOC_SCRUB_CANCEL(r0, 0xc0182101, 0x20000000)
socket$inet(0x2, 0x801, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000100)=0xcf5)
clock_nanosleep(0x5a18eca9a06b582b, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0xd)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x2, "0042ba7d820000001000000000000000ffff00"})
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff})
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
getsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000001c0)={@remote, <r5=>0x0}, &(0x7f0000000200)=0x14)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'ip6gre0\x00', r5, 0x29, 0x2, 0xfb, 0x8, 0xa, @local, @empty, 0x7800, 0x7800, 0xd2, 0xe000000}})
ppoll(&(0x7f0000000140)=[{r2}], 0x1, 0x0, 0x0, 0x0)
r6 = syz_open_pts(r2, 0x0)
ioperm(0x0, 0x2, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioperm(0xf15, 0x2000000006, 0x7f)
r7 = dup3(r6, r2, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r8)
sendmsg$NL80211_CMD_REQ_SET_REG(r8, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)={0x20, r9, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000090)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x3)
unshare(0x60040000)
r10 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
r11 = socket(0x2b, 0x1, 0x0)
ioctl$NBD_SET_SOCK(r10, 0xab00, r11)

1.629513953s ago: executing program 2 (id=1442):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000380), 0x5, r0, 0x0, 0x3000000}, 0x38)

1.531270368s ago: executing program 2 (id=1443):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = socket$inet(0x2, 0x3, 0x33)
getsockopt$inet_mreqsrc(r2, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)
write$6lowpan_enable(r1, &(0x7f0000000000)='1', 0xffffff7f)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000000280)=0x2, 0x4)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000480)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(camellia)\x00'}, 0x58)
r7 = accept$alg(r6, 0x0, 0x0)
recvmmsg(r7, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001940)=""/138, 0x8a}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2}, 0x1f}], 0x1, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
r9 = add_key$keyring(&(0x7f0000000340), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$restrict_keyring(0xa, r9, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000400)='id\x0f\xac\xd1\xeb\xf4\xd8&w\xef\x9f`T3%\xfa\xbf\xef\xeb\x8e1w\xfd')
add_key$user(&(0x7f0000000300), &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000400)="bf1a2fe4cbf99ca82d21b4bf2556655275f192e7ff8d7effec3c44e46087e0a97f93ef574565b8b92405a11aba9911ea92bdcf35dfd216897233e5e7a41d1b292d3f7942da3a87382b6aec160ef3f6e40b9daed0a800c8303b05bccbddabebbb7a101d", 0x63, r9)
write$binfmt_script(r8, &(0x7f0000001500)={'#! ', '', [], 0xa, "1e444bb14da8403a56444c1b44b446465bc51ec6fabbde0d64d1e73e37c807caeb500f2da5119886117438cfa3c122c51d04b2b9b7b462f2068a801b04679baffc87e27c147bb816868027bf9d844f05789ff34c2791ce418e82fb1695202e65286d375ef1e2f9e1345d198c0cc00045289ea7f25c1edec39a0dadae03af023700afc5d9833104f61f51eb0e528d0200f5fb50f5ffc9900f"}, 0x9c)
sendfile(r7, r8, 0x0, 0xb3c4)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r10 = socket$kcm(0x2, 0x5, 0x84)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f00000008c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_FLUSH(r11, 0x0, 0x0)
open(&(0x7f0000000080)='./file1\x00', 0x12b842, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000200)={&(0x7f00000015c0)=ANY=[@ANYBLOB="1800db7f9d00000429bd7000ebdbdf2508001d0034b2da052300000100"], 0x18}, 0x1, 0x0, 0x0, 0x2000c001}, 0xbd4d29f246c670f8)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
sendmsg$inet(r10, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000500)="12", 0x1}], 0x1}, 0x0)
recvmsg$kcm(r10, &(0x7f0000000ac0)={0x0, 0x0, 0x0}, 0x40000002)
lstat(&(0x7f0000001600)='./file0\x00', &(0x7f0000001640))

1.478872552s ago: executing program 3 (id=1444):
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x7, 0x3}, 0x10, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000040)=[{0x0, 0x1, 0x4, 0x8}, {0x2, 0x2, 0xf, 0x7}], 0x10, 0x36, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x1b, 0x4000)
socket(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000240)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x202}}, 0x50)
getpid()
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x174, 0x32, 0x216822a75a8bdd29, 0xffffffff, 0x0, {}, [{0x160, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x20000000}}]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0xc8, 0x3, 0x0, 0x0, {{0x9}, {0x4c, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x2, 0xdf4, 0x7}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1d28}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7ff, 0xd8, 0x0, 0x9, 0x100000e0}}]}, {0x52, 0x6, "a06b1f1931f3579c6d7c5159238a286074602c3726c701f3c0d5382de62a6e8c4fb714fcd674c66cd306a4f78dc483530609c9b04b7483bd084d70df8e77e6fbd503917aa0a6c737cef0ed021b60"}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x174}}, 0x0)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
setsockopt$RDS_GET_MR(r5, 0x114, 0x2, &(0x7f0000001300)={{0x0}, 0x0}, 0x20)
r6 = openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1b, 0x1000004, 0x204, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r6, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

1.289372383s ago: executing program 1 (id=1445):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000001400)={{0x7d, 0x14}, 'port1\x00', 0xa0bf83d7d46f2cbb})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40505330, &(0x7f00000000c0)={0x800080, 0x0, 0x0, 0x0, 0xa965, 0x2})
r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
sendmsg$AUDIT_USER(r1, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0xa0, 0x3ed, 0x4, 0x70bd2b, 0x25dfdbfc, "75d9dd71733e8016e2560152938da895d20ad6fc41e876f79e807bf1f603213b1cd068ab0161e05bc59eee232faa1e21ea9bc521d05372759756fc826989bd033e06bfbd8b0c57b9cff6f4ff7d8c7f7cdbe4a657c97bfc7d1649c73ab7035784b712b04c85c56ee74aa85135c1e3c5d27f7805536688d904a48a9e73757e5804d88a6a641e826b11ce8bccb110de", ["", "", ""]}, 0xa0}, 0x1, 0x0, 0x0, 0x8080}, 0x1)
r2 = syz_create_resource$binfmt(&(0x7f0000000180)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r2, 0x42, 0x1ff)
execveat$binfmt(0xffffffffffffff9c, r2, 0x0, 0x0, 0x0)
openat$binfmt(0xffffffffffffff9c, r2, 0x2, 0x0)
execveat$binfmt(0xffffffffffffff9c, r2, 0x0, 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f00000006c0)={[&(0x7f00000005c0)='.\x00']}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
close_range(r4, r3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x43}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

1.211216309s ago: executing program 1 (id=1446):
ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f00000002c0)={{}, 0x0, 0x28, @unused=[0x4, 0xffffffffffff0000, 0xfffffffffffff001, 0xf], @name="c3d7de12e3233e4355d62187bc3414104c7a9f4f2879ae872a750325609df68f1a8d0b87da039aa378c5c0ec73127af730af37f4831bfaa233c6b5e9704bcdcd7942b588ca11de74ab709a57e4f1111f7a38303c49dc3e0d8c8e310b411e2657661ef4ca4551310f9989eee5150d44fc67f895b258213cc99d4b3966a7b0256d8652f5ec4e66d8181de82b504d47d2d188b5e5371758d684ab46c3bb1ac817f990abbe7a0bcf120994ea2e330a2607e26e4f24fd0a08acb269ace2478052f2ee1db004c17ec303a7af1e62d58a20f7c295c2a073c13e819d3b93ed852418d68ced797c3bd0c10ea6e87120730b90ddcabe1fd2002c853bd6882713293ee6b7c59afa2ce33a02ce2fb56ea4c30a8a86be010d3e682218ef1bc361e329bfb7fad7b35dbf9a819d93c89fcc342ac7e3cb175948a8168c123b1cd42affb71030ef9274f2c7a3e5b6080d2cdc75bfe85711a84abf2f58677f5999670d6c2cfa362ba9aa01d871cc207abfd10a45fb44285b47f0ccd238ea3b3a68851a796e013ab93c2517541f7ede8f48906e9bc8175706ac7463089fdf1052b7897a112069005a5f619dd576b62f1115541485402da0e756118c37b029a401a33e1832229ae4210885f8f989bdc513f6f2a28c3b774c43dfa168d0ec55dcf0fd306c9fd15098ba32bca1ffa7f0d9f3a21977b4a8c382eea72a8c0c827a762ec3c8263292653d6a08e4ef0233c986634b47fe4b42f7880d095be70b084590027cd8c74734ebe984a521f4b4e3a3749cfd0376da4e9547da1f45e9723af085b96f502800766a22554761c14090fc831d579169387674ae02e4f50d02e15b52114cf399d5b67f04a2d57f29d2127ba5c3ae70899428600e467724495100ea7ba7a434d42fa5983bb876d5fc53ac3c84dfb32e4507ec817b31e9eb5d0bd83b7981c30e46570b14e4257fee2aecd3b1be84fe2824d1f5127b20d49792d91f52f53c9ea38620c75e53f84e7406577c015bb49a2d2cfe4830dee088001bab52abfa8fb1422c0934ec9db9ca3296541f522df50ee55cbcec18226942e8a1d91700c75e9ee9dc32ce70da7b7f52e90718518c7fc2adf6593cb96c20d85709ec0d3b7539ccf82a45cb95e9762bb95fa98acb4938b29a3b9cd255e2ac1967c26775222411d790f0fbfe666bd4c799c12543fbfe2ba2e0719b0c0647ec146733c16c15385aa67fa593775c2b739cde21f03ce32981c6bb985ddf4006c3a4e2be91f42b6ac1861053b354df5ae6fad5e4e4d29e7d43467169fff789645211be7d12dfbe77a1b4dd2efc181d700ea5dcb200f18e4386ad9f83064062258c6f3f1e8354530a58ec0b9450cc2c3d25cad66f03a53fcdb50ea8e98165efba9ae91a463f41b83bc439b5a69bff82e91a06a0543b29313a42201fddf4208cf24a2e2e3a36342fa4e47f88f67c26ed7381cbdfbe178f4712dcb3b36f1d5f6f57318d0c8a9931bc5230bddbe019f320db74a5d15192aad34e6c2b6f8465bd17d8c918948a4cfe67bc46691e3a0ced6a0f1568ba676a574f15c72b4e4598bf815513fe54a5439fb92ac2f3c8120300497150d1046a678af37883a1a5cae78aff6a34cf84ea2936cce6a65a8e03cc48c9c4abe59896a13469c767c4fdeba2489bb97a2be3481ed45858ed946e72e06919deabb4d3ff0d0f63dccf321d16a471c6205403b3de935c439f907a477439864505fb0b981130fefa16b9c8769fbcb0da72b549142770ed21e671e9e2d88f1aa0a7316fe56ef37bc697eff27fbd931c7bb3d30663ac2d76a2b2fd506677e80904b17239591a0ee8f2b4a20ca359ec8fa10d47185db8dd6a8584b08039d3367cb268a6a59463079b8c71ed5dead92849d2016374c17ca33da562ffae5878b9525bd0a2fbafe9aa9e2b5cca2bc5db26250fd452fe0a937e6b1faeb3b00880130999fdd565e85bbe952c39ed70ea224fbc6c694aa8dbf177a2002c457bcbeb957c747695ee2f2d75f57f059841952ad5212b76dd13a7ff0cc4597b9ff8b4f9e909b46f8113ec088b1ad383facd05097ee7b105f313e8946b2247bd824ed7b08d019c3abc3325a41b7785c5664c13a554798c09a9ddc92a065c69bb9cca1b2af39c0bc16c8a2ef8fa0f6b642de353e1cf187ef3b9efedf84eb2f2674bcd217cd5b18d8a59b0b9639dbcba29609dd46db84b2f9120b257dc6e61f34aa1aea1f32618ccc7d71e88605e1c373a925969bb3926374d51c0ecd3a5bfd650aaa20386d9aa33ed0704c9fca6d578e7821f8b4d984545a5ffd136e61dd9430fdb52224201149991a031bc2223c57dfb61662026e08360ca8ae1f0828d7ae85cf7c95003157097e00f1bf96d9c4af16c58b50031a8ad553e8e29797b2bdcb1c66eb77ba217403141df987a12575cd920a6ed3d4db86b5ec76ed5b930a845459676c3e00909c85801d7f77d4f1e5e9bcb5f2719bf3b8d6bd10a411e4fdbe85d2c20f44fdfee1d3e38ee42746b5f7024d07f9ab5be738f5685ec50d34dcd536758f89b55334be8f72aa78ceefa07b18ec29a68e3c5ed9cd1e18e0d8e4dbfe15c4ba4a8120df3fd502a9cb9c488da6977ad12174d5ea3008b8210ec45f94e7f03a9247432f8d5d9ce68bd362fdf4f6b57c6432a5f97a2545e07f36ab0f77349877638e99674569df6b8de58eb44ce0f8ee61c7eac0fd1a321e0aafeea998ca9492e7c9b3a56a293eb07701e45f71d19ebd5bae2a2794de771fb55d0989dab41acf11bb12eba84037df83a3e12231a56397cf23392a2c82715833fe92cf87d760a8dd1af6e51565268342d573177c6d57e320660e530c57631a3a9b2e8f5f21f8be1472b12ae3cb00301c0396e93455bedf56db61f25011a931c4b96418130b8ebc3c934939fc728ffd898d9595e67a1d66226fea4d41afceeea3d8f215a1d4f6f1011711971c789d68e15b4b2aac445a6c297b74e66878007fa0866e3cae4442414772e4241faaec1f80d3fe54008b9e4308d7756011154cc8758aa2f7e9142d3a29364a6354830deb8b7acce4db32d72e8130c564fbf852e176b36345aa6c1592f94be72d2289e6af9fe335f49b6c4e3db87e557737ddae13cc85df2ebb7f46a9678be687b2381d478ff1fcc3e7224282f10a6fec7ffc9a97cc9702430fd5d6615ce157594b661b9b5b5fb0b4fbefa726cf3f1d54fd4b71df3161dd9bff2ae3175fb5664fba05d5741bfa320843fe38be496485cbb5b92ee922b39b49970f7215bade8583765335b72b4c6a999de09d892b107824b0a26f06dae510902a4ad374d260607ae9c73fec5e2badf3fb9b91ace382a3155fe335be1cf33048d922172c7b7e7973c83c5b9f63c7dd2423a0914a4ae2cecb5d05134ae49e08cb2937012ddcbe2aba1ea087e741447a5363020046d0b772a93d119116dc546f98e2e0f79169126194a4d0fb0cbd12fbe0fc41e6e6c47e21c15d3b3207be5442cadc9b96e0750b9de2d4c4b439e73f73c41570ebaadc1d8550bd08288c8e3b0163f87fa9a6118a71a5464f68288d5b5b5f23f8b4383947b244638d74263b3a09597f80729ee072d4878e2c0be8d115b15f7d8dd84eb579ecfb2e31158ac125740ccc5ecd4a695c502e1bfd98a28d03e5dceefaa73138f408a215f7ab79a5ce0be260fe896aa412058d89d725a1dc5dfc9d0d723df3ead0b36cc24ce16a778caafd15f459b61fa4bd96d0501341b1a3dc749e87f17df7dd70c995717e1058c7efe02fb26ccded842cbb4ddcf29cc87a33ff4546ad238db70b6c59ed9f2bc0335a2c3859f3015df25e8f11da8a8272177f0bed4d5d111cddf8ca1cb540ab832b5f9a354e833e69a892316c495ab2ebaca853567ade9fb7fa7bbef8119d29b49a375ce832ab14e12670d9e3baf3a3f75b1fdca6dfae2ae6d6ef6d9da930eedbe0a105cb499bbd841064e4ce5a3d0419612ea4b5cdce3b0d45ea1c552c3fd86ea0346cceb4274fdaac01af333b88958ccdf95b3f0ee1be54d938c01aa68565499f56e5a2c56bf422805d5418318306c9667307c2181548a9b176f2c90bb66703b9f9ebb7f0999db941207d62a7b0fd54b994fefb5eb2932a957063500f4946055cfd6374009dbc4c8d60e72ccb28a96cb3517dc0cd3b97de55b8dd6dace3dd71e91a5e4a18bb7f83fe21f53399c9ed577e3755b7ca06e693f107ae6247889775a250582df469d89f8641c1067854a473604f834ac698ce212873ff367f843f50f477d19a5798ab5de2a49a5f8008de7e2eed9a5ee8798bcc53cfadeb84d1cff856f3f2cd9e61174d487b943e98a5edf1c7d1ad47a230602ba5d1b2200061eb686c3c0b304cae43469b28bed109562707e27449edba6f035d5ffcbea76bb806d08e31f1dad8b4f348c67e8f0f82df12c0a4fe8aee570d953be4d4b0d18c57ce30d2bff29844a705cb8e48f52ec4f4877cc5096779903f5f17a64c4eae88328212d8b6515dc8a92bff7ab38c60e8b1c659fb29ec6e1b41d6a0453f76ded834de6778a5c27c5a27dfb9d3d332b4935eb02b7e7617d0781c9650475af44215044179f27b4d4a0170168b4187e80e85993a3b5216eed02f6251a6005fe7328498ad7c53407f35b79476524de3b1dc391c5ca984e3bd18378b1662695f0e77febbc911c84b25f451f9c77e2ad2e178760743d77762d1302abf8de5361288497f443909416206ebcae09a08cdd74e0b7ac34d9800bf92761eec563db25a20d07e331ab13f4f6c8c88cf4029de39d0799b0fbf61e06ad8c17903abda38241c284061aaf361aab9c48a1481a5a0c9a31b0e90713f6f7765b0567fb44bb59a9e116e9d6337b131d81ba0d009fb19458f7a272dcf501c23f5604f86fdf5283ade32f65dfb65a0e0cca1da1f6456fda947b861df0e34ea7067da81a2c19120d6ac4e6afa627a156a2e086a05c5e770b4cd9bf302690b0ef1669c0ca49abbfbb4e7e747cbae8738c59aff7ddbbedf06f78ca25b2df560ddd1113c714f62dc0b2b416eb0168e45b3d32dd5d3b71f04846e82a841ec0337492e02e00b389dc885c94529010d7ce627cf80c5a9f34f0436f718f09e23b79958d4bcdd749901c28cbd1dcd9faa14321fd259ea0eca4a38e25cb9a0d94ca139aed9ae54f6149ba3f97c25654b6b081655e33867328040f445cc62b4de2e6372c50ef26c04ea30378762e9a37cfa08dd6b6ab7b26e99c65f74747ba77785a545bc0b1f828aa43d69f7d7fceb323dfe5d820dfece1532cfb473b73a6102091e90543bcf23af6f5b493bbe7ad410201fe0f4dd08bc81976e4fda15f57132f26727838cd3be37b91d6c33cf6355ce852531c1504f3f352894057f8825c0991e2599b11523b631548c041e8dd654e739956e06904d7b54410946af4ddfd4bd7031fcbbcba3a5e27a07666f78a097ac9355f5a28678146011c3ef507dd7cac23b48df0d16afa037fba95f641e399d994b901ae9c80a6461eafb4fa64e9956d9ec53a925dcfa9175152cb387f0c4a85ca26e7984c4ddf04ecd92b676daf49b6c8f328f7937235316b0758706de15d1f91737a4d4dbfacd4c9ef2fe1ec56e5476ba92099cfdd0d6aeb4d778a99544e9ea8246e4851887a851cade0b93c84197faf19feeb86acf67d1c11cf7e89fef7ac2acfc804b0e0059383114fc12dec98974815f8f686a9d6f2c35d323ea7837541e963a28595ba8849e41b436a1c3499a738de53165b6c08eb6331dcc405"})
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[], 0x70}}, 0x600c000)
sendmsg$nl_generic(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="140998f6e7a93992715b0000", 0xc}], 0x1}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000040)={&(0x7f00000012c0)=ANY=[@ANYBLOB="300000108af1f24c000206010300000000000000001bea2800000005050005000a0000000c000300686173683a69700005000465530f5031fbbc2af3fe536b96e28a50c42a470ca4b151dad6765a946d5ce32721ac34"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x2)

