last executing test programs:

1m7.777303488s ago: executing program 2 (id=255):
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@getchain={0x5c, 0x66, 0x100, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xfff2, 0x1}, {0x7, 0xfff2}, {0x7, 0xfff8}}, [{0x8, 0xb, 0x7}, {0x8, 0xb, 0x5}, {0x8, 0xb, 0xe8a}, {0x8, 0xb, 0xfffffffa}, {0x8, 0xb, 0x3}, {0x8, 0xb, 0xffffff41}, {0x8, 0xb, 0x4}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x810)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x2000, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="30000000100003040000000000000000000004c3", @ANYRES32=r2, @ANYBLOB="0000000000000000050021000000000008000d"], 0x30}}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sendmsg$key(0xffffffffffffffff, 0x0, 0x4004010)
prctl$PR_SCHED_CORE(0x3e, 0x80000000001, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TIOCGSID(r5, 0x5429, &(0x7f0000000440))
ioctl$TIOCGPGRP(r5, 0x540f, &(0x7f0000000240)=<r6=>0x0)
syz_open_procfs(r6, 0x0)

1m6.850319577s ago: executing program 2 (id=268):
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, &(0x7f0000000c80)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="04040a00000000000000000002"], 0xd)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000180)={0x4, 0xffff1000, 0x8, r2})
close_range(r1, r2, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="0403"], 0x14)
socket$can_bcm(0x1d, 0x2, 0x2)
socket$unix(0x1, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1c, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000095000000000000005e5e3d0a5508be0b2272a4f53a1761c56d72600b60a109195d919e5878e16a34f48c27da6c648a2ecfad5ce56b6f6e9b076c4e01ff609831e185368b90d06857b34e093ad1c9210b46d356e92d9a815561f232fae1a6d7b1c79055c95b7ed2db7a933ea1472cc1eea8c05e06b301cc2fd1eee7aede34d09e0d38383cac67e602c97022f17ad8deba314f7f40ea24b6a67500"/177], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r4, r3, 0x12, 0x0, @void}, 0x10)
sendfile(r3, r3, 0x0, 0x3fffff)
r6 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000000)=0x1)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r9, 0x4138ae84, &(0x7f0000000100)={{0xd000, 0xdddd0000, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x80}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x5, 0x8}, {0x2000, 0x80a0000, 0xb, 0x0, 0x4, 0x3}, {0x0, 0xeeee8000, 0xb, 0x0, 0x0, 0x0, 0x0, 0xfc}, {0x100000, 0xeeee8000, 0xf, 0x9, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x0, 0x10000, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x3, 0x0, 0x0, 0x9}, {0x0, 0x8005004, 0xa, 0x2, 0x0, 0x0, 0x0, 0x5, 0x3a, 0x2}, {0x0, 0xeeef0000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xdddd1000}, {0x1000, 0x3}, 0xddf8ffdb, 0x0, 0x0, 0x3400b0, 0xa, 0x8000, 0x3000, [0x0, 0x0, 0x2]})
ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, &(0x7f0000000c40)={0x200, 0x6, &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000500)=[0x7, 0xffffffaf, 0x7fffffff, 0x5b3, 0x4, 0xfffff801, 0x6], &(0x7f0000000c00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000cc0)=[0x9, 0x1, 0x2, 0x28, 0x4, 0x7, 0x7, 0xcd5e, 0x6, 0x0], 0x0, 0x7})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_TRANSLATE(r9, 0xc018ae85, &(0x7f0000001280)={0x0, 0xdddd0000, 0x2, 0x5, 0x50})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001240)={0x8, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000002018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7020000140000007b110000000000008500000005000000790900000000000045090100000003709500000000000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendto$inet6(r5, &(0x7f0000001300)="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", 0x1000, 0x10000, &(0x7f0000000080)={0xa, 0x4e22, 0x7fffffff, @loopback}, 0x1c)

1m6.099342457s ago: executing program 2 (id=272):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r3, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000040)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0xc2, 0x0, 0x0, 0x40}}}}}}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000200)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x20, 0x6, 0x1, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0xc2, 0x655, 0x0, 0x0, {[@mptcp=@syn={0x1e, 0xc, 0x2, 0x1, 0x9, 0xfffffffa}]}}}}}}}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, 0x0)
syz_usbip_server_init(0x4)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="6112300000ffd00061134c0000000000bf2000000000000015000200071b1700bd030100000000009500000000000000bc26080000000000bf67000000000000070300000fff0700670200000300000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1m4.360046389s ago: executing program 2 (id=281):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0) (async)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f0000000380)=ANY=[]) (async)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000080)='./file0\x00')
open(0x0, 0x0, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
write$USERIO_CMD_REGISTER(r0, 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x10, &(0x7f00000009c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xaa, &(0x7f0000000140)=""/170, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1, 0x8b}, 0x0) (async)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000100)=0x4)
creat(&(0x7f0000001200)='./file0\x00', 0x41) (async)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000006380)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000100)={0x50, 0x0, r3, {0x7, 0x1f, 0x1, 0x61f285}}, 0x50) (async)
syz_fuse_handle_req(r2, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0) (async)
io_setup(0x202, &(0x7f0000000200)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r4, 0x0}]) (async)
process_vm_writev(0x0, &(0x7f0000000000), 0x0, &(0x7f0000121000), 0x0, 0x0) (async)
r6 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f00000002c0)={0x4ec89a9d, "421ae3753785259249154c944122ad063ff47d3bd7a8a45d6bb4c78a3ab4c981"})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f00000010c0)={0x8, "99bdb1b0a1001b0894d3f0230a74bd856e3c10db57c3f72d4d9ed4190dbc00f3"}) (async)
close(0x3) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) (async)
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)

1m4.140679472s ago: executing program 2 (id=282):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200))
socket$alg(0x26, 0x5, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xb, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x1, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x8, 0x7, 0xfffffffd}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
r5 = syz_open_dev$rtc(&(0x7f0000000000), 0x0, 0x1)
ioctl$RTC_RD_TIME(r5, 0x80247009, &(0x7f0000002600))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x282580)
r8 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x102)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x4014001}, 0x9590f6cc3aa755b6)
ioctl$DRM_IOCTL_MODE_GETCRTC(r8, 0xc06864a1, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(r8, 0xc06864ce, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x1, [], [], [0x0, 0x0, 0x0, 0x3]})
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="b4000000100009040000000000000000003f2200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00', @ANYRESOCT], 0xb4}}, 0x0)

1m3.84083692s ago: executing program 2 (id=289):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x1000004, 0x3b071, 0xffffffffffffffff, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x801, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000140)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x50, 0x18, &(0x7f00000001c0)={@flat=@binder={0x73622a85, 0x101, 0x2, 0xfe}, @flat=@weak_binder={0x77622a85, 0x0, 0x2}, @fda={0x66646185, 0x1, 0x2, 0x6}}, &(0x7f0000001180)={0x0, 0x18, 0x30}}, 0x4000000000000000}], 0x0, 0x0, 0x0})

1m3.835383871s ago: executing program 32 (id=289):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x1000004, 0x3b071, 0xffffffffffffffff, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x801, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000140)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x50, 0x18, &(0x7f00000001c0)={@flat=@binder={0x73622a85, 0x101, 0x2, 0xfe}, @flat=@weak_binder={0x77622a85, 0x0, 0x2}, @fda={0x66646185, 0x1, 0x2, 0x6}}, &(0x7f0000001180)={0x0, 0x18, 0x30}}, 0x4000000000000000}], 0x0, 0x0, 0x0})

54.768872314s ago: executing program 4 (id=376):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x2, 0x0, @rand_addr, @multicast1}, @address_request}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