1.059649665s ago: executing program 1 (id=1447):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
r1 = socket(0xa, 0x3, 0xff)
ioctl$sock_inet_tcp_SIOCOUTQ(r1, 0x89a2, &(0x7f0000000000))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = socket$inet6(0xa, 0x1, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x2)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_open_dev$video4linux(&(0x7f0000000000), 0x6b, 0x0)
socket(0x2, 0x80805, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYRES32=r3], 0x2c}}, 0x80)
ioctl$FS_IOC_GETFSLABEL(r4, 0x81009431, &(0x7f0000000480))
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
r7 = syz_open_dev$sg(&(0x7f0000000180), 0xa, 0x50041)
ioctl$SCSI_IOCTL_SEND_COMMAND(r7, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRESDEC])
add_key(&(0x7f0000000380)='asymmetric\x00', 0x0, &(0x7f0000000440)="1082", 0x2, 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="043e1f0a00c9000001aaaaaaaaaa50ff"], 0x22)
r8 = openat$cgroup_int(r6, &(0x7f0000000280)='blkio.throttle.write_bps_device\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_SEND(r8, 0x40489426, &(0x7f00000019c0)={{r6}, 0x5, &(0x7f0000000040)=[0x0, 0x0, 0x6, 0x7fff, 0x0], 0x579a038c, 0xd, 0x1})

540.681494ms ago: executing program 2 (id=1448):
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r0 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x2000)
ioctl$HIDIOCSREPORT(r0, 0x81044804, 0x0)

380.478981ms ago: executing program 3 (id=1449):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
socket$pppl2tp(0x18, 0x1, 0x1) (async)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x3a)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) (async)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10) (async)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
sendto$inet(r0, &(0x7f0000000100)="a388f5b82da67c239243507a556dc2d6ee", 0x11, 0x4040850, 0x0, 0x0)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r0, 0x1)
recvmmsg(r0, &(0x7f0000003e40)=[{{0x0, 0x1f, 0x0, 0x0, &(0x7f00000035c0)=""/241, 0xfffffffffffffc93}}, {{&(0x7f0000000540)=@un=@abs, 0x80, &(0x7f0000003780)=[{&(0x7f0000003740)=""/4, 0x7ffff}], 0x0, &(0x7f00000037c0)=""/236, 0xec, 0x20}}, {{0x0, 0x0, &(0x7f0000003bc0)=[{0x0, 0xe00000000000000}, {&(0x7f0000003a00)=""/190, 0xbe}, {&(0x7f0000003ac0)=""/131, 0x83}, {0x0}], 0x4, &(0x7f0000003c00)=""/65, 0x49}}, {{&(0x7f0000003c80)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, 0x0, 0x0, &(0x7f0000003e00)=""/48, 0x30}}], 0x4, 0x40000121, 0x0)

239.020262ms ago: executing program 3 (id=1450):
r0 = syz_open_dev$dmmidi(&(0x7f0000000200), 0x1, 0x111000)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000001fc0)=[{{&(0x7f0000000380)=@generic, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000000)=""/55, 0x37}, {&(0x7f0000000400)=""/85, 0x55}, {&(0x7f00000023c0)=""/4096, 0x1000}, {&(0x7f0000000480)=""/173, 0xad}, {&(0x7f0000000240)=""/57, 0x39}, {&(0x7f0000000540)=""/249, 0xf9}, {&(0x7f0000000640)=""/203, 0xcb}, {&(0x7f00000033c0)=""/4096, 0x1000}, {&(0x7f0000000740)=""/37, 0x25}, {&(0x7f0000000780)=""/16, 0x10}], 0xa}, 0x8}, {{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000880)=""/168, 0xa8}, {&(0x7f0000000940)=""/204, 0xcc}, {&(0x7f0000000a40)=""/117, 0x75}], 0x3, &(0x7f0000000b40)=""/188, 0xbc}, 0x8}, {{&(0x7f0000000c00)=@qipcrtr, 0x80, &(0x7f0000001200)=[{&(0x7f0000000c80)=""/156, 0x9c}, {&(0x7f0000000d40)=""/13, 0xd}, {&(0x7f0000000d80)=""/169, 0xa9}, {&(0x7f0000000e40)=""/70, 0x46}, {&(0x7f0000000ec0)=""/221, 0xdd}, {&(0x7f0000000fc0)=""/176, 0xb0}, {&(0x7f0000001080)=""/105, 0x69}, {&(0x7f0000001100)=""/248, 0xf8}], 0x8, &(0x7f0000001280)=""/205, 0xcd}, 0x9}, {{&(0x7f0000001380)=@pppoe={0x18, 0x0, {0x0, @multicast}}, 0x80, &(0x7f0000001500)=[{&(0x7f0000001400)=""/195, 0xc3}], 0x1, &(0x7f0000001600)=""/197, 0xc5}, 0x5}, {{&(0x7f0000001540)=@nl, 0x80, &(0x7f0000001800)=[{&(0x7f0000001700)=""/64, 0x40}, {&(0x7f0000001740)=""/147, 0x93}], 0x2}, 0xa}, {{&(0x7f0000001840)=@in6={0xa, 0x0, 0x0, @initdev}, 0x80, &(0x7f0000001b00)=[{&(0x7f00000018c0)=""/30, 0x1e}, {&(0x7f0000001900)=""/33, 0x21}, {&(0x7f0000001940)=""/155, 0x9b}, {&(0x7f0000001a00)=""/219, 0xdb}], 0x4, &(0x7f0000001b40)=""/84, 0x54}, 0xeb}, {{&(0x7f0000001bc0)=@generic, 0x80, &(0x7f0000001f00)=[{&(0x7f0000001c40)=""/222, 0xde}, {&(0x7f0000001d40)=""/253, 0xfd}, {&(0x7f0000001e40)=""/30, 0x1e}, {&(0x7f0000001e80)=""/125, 0x7d}], 0x4, &(0x7f0000001f40)=""/104, 0x68}, 0x1}], 0x7, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fe05000000000000000000009500000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
setsockopt(r4, 0x0, 0x6, &(0x7f0000002300)="851bf0ea44d0c5de23007aa811723ce9d478a626c148adf492d83475cc071b28032cebb39f1631ab1540db2961cdaedf526c1fb54b4fac98e264684023b2867206697bba1ad08bad9bf765527f8edee2d956bb3d9e210b127baf6808f81adfa9529df7a8d472ced7509817a446f7c8841f27122ab651a7f9314bb22a5a83e75bfc774c48", 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r6 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r6, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="aec8ef6a4815ccefca52cd71b02d499214a46a05", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x1b, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240), 0x0, 0x2, r7}, 0x38)
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$uinput_user_dev(r8, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000b00)=ANY=[@ANYBLOB="140100002b00b99f000000000000000001"], 0x114}], 0x1}, 0x0)
recvmsg(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS32(r0, 0xc0245720, &(0x7f00000001c0)={0x1f7cf4bd0d4a6b61})
socket$nl_netfilter(0x10, 0x3, 0xc)

238.480177ms ago: executing program 1 (id=1451):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
creat(&(0x7f0000003dc0)='./file0\x00', 0x27)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000200)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x7, 0x1, 0x1}}]}}]}}, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f00000011c0)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x541b, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x12)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000480)={0x0, 0x3c, &(0x7f0000000440)=[@in={0x2, 0x0, @local}, @in={0x2, 0x0, @multicast2}, @in6={0xa, 0x4e22, 0x0, @mcast2}]}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_emit_ethernet(0x16, &(0x7f00000004c0)={@random="871d5310efc5", @broadcast}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_TSC_KHZ(r7, 0xaea2, 0xe)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
sendmsg$tipc(r4, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40010}, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r3, 0x10f, 0x88)

678.984µs ago: executing program 2 (id=1452):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x1c1000, 0x8)
ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000040)=@x={0x94, 0x1, "ce751ff71314"})
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000080))
r1 = add_key(&(0x7f00000000c0)='asymmetric\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="5a5b5d542f195ea2aa5f66d051b613a0ab4b02945696e352a8fd1e90bebc33540abfb82590da969b52785b42bc", 0x2d, 0xfffffffffffffffc)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x80842, 0x80)
fcntl$getownex(r2, 0x10, &(0x7f00000001c0))
r3 = request_key(&(0x7f0000000200)='id_resolver\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000280)='\'\x8a\x00', r1)
keyctl$unlink(0x9, r3, r1)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000002c0), 0x4000)
r4 = accept4$vsock_stream(r0, &(0x7f0000000300)={0x28, 0x0, 0xffffffff, @my=0x0}, 0x10, 0x80800)
ioctl$BTRFS_IOC_SCRUB(r4, 0xc400941b, &(0x7f0000000340)={<r5=>0x0, 0xffffffffffffb0d2, 0x32b})
ioctl$BTRFS_IOC_DEV_REPLACE(0xffffffffffffffff, 0xca289435, &(0x7f0000000740)={0x0, 0x0, @start={r5, 0x0, "e2f7319730d53d374227ce75f3a0d6eb282213a3af75bc7e9c1ca28940526df8d2345951a05f755ff19d3dc19ebf96c57764f285664eddf1479c63ec61b6d0921242a0a1652467866dd272a9734db78ce9fcbfed2b9adee8e27a55c7a8390009cd0b337f6351026ee14ed1b4c5a0642e28f332f68878b36cc35122c5fb02e204c4421f0f63f7e5d182ec93c2b067cf060eeaf58e5a7af32aae4791a439f546650b013e1219ac8ef81439105ecbd53c955f13041003d469ab6929c94d2db06b53f1e0f033b9020d3da01cd4a967075ba9cdf6908b9e6c3e42bfaf94a70ba663acba090c7d67afc1fc512491ad6432194bde368045b552bd99abc58f88da62d5d9ac9c3d36a133c46e8dee32a07630ac7eb703596c741534d25ec32f68ffa1456c94bdc130760b15c6d44d3f43a3237caf6df7b6f24f05bf540199be7186f9b260ea868a166ebe4c70d263f7599dc5860e62050cc88c339a867e80e6ab3d5cd8647832317a3ea4a1ff301a721d8f58665a652a606299c2f4adcd471e226bd9400f792a87888d6bca5b6ae2e1e0812e56ecc47c68b0eafa93384add2f4fa04dcdd103b478ecd0542d19d58648868a1f32704574f8604688320e26eac3870d09ba4e46712cc808bef2ca16350e57b7a264ea62fb4e5ffba1c1c7ab349c5933a20498fbe303e350b1953b1bad4b7204992b3e72dc2e1d92b0d2d31472fd664fae9cc525929b9b6090e8c9ac9a97f64c22555dfe50f23ba42ece05c2b77ddfdaf77d0ca74066dc60805e8e91066447e36e5cfa1d60c206136d6ffcc884200e1760062b1b470396024e28d8a9bee7a270c5a9cd5580fcf6d732bd41f12de60ac3602e6805939c3d9eca6bddae4cf5da4c134801868cd6e1effb223d1bd3a4b370fd50398ebf7b00c20e22e54a0b09bde2029eb8736cafedd76a5c12f8cdce429752c1682e641ecdd55180000abd87a29c58d9b6cec2a1a487ae3d0f932b4df0bf8a28ff7c78f45bb248f6135df89f89287137e2417868b441bc2bb61b39fa0a5999a7282c820bb256e17344b33ff64dc102a91383f0715e5d43db4483ad5185674bff3740b0ef47ca21a9e70c24d0c93c8c44fcd829a39f70ca3b51f375e7c4a7b875463dee84ac3db26c6f229760e5e736a14a0338cc04499ec31d3d26ad6fed461a170329de2ab6d469c0205932854130abe5629b8db8e9bfe7d49e3946c105459e556a92b69e299ba04b3023cd5d3a70dfe66b5e001152d29dcaa0deb4f57b9180dcbf48bd4dec04c1f78a5b1747d6edacbd3145b2cb068162237e087d90b79562883ffd831dac23da2f76f0276c081d60246e3a2dab016fd8ff80f069c5ff75bd52e8ff3ce04928ae6d2a0649dd4926e48e2adcdb8d1ea6f5c45b7c1b0b626981b10dc900f51f0b189699fd197c38b0866ba59433f5acea19be22e28e979a8ed3acc7", "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"}, [0xffffffffffffffff, 0x8, 0x7, 0x2, 0x101, 0x9, 0x6, 0x200, 0x3f2a, 0xffffffff, 0x6b, 0x2, 0x0, 0x2, 0x7f, 0x5, 0x9, 0x6, 0x1f, 0x9, 0x2, 0x6, 0x9, 0xf, 0x0, 0xffffffffffffff2a, 0x7fffffffffffffff, 0xfffffffffffff800, 0x100, 0x332, 0x0, 0xb75b, 0x8, 0x15d61fb7, 0x2, 0x80, 0xfffffffffffffffe, 0x8, 0xe, 0x8, 0x2, 0x10001, 0xe000, 0xdd, 0x80, 0x2, 0xfffffffffffffffe, 0x9, 0x62, 0x665, 0x8000, 0x6, 0x6, 0x1, 0xdd5b, 0x1, 0x5b5, 0x7ed8, 0xffff, 0x897, 0x4, 0xf1, 0x2, 0x4]})
keyctl$KEYCTL_WATCH_KEY(0x20, r1, r0, 0x16)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000001240)={'ip6tnl0\x00', &(0x7f00000011c0)={'ip6_vti0\x00', <r7=>0x0, 0x4, 0x2, 0x7, 0x6, 0x5, @remote, @mcast2, 0x40, 0x1, 0x4, 0x1}})
sendmsg$BATADV_CMD_GET_MESH(r6, &(0x7f0000001300)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000012c0)={&(0x7f0000001280)={0x34, 0x0, 0x800, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x400}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x34}, 0x1, 0x0, 0x0, 0x28000001}, 0x804)
r8 = open(&(0x7f0000001340)='./file0\x00', 0x801, 0xb7c7afcba1bf5e68)
clock_adjtime(0xc, &(0x7f0000001380)={0x10000, 0x7, 0x80000000, 0x6, 0x81, 0x14ec, 0x401, 0x6, 0xffffffff, 0x7, 0x4, 0x26f9, 0x7fff, 0x0, 0x1, 0x0, 0x6fa05ad6, 0x9, 0x4, 0x9, 0x8, 0x7, 0x0, 0x10001, 0x925, 0xf})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480))
keyctl$update(0x2, r3, &(0x7f00000014c0)="30607ec3422e256402a0bc9f6825ad40a6ca7ee6a4e28b7940e6fccd3dc02d3a99e415065dacf06a1d9ce023f3d15160ded9d8313b1593380f5a4927a4ea1fdc1facd846", 0x44)
clock_adjtime(0x3ca9f86f0df1e748, &(0x7f0000001540)={0x6, 0x20000000, 0x100000001, 0x80000001, 0x2, 0x2, 0x0, 0x477, 0x7, 0x4, 0x1e0b, 0x5, 0x80000000, 0xc, 0x4, 0x87e, 0x87c, 0x80, 0x3e, 0x3, 0x1, 0xecdc, 0x8, 0x1000, 0x40, 0xa})
r9 = openat$cgroup_int(r8, &(0x7f0000001640)='rdma.max\x00', 0x2, 0x0)
write$cgroup_int(r9, &(0x7f0000001680)=0xd, 0x12)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000016c0)={0x9}, 0x8)
clock_adjtime(0x7, &(0x7f0000001700)={0x401, 0x7, 0x0, 0x6, 0x2, 0x10, 0xffffffffffff7a8f, 0x1, 0x1, 0x3, 0x80, 0x3ff, 0x5, 0x9, 0x2e581ee2, 0x8, 0x0, 0x7, 0x2, 0x5, 0x4, 0x2, 0xfff, 0x100000000, 0x7, 0xd06})
keyctl$assume_authority(0x10, 0x0)
ioctl$NBD_SET_FLAGS(r8, 0xab0a, 0xfffffffffffffff8)
r10 = shmget(0x3, 0x4000, 0x80, &(0x7f0000ffc000/0x4000)=nil)
shmctl$SHM_INFO(r10, 0xe, &(0x7f0000001800)=""/239)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001b40)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001b00)="9681ce6a4fc993b4a729224bc676eaffb417710ea8b4c9fd9206969e9c7f1e", 0x1f, 0x1})

318.227µs ago: executing program 2 (id=1453):
r0 = syz_open_procfs(0x0, 0x0)
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, 0x0)
r2 = io_uring_setup(0x3eae, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x1000000000000160)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000})

0s ago: executing program 0 (id=1086):
r0 = socket(0x21, 0x2, 0x10000000000002)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000680)={{{@in=@multicast1, @in6}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000080)=0xe8)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'ipvlan1\x00'})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000e00)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000000380), &(0x7f0000000100)=0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4841}, 0x40080)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, 0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)="89ef1284c86555bfe69b541fc18b8f329814f57bd00b1b3a")
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000872000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6e684000)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)

kernel console output (not intermixed with test programs):

ork, BSSID 50:50:50:50:50:50
[  262.607814][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  262.610155][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  262.881746][ T9861] FAULT_INJECTION: forcing a failure.
[  262.881746][ T9861] name failslab, interval 1, probability 0, space 0, times 0
[  262.886052][ T9861] CPU: 1 UID: 0 PID: 9861 Comm: syz.3.1227 Not tainted 6.12.0-rc4-syzkaller #0
[  262.889057][ T9861] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  262.892467][ T9861] Call Trace:
[  262.893349][ T9861]  <TASK>
[  262.894131][ T9861]  dump_stack_lvl+0x16c/0x1f0
[  262.895628][ T9861]  should_fail_ex+0x497/0x5b0
[  262.896841][ T9861]  ? fs_reclaim_acquire+0xae/0x150
[  262.898197][ T9861]  should_failslab+0xc2/0x120
[  262.899545][ T9861]  __kmalloc_noprof+0xcb/0x400
[  262.900880][ T9861]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  262.902742][ T9861]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  262.904345][ T9861]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  262.906420][ T9861]  ? __radix_tree_lookup+0x21f/0x2c0
[  262.908211][ T9861]  genl_rcv_msg+0x565/0x800
[  262.909807][ T9861]  ? __pfx_genl_rcv_msg+0x10/0x10
[  262.911528][ T9861]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  262.913503][ T9861]  ? __pfx_nl80211_del_pmk+0x10/0x10
[  262.914937][ T9861]  ? __pfx_nl80211_post_doit+0x10/0x10
[  262.916755][ T9861]  netlink_rcv_skb+0x16b/0x440
[  262.917994][ T9861]  ? __pfx_genl_rcv_msg+0x10/0x10
[  262.919294][ T9861]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  262.920808][ T9861]  ? down_read+0xc9/0x330
[  262.921969][ T9861]  ? __pfx_down_read+0x10/0x10
[  262.923247][ T9861]  ? netlink_deliver_tap+0x1ae/0xd90
[  262.924678][ T9861]  genl_rcv+0x28/0x40
[  262.925770][ T9861]  netlink_unicast+0x53c/0x7f0
[  262.927065][ T9861]  ? __pfx_netlink_unicast+0x10/0x10
[  262.928504][ T9861]  netlink_sendmsg+0x8b8/0xd70
[  262.929784][ T9861]  ? __pfx_netlink_sendmsg+0x10/0x10
[  262.931186][ T9861]  ? __import_iovec+0x1fd/0x6e0
[  262.932520][ T9861]  ____sys_sendmsg+0xaaf/0xc90
[  262.933790][ T9861]  ? copy_msghdr_from_user+0x10b/0x160
[  262.935211][ T9861]  ? __pfx_____sys_sendmsg+0x10/0x10
[  262.936793][ T9861]  ? __pfx___lock_acquire+0x10/0x10
[  262.938596][ T9861]  ___sys_sendmsg+0x135/0x1e0
[  262.940251][ T9861]  ? __pfx____sys_sendmsg+0x10/0x10
[  262.942025][ T9861]  ? lock_acquire+0x2f/0xb0
[  262.943227][ T9861]  ? __fget_files+0x40/0x3f0
[  262.944948][ T9861]  ? fdget+0x176/0x210
[  262.946106][ T9861]  __sys_sendmsg+0x117/0x1f0
[  262.947374][ T9861]  ? __pfx___sys_sendmsg+0x10/0x10
[  262.948731][ T9861]  ? __fget_files+0x244/0x3f0
[  262.949993][ T9861]  do_syscall_64+0xcd/0x250
[  262.951204][ T9861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.952778][ T9861] RIP: 0033:0x7f2d0d97dff9
[  262.953946][ T9861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.958928][ T9861] RSP: 002b:00007f2d0e738038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  262.961120][ T9861] RAX: ffffffffffffffda RBX: 00007f2d0db35f80 RCX: 00007f2d0d97dff9
[  262.963194][ T9861] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  262.965273][ T9861] RBP: 00007f2d0e738090 R08: 0000000000000000 R09: 0000000000000000
[  262.967302][ T9861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.969279][ T9861] R13: 0000000000000000 R14: 00007f2d0db35f80 R15: 00007fff46e02468
[  262.971336][ T9861]  </TASK>
[  263.266651][ T9869] ubi0: attaching mtd0
[  263.270081][ T9869] ubi0: scanning is finished
[  263.271583][ T9869] ubi0: empty MTD device detected
[  263.415848][ T9869] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  263.418062][ T9869] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  263.420255][ T9869] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  263.422119][ T9869] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  263.424242][ T9869] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  263.426115][ T9869] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  263.428531][ T9869] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1264237185
[  263.431609][ T9869] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  263.436027][ T9871] ubi0: background thread "ubi_bgt0d" started, PID 9871
[  263.481813][ T9874] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1231'.
[  263.688709][ T9876] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1231'.
[  263.739853][ T8422] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  264.295467][ T9881] nftables ruleset with unbound chain
[  264.456627][ T5350] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  264.464966][ T5350] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  264.470261][ T5350] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  264.476012][ T5350] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  264.481160][ T5350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  264.484056][ T5350] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  264.725797][ T8422] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  264.790291][ T9887] chnl_net:caif_netlink_parms(): no params data found
[  264.870543][ T9887] bridge0: port 1(bridge_slave_0) entered blocking state
[  264.872496][ T9887] bridge0: port 1(bridge_slave_0) entered disabled state
[  264.874823][ T9887] bridge_slave_0: entered allmulticast mode
[  264.877499][ T9887] bridge_slave_0: entered promiscuous mode
[  264.881855][ T9887] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.884373][ T9887] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.886998][ T9887] bridge_slave_1: entered allmulticast mode
[  264.889326][ T9887] bridge_slave_1: entered promiscuous mode
[  264.924021][ T9887] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  264.931534][ T9887] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  264.961685][ T9887] team0: Port device team_slave_0 added
[  264.965285][ T9887] team0: Port device team_slave_1 added
[  264.989713][ T9887] batman_adv: batadv0: Adding interface: batadv_slave_0
[  264.992006][ T9887] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  265.000648][ T9887] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  265.004850][ T9887] batman_adv: batadv0: Adding interface: batadv_slave_1
[  265.006692][ T9887] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  265.013969][ T9887] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  265.065972][ T9887] hsr_slave_0: entered promiscuous mode
[  265.068668][ T9887] hsr_slave_1: entered promiscuous mode
[  265.071405][ T9887] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  265.073971][ T9887] Cannot create hsr debugfs directory
[  265.389981][ T9910] FAULT_INJECTION: forcing a failure.
[  265.389981][ T9910] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  265.393422][ T9910] CPU: 0 UID: 0 PID: 9910 Comm: syz.2.1240 Not tainted 6.12.0-rc4-syzkaller #0
[  265.395669][ T9910] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  265.398444][ T9910] Call Trace:
[  265.399309][ T9910]  <TASK>
[  265.400074][ T9910]  dump_stack_lvl+0x16c/0x1f0
[  265.401312][ T9910]  should_fail_ex+0x497/0x5b0
[  265.402534][ T9910]  _copy_from_user+0x30/0xf0
[  265.403732][ T9910]  inet_ioctl+0x31f/0x3f0
[  265.404995][ T9910]  ? __pfx_inet_ioctl+0x10/0x10
[  265.406298][ T9910]  ? __pfx_lock_release+0x10/0x10
[  265.407689][ T9910]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  265.409267][ T9910]  sock_do_ioctl+0x116/0x280
[  265.410500][ T9910]  ? __pfx_sock_do_ioctl+0x10/0x10
[  265.412022][ T9910]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  265.413931][ T9910]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  265.415950][ T9910]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  265.418468][ T9910]  sock_ioctl+0x228/0x6c0
[  265.418497][ T9910]  ? __pfx_sock_ioctl+0x10/0x10
[  265.418524][ T9910]  ? selinux_file_ioctl+0x180/0x270
[  265.418543][ T9910]  ? selinux_file_ioctl+0xb4/0x270
[  265.418565][ T9910]  ? __pfx_sock_ioctl+0x10/0x10
[  265.426183][ T9910]  __x64_sys_ioctl+0x18f/0x220
[  265.426206][ T9910]  do_syscall_64+0xcd/0x250
[  265.426224][ T9910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.426239][ T9910] RIP: 0033:0x7f044057dff9
[  265.426250][ T9910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.426261][ T9910] RSP: 002b:00007f0441315038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  265.426272][ T9910] RAX: ffffffffffffffda RBX: 00007f0440735f80 RCX: 00007f044057dff9
[  265.426279][ T9910] RDX: 0000000020000840 RSI: 000000000000890b RDI: 0000000000000006
[  265.426286][ T9910] RBP: 00007f0441315090 R08: 0000000000000000 R09: 0000000000000000
[  265.426292][ T9910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  265.426299][ T9910] R13: 0000000000000000 R14: 00007f0440735f80 R15: 00007ffef923f078
[  265.426312][ T9910]  </TASK>
[  265.680444][ T8422] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.770802][ T8422] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.875614][ T8422] bridge_slave_1: left allmulticast mode
[  265.880971][ T8422] bridge_slave_1: left promiscuous mode
[  265.883058][ T8422] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.898133][ T8422] bridge_slave_0: left allmulticast mode
[  265.899809][ T8422] bridge_slave_0: left promiscuous mode
[  265.901463][ T8422] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.917005][   T30] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  266.075287][   T30] usb 7-1: Using ep0 maxpacket: 8
[  266.079611][   T30] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  266.082201][   T30] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  266.084626][   T30] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  266.095335][   T30] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  266.106310][   T30] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  266.111281][   T30] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  266.114668][   T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  266.312815][ T8422] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  266.326466][ T8422] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  266.326634][   T30] usb 7-1: GET_CAPABILITIES returned 0
[  266.330693][   T30] usbtmc 7-1:16.0: can't read capabilities
[  266.333391][ T8422] bond0 (unregistering): Released all slaves
[  266.497258][   T63] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  266.527224][ T5350] Bluetooth: hci0: command tx timeout
[  266.534369][ T9925] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1243'.
[  266.539845][ T5381] usb 7-1: USB disconnect, device number 23
[  266.651538][   T63] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  266.657731][   T63] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  266.660334][   T63] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  266.666213][   T63] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  266.669809][   T63] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.673386][ T8422] hsr_slave_0: left promiscuous mode
[  266.676044][   T63] usb 6-1: Product: syz
[  266.679898][ T8422] hsr_slave_1: left promiscuous mode
[  266.681641][   T63] usb 6-1: Manufacturer: syz
[  266.683471][ T8422] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  266.685163][   T63] usb 6-1: SerialNumber: syz
[  266.686222][ T8422] batman_adv: batadv0: Removing interface: batadv_slave_0
[  266.690988][ T8422] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  266.693410][ T8422] batman_adv: batadv0: Removing interface: batadv_slave_1
[  266.731124][ T8422] veth1_macvtap: left promiscuous mode
[  266.732796][ T8422] veth0_macvtap: left promiscuous mode
[  266.734299][ T8422] veth1_vlan: left promiscuous mode
[  266.735862][ T8422] veth0_vlan: left promiscuous mode
[  266.911569][   T63] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 15 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  267.320214][ T9956] kvm: user requested TSC rate below hardware speed
[  267.857260][ T8422] team0 (unregistering): Port device team_slave_1 removed
[  268.015644][ T8422] team0 (unregistering): Port device team_slave_0 removed
[  268.607811][ T5350] Bluetooth: hci0: command tx timeout
[  268.617259][ T9980] FAULT_INJECTION: forcing a failure.
[  268.617259][ T9980] name failslab, interval 1, probability 0, space 0, times 0
[  268.624746][ T9980] CPU: 1 UID: 0 PID: 9980 Comm: syz.2.1254 Not tainted 6.12.0-rc4-syzkaller #0
[  268.627505][ T9980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  268.630647][ T9980] Call Trace:
[  268.631526][ T9980]  <TASK>
[  268.632433][ T9980]  dump_stack_lvl+0x16c/0x1f0
[  268.633765][ T9980]  should_fail_ex+0x497/0x5b0
[  268.635035][ T9980]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  268.636450][ T9980]  should_failslab+0xc2/0x120
[  268.637735][ T9980]  __kmalloc_node_track_caller_noprof+0xcf/0x430
[  268.639937][ T9980]  ? sidtab_sid2str_get+0x17a/0x680
[  268.641314][ T9980]  kmemdup_noprof+0x29/0x60
[  268.642505][ T9980]  sidtab_sid2str_get+0x17a/0x680
[  268.643854][ T9980]  sidtab_entry_to_string+0x33/0x110
[  268.645251][ T9980]  security_sid_to_context_core+0x35c/0x640
[  268.646791][ T9980]  avc_audit_post_callback+0x1ac/0x8c0
[  268.648288][ T9980]  ? irqentry_exit+0x3b/0x90
[  268.649597][ T9980]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  268.651097][ T9980]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  268.652671][ T9980]  ? common_lsm_audit+0x1d3/0x2210
[  268.654032][ T9980]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  268.655592][ T9980]  common_lsm_audit+0x260/0x2210
[  268.656899][ T9980]  ? irqentry_exit+0x3b/0x90
[  268.658264][ T9980]  ? lockdep_hardirqs_on+0x7c/0x110
[  268.659623][ T9980]  ? __pfx_common_lsm_audit+0x10/0x10
[  268.661037][ T9980]  ? preempt_schedule_thunk+0x1a/0x30
[  268.662437][ T9980]  ? preempt_schedule_common+0x44/0xc0
[  268.663860][ T9980]  ? slow_avc_audit+0x17d/0x210
[  268.665178][ T9980]  slow_avc_audit+0x17d/0x210
[  268.666404][ T9980]  ? __pfx_slow_avc_audit+0x10/0x10
[  268.667873][ T9980]  ? avc_denied+0x138/0x180
[  268.669557][ T9980]  ? avc_has_perm_noaudit+0x2f8/0x3a0
[  268.671505][ T9980]  avc_has_perm+0x18d/0x1c0
[  268.672921][ T9980]  ? __pfx_avc_has_perm+0x10/0x10
[  268.674481][ T9980]  security_uring_override_creds+0x1b9/0x1e0
[  268.676399][ T9980]  io_submit_sqes+0xd43/0x2530
[  268.677988][ T9980]  __do_sys_io_uring_enter+0xc0f/0x1170
[  268.679774][ T9980]  ? __pfx___schedule+0x10/0x10
[  268.681015][ T9980]  ? __fget_files+0x244/0x3f0
[  268.682240][ T9980]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  268.683788][ T9980]  ? fput+0x30/0x390
[  268.685017][ T9980]  ? ksys_write+0x1ad/0x260
[  268.686266][ T9980]  do_syscall_64+0xcd/0x250
[  268.687524][ T9980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.689340][ T9980] RIP: 0033:0x7f044057dff9
[  268.690542][ T9980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.696176][ T9980] RSP: 002b:00007f04412d3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  268.698732][ T9980] RAX: ffffffffffffffda RBX: 00007f0440736130 RCX: 00007f044057dff9
[  268.700813][ T9980] RDX: 0000000000000000 RSI: 00000000000047f6 RDI: 0000000000000006
[  268.702820][ T9980] RBP: 00007f04412d3090 R08: 0000000000000000 R09: 0000000000000000
[  268.705103][ T9980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.707329][ T9980] R13: 0000000000000000 R14: 00007f0440736130 R15: 00007ffef923f078
[  268.709963][ T9980]  </TASK>
[  268.742494][   T39] audit: type=1400 audit(1729547470.379:1102): avc:  denied  { override_creds } for  pid=9977 comm="syz.2.1254" scontext=root:sysadm_r:sysadm_t tsid=147 tclass=io_uring permissive=1
[  268.775208][  T827] usb 6-1: USB disconnect, device number 15
[  268.786487][  T827] usblp0: removed
[  269.120894][ T9887] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  269.125018][ T9887] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  269.130219][ T9887] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  269.159961][ T9887] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  269.165322][ T9990] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43 sclass=netlink_route_socket pid=9990 comm=syz.3.1255
[  269.169324][ T9990] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65 sclass=netlink_route_socket pid=9990 comm=syz.3.1255
[  269.172711][ T9990] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57 sclass=netlink_route_socket pid=9990 comm=syz.3.1255
[  269.178003][ T9990] netlink: 300 bytes leftover after parsing attributes in process `syz.3.1255'.
[  269.181389][ T9990] program syz.3.1255 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  269.245011][ T9887] 8021q: adding VLAN 0 to HW filter on device bond0
[  269.264395][ T9887] 8021q: adding VLAN 0 to HW filter on device team0
[  269.271188][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  269.274144][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  269.280723][   T70] bridge0: port 2(bridge_slave_1) entered blocking state
[  269.283244][   T70] bridge0: port 2(bridge_slave_1) entered forwarding state
[  269.529977][ T9887] 8021q: adding VLAN 0 to HW filter on device batadv0
[  269.554345][ T9887] veth0_vlan: entered promiscuous mode
[  269.559350][ T9887] veth1_vlan: entered promiscuous mode
[  269.570084][ T9887] veth0_macvtap: entered promiscuous mode
[  269.573092][ T9887] veth1_macvtap: entered promiscuous mode
[  269.579671][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  269.582433][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.585596][ T9887] batman_adv: batadv0: Interface activated: batadv_slave_0
[  269.591696][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  269.594450][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.597038][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  269.599704][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.602815][ T9887] batman_adv: batadv0: Interface activated: batadv_slave_1
[  269.610291][ T9887] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  269.612614][ T9887] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  269.614850][ T9887] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  269.618359][ T9887] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  269.969948][ T8418] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  269.972781][ T8418] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  270.002832][ T8418] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  270.005285][ T8418] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  270.687622][ T5342] Bluetooth: hci0: command tx timeout
[  271.012498][T10031] FAULT_INJECTION: forcing a failure.
[  271.012498][T10031] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  271.018841][T10031] CPU: 0 UID: 0 PID: 10031 Comm: syz.2.1265 Not tainted 6.12.0-rc4-syzkaller #0
[  271.021911][T10031] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  271.025509][T10031] Call Trace:
[  271.026644][T10031]  <TASK>
[  271.027660][T10031]  dump_stack_lvl+0x16c/0x1f0
[  271.029265][T10031]  should_fail_ex+0x497/0x5b0
[  271.030858][T10031]  _copy_from_user+0x30/0xf0
[  271.032448][T10031]  kstrtouint_from_user+0xd7/0x1c0
[  271.034175][T10031]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  271.036101][T10031]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  271.037997][T10031]  proc_fail_nth_write+0x84/0x250
[  271.039700][T10031]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  271.041610][T10031]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  271.043407][T10031]  vfs_write+0x28e/0x1140
[  271.044960][T10031]  ? __fget_files+0x23a/0x3f0
[  271.046558][T10031]  ? fdget_pos+0x24c/0x360
[  271.048069][T10031]  ? __pfx_lock_release+0x10/0x10
[  271.049472][T10031]  ? trace_lock_acquire+0x14a/0x1d0
[  271.050838][T10031]  ? __pfx_vfs_write+0x10/0x10
[  271.052112][T10031]  ? __pfx___mutex_lock+0x10/0x10
[  271.053836][T10031]  ? __fget_files+0x244/0x3f0
[  271.055446][T10031]  ksys_write+0x12f/0x260
[  271.056922][T10031]  ? __pfx_ksys_write+0x10/0x10
[  271.058592][T10031]  do_syscall_64+0xcd/0x250
[  271.060127][T10031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.062013][T10031] RIP: 0033:0x7f044057cadf
[  271.063480][T10031] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  271.069109][T10031] RSP: 002b:00007f0441315030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  271.071303][T10031] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f044057cadf
[  271.073404][T10031] RDX: 0000000000000001 RSI: 00007f04413150a0 RDI: 0000000000000004
[  271.075465][T10031] RBP: 00007f0441315090 R08: 0000000000000000 R09: 0000000000000000
[  271.077544][T10031] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  271.079647][T10031] R13: 0000000000000000 R14: 00007f0440735f80 R15: 00007ffef923f078
[  271.082043][T10031]  </TASK>
[  272.215881][T10049] bond_slave_0: entered promiscuous mode
[  272.217419][T10049] bond_slave_1: entered promiscuous mode
[  272.689532][T10041] bond_slave_0: left promiscuous mode
[  272.691216][T10041] bond_slave_1: left promiscuous mode
[  272.778706][ T5342] Bluetooth: hci0: command 0x0419 tx timeout
[  273.066393][T10060] netlink: 'syz.1.1272': attribute type 11 has an invalid length.
[  273.098896][T10062] netlink: 'syz.1.1272': attribute type 11 has an invalid length.
[  273.102035][T10062] netlink: 1300 bytes leftover after parsing attributes in process `syz.1.1272'.
[  276.294806][   T70] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.429240][   T70] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.566255][   T70] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.683095][   T70] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.744756][ T5342] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  276.751560][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  276.755437][ T5342] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  276.789356][ T5342] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  276.791706][ T5342] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  276.794040][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  276.920029][T10126] chnl_net:caif_netlink_parms(): no params data found
[  277.442424][   T70] bridge_slave_1: left allmulticast mode
[  277.443936][   T70] bridge_slave_1: left promiscuous mode
[  277.445476][   T70] bridge0: port 2(bridge_slave_1) entered disabled state
[  277.480151][   T70] bridge_slave_0: left allmulticast mode
[  277.481754][   T70] bridge_slave_0: left promiscuous mode