54.690390925s ago: executing program 4 (id=378):
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x10, 0x401, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x4, 0x0}}, 0x3}, 0x1c)
dup2(r0, r0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f0000000680)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2c2fc2, 0x0)
ioctl$SNDCTL_DSP_SPEED(r3, 0xc0045002, &(0x7f0000000180)=0x6)
write$dsp(r3, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
recvfrom$packet(r5, 0x0, 0x0, 0x1, 0x0, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x1)
accept4$x25(0xffffffffffffffff, &(0x7f0000000000)={0x9, @remote}, 0x0, 0x800)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x3c1, 0x3, 0x3bc, 0x1ac, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x2f4, 0x20a, 0x278, 0x2f4, 0x278, 0x3, 0x0, {[{{@uncond, 0x0, 0x188, 0x1ac, 0x0, {}, [@inet=@rpfilter={{0x24}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "6d93eb04697dfa39de04767f46614613a407abbf4ed2e83a63b484dbb3bf6b2a850e79009e2905d2f98ba19f91f3c9faee6d3686e9bee067f4e77d9ad66238750c4100d7ee97ec7646259d90edece6e9787a97bc956c01754c34c5c9518c46178ed5f9194454980e579c80eca35a58dc47d1d5e4ff6e216c724e88c702448587", 0x1}}]}, @common=@inet=@TCPMSS={0x24}}, {{@ipv6={@loopback, @private1, [], [], 'veth1_to_hsr\x00', 'veth0_virt_wifi\x00'}, 0x0, 0xe0, 0x148, 0x6000000, {}, [@common=@unspec=@limit={{0x3c}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x418)
r7 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$apparmor_current(r7, &(0x7f00000002c0)=ANY=[], 0x17)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f00000000c0)='yeah\x00', 0x5)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r4, &(0x7f0000000200), 0xfffffd9d)
socket$nl_route(0x10, 0x3, 0x0)

53.820598198s ago: executing program 4 (id=388):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x98, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1f000000}, @NFTA_RULE_EXPRESSIONS={0x70, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x38, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_DATA={0x4}, @NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x10c}}, 0x0)

53.819170751s ago: executing program 4 (id=389):
open_tree(0xffffffffffffff9c, &(0x7f00000006c0)='.\x00', 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
r2 = dup2(r1, r1)
getpeername$packet(r2, 0x0, &(0x7f00000002c0))
r3 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40042)
write$binfmt_aout(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="0000000000000000000000800080000014000091ff0f00004500f5ff06ff00010100fc5e15f4"], 0x125)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000240)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x1, @loopback}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000680)="b1", 0x1}], 0x1}}], 0x1, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
symlink(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0/file0\x00')
read$FUSE(r4, &(0x7f000000e280)={0x2020, 0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000380)={0x50, 0x0, r5}, 0x50)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000580)='./file0/../file0/file0\x00', 0x0, 0x208002, 0x0)
syz_fuse_handle_req(r4, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)={0x90, 0x0, 0x4, {0x3, 0x0, 0x9d3, 0x3, 0x8, 0x2, {0x7, 0x6, 0x81, 0x7fff, 0xf5ef, 0x1, 0x10a, 0x801, 0x8, 0xa000, 0x10000, r6, 0x0, 0x9, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3a}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x8, 0x0, 0x2, 0xeb, 0x1000000}}}}}}, 0x0)
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000000c0)='B', 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xffffff80}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000580)="01d0d1840f2f17f7d0cb78a87e8e8b24c63cf4c4d1f8989ea580093cf15ddb9c4c8f6e0bd0012464e9c81605ea4fcb31f6e248b95e059a95e104f1c56e5d5b61f8817c7fd6aa5f0f57a82b490d5dfddfa2dfbc02de160e68ffbbfdf384e673e4292be21fe7bde9fe5c1d03ff997fadf053c2e40491d742cdbc58b8041e4efef1a99858408481cbe1d931cf06accd53ca2fd2bafa2175e9a7d961fbd65b86f60056b2e173af3f1fc7210f0d78ebea14c7a8688ba4266400"/209, 0x43}], 0x1, &(0x7f00000006c0)=[@hoplimit_2292={{0x10, 0x29, 0x8, 0x4}}, @rthdr={{0x64, 0x29, 0x39, {0xff, 0xa, 0x1, 0x7, 0x0, [@empty, @dev={0xfe, 0x80, '\x00', 0x3a}, @private2={0xfc, 0x2, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local]}}}, @hoplimit_2292={{0x10, 0x29, 0x8, 0xfffffffa}}, @hopopts={{0x8c, 0x29, 0x36, {0x3b, 0x200000000000007c, '\x00', [@ra={0x5, 0x2, 0x3ff}, @enc_lim={0x4, 0x1, 0x8}, @calipso={0x7, 0x20, {0x1, 0x6, 0x5, 0x32, [0x7f, 0x401, 0x4]}}, @pad1, @calipso={0x7, 0x38, {0x2, 0xc, 0xf8, 0xfffb, [0x8, 0x18, 0x19d5, 0x4, 0x9, 0x5]}}, @jumbo={0xc2, 0x4, 0xbe5}, @enc_lim={0x4, 0x1, 0x5}, @enc_lim, @pad1]}}}, @dontfrag={{0x10, 0x29, 0x3e, 0x10}}], 0x120}}], 0x2, 0x404c000)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000480)=ANY=[@ANYRES16, @ANYRES16, @ANYRES16], 0x1000f)

52.810671178s ago: executing program 4 (id=399):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$dri(&(0x7f00000002c0), 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getsockopt$SO_J1939_SEND_PRIO(0xffffffffffffffff, 0x6b, 0x3, 0x0, &(0x7f0000000300))
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r2, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500})

52.409246636s ago: executing program 4 (id=401):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
syz_open_procfs(0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x800, 0x70bd29, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x17, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=0x1, @ANYBLOB="00000000000000000700000000d1c7ce5ae9d69144a100844d00000000803bf7db61561e2308bd4c4a7334aa086b721a2c23b7a8263b3403a42adee75ff03af7ddcea9cd11e0264a3f4c0219e75bfcfe2a32e0", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89f1, &(0x7f0000000900)={'ip6tnl0\x00', @random="0600002000"})
r5 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x40000})
io_uring_enter(r5, 0x47f6, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
mkdir(&(0x7f0000005800)='./bus\x00', 0x6b76f2745264260)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x18, 0x3, &(0x7f0000000340)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x7}}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x21, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

52.388549676s ago: executing program 33 (id=401):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
syz_open_procfs(0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x800, 0x70bd29, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x17, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=0x1, @ANYBLOB="00000000000000000700000000d1c7ce5ae9d69144a100844d00000000803bf7db61561e2308bd4c4a7334aa086b721a2c23b7a8263b3403a42adee75ff03af7ddcea9cd11e0264a3f4c0219e75bfcfe2a32e0", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89f1, &(0x7f0000000900)={'ip6tnl0\x00', @random="0600002000"})
r5 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x40000})
io_uring_enter(r5, 0x47f6, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
mkdir(&(0x7f0000005800)='./bus\x00', 0x6b76f2745264260)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x18, 0x3, &(0x7f0000000340)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x7}}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x21, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