[  277.483393][   T70] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.233297][   T70] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  278.273623][   T70] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  278.286066][   T70] bond0 (unregistering): Released all slaves
[  278.491719][T10126] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.493627][T10126] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.496090][T10126] bridge_slave_0: entered allmulticast mode
[  278.498696][T10126] bridge_slave_0: entered promiscuous mode
[  278.544493][T10126] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.546598][T10126] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.550270][T10126] bridge_slave_1: entered allmulticast mode
[  278.579171][T10126] bridge_slave_1: entered promiscuous mode
[  278.644376][T10126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  278.701261][T10126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  278.748952][T10126] team0: Port device team_slave_0 added
[  278.755901][T10126] team0: Port device team_slave_1 added
[  278.844449][T10126] batman_adv: batadv0: Adding interface: batadv_slave_0
[  278.851366][T10126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  278.857069][ T5342] Bluetooth: hci0: command tx timeout
[  278.866972][T10126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  278.880501][   T70] hsr_slave_0: left promiscuous mode
[  278.882816][   T70] hsr_slave_1: left promiscuous mode
[  278.889067][   T70] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  278.893171][   T70] batman_adv: batadv0: Removing interface: batadv_slave_0
[  278.899622][   T70] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  278.902427][   T70] batman_adv: batadv0: Removing interface: batadv_slave_1
[  278.952386][   T70] veth1_macvtap: left promiscuous mode
[  278.953868][   T70] veth0_macvtap: left promiscuous mode
[  278.955355][   T70] veth1_vlan: left promiscuous mode
[  278.956993][   T70] veth0_vlan: left promiscuous mode
[  280.519960][   T70] team0 (unregistering): Port device team_slave_1 removed
[  280.640454][   T70] team0 (unregistering): Port device team_slave_0 removed
[  280.847988][T10176] Cannot find set identified by id 4 to match
[  280.936942][ T5342] Bluetooth: hci0: command tx timeout
[  281.553345][   T39] audit: type=1326 audit(1729547483.329:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.576952][   T39] audit: type=1326 audit(1729547483.329:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.585213][   T39] audit: type=1326 audit(1729547483.329:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.593476][   T39] audit: type=1326 audit(1729547483.329:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.599665][   T39] audit: type=1326 audit(1729547483.329:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.605709][   T39] audit: type=1326 audit(1729547483.329:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.611912][   T39] audit: type=1326 audit(1729547483.329:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.618008][   T39] audit: type=1326 audit(1729547483.329:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.624493][   T39] audit: type=1326 audit(1729547483.329:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.630518][   T39] audit: type=1326 audit(1729547483.329:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10178 comm="syz.3.1297" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d0d97dff9 code=0x7ffc0000
[  281.725428][T10126] batman_adv: batadv0: Adding interface: batadv_slave_1
[  281.727425][T10126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.736242][T10126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  281.758045][T10179] bridge_slave_0: left allmulticast mode
[  281.759983][T10179] bridge_slave_0: left promiscuous mode
[  281.762204][T10179] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.768952][T10179] bridge_slave_1: left allmulticast mode
[  281.770131][T10183] FAULT_INJECTION: forcing a failure.
[  281.770131][T10183] name failslab, interval 1, probability 0, space 0, times 0
[  281.771032][T10179] bridge_slave_1: left promiscuous mode
[  281.775598][T10183] CPU: 2 UID: 0 PID: 10183 Comm: syz.2.1298 Not tainted 6.12.0-rc4-syzkaller #0
[  281.775623][T10183] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.775635][T10183] Call Trace:
[  281.775642][T10183]  <TASK>
[  281.775664][T10183]  dump_stack_lvl+0x16c/0x1f0
[  281.777878][T10179] bridge0: port 2(bridge_slave_1) entered disabled state
[  281.780877][T10183]  should_fail_ex+0x497/0x5b0
[  281.780901][T10183]  ? fs_reclaim_acquire+0xae/0x150
[  281.780923][T10183]  should_failslab+0xc2/0x120
[  281.796599][T10183]  __kmalloc_noprof+0xcb/0x400
[  281.798391][T10183]  ? trace_lock_acquire+0x14a/0x1d0
[  281.800302][T10183]  bio_kmalloc+0x41/0x70
[  281.801849][T10183]  blk_rq_map_kern+0x400/0x760
[  281.803595][T10183]  scsi_execute_cmd+0xc09/0xf40
[  281.805363][T10183]  ? sr_read_tocentry.isra.0+0x516/0x540
[  281.807382][T10183]  ? scsi_block_when_processing_errors+0x2c1/0x380
[  281.809788][T10183]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  281.811772][T10183]  sr_do_ioctl+0x21c/0x830
[  281.813472][T10183]  ? __pfx_sr_do_ioctl+0x10/0x10
[  281.815348][T10183]  ? scsi_block_when_processing_errors+0x2c1/0x380
[  281.817949][T10183]  ? __pfx_scsi_block_when_processing_errors+0x10/0x10
[  281.820471][T10183]  ? __pfx_sr_drive_status+0x10/0x10
[  281.822399][T10183]  sr_packet+0xee/0x1c0
[  281.823761][T10183]  cdrom_open+0xd27/0x26b0
[  281.825403][T10183]  ? __pfx_cdrom_open+0x10/0x10
[  281.827208][T10183]  ? __pfx___mutex_trylock_common+0x10/0x10
[  281.829550][T10183]  ? sr_block_open+0x167/0x270
[  281.831296][T10183]  ? rcu_is_watching+0x12/0xc0
[  281.833059][T10183]  ? trace_contention_end+0xea/0x140
[  281.834959][T10183]  ? __mutex_lock+0x1a6/0x9c0
[  281.836683][T10183]  ? _raw_spin_unlock_irq+0x23/0x50
[  281.838584][T10183]  ? lockdep_hardirqs_on+0x7c/0x110
[  281.840554][T10183]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  281.842706][T10183]  sr_block_open+0x174/0x270
[  281.844420][T10183]  ? __pfx_sr_block_open+0x10/0x10
[  281.846318][T10183]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  281.848514][T10183]  ? __pfx_sr_block_open+0x10/0x10
[  281.850408][T10183]  blkdev_get_whole+0x96/0x290
[  281.852220][T10183]  bdev_open+0x2c7/0xe20
[  281.853817][T10183]  blkdev_open+0x36c/0x450
[  281.855476][T10183]  do_dentry_open+0x6ca/0x1530
[  281.857601][T10183]  ? __pfx_blkdev_open+0x10/0x10
[  281.859401][T10183]  vfs_open+0x82/0x3f0
[  281.860855][T10183]  ? may_open+0x1f2/0x400
[  281.862338][T10183]  path_openat+0x1e6a/0x2d60
[  281.863986][T10183]  ? __pfx_path_openat+0x10/0x10
[  281.865734][T10183]  ? __pfx___lock_acquire+0x10/0x10
[  281.867584][T10183]  do_filp_open+0x1dc/0x430
[  281.869188][T10183]  ? __pfx_do_filp_open+0x10/0x10
[  281.870976][T10183]  ? find_held_lock+0x2d/0x110
[  281.872789][T10183]  ? _raw_spin_unlock+0x28/0x50
[  281.874521][T10183]  ? alloc_fd+0x2d7/0x6c0
[  281.876061][T10183]  do_sys_openat2+0x17a/0x1e0
[  281.877771][T10183]  ? __pfx_do_sys_openat2+0x10/0x10
[  281.879603][T10183]  ? __fget_files+0x244/0x3f0
[  281.881283][T10183]  __x64_sys_openat+0x175/0x210
[  281.883003][T10183]  ? __pfx___x64_sys_openat+0x10/0x10
[  281.884901][T10183]  ? ksys_write+0x1ad/0x260
[  281.886552][T10183]  do_syscall_64+0xcd/0x250
[  281.888232][T10183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.890303][T10183] RIP: 0033:0x7f044057c990
[  281.891846][T10183] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  281.898500][T10183] RSP: 002b:00007f04412f3b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  281.901414][T10183] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f044057c990
[  281.904164][T10183] RDX: 0000000000000002 RSI: 00007f04412f3c10 RDI: 00000000ffffff9c
[  281.906904][T10183] RBP: 00007f04412f3c10 R08: 0000000000000000 R09: 006d6f7264632f76
[  281.909649][T10183] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  281.912414][T10183] R13: 0000000000000000 R14: 00007f0440736058 R15: 00007ffef923f078
[  281.915166][T10183]  </TASK>
[  281.925362][T10179] bond0: (slave bond_slave_0): Releasing backup interface
[  281.936629][T10179] bond0: (slave bond_slave_1): Releasing backup interface
[  281.958215][T10179] team0: Port device team_slave_0 removed
[  281.965944][T10179] team0: Port device team_slave_1 removed
[  281.969145][T10179] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  281.971393][T10179] batman_adv: batadv0: Removing interface: batadv_slave_0
[  281.975445][T10179] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  281.978055][T10179] batman_adv: batadv0: Removing interface: batadv_slave_1
[  282.051317][T10182] wg2: entered promiscuous mode
[  282.068459][T10182] team0: Port device wg2 added
[  282.207175][T10126] hsr_slave_0: entered promiscuous mode
[  282.213371][T10126] hsr_slave_1: entered promiscuous mode
[  282.222389][T10126] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  282.225353][T10126] Cannot create hsr debugfs directory
[  282.232377][T10193] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1300'.
[  282.374733][T10193] hsr_slave_1 (unregistering): left promiscuous mode
[  283.007200][ T5342] Bluetooth: hci0: command tx timeout
[  283.039110][T10220] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1304'.
[  283.042457][T10220] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1304'.
[  283.045405][T10220] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1304'.
[  283.056705][T10220] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1304'.
[  283.081484][T10126] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  283.085240][T10126] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  283.090140][T10126] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  283.097984][T10126] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  283.254041][T10126] 8021q: adding VLAN 0 to HW filter on device bond0
[  283.278165][T10126] 8021q: adding VLAN 0 to HW filter on device team0
[  283.299918][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  283.302198][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  283.311757][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  283.313754][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  283.602258][T10126] 8021q: adding VLAN 0 to HW filter on device batadv0
[  283.691838][T10126] veth0_vlan: entered promiscuous mode
[  283.706342][T10126] veth1_vlan: entered promiscuous mode
[  283.732092][T10126] veth0_macvtap: entered promiscuous mode
[  283.734964][T10126] veth1_macvtap: entered promiscuous mode
[  283.741951][T10126] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.749747][T10126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.752539][T10126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.755663][T10126] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.759508][T10126] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.761858][T10126] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.764801][T10126] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.768727][T10126] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.815960][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.818586][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.840062][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.843364][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.290030][T10261] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1307'.
[  284.778468][T10265] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1309'.
[  284.781860][T10265] FAULT_INJECTION: forcing a failure.
[  284.781860][T10265] name failslab, interval 1, probability 0, space 0, times 0
[  284.785405][T10265] CPU: 1 UID: 0 PID: 10265 Comm: syz.2.1309 Not tainted 6.12.0-rc4-syzkaller #0
[  284.788578][T10265] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.791508][T10265] Call Trace:
[  284.792473][T10265]  <TASK>
[  284.793260][T10265]  dump_stack_lvl+0x16c/0x1f0
[  284.794563][T10265]  should_fail_ex+0x497/0x5b0
[  284.795817][T10265]  should_failslab+0xc2/0x120
[  284.797172][T10265]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  284.798757][T10265]  ? skb_clone+0x190/0x3f0
[  284.799959][T10265]  skb_clone+0x190/0x3f0
[  284.801160][T10265]  netlink_deliver_tap+0xab3/0xd90
[  284.802429][T10265]  netlink_dump+0xb2d/0xcc0
[  284.803645][T10265]  ? __pfx_netlink_dump+0x10/0x10
[  284.804994][T10265]  ? __pfx_lock_release+0x10/0x10
[  284.806423][T10265]  ? __rhashtable_lookup.constprop.0+0x397/0x710
[  284.808094][T10265]  ? netlink_lookup+0x259/0x520
[  284.809569][T10265]  ? __pfx_netlink_lookup+0x10/0x10
[  284.811230][T10265]  __netlink_dump_start+0x6ca/0x970
[  284.812972][T10265]  ? __pfx_neigh_dump_info+0x10/0x10
[  284.814500][T10265]  rtnetlink_rcv_msg+0xb44/0xea0
[  284.815818][T10265]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  284.817261][T10265]  ? __pfx_neigh_dump_info+0x10/0x10
[  284.818759][T10265]  netlink_rcv_skb+0x16b/0x440
[  284.820023][T10265]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  284.821577][T10265]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  284.822975][T10265]  ? netlink_deliver_tap+0x1ae/0xd90
[  284.824377][T10265]  netlink_unicast+0x53c/0x7f0
[  284.825649][T10265]  ? __pfx_netlink_unicast+0x10/0x10
[  284.827048][T10265]  netlink_sendmsg+0x8b8/0xd70
[  284.828324][T10265]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.829731][T10265]  ? __import_iovec+0x1fd/0x6e0
[  284.831139][T10265]  ____sys_sendmsg+0xaaf/0xc90
[  284.832437][T10265]  ? copy_msghdr_from_user+0x10b/0x160
[  284.833857][T10265]  ? __pfx_____sys_sendmsg+0x10/0x10
[  284.835243][T10265]  ? __pfx___lock_acquire+0x10/0x10
[  284.836627][T10265]  ___sys_sendmsg+0x135/0x1e0
[  284.837962][T10265]  ? __pfx____sys_sendmsg+0x10/0x10
[  284.839489][T10265]  ? lock_acquire+0x2f/0xb0
[  284.840765][T10265]  ? __fget_files+0x40/0x3f0
[  284.842013][T10265]  ? fdget+0x176/0x210
[  284.843129][T10265]  __sys_sendmsg+0x117/0x1f0
[  284.844379][T10265]  ? __pfx___sys_sendmsg+0x10/0x10
[  284.845742][T10265]  ? __fget_files+0x244/0x3f0
[  284.847030][T10265]  do_syscall_64+0xcd/0x250
[  284.848261][T10265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.850207][T10265] RIP: 0033:0x7f044057dff9
[  284.851393][T10265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.856281][T10265] RSP: 002b:00007f0441315038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  284.858489][T10265] RAX: ffffffffffffffda RBX: 00007f0440735f80 RCX: 00007f044057dff9
[  284.861160][T10265] RDX: 0000000000000000 RSI: 0000000020000940 RDI: 0000000000000003
[  284.863911][T10265] RBP: 00007f0441315090 R08: 0000000000000000 R09: 0000000000000000
[  284.866605][T10265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.869407][T10265] R13: 0000000000000000 R14: 00007f0440735f80 R15: 00007ffef923f078
[  284.872303][T10265]  </TASK>
[  285.722398][T10288] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1315'.
[  286.071826][ T1100] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.822583][T10292] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  286.889030][ T5350] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  286.892952][ T5350] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  286.897498][ T5350] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  286.903901][ T5350] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  286.906108][ T5350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  286.908808][ T5350] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  287.005143][T10295] chnl_net:caif_netlink_parms(): no params data found
[  287.084809][T10295] bridge0: port 1(bridge_slave_0) entered blocking state
[  287.088014][T10295] bridge0: port 1(bridge_slave_0) entered disabled state
[  287.091415][T10295] bridge_slave_0: entered allmulticast mode
[  287.094767][T10295] bridge_slave_0: entered promiscuous mode
[  287.100687][T10295] bridge0: port 2(bridge_slave_1) entered blocking state
[  287.103481][T10295] bridge0: port 2(bridge_slave_1) entered disabled state
[  287.106107][T10295] bridge_slave_1: entered allmulticast mode
[  287.109830][T10295] bridge_slave_1: entered promiscuous mode
[  287.145101][T10295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  287.151037][T10295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  287.156960][ T1449] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  287.184894][T10295] team0: Port device team_slave_0 added
[  287.188926][T10295] team0: Port device team_slave_1 added
[  287.215902][T10295] batman_adv: batadv0: Adding interface: batadv_slave_0
[  287.218263][T10295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  287.224727][T10295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  287.230801][T10295] batman_adv: batadv0: Adding interface: batadv_slave_1
[  287.232856][T10295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  287.240047][T10295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  287.289221][T10295] hsr_slave_0: entered promiscuous mode
[  287.291367][T10295] hsr_slave_1: entered promiscuous mode
[  287.294016][T10295] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  287.297050][T10295] Cannot create hsr debugfs directory
[  287.319174][ T1449] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  287.321433][ T1449] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  287.325184][ T1449] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  287.327721][ T1449] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  287.329809][ T1449] usb 7-1: Manufacturer: syz
[  287.331887][ T1449] usb 7-1: config 0 descriptor??
[  287.384261][T10292] syz.1.1316 (10292) used greatest stack depth: 19824 bytes left
[  287.387784][ T1449] rc_core: IR keymap rc-hauppauge not found
[  287.389504][ T1449] Registered IR keymap rc-empty
[  287.392315][ T1449] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  287.396077][ T1449] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input17
[  287.673752][ T1100] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.846487][ T1100] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.942438][ T1100] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.049171][ T1100] bridge_slave_1: left allmulticast mode
[  288.050984][ T1100] bridge_slave_1: left promiscuous mode
[  288.053373][ T1100] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.059830][ T1100] bridge_slave_0: left allmulticast mode
[  288.061374][ T1100] bridge_slave_0: left promiscuous mode
[  288.062959][ T1100] bridge0: port 1(bridge_slave_0) entered disabled state
[  288.405911][ T1100] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  288.411941][ T1100] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  288.417010][ T1100] bond0 (unregistering): Released all slaves
[  288.502051][T10311] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1319'.
[  288.510531][T10317] lo: entered allmulticast mode
[  288.513363][T10317] tunl0: entered allmulticast mode
[  288.517274][T10317] gre0: entered allmulticast mode
[  288.523311][T10317] gretap0: entered allmulticast mode
[  288.537336][T10317] erspan0: entered allmulticast mode
[  288.556975][T10317] ip_vti0: entered allmulticast mode
[  288.562322][T10317] ip6_vti0: entered allmulticast mode
[  288.568623][T10317] sit0: entered allmulticast mode
[  288.599558][T10317] ip6tnl0: entered allmulticast mode
[  288.601994][T10317] ip6gre0: entered allmulticast mode
[  288.606048][T10317] syz_tun: entered allmulticast mode
[  288.610862][T10317] ip6gretap0: entered allmulticast mode
[  288.615726][T10317] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.618569][T10317] bridge0: port 1(bridge_slave_0) entered disabled state
[  288.622764][T10317] bridge0: entered allmulticast mode
[  288.627979][T10317] vcan0: entered allmulticast mode
[  288.633308][T10317] bond0: entered allmulticast mode
[  288.635100][T10317] bond_slave_0: entered allmulticast mode
[  288.637787][T10317] bond_slave_1: entered allmulticast mode
[  288.642980][T10317] team_slave_0: left promiscuous mode
[  288.645117][T10317] team_slave_1: left promiscuous mode
[  288.647217][T10317] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[  288.649813][T10317] team0: entered allmulticast mode
[  288.651396][T10317] team_slave_0: entered allmulticast mode
[  288.653432][T10317] team_slave_1: entered allmulticast mode
[  288.654863][T10317] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  288.660267][T10317] dummy0: entered allmulticast mode
[  288.666261][T10317] nlmon0: entered allmulticast mode
[  288.670720][T10317] caif0: entered allmulticast mode
[  288.674149][T10317] batadv0: entered allmulticast mode
[  288.682280][T10317] vxcan0: entered allmulticast mode
[  288.685212][T10317] vxcan1: entered allmulticast mode
[  288.688774][T10317] veth0: entered allmulticast mode
[  288.692968][T10317] veth1: entered allmulticast mode
[  288.697980][T10317] wg0: entered allmulticast mode
[  288.701019][T10317] wg1: entered allmulticast mode
[  288.704668][T10317] wg2: entered allmulticast mode
[  288.707768][T10317] veth0_to_bridge: entered allmulticast mode
[  288.712221][T10317] veth1_to_bridge: entered allmulticast mode
[  288.718383][T10317] veth0_to_bond: entered allmulticast mode
[  288.722574][T10317] veth1_to_bond: entered allmulticast mode
[  288.727073][T10317] veth0_to_team: entered allmulticast mode
[  288.739280][   T63] usb 7-1: USB disconnect, device number 24
[  288.744694][T10317] veth1_to_team: entered allmulticast mode
[  288.759999][T10317] veth0_to_batadv: entered allmulticast mode
[  288.763855][T10317] batadv_slave_0: left promiscuous mode
[  288.765735][T10317] batadv_slave_0: entered allmulticast mode
[  288.769924][T10317] veth1_to_batadv: entered allmulticast mode
[  288.773691][T10317] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  288.777823][T10317] batadv_slave_1: entered allmulticast mode
[  288.782032][T10317] xfrm0: entered allmulticast mode
[  288.785699][T10317] veth0_to_hsr: entered allmulticast mode
[  288.790212][T10317] hsr_slave_0: entered allmulticast mode
[  288.794085][T10317] veth1_to_hsr: entered allmulticast mode
[  288.797990][T10317] hsr_slave_1: entered allmulticast mode
[  288.801803][T10317] hsr0: entered allmulticast mode
[  288.806524][T10317] veth1_virt_wifi: entered allmulticast mode
[  288.813942][T10317] veth0_virt_wifi: entered allmulticast mode
[  288.822917][T10317] veth1_macvtap: entered allmulticast mode
[  288.832936][T10317] veth0_macvtap: entered allmulticast mode
[  288.838510][T10317] macvtap0: entered allmulticast mode
[  288.842684][T10317] macsec0: entered allmulticast mode
[  288.849797][T10317] geneve0: entered allmulticast mode
[  288.855614][T10317] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  288.858350][T10317] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  288.861168][T10317] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  288.864253][T10317] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  288.870847][T10317] geneve1: entered allmulticast mode
[  288.875613][T10317] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  288.881231][T10317] netdevsim netdevsim1 netdevsim1: entered allmulticast mode
[  288.886596][T10317] netdevsim netdevsim1 netdevsim2: entered allmulticast mode
[  288.892610][T10317] netdevsim netdevsim1 netdevsim3: entered allmulticast mode
[  288.908062][T10317] mac80211_hwsim hwsim7 wlan0: entered allmulticast mode
[  288.916034][T10317] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  288.921373][T10317] macvlan2: entered allmulticast mode