3.089609018s ago: executing program 5 (id=872):
r0 = openat$btrfs_control(0xffffff9c, &(0x7f0000000180), 0x22642, 0x0) (async)
r1 = timerfd_create(0x7, 0x80800)
timerfd_gettime(r1, &(0x7f0000000080)={{<r2=>0x0}, {<r3=>0x0, <r4=>0x0}}) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={0xffffffffffffffff, 0x58, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10) (rerun: 32)
setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000300)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, r5}, 0xc) (async)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='loginuid\x00')
ioctl$I2C_FUNCS(r0, 0x705, &(0x7f0000000380)=0xfffffff1) (async)
setsockopt$RDS_CONG_MONITOR(r6, 0x114, 0x6, &(0x7f00000000c0), 0x4) (async)
r7 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) (async)
r8 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r9 = openat$binfmt(0xffffffffffffff9c, r8, 0x42, 0x1ff)
close(r9) (async)
r10 = socket$netlink(0x10, 0x3, 0x10) (async)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) (async, rerun: 64)
r12 = getpid()
sched_setscheduler(r12, 0x2, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r13=>0xffffffffffffffff, <r14=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) (async)
connect$unix(r13, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r14, &(0x7f0000001b80)=[{{&(0x7f00000003c0)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000100)="c2df8084c2", 0x5}, {&(0x7f0000000540)="1a7efbed94426f7866e28181c1ac6be7f67b4daa013c843cb083cc11f91a3f4b8da0bb9691c8a029d4efae42e2fd72b91ea119a9460d10d3cb3be94e52f5539ffecc18d354dfda00c3baa2fc7d66c319408a0bbbfc6e50e60a8d412ad5d538ab9fe3c61c1b8ed20312dc3871843773cd", 0x70}], 0x2, &(0x7f0000000840)=[@rights={{0x10, 0x1, 0x1, [r10]}}, @cred={{0x18, 0x1, 0x2, {r12}}}, @rights={{0x10, 0x1, 0x1, [r13]}}, @rights={{0x18, 0x1, 0x1, [r9, r9, r10]}}], 0x50, 0x1}}, {{&(0x7f00000008c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000c80)=[{&(0x7f0000000940)="9326ef11508403cf8e2910791c5ed48e17b27572b0a80add154606b54690c2ded0b3118c95e34a6d92c0cebea8145e343ebfc49ccead33acc8a3c2d66ffdaff9a5cca0608d346ac4acbf08104cebe9bb32287cf984aba105ad70e99a8e42d0a0b17f23ffa792c5aa3d13ace1c16656e558992c4fdc59de481ba7af4cf92204a277ccd2cb3f6e058567f340bf39b01edbbc5eb36edbc33600440b1ada55a4d2af7f3aba692ff044743490516edb78f04b", 0xb0}, {&(0x7f0000000a00)="7ed186830ec89584281661252d69934e2e3cdd2d66136d9ebe55b2f651fc1bd5736e82cc8d34cfaedca2cd95b57cc291b66ea89cd6bdebb34ef63aa075cd6d680cffd99e90fa49914dab28ca43105818913b87493f6be5f0f6bc705a1bfe32d6e0cef983c0ed154652cd7521126c37788c31dc2e5f792e44ea619ff60e6e0fbd1575382bd7f7e2c89b520c14bea15b3255", 0x91}, {&(0x7f0000000ac0)="84c1d11a5bcc7b53018b0d737e2f81f660ad43c6c5a5b5bfee7e12a900bb50f611202b6bd72ed1b149079400a5c053feaca1b96056e3feea9296dc", 0x3b}, {&(0x7f0000000b00)="f7992ad5bc6246ddc1c32e76667a14ae3ce1bfa3090dea0646c1f2a7f84702c0d016d5fe1124ee2f347ed3723addb6e795b45eb4be9c0d6a4ac8d7557682bc53a6bf2fadac5ca044", 0x48}, {&(0x7f0000000b80)="3f46ccbfb27351fae2ac33e517097df910cc1bf8228dfad5ef97fef3a568ce9e0d8448dcbedb1a4e", 0x28}, {&(0x7f0000000340)="e8bae89148f72603000000b919529fd6d4f618153c5327dfb48233076554a6a4ed4c5db502b6ccecbcbfd5cd0a6b97ea29b6e6c4aa", 0x35}, {&(0x7f0000000c00)="014949337a7196d61a99ea6cb06e29a448d50b2764f43c5e551c75d6d49da54dfe8e1966ac0cbfd8449d35eeea2ea7a5ff7777faefdb0784c7767f2ce7287a1fc4023351858abdbde3247944d7a0f38459a9c62d0b5826e1b267f0b081fc182195880ac1906d7077096b423229525b79", 0x70}], 0x7, &(0x7f0000000cc0)=[@cred={{0x18, 0x1, 0x2, {r12, 0x0, 0xee01}}}, @cred={{0x18}}, @rights={{0x24, 0x1, 0x1, [r11, r11, r14, r1, 0xffffffffffffffff, r0]}}, @cred={{0x18}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r9, r7, r1, r14, r9]}}, @cred={{0x18, 0x1, 0x2, {r12}}}, @rights={{0x18, 0x1, 0x1, [r13, r11, r9]}}], 0xc0}}, {{&(0x7f0000000d80)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000000f00)=[{&(0x7f0000000e00)="64bc97ea7b036fdab2d210dd87a58136305f14a7bb6af55d35cc1b06f463561652ec750a96f42e0450aac66907373e634b93955757258a527b1b59007c0af4091c42484f5ba36cf1932925214947f3dd566dd9e91e766b35b26df81d3eb6893e400ad6774fe72e39c3fb25be977cb91f1d6df6c37642790b8dd10a71845d4e630c3a58ed52bd9bcd5318c4a83ee1de0f001de09c31d1a8362b2328fde46413a2ba20b80ea01caa1344534f38d6b749b42e8da453d6d3b750c2f575a4ab183ef5e07a89b79f7a2da724b74a24e6fb8c94752e15c07c254bacd7583dc0dba8a92471dfdd36eebfb3806eda26435f", 0xed}], 0x1, &(0x7f0000001300)=[@cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18, 0x1, 0x2, {r12}}}, @cred={{0x18}}, @cred={{0x18, 0x1, 0x2, {r12}}}], 0x90, 0x40000}}, {{0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000013c0)="04a52f35021e03e18bd334aade6995a60ef6bba30c2d8a3c61967a267c53c33d06a3e5d2eb88432839c36777710687611615d9a56ff9c69609", 0x39}, {&(0x7f0000001400)="cf5406be66d16a92297699668004d8152d", 0x11}], 0x2, &(0x7f0000001680)=[@cred={{0x18, 0x1, 0x2, {0x0, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [r1, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [r0, r14, r6, r7, r14, 0xffffffffffffffff, r1]}}, @rights={{0x1c, 0x1, 0x1, [r0, 0xffffffffffffffff, r0, r11]}}, @cred={{0x18}}], 0x88, 0x24008094}}, {{&(0x7f0000001740)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000001880)=[{&(0x7f00000017c0)="cb0c460efe41a74e494a5a7264179b0348fd5f5ec9ee983c130d712e7e464c096c1fe554a9397a59e71c561044dbd5393b5e383c0d22fde128e1605aba311c1ab117df8ad8a5b2e4dc191f9ac76bbcd499c6df29929b80c875ec4497327e24c8f9068a188710c3d1d892d6f55d98a728c948f77628d62b52cce9faaae916", 0x7e}, {&(0x7f0000001840)="de622245929fc14c40a2b0a96b5b679eb1397f65fb784bf7a88a10d1794720fa9e3a297c636564bc230c4d2fbaf256367c7939760387a783f904", 0x3a}], 0x2, &(0x7f0000001900)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0x34, 0x1, 0x1, [r10, 0xffffffffffffffff, r1, 0xffffffffffffffff, r11, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r6]}}, @cred={{0x18}}], 0x78, 0x8401}}, {{&(0x7f0000001980)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000001b00)=[{&(0x7f0000001a00)="1e102b39990c47d343d9963b8678b96d2a382253f69eb2b3f23c18a2dafdfc54412368dcb26eedc4152c7f6954d22032d35e533e44fef47e8ec0718affd349e9b4d9690c5fb913098217409623bdf46b85bec380a63de91290f711b0addefcd3bcf2027e40c2e6b49af488141ed85b041ea0548ea20adce2fb3276eaa8cd96d204fb732c40a73fec382be18b1a531927471290ce78e4a95ea736df4b81a7364d94c9c9ae0746231576fd5c684c11af54a67f076b61e133bcb9fa3c1dbbf57f47a0135d75a0cb76290fbbfe47872307074ec2cafdba4962121ced44108a714ce5c60c03d59734ef68ababca7b051ff1582d3430b59af9125fe1f7e30c8a9b", 0xfe}], 0x1, &(0x7f0000001b40)=[@rights={{0x10, 0x1, 0x1, [r13]}}], 0x10, 0x4084}}], 0x6, 0x0) (async)
recvmmsg(r13, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) (async)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) (async)
syz_init_net_socket$rose(0xb, 0x5, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xd, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="8500000046000000760000000000000027000000000000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x7, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffff6c, 0x10, 0x0, 0xfffffffffffffed8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYRES8=r4, @ANYBLOB="6e3241a2ae2154b0bd9b5d4e1059d1ebcd756e7cc1d77e60440595474379f96b57b5aa597608b322c19b2e0972e2fb10683205e913a4c8c0ef06fd814ef326c4257469c527f05bf49edca088e1cc02b878265e0aea7e316261a8a63d07c1dd60afa1438459919a0f25754406d2e81ac183891e7cbf7d223d17b4423c6e9251739250793627a7cb56702f576312fbd7fd34e1f94e99853335f801d853fc72b51e8bc6286f61978fd8d5c09825ecccc85b86b5acc85f2e82a98cf1bb28cca83299b00ac440684d9eb0f0bda9ffbd1e871d425458c23edd1fc617bf2c85559c19fde3ab58654b8f3f0903", @ANYRES8=r3, @ANYRES8=r2], 0x48)