[  288.923773][T10317] ip6tnl1: entered allmulticast mode
[  288.925721][T10317] syztnl0: entered allmulticast mode
[  288.927567][ T5342] Bluetooth: hci0: command tx timeout
[  288.933229][T10317] gretap1: entered allmulticast mode
[  288.935747][T10317] bond1: entered allmulticast mode
[  288.939441][T10317] bond2: entered allmulticast mode
[  288.941100][T10317] bond3: entered allmulticast mode
[  289.050390][   T39] kauditd_printk_skb: 18 callbacks suppressed
[  289.050401][   T39] audit: type=1400 audit(1729547490.819:1130): avc:  denied  { execmem } for  pid=10328 comm="syz.1.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  289.203153][ T1100] hsr_slave_0: left promiscuous mode
[  289.205094][ T1100] hsr_slave_1: left promiscuous mode
[  289.207703][ T1100] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  289.209584][ T1100] batman_adv: batadv0: Removing interface: batadv_slave_0
[  289.212064][ T1100] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  289.214009][ T1100] batman_adv: batadv0: Removing interface: batadv_slave_1
[  289.237913][ T1100] veth1_macvtap: left promiscuous mode
[  289.239363][ T1100] veth0_macvtap: left promiscuous mode
[  289.240782][ T1100] veth1_vlan: left promiscuous mode
[  289.243377][ T1100] veth0_vlan: left promiscuous mode
[  289.846050][   T39] audit: type=1400 audit(1729547491.609:1131): avc:  denied  { create } for  pid=10352 comm="syz.2.1328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  289.879310][T10360] virtio-fs: tag <(null)> not found
[  290.405073][ T1100] team0 (unregistering): Port device team_slave_1 removed
[  290.558284][ T1100] team0 (unregistering): Port device team_slave_0 removed
[  291.006976][ T5342] Bluetooth: hci0: command tx timeout
[  291.250914][   T39] audit: type=1400 audit(1729547493.019:1132): avc:  denied  { sendto } for  pid=34 comm="ksoftirqd/3" saddr=fe80::1c daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[  291.445055][T10295] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  291.470211][T10295] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  291.484882][T10295] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  291.499517][T10295] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  291.588796][T10295] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.602060][T10295] 8021q: adding VLAN 0 to HW filter on device team0
[  291.609007][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[  291.610868][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[  291.616546][ T8422] bridge0: port 2(bridge_slave_1) entered blocking state
[  291.618699][ T8422] bridge0: port 2(bridge_slave_1) entered forwarding state
[  292.021983][T10295] 8021q: adding VLAN 0 to HW filter on device batadv0
[  292.080236][T10295] veth0_vlan: entered promiscuous mode
[  292.084186][T10295] veth1_vlan: entered promiscuous mode
[  292.094287][T10295] veth0_macvtap: entered promiscuous mode
[  292.097516][T10295] veth1_macvtap: entered promiscuous mode
[  292.103560][T10295] batman_adv: batadv0: Interface activated: batadv_slave_0
[  292.108228][T10295] batman_adv: batadv0: Interface activated: batadv_slave_1
[  292.111663][T10295] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  292.114235][T10295] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  292.116687][T10295] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  292.119193][T10295] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  292.415864][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  292.420278][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  292.662554][ T8422] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  292.665309][ T8422] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  292.706431][   T39] audit: type=1400 audit(1729547494.469:1133): avc:  denied  { mounton } for  pid=10295 comm="syz-executor" path="/syzkaller.Qut4KP/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=39140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  292.726173][   T39] audit: type=1400 audit(1729547494.489:1134): avc:  denied  { mount } for  pid=10295 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  293.438681][   T39] audit: type=1400 audit(1729547495.219:1135): avc:  denied  { listen } for  pid=10413 comm="syz.3.1336" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  293.490597][   T39] audit: type=1400 audit(1729547495.249:1136): avc:  denied  { relabelfrom } for  pid=10418 comm="syz.2.1337" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  293.497484][   T39] audit: type=1400 audit(1729547495.249:1137): avc:  denied  { relabelto } for  pid=10418 comm="syz.2.1337" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  294.179502][   T70] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.055962][T10435] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1339'.
[  295.062654][   T39] audit: type=1400 audit(1729547496.839:1138): avc:  denied  { bind } for  pid=10433 comm="syz.1.1339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  295.106829][   T39] audit: type=1400 audit(1729547496.869:1139): avc:  denied  { write } for  pid=10432 comm="syz.3.1340" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  295.113411][   T39] audit: type=1400 audit(1729547496.869:1140): avc:  denied  { nlmsg_write } for  pid=10432 comm="syz.3.1340" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  295.120738][T10437] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1339'.
[  295.182756][ T5350] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  295.189508][ T5350] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  295.193112][ T5350] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  295.198802][ T5350] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  295.201876][ T5350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  295.204542][ T5350] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  295.246196][   T39] audit: type=1400 audit(1729547497.009:1141): avc:  denied  { watch } for  pid=10438 comm="syz.3.1341" path="/332/bus" dev="overlay" ino=1845 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  295.257061][   T39] audit: type=1400 audit(1729547497.009:1142): avc:  denied  { watch_sb } for  pid=10438 comm="syz.3.1341" path="/332/bus" dev="overlay" ino=1845 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  295.260451][T10439] overlayfs: failed to resolve './file1': -2
[  295.300408][T10440] chnl_net:caif_netlink_parms(): no params data found
[  295.378065][T10440] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.380673][T10440] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.383328][T10440] bridge_slave_0: entered allmulticast mode
[  295.386245][T10440] bridge_slave_0: entered promiscuous mode
[  295.392636][T10440] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.397005][T10440] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.399596][T10440] bridge_slave_1: entered allmulticast mode
[  295.401880][T10440] bridge_slave_1: entered promiscuous mode
[  295.437680][T10440] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  295.442633][T10440] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  295.475189][T10440] team0: Port device team_slave_0 added
[  295.482895][T10440] team0: Port device team_slave_1 added
[  295.510051][T10440] batman_adv: batadv0: Adding interface: batadv_slave_0
[  295.512457][T10440] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  295.521711][T10440] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  295.527660][T10440] batman_adv: batadv0: Adding interface: batadv_slave_1
[  295.530065][T10440] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  295.538554][T10440] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  295.578312][T10440] hsr_slave_0: entered promiscuous mode
[  295.583776][T10440] hsr_slave_1: entered promiscuous mode
[  295.586246][T10440] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  295.589016][T10440] Cannot create hsr debugfs directory
[  295.915514][   T70] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.994454][   T70] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.104400][   T70] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.237772][   T70] bridge_slave_1: left allmulticast mode
[  296.239674][   T70] bridge_slave_1: left promiscuous mode
[  296.241450][   T70] bridge0: port 2(bridge_slave_1) entered disabled state
[  296.248649][   T70] bridge_slave_0: left allmulticast mode
[  296.250165][   T70] bridge_slave_0: left promiscuous mode
[  296.251991][   T70] bridge0: port 1(bridge_slave_0) entered disabled state
[  296.534301][   T39] audit: type=1400 audit(1729547498.299:1143): avc:  denied  { ioctl } for  pid=10459 comm="syz.2.1345" path="socket:[40690]" dev="sockfs" ino=40690 ioctlcmd=0x8b36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  296.692536][   T70] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  296.701540][   T70] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  296.711576][   T70] bond0 (unregistering): Released all slaves
[  296.966145][   T39] audit: type=1400 audit(1729547498.739:1144): avc:  denied  { read } for  pid=10461 comm="syz.2.1346" name="btrfs-control" dev="devtmpfs" ino=1149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  296.974667][   T39] audit: type=1400 audit(1729547498.739:1145): avc:  denied  { open } for  pid=10461 comm="syz.2.1346" path="/dev/btrfs-control" dev="devtmpfs" ino=1149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  296.987190][   T39] audit: type=1400 audit(1729547498.759:1146): avc:  denied  { ioctl } for  pid=10461 comm="syz.2.1346" path="/dev/btrfs-control" dev="devtmpfs" ino=1149 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  297.132393][   T70] hsr_slave_0: left promiscuous mode
[  297.135627][   T70] hsr_slave_1: left promiscuous mode
[  297.137671][   T70] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  297.139803][   T70] batman_adv: batadv0: Removing interface: batadv_slave_0
[  297.142709][   T70] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  297.145126][   T70] batman_adv: batadv0: Removing interface: batadv_slave_1
[  297.171505][   T70] veth1_macvtap: left promiscuous mode
[  297.173376][   T70] veth0_macvtap: left promiscuous mode
[  297.175391][   T70] veth1_vlan: left promiscuous mode
[  297.177196][   T70] veth0_vlan: left promiscuous mode
[  297.247008][ T5350] Bluetooth: hci0: command tx timeout
[  297.620391][T10478] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  298.196016][   T70] team0 (unregistering): Port device team_slave_1 removed
[  298.283943][   T70] team0 (unregistering): Port device team_slave_0 removed
[  299.327736][ T5350] Bluetooth: hci0: command tx timeout
[  299.369699][T10440] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  299.388545][T10440] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  299.403678][T10440] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  299.412620][T10440] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  299.481746][T10440] 8021q: adding VLAN 0 to HW filter on device bond0
[  299.490273][T10440] 8021q: adding VLAN 0 to HW filter on device team0
[  299.494627][ T8418] bridge0: port 1(bridge_slave_0) entered blocking state
[  299.496482][ T8418] bridge0: port 1(bridge_slave_0) entered forwarding state
[  299.502346][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  299.504161][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  299.520786][T10440] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  299.523698][T10440] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  299.603439][T10440] 8021q: adding VLAN 0 to HW filter on device batadv0
[  299.622113][T10440] veth0_vlan: entered promiscuous mode
[  299.626512][T10440] veth1_vlan: entered promiscuous mode
[  299.642061][T10440] veth0_macvtap: entered promiscuous mode
[  299.645499][T10440] veth1_macvtap: entered promiscuous mode
[  299.652823][T10440] batman_adv: batadv0: Interface activated: batadv_slave_0
[  299.660598][T10440] batman_adv: batadv0: Interface activated: batadv_slave_1
[  299.664555][T10440] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  299.668787][T10440] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  299.671280][T10440] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  299.673648][T10440] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  299.725098][ T8418] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.731429][ T8418] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.742631][ T8418] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.745340][ T8418] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.152722][T10510] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1355'.
[  300.198804][T10512] netlink: 'syz.1.1356': attribute type 1 has an invalid length.
[  300.200902][T10512] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1356'.
[  300.595737][   T39] audit: type=1400 audit(1729547502.359:1147): avc:  denied  { ioctl } for  pid=10518 comm="syz.2.1358" path="socket:[41561]" dev="sockfs" ino=41561 ioctlcmd=0x89a1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  302.043769][   T70] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.098886][ T5342] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  303.113684][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  303.119386][ T5342] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  303.124660][ T5342] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  303.129115][ T5342] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  303.131845][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  303.578251][T10537] chnl_net:caif_netlink_parms(): no params data found
[  303.660528][T10537] bridge0: port 1(bridge_slave_0) entered blocking state
[  303.662451][T10537] bridge0: port 1(bridge_slave_0) entered disabled state
[  303.664509][T10537] bridge_slave_0: entered allmulticast mode
[  303.667056][T10537] bridge_slave_0: entered promiscuous mode
[  303.669992][T10537] bridge0: port 2(bridge_slave_1) entered blocking state
[  303.672025][T10537] bridge0: port 2(bridge_slave_1) entered disabled state
[  303.673946][T10537] bridge_slave_1: entered allmulticast mode
[  303.675948][T10537] bridge_slave_1: entered promiscuous mode
[  303.695636][T10537] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  303.699928][T10537] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  303.735120][   T70] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.752858][T10537] team0: Port device team_slave_0 added
[  303.755877][T10537] team0: Port device team_slave_1 added
[  303.790646][T10537] batman_adv: batadv0: Adding interface: batadv_slave_0
[  303.792666][T10537] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  303.802576][T10537] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  303.813957][T10537] batman_adv: batadv0: Adding interface: batadv_slave_1
[  303.816635][T10537] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  303.825794][T10537] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  303.875496][   T70] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.022738][   T70] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.039776][T10537] hsr_slave_0: entered promiscuous mode
[  304.046292][T10537] hsr_slave_1: entered promiscuous mode
[  304.050979][T10537] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  304.054345][T10537] Cannot create hsr debugfs directory
[  304.310104][   T70] bridge_slave_1: left allmulticast mode
[  304.311637][   T70] bridge_slave_1: left promiscuous mode
[  304.313182][   T70] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.321040][   T70] bridge_slave_0: left allmulticast mode
[  304.322512][   T70] bridge_slave_0: left promiscuous mode
[  304.324093][   T70] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.764018][   T70] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  304.768661][   T70] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  304.772469][   T70] bond0 (unregistering): Released all slaves
[  305.054289][   T39] audit: type=1400 audit(1729547506.819:1148): avc:  denied  { watch } for  pid=10564 comm="syz.3.1366" path="/340" dev="tmpfs" ino=1895 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  305.112499][T10561] FAULT_INJECTION: forcing a failure.
[  305.112499][T10561] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  305.117205][T10561] CPU: 2 UID: 0 PID: 10561 Comm: syz.2.1365 Not tainted 6.12.0-rc4-syzkaller #0
[  305.120212][T10561] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  305.123875][T10561] Call Trace:
[  305.125145][T10561]  <TASK>
[  305.126154][T10561]  dump_stack_lvl+0x16c/0x1f0
[  305.127785][T10561]  should_fail_ex+0x497/0x5b0
[  305.129424][T10561]  _copy_to_user+0x30/0xc0
[  305.130945][T10561]  copy_siginfo_to_user+0x23/0xc0
[  305.132634][T10561]  x64_setup_rt_frame+0x7ff/0xce0
[  305.134338][T10561]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  305.136237][T10561]  arch_do_signal_or_restart+0x5e6/0x7e0
[  305.138138][T10561]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  305.140221][T10561]  ? _raw_spin_unlock_irq+0x23/0x50
[  305.141933][T10561]  ? __do_sys_rt_sigreturn+0x161/0x230
[  305.143706][T10561]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[  305.145642][T10561]  syscall_exit_to_user_mode+0x150/0x2a0
[  305.147582][T10561]  do_syscall_64+0xda/0x250
[  305.149291][T10561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.151276][T10561] RIP: 0033:0x7f044057dff7
[  305.152802][T10561] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  305.159293][T10561] RSP: 002b:00007f0441315038 EFLAGS: 00000246
[  305.161384][T10561] RAX: 0000000000000013 RBX: 00007f0440735f80 RCX: 00007f044057dff9
[  305.164076][T10561] RDX: 0000000000000001 RSI: 0000000020001340 RDI: 0000000000000003
[  305.166763][T10561] RBP: 00007f0441315090 R08: 0000000000000000 R09: 0000000000000000
[  305.169576][T10561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  305.172195][T10561] R13: 0000000000000000 R14: 00007f0440735f80 R15: 00007ffef923f078
[  305.174852][T10561]  </TASK>
[  305.256924][ T5350] Bluetooth: hci0: command tx timeout
[  305.261926][T10572] overlayfs: missing 'lowerdir'
[  305.315813][   T39] audit: type=1400 audit(1729547507.079:1149): avc:  denied  { ioctl } for  pid=10573 comm="syz.1.1368" path="socket:[38885]" dev="sockfs" ino=38885 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  305.327618][   T70] hsr_slave_0: left promiscuous mode
[  305.332473][   T70] hsr_slave_1: left promiscuous mode
[  305.335059][   T70] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  305.337500][   T70] batman_adv: batadv0: Removing interface: batadv_slave_0
[  305.339850][   T70] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  305.341914][   T70] batman_adv: batadv0: Removing interface: batadv_slave_1
[  305.383470][   T70] veth1_macvtap: left promiscuous mode
[  305.385013][   T70] veth0_macvtap: left promiscuous mode
[  305.386520][   T70] veth1_vlan: left promiscuous mode
[  305.391001][   T70] veth0_vlan: left promiscuous mode
[  306.365838][   T70] team0 (unregistering): Port device team_slave_1 removed
[  306.478268][   T70] team0 (unregistering): Port device team_slave_0 removed
[  307.327085][ T5350] Bluetooth: hci0: command tx timeout
[  307.337599][T10594] netlink: 'syz.2.1370': attribute type 4 has an invalid length.
[  307.346655][T10595] netlink: 'syz.2.1370': attribute type 4 has an invalid length.
[  307.525059][T10537] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  307.566045][T10537] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  307.570345][T10537] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  307.580611][T10537] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  307.634841][T10537] 8021q: adding VLAN 0 to HW filter on device bond0
[  307.648697][T10537] 8021q: adding VLAN 0 to HW filter on device team0
[  307.653044][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.654999][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  307.663768][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.666259][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  307.805353][T10537] 8021q: adding VLAN 0 to HW filter on device batadv0
[  307.826730][T10537] veth0_vlan: entered promiscuous mode
[  307.831776][T10537] veth1_vlan: entered promiscuous mode
[  307.843026][T10537] veth0_macvtap: entered promiscuous mode
[  307.845988][T10537] veth1_macvtap: entered promiscuous mode
[  307.857012][T10537] batman_adv: batadv0: Interface activated: batadv_slave_0
[  307.865234][T10537] batman_adv: batadv0: Interface activated: batadv_slave_1
[  307.884702][T10537] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  307.887633][T10537] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  307.889925][T10537] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  307.892855][T10537] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  307.966666][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  307.969546][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  308.001429][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  308.003679][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  308.886522][   T39] audit: type=1400 audit(1729547510.649:1150): avc:  denied  { module_load } for  pid=10623 comm="syz.2.1376" path="/sys/power/wakeup_count" dev="sysfs" ino=837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  309.496976][   T63] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  309.650723][   T63] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  309.653406][   T63] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  309.656587][   T63] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  309.661811][   T63] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  309.664146][   T63] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  309.666192][   T63] usb 6-1: Product: syz
[  309.669127][   T63] usb 6-1: Manufacturer: syz
[  309.670346][   T63] usb 6-1: SerialNumber: syz
[  309.756723][T10635] dlm: plock device version mismatch: kernel (1.2.0), user (1.393216.0)
[  309.889247][   T63] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 16 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  309.914525][   T45] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.142645][   T39] audit: type=1400 audit(1729547511.909:1151): avc:  denied  { create } for  pid=10631 comm="syz.1.1378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  310.196698][T10639] kvm: user requested TSC rate below hardware speed
[  310.958783][   T63] usb 6-1: USB disconnect, device number 16
[  310.977115][   T63] usblp0: removed
[  311.057629][ T5342] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  311.064835][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  311.071064][ T5342] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  311.075177][ T5342] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  311.081606][ T5342] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  311.087782][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  311.256220][T10647] chnl_net:caif_netlink_parms(): no params data found
[  311.325752][T10647] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.329576][T10647] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.332242][T10647] bridge_slave_0: entered allmulticast mode
[  311.335338][T10647] bridge_slave_0: entered promiscuous mode
[  311.340334][T10647] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.343039][T10647] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.345705][T10647] bridge_slave_1: entered allmulticast mode
[  311.348805][T10647] bridge_slave_1: entered promiscuous mode
[  311.409322][T10647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  311.422861][T10647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  311.473091][T10647] team0: Port device team_slave_0 added
[  311.478315][T10647] team0: Port device team_slave_1 added
[  311.504692][T10647] batman_adv: batadv0: Adding interface: batadv_slave_0
[  311.506607][T10647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.514246][T10647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  311.518151][T10647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  311.520078][T10647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.528121][T10647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  311.561498][T10647] hsr_slave_0: entered promiscuous mode
[  311.564061][T10647] hsr_slave_1: entered promiscuous mode
[  311.566193][T10647] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  311.568342][T10647] Cannot create hsr debugfs directory
[  311.763926][   T45] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  311.807236][T10659] kvm: user requested TSC rate below hardware speed
[  311.838472][   T45] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  311.946144][   T45] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  312.160162][   T45] bridge_slave_1: left allmulticast mode
[  312.161702][   T45] bridge_slave_1: left promiscuous mode
[  312.164548][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  312.171963][   T45] bridge_slave_0: left allmulticast mode
[  312.173774][   T45] bridge_slave_0: left promiscuous mode
[  312.175631][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  312.564717][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  312.634173][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  312.682544][   T45] bond0 (unregistering): Released all slaves
[  313.141721][T10647] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  313.150234][T10647] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  313.154830][T10647] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  313.166187][T10647] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  313.168196][ T5350] Bluetooth: hci0: command tx timeout
[  313.209919][   T45] hsr_slave_0: left promiscuous mode
[  313.212375][   T45] hsr_slave_1: left promiscuous mode
[  313.214862][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  313.217479][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  313.221289][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  313.223403][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  313.261277][   T45] veth1_macvtap: left promiscuous mode
[  313.263586][   T45] veth0_macvtap: left promiscuous mode
[  313.265794][   T45] veth1_vlan: left promiscuous mode
[  313.270221][   T45] veth0_vlan: left promiscuous mode
[  313.489368][   T39] audit: type=1400 audit(1729547515.259:1152): avc:  denied  { ioctl } for  pid=10693 comm="syz.1.1386" path="socket:[44672]" dev="sockfs" ino=44672 ioctlcmd=0x4942 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  313.675221][T10700] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1388'.
[  313.872178][T10703] FAULT_INJECTION: forcing a failure.
[  313.872178][T10703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  313.875861][T10703] CPU: 1 UID: 0 PID: 10703 Comm: syz.3.1389 Not tainted 6.12.0-rc4-syzkaller #0
[  313.878487][T10703] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.881294][T10703] Call Trace:
[  313.882189][T10703]  <TASK>
[  313.882976][T10703]  dump_stack_lvl+0x16c/0x1f0
[  313.884353][T10703]  should_fail_ex+0x497/0x5b0
[  313.885602][T10703]  _copy_from_iter+0x2a1/0x1540
[  313.886892][T10703]  ? _copy_from_iter+0x15e/0x1540
[  313.888294][T10703]  ? __pfx__copy_from_iter+0x10/0x10
[  313.889805][T10703]  ? __pfx__copy_from_iter+0x10/0x10
[  313.891189][T10703]  ? __virt_addr_valid+0x1a4/0x590
[  313.892560][T10703]  copy_page_from_iter+0xa5/0x120
[  313.893886][T10703]  skb_copy_datagram_from_iter+0x29b/0x710
[  313.895417][T10703]  unix_stream_sendmsg+0x4dc/0x1000
[  313.896798][T10703]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  313.898262][T10703]  ? __import_iovec+0x1fd/0x6e0
[  313.899545][T10703]  ____sys_sendmsg+0xaaf/0xc90
[  313.900820][T10703]  ? copy_msghdr_from_user+0x10b/0x160
[  313.902246][T10703]  ? __pfx_____sys_sendmsg+0x10/0x10
[  313.903639][T10703]  ? __pfx___lock_acquire+0x10/0x10
[  313.905015][T10703]  ___sys_sendmsg+0x135/0x1e0
[  313.906258][T10703]  ? __pfx____sys_sendmsg+0x10/0x10
[  313.907628][T10703]  ? lock_acquire+0x2f/0xb0
[  313.908835][T10703]  ? __fget_files+0x40/0x3f0
[  313.910064][T10703]  ? fdget+0x176/0x210
[  313.911145][T10703]  __sys_sendmsg+0x117/0x1f0
[  313.912373][T10703]  ? __pfx___sys_sendmsg+0x10/0x10
[  313.913714][T10703]  ? __fget_files+0x244/0x3f0
[  313.914962][T10703]  do_syscall_64+0xcd/0x250
[  313.916176][T10703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.917719][T10703] RIP: 0033:0x7f2d0d97dff9
[  313.918846][T10703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.923815][T10703] RSP: 002b:00007f2d0e6f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  313.925972][T10703] RAX: ffffffffffffffda RBX: 00007f2d0db36130 RCX: 00007f2d0d97dff9
[  313.928129][T10703] RDX: 0000000000000000 RSI: 00000000200029c0 RDI: 0000000000000008
[  313.930199][T10703] RBP: 00007f2d0e6f6090 R08: 0000000000000000 R09: 0000000000000000
[  313.932301][T10703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  313.934328][T10703] R13: 0000000000000000 R14: 00007f2d0db36130 R15: 00007fff46e02468
[  313.936383][T10703]  </TASK>
[  313.937540][    C1] hpet: Lost 3 RTC interrupts
[  314.294030][   T45] team0 (unregistering): Port device team_slave_1 removed
[  314.388027][   T45] team0 (unregistering): Port device team_slave_0 removed
[  315.260993][ T5350] Bluetooth: hci0: command tx timeout
[  315.397433][T10647] 8021q: adding VLAN 0 to HW filter on device bond0
[  315.410375][T10647] 8021q: adding VLAN 0 to HW filter on device team0
[  315.428809][ T8418] bridge0: port 1(bridge_slave_0) entered blocking state
[  315.431796][ T8418] bridge0: port 1(bridge_slave_0) entered forwarding state
[  315.436010][ T8418] bridge0: port 2(bridge_slave_1) entered blocking state
[  315.438690][ T8418] bridge0: port 2(bridge_slave_1) entered forwarding state
[  315.631909][T10647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  315.660176][T10647] veth0_vlan: entered promiscuous mode
[  315.674247][T10647] veth1_vlan: entered promiscuous mode
[  315.693159][T10647] veth0_macvtap: entered promiscuous mode
[  315.705137][T10647] veth1_macvtap: entered promiscuous mode
[  315.727747][T10647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  315.744670][T10647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  315.764636][T10647] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  315.768674][T10647] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  315.771904][T10647] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  315.775157][T10647] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  315.860673][ T8418] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  315.863118][ T8418] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  315.886332][ T8418] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  315.889011][ T8418] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  316.756942][ T1449] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  316.858297][ T1379] ieee802154 phy0 wpan0: encryption failed: -22
[  316.860484][ T1379] ieee802154 phy1 wpan1: encryption failed: -22
[  316.919028][ T1449] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  316.921914][ T1449] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  316.924930][ T1449] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  316.930275][ T1449] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  316.932977][ T1449] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.935351][ T1449] usb 7-1: Product: syz
[  316.936520][ T1449] usb 7-1: Manufacturer: syz
[  316.938172][ T1449] usb 7-1: SerialNumber: syz
[  317.144548][ T1449] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 25 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  317.262607][T10729] kvm: user requested TSC rate below hardware speed
[  317.803616][   T45] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  318.008638][  T827] usb 7-1: USB disconnect, device number 25
[  318.014598][  T827] usblp0: removed
[  318.968314][T10741] netlink: 'syz.2.1397': attribute type 72 has an invalid length.
[  318.970360][T10741] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1397'.
[  319.052757][ T5342] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  319.057198][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  319.060689][ T5342] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  319.064824][ T5342] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  319.070159][ T5342] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  319.073556][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  319.183077][T10748] netlink: zone id is out of range
[  319.185253][T10748] netlink: zone id is out of range
[  319.187127][T10748] netlink: zone id is out of range
[  319.188823][T10748] netlink: zone id is out of range
[  319.190443][T10748] netlink: zone id is out of range
[  319.191934][T10742] chnl_net:caif_netlink_parms(): no params data found
[  319.191945][T10748] netlink: zone id is out of range
[  319.191952][T10748] netlink: zone id is out of range
[  319.197342][T10748] netlink: zone id is out of range
[  319.199081][T10748] netlink: zone id is out of range
[  319.200943][T10748] netlink: zone id is out of range
[  319.283385][T10742] bridge0: port 1(bridge_slave_0) entered blocking state
[  319.285273][T10742] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.288694][T10742] bridge_slave_0: entered allmulticast mode
[  319.294236][T10742] bridge_slave_0: entered promiscuous mode
[  319.300822][T10742] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.303583][T10742] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.305822][T10742] bridge_slave_1: entered allmulticast mode
[  319.309984][T10742] bridge_slave_1: entered promiscuous mode
[  319.332988][T10742] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.336564][T10742] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  319.372208][T10742] team0: Port device team_slave_0 added
[  319.385042][T10742] team0: Port device team_slave_1 added
[  319.413429][T10742] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.415307][T10742] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.449532][T10742] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.456655][T10742] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.461048][T10742] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.481161][T10742] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.611472][T10742] hsr_slave_0: entered promiscuous mode
[  319.620289][T10742] hsr_slave_1: entered promiscuous mode
[  319.625081][T10742] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  319.630293][T10742] Cannot create hsr debugfs directory
[  319.786245][   T45] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.942565][   T45] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.121097][ T5350] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  320.122739][   T45] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.127794][ T5350] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  320.135124][ T5350] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  320.142096][ T5350] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  320.145932][ T5350] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  320.150295][ T5350] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  320.491537][   T45] bridge_slave_1: left allmulticast mode
[  320.493752][   T45] bridge_slave_1: left promiscuous mode
[  320.497797][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  320.503820][   T45] bridge_slave_0: left allmulticast mode
[  320.505744][   T45] bridge_slave_0: left promiscuous mode
[  320.511009][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  320.829234][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  320.836191][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  320.841406][   T45] bond0 (unregistering): Released all slaves
[  320.903075][T10762] chnl_net:caif_netlink_parms(): no params data found
[  321.070550][T10762] bridge0: port 1(bridge_slave_0) entered blocking state
[  321.072540][T10762] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.074469][T10762] bridge_slave_0: entered allmulticast mode
[  321.076640][T10762] bridge_slave_0: entered promiscuous mode
[  321.083999][T10762] bridge0: port 2(bridge_slave_1) entered blocking state
[  321.087107][T10762] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.089769][T10762] bridge_slave_1: entered allmulticast mode
[  321.092947][T10762] bridge_slave_1: entered promiscuous mode
[  321.098812][ T5350] Bluetooth: hci0: command tx timeout
[  321.131606][T10762] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  321.135423][T10762] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  321.179211][T10762] team0: Port device team_slave_0 added
[  321.206021][T10762] team0: Port device team_slave_1 added
[  321.232970][T10762] batman_adv: batadv0: Adding interface: batadv_slave_0
[  321.234930][T10762] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  321.242209][T10762] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  321.248449][T10762] batman_adv: batadv0: Adding interface: batadv_slave_1
[  321.251152][T10762] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  321.260352][T10762] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  321.270580][   T45] hsr_slave_0: left promiscuous mode
[  321.272599][   T45] hsr_slave_1: left promiscuous mode
[  321.276065][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  321.279413][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  321.283264][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  321.285352][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  321.325388][   T45] veth1_macvtap: left promiscuous mode
[  321.327479][   T45] veth0_macvtap: left promiscuous mode
[  321.329587][   T45] veth1_vlan: left promiscuous mode
[  321.331450][   T45] veth0_vlan: left promiscuous mode
[  322.221360][ T5350] Bluetooth: hci3: command tx timeout
[  322.273678][   T45] team0 (unregistering): Port device team_slave_1 removed
[  322.391074][   T45] team0 (unregistering): Port device team_slave_0 removed
[  323.152753][T10795] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1408'.
[  323.155478][T10795] FAULT_INJECTION: forcing a failure.
[  323.155478][T10795] name failslab, interval 1, probability 0, space 0, times 0
[  323.160857][T10795] CPU: 3 UID: 0 PID: 10795 Comm: syz.1.1408 Not tainted 6.12.0-rc4-syzkaller #0
[  323.163195][T10795] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.165927][T10795] Call Trace:
[  323.166819][T10795]  <TASK>
[  323.167591][T10795]  dump_stack_lvl+0x16c/0x1f0
[  323.169123][T10795]  should_fail_ex+0x497/0x5b0
[  323.170378][T10795]  ? fs_reclaim_acquire+0xae/0x150
[  323.171736][T10795]  should_failslab+0xc2/0x120
[  323.172991][T10795]  __kmalloc_node_track_caller_noprof+0xcf/0x430
[  323.174650][T10795]  ? kasprintf+0xc8/0x100
[  323.175791][T10795]  kvasprintf+0xbd/0x160
[  323.176926][T10795]  ? __pfx_kvasprintf+0x10/0x10
[  323.178213][T10795]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  323.179791][T10795]  kasprintf+0xc8/0x100
[  323.180904][T10795]  ? __pfx_kasprintf+0x10/0x10
[  323.182169][T10795]  ? __pfx_lockdep_lock+0x10/0x10
[  323.183497][T10795]  ? lockdep_unlock+0x11a/0x290
[  323.184866][T10795]  alloc_workqueue+0x115/0x200
[  323.186136][T10795]  ? __pfx_alloc_workqueue+0x10/0x10
[  323.187524][T10795]  ? __pfx_wg_newlink+0x10/0x10
[  323.188829][T10795]  ? lockdep_init_map_type+0x16d/0x7d0
[  323.190259][T10795]  ? __raw_spin_lock_init+0x3a/0x110
[  323.191662][T10795]  wg_newlink+0x1cf/0x700
[  323.192832][T10795]  ? rtnl_create_link+0xa51/0xfa0
[  323.194179][T10795]  ? __pfx_wg_newlink+0x10/0x10
[  323.195459][T10795]  __rtnl_newlink+0x1197/0x1920
[  323.196759][T10795]  ? __pfx___rtnl_newlink+0x10/0x10
[  323.198140][T10795]  rtnl_newlink+0x67/0xa0
[  323.199393][T10795]  ? __pfx_rtnl_newlink+0x10/0x10
[  323.200725][T10795]  rtnetlink_rcv_msg+0x3c7/0xea0
[  323.202017][T10795]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  323.203445][T10795]  ? __pfx___lock_acquire+0x10/0x10
[  323.204805][T10795]  ? __pfx___lock_acquire+0x10/0x10
[  323.206164][T10795]  ? __pfx_avc_has_perm+0x10/0x10
[  323.207494][T10795]  netlink_rcv_skb+0x16b/0x440
[  323.208771][T10795]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  323.210214][T10795]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  323.211616][T10795]  ? netlink_deliver_tap+0x1ae/0xd90
[  323.213014][T10795]  netlink_unicast+0x53c/0x7f0
[  323.214271][T10795]  ? __pfx_netlink_unicast+0x10/0x10
[  323.215704][T10795]  netlink_sendmsg+0x8b8/0xd70
[  323.216970][T10795]  ? __pfx_netlink_sendmsg+0x10/0x10
[  323.218346][T10795]  ? __import_iovec+0x1fd/0x6e0
[  323.219628][T10795]  ____sys_sendmsg+0xaaf/0xc90
[  323.220883][T10795]  ? copy_msghdr_from_user+0x10b/0x160
[  323.222298][T10795]  ? __pfx_____sys_sendmsg+0x10/0x10
[  323.223661][T10795]  ? __pfx___lock_acquire+0x10/0x10
[  323.225012][T10795]  ___sys_sendmsg+0x135/0x1e0
[  323.226244][T10795]  ? __pfx____sys_sendmsg+0x10/0x10
[  323.227597][T10795]  ? lock_acquire+0x2f/0xb0
[  323.228794][T10795]  ? __fget_files+0x40/0x3f0
[  323.230016][T10795]  ? fdget+0x176/0x210
[  323.231196][T10795]  __sys_sendmsg+0x117/0x1f0
[  323.232423][T10795]  ? __pfx___sys_sendmsg+0x10/0x10
[  323.233736][T10795]  ? __fget_files+0x244/0x3f0
[  323.234974][T10795]  do_syscall_64+0xcd/0x250
[  323.236171][T10795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.237694][T10795] RIP: 0033:0x7fbb4537dff9
[  323.238850][T10795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.243834][T10795] RSP: 002b:00007fbb4611b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  323.245985][T10795] RAX: ffffffffffffffda RBX: 00007fbb45536130 RCX: 00007fbb4537dff9
[  323.248095][T10795] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000007
[  323.250137][T10795] RBP: 00007fbb4611b090 R08: 0000000000000000 R09: 0000000000000000
[  323.252200][T10795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  323.254261][T10795] R13: 0000000000000000 R14: 00007fbb45536130 R15: 00007fff3a4b5b28
[  323.256329][T10795]  </TASK>
[  323.257384][ T5350] Bluetooth: hci0: command tx timeout
[  323.264059][T10795] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[  323.304919][T10762] hsr_slave_0: entered promiscuous mode
[  323.310663][T10762] hsr_slave_1: entered promiscuous mode
[  323.313037][T10762] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  323.315418][T10762] Cannot create hsr debugfs directory
[  323.440664][T10742] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  323.450681][T10742] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  323.455850][T10742] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  323.483200][T10742] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  323.555100][T10762] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.615456][T10742] 8021q: adding VLAN 0 to HW filter on device bond0
[  323.635937][T10742] 8021q: adding VLAN 0 to HW filter on device team0
[  323.652579][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.655217][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  323.690475][T10762] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.698006][   T70] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.700624][   T70] bridge0: port 2(bridge_slave_1) entered forwarding state
[  323.784219][T10762] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.873761][T10762] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.895121][T10742] 8021q: adding VLAN 0 to HW filter on device batadv0
[  323.942937][T10742] veth0_vlan: entered promiscuous mode
[  323.950441][T10742] veth1_vlan: entered promiscuous mode
[  323.974083][T10742] veth0_macvtap: entered promiscuous mode
[  323.978516][T10742] veth1_macvtap: entered promiscuous mode
[  323.989585][T10742] batman_adv: batadv0: Interface activated: batadv_slave_0
[  323.994242][T10742] batman_adv: batadv0: Interface activated: batadv_slave_1
[  324.000638][T10742] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  324.003260][T10742] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  324.005572][T10742] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  324.008359][T10742] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  324.044954][T10762] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  324.060253][T10762] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  324.063298][T10762] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  324.073434][T10762] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  324.193159][   T39] audit: type=1400 audit(1729547525.959:1153): avc:  denied  { setattr } for  pid=10815 comm="syz.3.1410" name="if_inet6" dev="proc" ino=4026533420 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  324.200750][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  324.203639][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  324.244501][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  324.255877][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  324.256097][T10762] 8021q: adding VLAN 0 to HW filter on device bond0
[  324.287157][ T5350] Bluetooth: hci3: command tx timeout
[  324.299814][T10762] 8021q: adding VLAN 0 to HW filter on device team0
[  324.308101][ T8418] bridge0: port 1(bridge_slave_0) entered blocking state
[  324.310137][ T8418] bridge0: port 1(bridge_slave_0) entered forwarding state
[  324.378542][ T8418] bridge0: port 2(bridge_slave_1) entered blocking state
[  324.380482][ T8418] bridge0: port 2(bridge_slave_1) entered forwarding state
[  324.574759][T10762] 8021q: adding VLAN 0 to HW filter on device batadv0
[  324.596628][T10762] veth0_vlan: entered promiscuous mode
[  324.603435][T10762] veth1_vlan: entered promiscuous mode
[  324.616329][T10762] veth0_macvtap: entered promiscuous mode
[  324.620249][T10762] veth1_macvtap: entered promiscuous mode
[  324.629034][T10762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.631707][T10762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.634767][T10762] batman_adv: batadv0: Interface activated: batadv_slave_0
[  324.640549][T10762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.643241][T10762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.646329][T10762] batman_adv: batadv0: Interface activated: batadv_slave_1
[  324.650821][T10762] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  324.653212][T10762] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  324.655343][T10762] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  324.657715][T10762] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  324.691433][ T8422] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  324.693741][ T8422] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  324.706741][ T8422] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  324.709150][ T8422] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  324.817467][T10825] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.1402'.