3.089185188s ago: executing program 5 (id=873):
r0 = socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r0, @ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
set_mempolicy_home_node(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000180)=0x3, 0x12)
openat(0xffffffffffffff9c, 0x0, 0x141842, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x6, 0x24, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
ioctl$USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000d00)=@urb_type_iso={0x4, {0x1, 0x1}, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0xfffffffffffffdd8, &(0x7f0000000580)={&(0x7f0000000380)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100766c616e000000001800028006000100010000000c000200540a00001800000008000500f64b4c98b15852b0c35989690bb327cec1cc84eb63f4e6bbf6b4fdcb020cce1ec36dcc134812a088701c66ca5c88d2041fcd38987be69a2a546cf706444e4ade99fb710f963b7a8ca6b284cd4f7e13", @ANYRES32=r4], 0x50}, 0x1, 0xba01}, 0x40)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000014c0)=@newsa={0xec, 0x10, 0x109, 0x0, 0x0, {{@in6=@private0={0xfc, 0x0, '\x00', 0x3}, @in6=@loopback}, {@in, 0x0, 0x32}, @in=@loopback, {0x0, 0x100}, {}, {}, 0x0, 0x0, 0x8, 0x0, 0x0, 0xaf}}, 0xec}, 0x1, 0x0, 0x0, 0x24040080}, 0x4000044)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
write(r6, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000200008000f0001000000", 0x24)

2.760292278s ago: executing program 3 (id=880):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000004c0)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
socket$nl_generic(0x11, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xfd9c, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x100, 0xe000000, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(twofish)\x00'}, 0x58)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="02142000110000000040000000000000030005000000000002000000ffffffff00fffff000000000080012000000010000000000000000000600000000000027b20e97a6a9ecae000000ee00000000000000000000000000fc020000000000000000000000000000030006000000000002000000e00000010000000000000000010018"], 0x88}}, 0x0)
r8 = socket$key(0xf, 0x3, 0x2)
socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$key(r8, &(0x7f0000000040)={0x4000000, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x2, 0xf, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @broadcast}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x1, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@empty, @in6=@private2}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x80}}, 0x0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r9, 0xffffffffffffffff, 0x0)

2.610494124s ago: executing program 0 (id=883):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2e, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0x7}, 0x18)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ff})

2.610174089s ago: executing program 0 (id=884):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$igmp6(0xa, 0x3, 0x2)
getsockopt$inet6_int(r0, 0x29, 0x35, 0x0, &(0x7f0000000100)) (async)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000200)=0x632a, 0x4)
setsockopt$sock_int(r2, 0x1, 0x23, &(0x7f0000000400)=0x2, 0x4)
sendto$inet6(r2, 0x0, 0x0, 0x24000800, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @local}, 0x1c) (async, rerun: 64)
recvmmsg(r2, &(0x7f00000066c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2000, 0x0) (rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
syz_io_uring_submit(0x0, 0x0, 0x0) (async)
r5 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r5, 0xc0cc5640, &(0x7f0000000540)={0x2, @sliced={0x0, [0x12a9, 0x400, 0xea, 0x8, 0xffff, 0x3, 0x6, 0x8, 0x83, 0x1, 0xe3c7, 0x5, 0x6, 0x8, 0x9, 0x200, 0x7, 0x9, 0x5, 0x3, 0x1ff, 0xad3f, 0x5, 0x4, 0x0, 0x7, 0x6, 0x8, 0x101, 0x515, 0x7, 0x2, 0x5, 0x9, 0x2, 0xfc00, 0x10, 0xffd, 0x9, 0x23, 0x38, 0x4, 0xfff4, 0x675, 0xa, 0x6, 0x800, 0x8], 0x3}})
r6 = syz_io_uring_setup(0x10d, &(0x7f0000000300)={0x0, 0xce5d, 0x80, 0x0, 0x89}, &(0x7f0000000240)=<r7=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) (async)
io_uring_enter(r6, 0x47f9, 0x0, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000200), 0x42, 0x0) (async)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x6, &(0x7f0000000080)={0xc, "df1e970974a75196eeb58543bd9d2ba55aeacc9859bdc9f2472342370527626623"}}) (async)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) (async)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001540)={0x0}, 0x1, 0x0, 0x0, 0x48000}, 0x0)

2.280319493s ago: executing program 5 (id=885):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r1 = creat(0x0, 0x0)
setxattr$security_ima(0x0, &(0x7f0000000000), &(0x7f00000003c0)=ANY=[@ANYBLOB="0415", @ANYRESOCT=r1, @ANYRESOCT=r1, @ANYRES64=r1], 0x15, 0x2)
write$P9_RREADDIR(r1, &(0x7f00000001c0)={0xb, 0x29, 0x1, {0x5}}, 0xb)
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES64=r0, @ANYRES32, @ANYBLOB="0007000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
nanosleep(0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c00000002030104000000000000344f2a70d773630000000000000800010001000000"], 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT(r3, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="20000000010301040000000000000000000c0002000000000000000000"], 0x20}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
rmdir(&(0x7f0000000240)='./file2\x00')
r4 = socket(0x40000000002, 0x3, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000001080)=@nat={'nat\x00', 0x19, 0x1, 0x1b8, [], 0x6c, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"]}, 0x1b6)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1)
mount(&(0x7f0000000340)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='msdos\x00', 0x0, 0x0)
r5 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r5, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x10)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x7}, 0x4)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)