[  324.970721][   T39] audit: type=1400 audit(1729547526.739:1154): avc:  denied  { write } for  pid=10826 comm="syz.3.1411" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  324.972324][T10827] random: crng reseeded on system resumption
[  324.980103][   T39] audit: type=1400 audit(1729547526.739:1155): avc:  denied  { open } for  pid=10826 comm="syz.3.1411" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  325.204829][   T39] audit: type=1400 audit(1729547526.969:1156): avc:  denied  { ioctl } for  pid=10826 comm="syz.3.1411" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x3311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  325.407329][   T39] audit: type=1400 audit(1729547527.169:1157): avc:  denied  { read write } for  pid=5338 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  325.417151][   T39] audit: type=1400 audit(1729547527.179:1158): avc:  denied  { open } for  pid=5338 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  325.424781][   T39] audit: type=1400 audit(1729547527.179:1159): avc:  denied  { ioctl } for  pid=5338 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  325.661471][T10835] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1414'.
[  326.308358][T10842] syz.3.1416 (10842): drop_caches: 2
[  326.367203][ T5350] Bluetooth: hci3: command tx timeout
[  326.370457][ T1100] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.936239][ T5342] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  327.942699][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  327.948434][ T5342] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  327.952763][ T5342] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  327.956391][ T5342] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  327.959086][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  328.202961][ T1100] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  328.204957][   T39] audit: type=1400 audit(1729547529.969:1160): avc:  denied  { name_bind } for  pid=10867 comm="syz.2.1422" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  328.220437][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.223086][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.225631][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.234021][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.236035][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.241196][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.243824][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.246961][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.249428][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.252052][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.254578][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.262577][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.265212][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.270808][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.273383][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.276012][ T9927] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  328.299726][ T9927] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [] on syz0
[  328.330820][ T1100] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  328.447042][ T5350] Bluetooth: hci3: command tx timeout
[  328.644295][ T1100] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  328.672338][T10863] chnl_net:caif_netlink_parms(): no params data found
[  328.898218][T10891] FAULT_INJECTION: forcing a failure.
[  328.898218][T10891] name failslab, interval 1, probability 0, space 0, times 0
[  328.904587][T10891] CPU: 1 UID: 0 PID: 10891 Comm: syz.1.1424 Not tainted 6.12.0-rc4-syzkaller #0
[  328.906949][T10891] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  328.909702][T10891] Call Trace:
[  328.910575][T10891]  <TASK>
[  328.911346][T10891]  dump_stack_lvl+0x16c/0x1f0
[  328.912604][T10891]  should_fail_ex+0x497/0x5b0
[  328.913827][T10891]  ? fs_reclaim_acquire+0xae/0x150
[  328.915158][T10891]  should_failslab+0xc2/0x120
[  328.916399][T10891]  __kmalloc_noprof+0xcb/0x400
[  328.917678][T10891]  ? d_absolute_path+0x137/0x1b0
[  328.919006][T10891]  tomoyo_encode2+0x100/0x3e0
[  328.920248][T10891]  tomoyo_encode+0x29/0x50
[  328.921422][T10891]  tomoyo_realpath_from_path+0x19d/0x720
[  328.922902][T10891]  tomoyo_path_number_perm+0x245/0x590
[  328.924344][T10891]  ? tomoyo_path_number_perm+0x232/0x590
[  328.925950][T10891]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  328.927663][T10891]  ? trace_lock_acquire+0x14a/0x1d0
[  328.929108][T10891]  ? lock_acquire+0x2f/0xb0
[  328.930290][T10891]  ? __fget_files+0x40/0x3f0
[  328.931516][T10891]  ? __fget_files+0x244/0x3f0
[  328.932759][T10891]  security_file_ioctl+0x9b/0x240
[  328.934075][T10891]  __x64_sys_ioctl+0xbb/0x220
[  328.935311][T10891]  do_syscall_64+0xcd/0x250
[  328.936773][T10891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.938371][T10891] RIP: 0033:0x7fbb4537dff9
[  328.939538][T10891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.944768][T10891] RSP: 002b:00007fbb4615d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  328.947065][T10891] RAX: ffffffffffffffda RBX: 00007fbb45535f80 RCX: 00007fbb4537dff9
[  328.950032][T10891] RDX: 0000000020000080 RSI: 0000000040086602 RDI: 0000000000000003
[  328.952946][T10891] RBP: 00007fbb4615d090 R08: 0000000000000000 R09: 0000000000000000
[  328.955621][T10891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  328.957684][T10891] R13: 0000000000000000 R14: 00007fbb45535f80 R15: 00007fff3a4b5b28
[  328.959438][T10891]  </TASK>
[  328.960427][    C1] hpet: Lost 2 RTC interrupts
[  328.967010][T10863] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.967079][T10891] ERROR: Out of memory at tomoyo_realpath_from_path.
[  328.969114][T10863] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.969202][T10863] bridge_slave_0: entered allmulticast mode
[  328.970160][T10863] bridge_slave_0: entered promiscuous mode
[  328.996447][T10863] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.999029][T10863] bridge0: port 2(bridge_slave_1) entered disabled state
[  329.001500][T10863] bridge_slave_1: entered allmulticast mode
[  329.004546][T10863] bridge_slave_1: entered promiscuous mode
[  329.052328][T10863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  329.061197][T10893] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(13)
[  329.063459][T10893] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  329.064020][T10863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  329.069073][T10893] vhci_hcd vhci_hcd.0: Device attached
[  329.072639][ T1100] bridge_slave_1: left allmulticast mode
[  329.074499][ T1100] bridge_slave_1: left promiscuous mode
[  329.076281][ T1100] bridge0: port 2(bridge_slave_1) entered disabled state
[  329.087743][ T1100] bridge_slave_0: left allmulticast mode
[  329.089408][ T1100] bridge_slave_0: left promiscuous mode
[  329.091559][ T1100] bridge0: port 1(bridge_slave_0) entered disabled state
[  329.267136][    T8] vhci_hcd: vhci_device speed not set
[  329.337299][    T8] usb 19-1: new full-speed USB device number 3 using vhci_hcd
[  329.521652][ T1100] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  329.529664][ T1100] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  329.535625][ T1100] bond0 (unregistering): Released all slaves
[  329.652099][T10863] team0: Port device team_slave_0 added
[  329.689146][T10863] team0: Port device team_slave_1 added
[  329.732636][T10863] batman_adv: batadv0: Adding interface: batadv_slave_0
[  329.735045][T10863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  329.745091][T10898] vhci_hcd: connection reset by peer
[  329.746937][T10863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  329.747997][ T1105] vhci_hcd: stop threads
[  329.751414][ T1105] vhci_hcd: release socket
[  329.757278][ T1105] vhci_hcd: disconnect device
[  329.761201][T10863] batman_adv: batadv0: Adding interface: batadv_slave_1
[  329.763711][T10863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  329.772916][T10863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  329.782798][   T39] audit: type=1400 audit(1729547531.549:1161): avc:  denied  { name_connect } for  pid=10909 comm="syz.1.1427" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  329.835696][T10911] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1427'.
[  329.935198][T10863] hsr_slave_0: entered promiscuous mode
[  329.939081][T10863] hsr_slave_1: entered promiscuous mode
[  329.943126][T10863] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  329.945084][T10863] Cannot create hsr debugfs directory
[  329.959972][ T1100] hsr_slave_0: left promiscuous mode
[  329.962920][ T1100] hsr_slave_1: left promiscuous mode
[  329.967832][ T1100] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  329.970387][ T1100] batman_adv: batadv0: Removing interface: batadv_slave_0
[  329.973937][ T1100] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  329.976502][ T1100] batman_adv: batadv0: Removing interface: batadv_slave_1
[  330.027967][ T1100] veth1_macvtap: left promiscuous mode
[  330.030186][ T1100] veth0_macvtap: left promiscuous mode
[  330.032543][ T1100] veth1_vlan: left promiscuous mode
[  330.034390][ T1100] veth0_vlan: left promiscuous mode
[  330.046985][ T5350] Bluetooth: hci0: command tx timeout
[  331.014570][ T1100] team0 (unregistering): Port device team_slave_1 removed
[  331.123398][ T1100] team0 (unregistering): Port device team_slave_0 removed
[  332.131924][ T5350] Bluetooth: hci0: command tx timeout
[  332.921258][ T5350] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  332.927066][ T5350] CPU: 0 UID: 0 PID: 5350 Comm: kworker/u33:5 Not tainted 6.12.0-rc4-syzkaller #0
[  332.929683][ T5350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.932526][ T5350] Workqueue: hci3 hci_rx_work
[  332.934125][ T5350] Call Trace:
[  332.935358][ T5350]  <TASK>
[  332.936464][ T5350]  dump_stack_lvl+0x16c/0x1f0
[  332.938227][ T5350]  sysfs_warn_dup+0x7f/0xa0
[  332.940055][ T5350]  sysfs_create_dir_ns+0x24d/0x2b0
[  332.942125][ T5350]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  332.943972][ T5350]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  332.945837][ T5350]  ? kobject_add_internal+0x12d/0x990
[  332.947842][ T5350]  ? do_raw_spin_unlock+0x172/0x230
[  332.949912][ T5350]  kobject_add_internal+0x2c8/0x990
[  332.951758][ T5350]  kobject_add+0x16f/0x240
[  332.953235][ T5350]  ? __pfx_kobject_add+0x10/0x10
[  332.954954][ T5350]  ? class_to_subsys+0x3e/0x160
[  332.956644][ T5350]  ? do_raw_spin_unlock+0x172/0x230
[  332.958450][ T5350]  ? kobject_put+0xab/0x5a0
[  332.960032][ T5350]  device_add+0x289/0x1a70
[  332.961586][ T5350]  ? __pfx_dev_set_name+0x10/0x10
[  332.963389][ T5350]  ? __pfx_device_add+0x10/0x10
[  332.965965][ T5350]  ? mgmt_send_event_skb+0x2f2/0x460
[  332.968075][ T5350]  hci_conn_add_sysfs+0x17e/0x230
[  332.969893][ T5350]  le_conn_complete_evt+0x1078/0x1d80
[  332.971931][ T5350]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  332.973611][ T5350]  ? trace_contention_end+0xea/0x140
[  332.975284][ T5350]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  332.977631][ T5350]  ? skb_pull_data+0x166/0x210
[  332.979558][ T5350]  hci_le_meta_evt+0x2e2/0x5d0
[  332.981660][ T5350]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  332.984072][ T5350]  hci_event_packet+0x666/0x1180
[  332.985871][ T5350]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  332.987828][ T5350]  ? __pfx_hci_event_packet+0x10/0x10
[  332.989814][ T5350]  ? mark_held_locks+0x9f/0xe0
[  332.991708][ T5350]  ? kcov_remote_start+0x3cf/0x6e0
[  332.993730][ T5350]  ? lockdep_hardirqs_on+0x7c/0x110
[  332.995536][ T5350]  hci_rx_work+0x2c6/0x16c0
[  332.997258][ T5350]  ? lock_acquire+0x2f/0xb0
[  332.999072][ T5350]  ? process_one_work+0x921/0x1ba0
[  333.000724][ T5350]  process_one_work+0x9c5/0x1ba0
[  333.002037][ T5350]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  333.003515][ T5350]  ? __pfx_process_one_work+0x10/0x10
[  333.004960][ T5350]  ? assign_work+0x1a0/0x250
[  333.006318][ T5350]  worker_thread+0x6c8/0xf00
[  333.007577][ T5350]  ? __pfx_worker_thread+0x10/0x10
[  333.009244][ T5350]  kthread+0x2c1/0x3a0
[  333.010349][ T5350]  ? _raw_spin_unlock_irq+0x23/0x50
[  333.011747][ T5350]  ? __pfx_kthread+0x10/0x10
[  333.013057][ T5350]  ret_from_fork+0x45/0x80
[  333.014352][ T5350]  ? __pfx_kthread+0x10/0x10
[  333.016093][ T5350]  ret_from_fork_asm+0x1a/0x30
[  333.017897][ T5350]  </TASK>
[  333.032028][ T5350] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  333.037110][ T5350] Bluetooth: hci3: failed to register connection device
[  333.792534][T10863] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  333.801653][T10863] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  333.805681][T10863] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  333.809573][T10863] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  333.859891][T10863] 8021q: adding VLAN 0 to HW filter on device bond0
[  333.906164][T10863] 8021q: adding VLAN 0 to HW filter on device team0
[  333.910367][   T70] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.912256][   T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.917275][   T70] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.919701][   T70] bridge0: port 2(bridge_slave_1) entered forwarding state
[  333.959504][T10863] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  334.041556][T10863] 8021q: adding VLAN 0 to HW filter on device batadv0
[  334.061117][T11011] bond_slave_0: entered promiscuous mode
[  334.063159][T11011] bond_slave_1: entered promiscuous mode
[  334.066386][T10863] veth0_vlan: entered promiscuous mode
[  334.071161][T10863] veth1_vlan: entered promiscuous mode
[  334.082067][T10863] veth0_macvtap: entered promiscuous mode
[  334.085099][T10863] veth1_macvtap: entered promiscuous mode
[  334.092386][T10863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  334.095265][T10863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  334.098826][T10863] batman_adv: batadv0: Interface activated: batadv_slave_0
[  334.103596][T10863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  334.106363][T10863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  334.109526][T10863] batman_adv: batadv0: Interface activated: batadv_slave_1
[  334.113029][T10863] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  334.115465][T10863] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  334.117809][T10863] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  334.120066][T10863] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  334.143823][   T39] audit: type=1326 audit(1729547535.909:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11013 comm="syz.3.1440" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2d0d97dff9 code=0x0
[  334.168486][   T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  334.170528][   T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  334.182085][   T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  334.184487][   T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  334.202772][   T39] audit: type=1400 audit(1729547535.969:1163): avc:  denied  { write } for  pid=11013 comm="syz.3.1440" path="socket:[47152]" dev="sockfs" ino=47152 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  334.207010][ T5350] Bluetooth: hci0: command tx timeout
[  334.271083][   T39] audit: type=1326 audit(1729547536.039:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11016 comm="syz.1.1441" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbb4537dff9 code=0x0
[  334.446987][    T8] vhci_hcd: vhci_device speed not set
[  334.802246][T11001] bond_slave_0: left promiscuous mode
[  334.803797][T11001] bond_slave_1: left promiscuous mode
[  335.096978][ T5350] Bluetooth: hci3: command tx timeout
[  335.104420][T11016] block nbd1: shutting down sockets
[  336.477837][   T35] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  336.492636][T11066] FAULT_INJECTION: forcing a failure.
[  336.492636][T11066] name failslab, interval 1, probability 0, space 0, times 0
[  336.496860][T11066] CPU: 3 UID: 0 PID: 11066 Comm: syz.2.1453 Not tainted 6.12.0-rc4-syzkaller #0
[  336.499831][T11066] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.503540][T11066] Call Trace:
[  336.504691][T11066]  <TASK>
[  336.505699][T11066]  dump_stack_lvl+0x16c/0x1f0
[  336.507335][T11066]  should_fail_ex+0x497/0x5b0
[  336.508975][T11066]  ? fs_reclaim_acquire+0xae/0x150
[  336.510729][T11066]  should_failslab+0xc2/0x120
[  336.512366][T11066]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  336.513784][T11066]  ? ptlock_alloc+0x1f/0x70
[  336.514986][T11066]  ptlock_alloc+0x1f/0x70
[  336.516222][T11066]  pte_alloc_one+0x74/0x360
[  336.517500][T11066]  __pte_alloc+0x6e/0x390
[  336.518861][T11066]  ? __pfx___pte_alloc+0x10/0x10
[  336.520362][T11066]  ? _raw_spin_unlock+0x28/0x50
[  336.521811][T11066]  copy_page_range+0x16ce/0x4f40
[  336.523128][T11066]  ? __pfx_copy_page_range+0x10/0x10
[  336.524522][T11066]  ? lock_acquire+0x2f/0xb0
[  336.525711][T11066]  ? copy_process+0x7ad1/0x8db0
[  336.526992][T11066]  ? up_write+0x1b2/0x520
[  336.528293][T11066]  copy_process+0x7dcb/0x8db0
[  336.529534][T11066]  ? __pfx_copy_process+0x10/0x10
[  336.530934][T11066]  ? get_pid_task+0xfc/0x250
[  336.532242][T11066]  ? trace_lock_acquire+0x14a/0x1d0
[  336.533611][T11066]  ? find_held_lock+0x2d/0x110
[  336.534878][T11066]  kernel_clone+0xfd/0x960
[  336.536114][T11066]  ? __pfx_kernel_clone+0x10/0x10
[  336.537437][T11066]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  336.539011][T11066]  __do_sys_clone+0xba/0x100
[  336.540282][T11066]  ? __pfx___do_sys_clone+0x10/0x10
[  336.541672][T11066]  do_syscall_64+0xcd/0x250
[  336.542887][T11066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.544537][T11066] RIP: 0033:0x7f9cf557dff9
[  336.545709][T11066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.550688][T11066] RSP: 002b:00007f9cf6461fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  336.552933][T11066] RAX: ffffffffffffffda RBX: 00007f9cf5735f80 RCX: 00007f9cf557dff9
[  336.554984][T11066] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  336.557047][T11066] RBP: 00007f9cf6462090 R08: 0000000000000000 R09: 0000000000000000
[  336.559147][T11066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  336.561205][T11066] R13: 0000000000000000 R14: 00007f9cf5735f80 R15: 00007ffe201511a8
[  336.563268][T11066]  </TASK>
[  336.564194][    C3] vkms_vblank_simulate: vblank timer overrun
[  336.568333][   T47] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000084: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  336.572668][   T47] KASAN: null-ptr-deref in range [0x0000000000000420-0x0000000000000427]
[  336.576399][   T47] CPU: 1 UID: 0 PID: 47 Comm: khugepaged Not tainted 6.12.0-rc4-syzkaller #0
[  336.580078][   T47] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.583737][   T47] RIP: 0010:khugepaged+0xaee/0x15e0
[  336.585388][   T47] Code: 31 ff 41 bc 01 00 00 00 45 31 ed e9 96 fd ff ff e8 57 f6 97 ff 49 8d 7d 20 48 b9 00 00 00 00 00 fc ff df 48 89 f8 48 c1 e8 03 <80> 3c 08 00 0f 85 bf 09 00 00 49 8d 7d 70 49 8b 6d 20 48 b9 00 00
[  336.591941][   T47] RSP: 0018:ffffc900009f7cd0 EFLAGS: 00010207
[  336.594028][   T47] RAX: 0000000000000084 RBX: 0000000000000000 RCX: dffffc0000000000
[  336.596774][   T47] RDX: ffff88801ff5a440 RSI: ffffffff81f588a9 RDI: 0000000000000426
[  336.599455][   T47] RBP: 0000000000001000 R08: 0000000000000001 R09: 0000000000000000
[  336.602148][   T47] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000802
[  336.604871][   T47] R13: 0000000000000406 R14: 0000000020800000 R15: 0000000000000003
[  336.607586][   T47] FS:  0000000000000000(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[  336.610632][   T47] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  336.612919][   T47] CR2: 00007f9cf626d680 CR3: 000000000df7c000 CR4: 0000000000352ef0
[  336.615314][   T47] DR0: 0000000000000000 DR1: 000000000000000a DR2: 0000000000000000
[  336.617729][   T47] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  336.620250][   T47] Call Trace:
[  336.621445][   T47]  <TASK>
[  336.622368][   T47]  ? die_addr+0x3b/0xa0
[  336.623468][   T47]  ? exc_general_protection+0x155/0x230
[  336.624978][   T47]  ? asm_exc_general_protection+0x26/0x30
[  336.626495][   T47]  ? khugepaged+0xad9/0x15e0
[  336.627720][   T47]  ? khugepaged+0xaee/0x15e0
[  336.628937][   T47]  ? __pfx_khugepaged+0x10/0x10
[  336.630236][   T47]  ? lock_acquire.part.0+0x11b/0x380
[  336.631636][   T47]  ? __print_lock_name+0x231/0x260
[  336.632990][   T47]  ? __kthread_parkme+0xb7/0x220
[  336.634407][   T47]  ? __pfx_autoremove_wake_function+0x10/0x10
[  336.635993][   T47]  ? lockdep_hardirqs_on+0x7c/0x110
[  336.637351][   T47]  ? __kthread_parkme+0x148/0x220
[  336.638661][   T47]  ? __pfx_khugepaged+0x10/0x10
[  336.639929][   T47]  kthread+0x2c1/0x3a0
[  336.641172][   T47]  ? _raw_spin_unlock_irq+0x23/0x50
[  336.642862][   T47]  ? __pfx_kthread+0x10/0x10
[  336.644439][   T47]  ret_from_fork+0x45/0x80
[  336.645950][   T47]  ? __pfx_kthread+0x10/0x10
[  336.647531][   T47]  ret_from_fork_asm+0x1a/0x30
[  336.649146][   T47]  </TASK>
[  336.650204][   T47] Modules linked in:
[  336.652073][    C1] hpet: Lost 4 RTC interrupts
[  336.654468][   T47] ---[ end trace 0000000000000000 ]---
[  336.657346][   T47] RIP: 0010:khugepaged+0xaee/0x15e0
[  336.658885][   T47] Code: 31 ff 41 bc 01 00 00 00 45 31 ed e9 96 fd ff ff e8 57 f6 97 ff 49 8d 7d 20 48 b9 00 00 00 00 00 fc ff df 48 89 f8 48 c1 e8 03 <80> 3c 08 00 0f 85 bf 09 00 00 49 8d 7d 70 49 8b 6d 20 48 b9 00 00
[  336.664031][   T47] RSP: 0018:ffffc900009f7cd0 EFLAGS: 00010207
[  336.665742][   T47] RAX: 0000000000000084 RBX: 0000000000000000 RCX: dffffc0000000000
[  336.666698][ T8422] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.668481][   T47] RDX: ffff88801ff5a440 RSI: ffffffff81f588a9 RDI: 0000000000000426
[  336.673977][   T47] RBP: 0000000000001000 R08: 0000000000000001 R09: 0000000000000000
[  336.676682][   T35] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  336.679272][   T35] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  336.681802][   T35] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  336.687615][   T47] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000802
[  336.688632][   T35] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  336.690494][   T47] R13: 0000000000000406 R14: 0000000020800000 R15: 0000000000000003
[  336.692965][   T35] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.695787][   T47] FS:  0000000000000000(0000) GS:ffff88806a600000(0000) knlGS:0000000000000000
[  336.698132][   T35] usb 6-1: Product: syz
[  336.701083][   T47] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  336.702572][   T35] usb 6-1: Manufacturer: syz
[  336.704592][   T47] CR2: 00007f9cf6441d58 CR3: 000000005db9a000 CR4: 0000000000352ef0
[  336.706072][   T35] usb 6-1: SerialNumber: syz
[  336.709138][   T47] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  336.713622][   T47] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  336.716467][   T47] Kernel panic - not syncing: Fatal exception
[  336.719236][   T47] Kernel Offset: disabled
[  336.720775][   T47] Rebooting in 86400 seconds..