2.27260139s ago: executing program 3 (id=886):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x4}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1, 0x0, 0x2c}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0xfffff000, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2.225782907s ago: executing program 3 (id=887):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wpan3\x00', <r4=>0x0})
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x58, r1, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x58}, 0x1, 0x0, 0x0, 0x4008000}, 0x6834)
syz_clone3(&(0x7f0000000400)={0x800100, &(0x7f0000000240)=<r5=>0xffffffffffffffff, &(0x7f0000000280), &(0x7f00000002c0), {0x39}, &(0x7f0000000300)=""/47, 0x2f, &(0x7f0000000340)=""/71, &(0x7f00000003c0)=[0x0], 0x1}, 0x58)
readv(r5, &(0x7f0000000840)=[{&(0x7f0000000480)=""/71, 0x47}, {&(0x7f0000000500)=""/16, 0x10}, {&(0x7f0000000540)=""/232, 0xe8}, {&(0x7f0000000640)=""/72, 0x48}, {&(0x7f00000006c0)=""/160, 0xa0}, {&(0x7f0000000780)=""/131, 0x83}], 0x6)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000008c0), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000900)={'wpan3\x00', <r7=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x1c, r6, 0x10, 0x70bd25, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040040}, 0x2000c040)
sendmsg$NFNL_MSG_CTHELPER_GET(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x54, 0x1, 0x9, 0x301, 0x0, 0x0, {0x6, 0x0, 0x2}, [@NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}, @NFCTH_STATUS={0x8}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x7ff}}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x3}}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x4054}, 0x20048040)
read(r5, &(0x7f0000000b40)=""/101, 0x65)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000c00)={'wpan3\x00', <r8=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000000ec0)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000e80)={&(0x7f0000000c40)={0x214, r1, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_SEC_DEVKEY={0x130, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x20, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x8ba0}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x9}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x18, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7fffffff}]}, @NL802154_DEVKEY_ATTR_ID={0xac, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x18, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x44, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa1}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0x1fffc}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x6}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x2}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_SEC_DEVKEY={0x84, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x81}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}, @NL802154_DEVKEY_ATTR_ID={0x1c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x6}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8}]}, @NL802154_DEVKEY_ATTR_ID={0x44, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}]}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x214}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000)
r9 = syz_open_dev$MSR(&(0x7f0000000f00), 0x51, 0x0)
sendmsg$NL802154_CMD_SET_PAN_ID(r0, &(0x7f0000001000)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f80)={0x24, r1, 0x2, 0x70bd29, 0x25dfdbff, {}, [@NL802154_ATTR_PAN_ID={0x6, 0x9, 0x1}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001080), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000010c0)={'wpan0\x00', <r11=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000011c0)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001180)={&(0x7f0000001100)={0x4c, r10, 0x100, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000095}, 0x50)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c09425, &(0x7f0000001200)={"869aafdf5e70860dacb16235cf6ccaef", <r12=>0x0, 0x0, {0x6, 0x8}, {0x1, 0x6}, 0x1, [0xfffffffffffffff9, 0x1a0, 0x9, 0x6, 0x7, 0x9, 0x1fa, 0xaa9, 0x70a, 0x0, 0x5, 0x7, 0x6, 0x724, 0x68c7, 0x8]})
ioctl$BTRFS_IOC_WAIT_SYNC(r9, 0x40089416, &(0x7f00000012c0)=r12)
r13 = openat$dlm_monitor(0xffffff9c, &(0x7f00000015c0), 0x109100, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001600)={&(0x7f0000001300)="eb6debf7c145f4cdf551e42fb50eb1ed7023941c7845faebc53fbf8d54a42f1108f30187e547d47f61d980c26c8e8674b2fbf32764fbdc50c0604bae0b17b316521a12a674ae3bb5065385746b98fcd87e485e27f9e571be49a6767b072ab79e855f1995df0cc8028ca5ea195d1352cee8ec1580b9baeca08d893f7c35ddf4776a13b59bc397a46392a2426a863b5a929d5fef37732e6f70f70abfa2c5cbbbe687266a735433093bfd078b5cc3afbe44f4d8cd2be0d0bbc239f42b69c46797aec2e8a355121ad28db2bd7f70ec9daa57332a4480a5b2853734ea58d9615b24ef292f7e", &(0x7f0000001400)=""/17, &(0x7f0000001440)="10d4ae82c30aeaa5b8689223a7ca3a2ef5a8eb62a81de0209f09ab07ae26b2ca2c786c35c195df4838710d7037ec5d5b5247c32d1e71b59eb22f75e538965536a20dfc00f45279a6caeca6155596d701aef657c583a1e0ce6bc29c91af26d883ace45154d44c9d3e19a18e82934c89d1a179ec21998b1492dac75c1518a97173d62ff7e5c3ef77530def", &(0x7f0000001500)="a79a6558638d464b5bc160733834098cdb01d13096c68c75f90455845ade838be1dc63bf8ca807dddc162e16230c6a00f63a05aa1934e71ff98cd1c0698614b4132945a385405667252d4a5c5a9fc0f456567119529befd1134810f8b70f2002b6e051cc6b17fb5b225bf46b320c4c3be4d420bfa27c0a772d4fee66ccdc50a6cbf1095e8db8258e90c7a9211689830bf1c8d9a6e8cadc3fc43149e2592cbc15fbed4a972a2dab2ab411001c571f98a263f41c585ebdbc244e9bcc", 0x600000, r13, 0x4}, 0x38)
r14 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LIST_PHY(r14, &(0x7f0000001700)={&(0x7f0000001640)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000016c0)={&(0x7f0000001680)={0x14, r6, 0x10, 0x70bd2d, 0x25dfdbfe, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)
bind$packet(r13, &(0x7f0000001740)={0x11, 0x19, 0x0, 0x1, 0x4, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x14)
r15 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000017c0), r14)
sendmsg$NLBL_MGMT_C_REMOVE(r0, &(0x7f0000001880)={&(0x7f0000001780)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001840)={&(0x7f0000001800)={0x24, r15, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x1}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x8004}, 0x40)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f00000019c0)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001980)={&(0x7f0000001900)={0x60, r1, 0x900, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x3}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x2}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x8}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x98}]}, @NL802154_ATTR_SEC_LEVEL={0xc, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x8}, 0x881)

2.099927845s ago: executing program 1 (id=889):
socket$l2tp6(0xa, 0x2, 0x73)
r0 = socket(0x15, 0x5, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r2 = dup(r1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="5800000002060102000034e40000000000b27b448d985acf1bfc000000050001000700000005000400000000000900020073797a320000000005000500020000000c000780080012407fffffff11000300686173683a69702c706f727400000000358577fc52977f7010bea1c4d652ddd5de938c091a79653893fa67032ef06614b10a6f4fd557119c5af0b40e17d382e71b715a3b253bb294d0385824da8190bdba90ab3c2333dd5aeced11d2f3eee402dc44bc9ebe10d50720442be34b2920e1f38c096f0625c4f476aa4c3d77ab04e7cf93792dd23b"], 0x58}}, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0x11)
pread64(r5, &(0x7f0000000180)=""/89, 0x59, 0xffffffff)
socket$netlink(0x10, 0x3, 0x0)
ioctl$USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000040)={0x23, 0x1, 0x11, 0x1, 0x0, 0x0, 0x0})
getsockopt(r0, 0x200000000114, 0x271d, 0x0, &(0x7f0000000000))
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000fff00000000000000000000008500000007000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)

2.099776575s ago: executing program 0 (id=890):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
sendfile(r3, r2, 0x0, 0x3fffff)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

2.010229518s ago: executing program 3 (id=891):
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xa, &(0x7f0000000180)=0x67e, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x231, 0x0, 0x0, &(0x7f00000001c0))
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff0000f0ffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r4, @ANYBLOB="08001b"], 0x34}}, 0x4004010)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$can_raw(0x1d, 0x3, 0x1)
r5 = syz_open_procfs(0x0, &(0x7f00000003c0)='fdinfo\x00')
fchdir(r5)
r6 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r6, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="0212000902000000e4a17c45c85686605e", 0x11}], 0x1}, 0x0)
r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents(r7, &(0x7f0000001fc0)=""/184, 0xb8)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$packet(0x11, 0x2, 0x300)
socket$inet_sctp(0x2, 0x5, 0x84)
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3570], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x80002, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1.920511707s ago: executing program 0 (id=892):
syz_emit_ethernet(0x4a, &(0x7f0000002100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6000000000142c00fe800000000000001f000000000000bbfe8000000000000000000000000000aa00004e23"], 0x0)

1.860132331s ago: executing program 0 (id=893):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x3, 0x0)
prlimit64(0x0, 0xb, &(0x7f0000000000), 0x0)
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000000040))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newtaction={0x144, 0x30, 0x1, 0x0, 0x0, {}, [{0x130, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ctinfo={0xe8, 0xb, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x9}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x150f20ed}, @TCA_CTINFO_ACT={0x18, 0x3, {0x6, 0xfffffffe, 0x7, 0x10, 0x8001}}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0xfffffff9}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x4}]}, {0x84, 0x6, "a241267ee88233f3c5bb77f4049155d93ea5a13212999f636b88f54df63a54c28d3fc799794e326d8f84a94be5c0e1b58523b65c582651544b24368b4ae66eb24009b3395e3a76dae8987e3ea3a03b16544997a8d6c09befccc6e3076f8fc5612c226b1c60276aaf2216e0bb48a6cfc77df5abddee1247baadc10002ebc41f95"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1}}}}]}]}, 0x144}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000280)={0x1f, 0xffff, 0x4}, 0xfffffffffffffd07)
io_setup(0x8, &(0x7f00000002c0)=<r5=>0x0)
io_submit(r5, 0x8, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r4, &(0x7f0000000040)="0300ffff0000", 0x6}])
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x15d74000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000480)=ANY=[@ANYRESOCT=r6, @ANYBLOB="82e3d00c191517a709677f4e97d8a92a9d7a6c33b3920851a841ec08bd77f57a0d", @ANYRESDEC=r0, @ANYRES64=r1, @ANYRES8, @ANYRES8=r2], 0x2a, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f00000001c0)={0x0, 0x80000, <r9=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06464ce, &(0x7f0000000300)={0x0, 0x1, 0x7, 0x5, 0x3, [], [0xfff, 0x1, 0x7, 0xd068], [0x7, 0x7, 0x3, 0x5], [0x9, 0x1, 0x20000076d, 0x4]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r9, 0xc00c642d, &(0x7f0000000380)={0x0, 0x80000})
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r8, &(0x7f0000000240)=""/112, 0x349b7f55)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)

1.650379656s ago: executing program 3 (id=894):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
pwritev(r1, &(0x7f00000001c0), 0x0, 0xfffffffc, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmsg(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xf8}], 0x1}, 0x1f00)
sendmmsg$sock(r6, &(0x7f0000003bc0), 0x4000000000002ca, 0x4040014)
mkdirat(0xffffffffffffff9c, 0x0, 0x1e2)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {0x0, 0x0, 0x0, 0x7000000}, {0x3}, {}, {}, {}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.120479951s ago: executing program 1 (id=895):
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x1000004, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
setxattr$security_ima(&(0x7f0000000180)='./bus\x00', &(0x7f0000000000), &(0x7f00000004c0)=ANY=[@ANYBLOB="0415", @ANYRESOCT=r0, @ANYBLOB="0f7e4bf394b4dc670e84bbb01bd62f71d2ba539f94fc0b1704a9a6960aceec09e9e50696f3cb7433d65d6c982faa4cbda1efbaef59fa01038ad66a7ff8a124c76ac114c4c4d300c44667fc8091ff32ad7bec3a7bbd91b22995f292bcce3d3c6fbd178c5bc85e3e166ad5737d61f3bffc0e0fd950e7d77602ca164a5ec5f7877c50ac1b364f5162c934fd5239af01d36d4d9d92c6e21f47cb4660220483c27f26c81d", @ANYRES64=r0], 0x15, 0x0)
write$P9_RREADDIR(r0, &(0x7f00000001c0)={0xb, 0x29, 0x1, {0x5}}, 0xb)
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0007000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
nanosleep(&(0x7f0000000300), 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket(0x40000000002, 0x3, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001080)=@nat={'nat\x00', 0x19, 0x1, 0x1b8, [], 0x6c, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"]}, 0x208)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1)
mount(&(0x7f0000000340)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='msdos\x00', 0x0, 0x0)
r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r3, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x10)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$sock(r3, &(0x7f00000034c0)={0x0, 0x0, &(0x7f0000003440)}, 0x0)

1.060331798s ago: executing program 1 (id=896):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xd) (async)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000340)="031f31b1f09d76af21e3b0224966a232dc1f5bfd8a29f730b10a53e756087a1df416fd804b636964220910b05962d95d7fb7873e8a0b7b62d7384dbd12b536f0e55e588092441663f9665e4b39f8eb3430840ac3c6ad014d6268fca6b3fc43da09b1d0a95d18e26a8e0ddd857f4911abb72ced02e4f1fe5ebb35042436374c7119229c019819a8491bdd74a299ca4fa71ee05f4c49c99de404b76d08fb1938674fa45fd06104cfcc08e9c017a2769a77e1a9e4da0e451353ca53b990500b18e4f4bb5cf1309fe4707c3f7200"/218, 0xda}, {&(0x7f0000000640)="ffb3ef96fd55310531a92b9d4b2ebcb168c3e90db153fe8bc3c9e2cfd50d22329495b92a7e12a948fff8e40f44798512135fd8fec900cca0c10e9e61d61cff5507f9298209ab8dd95ba0cb024a07dc20d07ac8940c729de29318e23818b2169da4374e8ec904573105b3dafbed9c3958b6570ec6117f2a8b7823b94056c0bcfd679f57db483bb7631bfd74f5f73cdebd19d4bd31a81d7c73c4428a65dc3820987e1ea1c45773112d4e2b1cc8064f220c7b2d673f84d4b1a5a9aedc2063b740198f57d0848358b2cf118bfcdc7c40303dee672f1ca6384e006460df438bde154a0c", 0xe1}, {&(0x7f0000000140)="74812905b8bd297a48dc5adfa4052d6e7cdd8c1615a231859ac522b4ae78d7f1b3619ed73f0e93cf3ccd30f4e58303dfd9d20af483a3406d48", 0x39}, {0x0}], 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=@newtaction={0xbc, 0x30, 0x1, 0x70bd26, 0x0, {}, [{0xa4, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x5c, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x4, 0x1}}}]}, {0x16, 0x6, "b2d786fcaf23af7c6c63fc7a53e831320def"}, {0xc}, {0xc}}}]}, {0x4}]}, 0xbc}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (rerun: 64)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async, rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) (async, rerun: 64)
socketpair$unix(0x1, 0x2, 0x0, 0x0) (async, rerun: 64)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 64)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) (async, rerun: 64)
pipe(&(0x7f0000000300)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000080), 0xfffffe13) (async)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r5, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0) (async)
setsockopt$inet_int(r5, 0x0, 0x6, &(0x7f0000000180)=0x6, 0x4) (async)
bind$inet(r5, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) (async)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp={0x44, 0x4, 0xc6}]}}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) (async)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000440)="cb56b6cc04f01f56bb6e284f5fab5c66", 0x10) (async)
accept4(r6, 0x0, 0x0, 0x0) (async, rerun: 64)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000001000000040000000b"], 0x48) (rerun: 64)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000006c0)={{r7}, &(0x7f0000000280), &(0x7f0000000680)}, 0x20)

855.570899ms ago: executing program 1 (id=897):
syz_emit_ethernet(0x1b, &(0x7f00000000c0)=ANY=[@ANYBLOB="bbbabbbbbbbbffffffffc0255e79c87b81e59fb3d5b10a"], 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000000580)=ANY=[@ANYBLOB="040100001500010000000000000000000a0101010000000000000000000000007f00000100000000000000000000000000000002000000000000000032000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000002000000000000000000000000000000003c000000fe8000000000000000000000000000bb00000000000000000000000000000000feffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000033500000a0002fd2c00000014000e"], 0x104}, 0x1, 0x0, 0x0, 0x50}, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x0)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000100)={0x0, 0x2, 0xffffffffffffffb2, @multicast}, 0x10)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r4=>0x0)
ptrace(0x4208, r4)

854.985037ms ago: executing program 0 (id=898):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x4}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
tkill(0x0, 0x12)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
io_uring_setup(0x320c, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1})
sendmsg$key(r0, &(0x7f0000000000)={0x270, 0x0, 0x0}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{0x0, 0x0, 0x1f00}, {}]}, [{0x3}, {}, {}, {}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x2}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0xfffffffc}, {0x0, 0xe}, {}, {}, {0x0, 0x4, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {}, {0xfffffffe}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x10}, {}, {}, {0x2, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xe10}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xefa6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x5}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0)
r5 = fcntl$getown(0xffffffffffffffff, 0x9)
sched_setaffinity(r5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00}}, './bus\x00'})