VM DIAGNOSIS:
21:52:18  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88806a640080 RCX=ffffffff818189e4 RDX=ffff88801dac0000
RSI=ffffffff818189bf RDI=0000000000000005 RBP=ffffc90000167d78 RSP=ffffc90000167ca0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c386ae
R12=1ffff9200002cf98 R13=0000000000000001 R14=0000000000000003 R15=ffffed100d4c8011
RIP=ffffffff818189c5 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020000084 CR3=000000000df7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe20151540 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9cf55f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9cf55f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9cf55f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9cf55f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9cf55f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9cf55f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff850af9e5 RDI=ffffffff9aae6b80 RBP=ffffffff9aae6b40 RSP=ffffc900009f76b0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=000000000000000d R14=ffffffff850af980 R15=0000000000000000
RIP=ffffffff850afa0f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f9cf626d680 CR3=000000000df7c000 CR4=00352ef0
DR0=0000000000000000 DR1=000000000000000a DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=00000000000000ff Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558326e840
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555831f96b4 00005555831f96b0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555831f7490
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555831f94c9 00005555831f9380
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 08005f8803020800 5f80031080808080 8080840800041000 42100006004ac23c
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffea70805bf bff40302040005bf bff0030a80041010 00000800060134c2
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000030656c69 662f2e01ffffffff
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010010000cb01000 5ec080040100000c 0806080135a401dc 100005bfbff00401
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000a0806060103 b600000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000014 RBX=ffff888033bef400 RCX=ffffffff81795900 RDX=ffff88801fff4880
RSI=ffffffff81795925 RDI=0000000000000014 RBP=ffff888033bef410 RSP=ffffc90000858c50
R8 =0000000000000005 R9 =0000000000000000 R10=00000000000000c8 R11=ffffffff8b6f7700
R12=1ffff9200010b190 R13=0000000000000001 R14=0000000080000102 R15=000000000003dbcc
RIP=ffffffff850f3db0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000040 CR3=000000000df7c000 CR4=00352ef0
DR0=00000000e0002800 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ac11cdf5d79709cd 6e648d1c8c1797af
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 55f546f0948ce5ea 2defcbc3545e2f5d
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 67f1aa768b8143b5 331e997d43c62644
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 25410c3b68840fee b3149ae68e169269
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001400
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 460000001c000000 ccd6f8ceccd70375
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ae000000be000000 3600000094000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 20000000ccd66892 ccd5f5ca0000cdbf
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000003baccd941ea e6000000ccd3390e
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b42155656e3b78d9 237994a8f28b232a
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 48a3ab174b619ff4 47a290eeba07e570
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff88806a746a40 RCX=ffffffff818163bc RDX=ffff88801eab8000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000003 RSP=ffffc90000e97990
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffed100d4e8d49 R13=0000000000000001 R14=ffff88806a746a48 R15=ffff88806a940100
RIP=ffffffff818d8148 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000000df7c000 CR4=00352ef0
DR0=00000000e0002800 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff3a4b5ec0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb453f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb453f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb453f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb453f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb453f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb453f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000