854.818951ms ago: executing program 1 (id=899):
r0 = openat$dlm_control(0xffffff9c, &(0x7f0000000000), 0x408000, 0x0) (async, rerun: 32)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth1_to_team\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x401, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2093}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x20}}]}, 0x48}}, 0x20000000)
fsetxattr$security_capability(r0, &(0x7f0000000340), &(0x7f00000004c0)=@v2={0x2000000, [{0x9, 0x1}]}, 0x14, 0x2) (async, rerun: 32)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="180000003c000701fcffffff00000000017c000004003680d6f099d5e781c4ac090e4b38281cc4d3fbccedd7d5880c18307bb8b24f1cb4739e016eab0066b10f314a50c01b0034ba6af7a591bc6f164688f4baab58974b224ab8d40a04de1dc946acd224da7027ea8c6d07215ac198fe418ef663f6ecbd575425f46cd01d3ef43f3ab8e5da40798b3ed9efcc7f13b3d32d39f2fefdf7b41068143c27c5f5916825614435f62f7473bae838ea"], 0x18}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000) (async, rerun: 32)
preadv2(r1, &(0x7f0000000300)=[{&(0x7f0000000080)=""/5, 0x5}, {&(0x7f00000000c0)=""/243, 0xf3}, {&(0x7f00000001c0)=""/45, 0x2d}, {&(0x7f0000000200)=""/183, 0xb7}, {&(0x7f0000000440)=""/117, 0x75}, {&(0x7f0000000040)=""/22}], 0x38, 0x1, 0x2, 0x0) (async, rerun: 32)
setuid(0xee00) (async, rerun: 32)
r5 = memfd_secret(0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x11, r5, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0) (async)
mincore(&(0x7f0000ff9000/0x4000)=nil, 0x4000, &(0x7f0000000580)=""/254)
creat(&(0x7f0000001b80)='./file0\x00', 0xc0)

660.00169ms ago: executing program 1 (id=900):
socket$inet(0x2, 0x4000000000000001, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x54}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x26}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f00000000c0)=0x8e, 0x180000504)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r5, 0x40045431, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
r6 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r6, 0x1, 0x4000000000000002, 0x0, 0x0)
bind$inet6(r6, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x10, 0x701, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setgroups(0x0, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e00fe00020013000200000000000000ff0800ed05000600200000000a00060000000000000500e50000070000001ffeff0001000003f1dc7f7c6e870200010000000800004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmmsg(r7, &(0x7f0000000180), 0x400008a, 0x700)
listen(r6, 0x2)

100.246137ms ago: executing program 3 (id=901):
r0 = socket$inet(0x2, 0x3, 0x8d)
setsockopt$inet_msfilter(r0, 0x0, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="8e"], 0x1)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
socket(0x2c, 0x1, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x200}}, &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x20182)
ioctl$USBDEVFS_BULK(r3, 0x5523, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_ALLOW_SUSPEND(r2, 0x5522)
ioctl$USBDEVFS_SETINTERFACE(r2, 0x80045510, &(0x7f0000000000))
r4 = dup(0xffffffffffffffff)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r6, &(0x7f0000000600)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r7, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x500, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c07ff001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001400128009000100626f6e64000000000400028008000a00", @ANYRES32=r7], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)

99.989796ms ago: executing program 5 (id=902):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x141002, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TCSETA(r0, 0x8924, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "4feda26323b172e0"})

276.763µs ago: executing program 5 (id=903):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x44, 0x6, 0x538, 0x2f8, 0x2f8, 0x408, 0x0, 0x408, 0x4a0, 0x4a0, 0x4a0, 0x4a0, 0x4a0, 0x6, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x10}}}, {{@uncond, 0x0, 0x1a0, 0x1c8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x8}}, @common=@inet=@recent1={{0x108}, {0x1000000, 0x5f, 0x0, 0x1, 'syz1\x00', 0xe1, [0x0, 0xff000000, 0x0, 0xffffffff]}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x11, 0x2, 0x2}}}, {{@ip={@multicast2, @rand_addr=0x64010182, 0x0, 0x0, 'pim6reg1\x00', 'macvtap0\x00', {0xff}, {}, 0x0, 0x2}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@dev, @private, 0x0, 0x0, 'wlan0\x00', 'ip6tnl0\x00'}, 0x0, 0xe8, 0x110, 0x0, {}, [@common=@icmp={{0x28}, {0x4, 'xL', 0x1}}, @common=@osf={{0x50}, {'syz0\x00', 0x600, 0x4, 0x2, 0x2}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@local, @rand_addr, 0x0, 0x0, 'ip6erspan0\x00', 'batadv_slave_1\x00', {}, {0xff}}, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0x0, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x598)

0s ago: executing program 5 (id=904):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000700)=@newsa={0x154, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101, 0x4e22}, {@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x32}, @in=@multicast2, {}, {0x0, 0x0, 0xffffff80}, {0x3}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @encap={0x1c, 0x4, {0xffffffffffffffff, 0x0, 0x0, @in6=@remote}}]}, 0x154}}, 0x0)

0s ago: executing program 0 (id=905):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, 0x0}, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x38, &(0x7f0000000000)={&(0x7f0000000200)=@newtaction={0x6c, 0x30, 0xffff, 0x0, 0x0, {}, [{0x58, 0x1, [@m_ife={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_TCINDEX={0x6, 0x2}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
getsockopt$sock_buf(r1, 0x1, 0x1c, 0x0, &(0x7f0000000040))
r4 = openat$nullb(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$BLKTRACESETUP(r4, 0xc0401273, &(0x7f0000000380)={'\x00', 0x0, 0x1, 0xfffffff8, 0x0, 0x4})
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt(r5, 0x28, 0x6, &(0x7f0000001680)=""/59, &(0x7f0000000000)=0x3b)
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="070000fe680000e9ff000000debfffff0a00000000000000"], 0x18}, 0x1, 0x0, 0x0, 0x20048810}, 0x90)

kernel console output (not intermixed with test programs):

 IBSS using preconfigured BSSID 50:50:50:50:50:50
[   45.512915][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   45.525788][ T6005] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2'.
[   45.528667][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   45.531345][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   45.532080][ T6005] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   45.555221][ T6004] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.561514][ T5944] Bluetooth: hci0: command tx timeout
[   45.561518][ T5948] Bluetooth: hci3: command tx timeout
[   45.561975][   T65] Bluetooth: hci1: command tx timeout
[   45.565415][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   45.569050][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   45.571193][   T65] Bluetooth: hci2: command tx timeout
[   45.582889][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   45.585202][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   45.605675][ T6008] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   45.623623][ T6008] mac80211_hwsim hwsim5 ÿÿÿÿÿÿ: renamed from wlan1 (while UP)
[   45.631259][ T6009] sctp: [Deprecated]: syz.3.4 (pid 6009) Use of struct sctp_assoc_value in delayed_ack socket option.
[   45.631259][ T6009] Use struct sctp_sack_info instead
[   45.639249][ T6009] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'.
[   45.647648][ T6004] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.706691][ T6015] syz.0.1: attempt to access beyond end of device
[   45.706691][ T6015] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[   45.710495][ T6015] FAT-fs (nbd0): unable to read boot sector
[   46.061386][ T6025] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5'.
[   47.192347][ T6038] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   47.284938][ T6038] team0 (unregistering): Port device team_slave_0 removed
[   47.290407][ T6038] team0 (unregistering): Port device team_slave_1 removed
[   47.347711][ T6004] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.557169][ T6042] vlan2: entered allmulticast mode
[   47.558777][ T6042] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[   47.641018][   T65] Bluetooth: hci0: command tx timeout
[   47.643643][   T65] Bluetooth: hci2: command tx timeout
[   47.645376][   T65] Bluetooth: hci3: command tx timeout
[   47.650656][ T5944] Bluetooth: hci1: command tx timeout
[   48.334261][ T6049] overlayfs: failed to clone upperpath
[   48.629334][ T6054] capability: warning: `syz.0.14' uses deprecated v2 capabilities in a way that may be insecure
[   48.944366][ T6060] Process accounting resumed
[   49.182959][ T6004] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.244178][ T6004] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.249800][ T6004] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.255354][ T6004] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.260010][ T6004] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.382500][ T6064] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[   49.385016][ T6064] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   49.388686][ T6064] vhci_hcd vhci_hcd.0: Device attached
[   49.493431][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   49.495502][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   49.495825][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   49.571933][ T1462] vhci_hcd: vhci_device speed not set
[   49.595833][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   49.598234][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   49.630723][ T1462] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[   49.721822][ T5944] Bluetooth: hci1: command tx timeout
[   49.721976][ T5295] Bluetooth: hci0: command tx timeout
[   49.721983][ T5948] Bluetooth: hci2: command tx timeout
[   49.725462][   T65] Bluetooth: hci3: command tx timeout
[   49.801577][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   50.005525][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   50.008544][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   50.040873][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   50.390904][ T5997] IPVS: starting estimator thread 0...
[   50.512278][ T6082] IPVS: using max 38 ests per chain, 91200 per kthread
[   50.554953][ T6086] netlink: 96 bytes leftover after parsing attributes in process `syz.0.22'.
[   50.557715][ T6086] netlink: 96 bytes leftover after parsing attributes in process `syz.0.22'.
[   50.703631][ T6065] vhci_hcd: connection reset by peer
[   50.707221][ T1219] vhci_hcd: stop threads
[   50.708884][ T1219] vhci_hcd: release socket
[   50.710947][ T1219] vhci_hcd: disconnect device
[   50.752046][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.792343][ T6091] lo speed is unknown, defaulting to 1000
[   50.795701][ T6091] lo speed is unknown, defaulting to 1000
[   50.798033][ T6091] lo speed is unknown, defaulting to 1000
[   50.838476][ T5999] lo speed is unknown, defaulting to 1000
[   50.838506][ T6091] infiniband s
z1: set active
[   50.842245][ T6091] infiniband s
z1: added lo
[   50.859950][ T6091] RDS/IB: s
z1: added
[   50.861651][ T6091] smc: adding ib device s
z1 with port count 1
[   50.863523][ T6091] smc:    ib device s
z1 port 1 has pnetid 
[   50.866903][ T5999] lo speed is unknown, defaulting to 1000
[   50.869098][ T6091] lo speed is unknown, defaulting to 1000
[   50.910646][ T6091] lo speed is unknown, defaulting to 1000
[   50.948773][ T6091] lo speed is unknown, defaulting to 1000
[   50.986263][ T6091] lo speed is unknown, defaulting to 1000
[   51.308195][ T6104] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.412121][ T6107] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   51.433106][ T6107] mac80211_hwsim hwsim4 ÿÿÿÿÿÿ: renamed from wlan1 (while UP)
[   51.614266][ T6104] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.689887][ T6104] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.696835][ T6102] vlan2: entered allmulticast mode
[   51.698358][ T6102] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[   51.770072][ T6104] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.800702][ T5948] Bluetooth: hci0: command tx timeout
[   51.810820][ T5948] Bluetooth: hci2: command tx timeout
[   51.810869][ T5944] Bluetooth: hci1: command tx timeout
[   51.814756][   T65] Bluetooth: hci3: command tx timeout
[   51.824637][ T6112] Process accounting resumed
[   51.852448][ T6115] netlink: 20 bytes leftover after parsing attributes in process `syz.0.28'.
[   51.859767][ T6115] netlink: 164 bytes leftover after parsing attributes in process `syz.0.28'.
[   51.862606][ T6115] netlink: 164 bytes leftover after parsing attributes in process `syz.0.28'.
[   51.863410][ T6104] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.871299][ T6104] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.877929][ T6104] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.883520][ T6104] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.143156][ T5999] IPVS: starting estimator thread 0...
[   52.240755][ T6125] IPVS: using max 38 ests per chain, 91200 per kthread
[   52.311114][ T6128] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[   52.313040][ T6128] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   52.315351][ T6128] vhci_hcd vhci_hcd.0: Device attached
[   52.490761][ T5999] vhci_hcd: vhci_device speed not set
[   52.560665][ T5999] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[   52.741481][ T6135] netlink: 96 bytes leftover after parsing attributes in process `syz.2.33'.
[   52.744140][ T6135] netlink: 96 bytes leftover after parsing attributes in process `syz.2.33'.
[   53.791332][ T6154] netlink: 4 bytes leftover after parsing attributes in process `syz.2.37'.
[   53.903145][ T6200] netlink: 'syz.2.38': attribute type 1 has an invalid length.
[   53.905907][ T6200] FAULT_INJECTION: forcing a failure.
[   53.905907][ T6200] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   53.909709][ T6200] CPU: 2 UID: 0 PID: 6200 Comm: syz.2.38 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[   53.912627][ T6200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.915699][ T6200] Call Trace:
[   53.916706][ T6200]  <TASK>
[   53.917578][ T6200]  dump_stack_lvl+0x16c/0x1f0
[   53.918963][ T6200]  should_fail_ex+0x497/0x5b0
[   53.920337][ T6200]  _copy_from_iter+0x29b/0x1400
[   53.921891][ T6200]  ? trace_lock_acquire+0x14e/0x1f0
[   53.923414][ T6200]  ? __alloc_skb+0x200/0x380
[   53.924769][ T6200]  ? __pfx__copy_from_iter+0x10/0x10
[   53.926305][ T6200]  ? __virt_addr_valid+0x1a4/0x590
[   53.927812][ T6200]  ? __virt_addr_valid+0x5e/0x590
[   53.929299][ T6200]  ? __phys_addr_symbol+0x30/0x80
[   53.930765][ T6200]  ? __check_object_size+0x488/0x710
[   53.932312][ T6200]  netlink_sendmsg+0x813/0xd70
[   53.933721][ T6200]  ? __pfx_netlink_sendmsg+0x10/0x10
[   53.935269][ T6200]  ____sys_sendmsg+0x9ae/0xb40
[   53.936925][ T6200]  ? __pfx_____sys_sendmsg+0x10/0x10
[   53.938615][ T6200]  ? get_compat_msghdr+0x11b/0x170
[   53.940119][ T6200]  ___sys_sendmsg+0x135/0x1e0
[   53.941496][ T6200]  ? __pfx____sys_sendmsg+0x10/0x10
[   53.943028][ T6200]  ? __pfx_lock_release+0x10/0x10
[   53.944491][ T6200]  ? trace_lock_acquire+0x14e/0x1f0
[   53.946074][ T6200]  ? __fget_files+0x206/0x3a0
[   53.947684][ T6200]  __sys_sendmsg+0x16e/0x220
[   53.949030][ T6200]  ? __pfx___sys_sendmsg+0x10/0x10
[   53.950527][ T6200]  __do_fast_syscall_32+0x73/0x120
[   53.952026][ T6200]  do_fast_syscall_32+0x32/0x80
[   53.953450][ T6200]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   53.955282][ T6200] RIP: 0023:0xf7fd0579
[   53.956499][ T6200] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   53.962000][ T6200] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   53.964436][ T6200] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000280
[   53.966942][ T6200] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[   53.969202][ T6200] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   53.971483][ T6200] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   53.973765][ T6200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   53.976054][ T6200]  </TASK>
[   54.039060][ T6204] netlink: 'syz.2.40': attribute type 1 has an invalid length.
[   54.049470][ T6204] bond1 (unregistering): Released all slaves
[   54.109141][ T6129] vhci_hcd: connection reset by peer
[   54.111488][ T6190] vhci_hcd: stop threads
[   54.112855][ T6190] vhci_hcd: release socket
[   54.114280][ T6190] vhci_hcd: disconnect device
[   54.314706][ T6220] overlayfs: failed to resolve './file1': -2
[   54.334851][ T6221] overlayfs: failed to clone upperpath
[   54.398282][ T6223] vlan3: entered promiscuous mode
[   54.551660][ T6229] netlink: 'syz.0.49': attribute type 1 has an invalid length.
[   54.573452][ T6233] netlink: 4 bytes leftover after parsing attributes in process `syz.1.50'.
[   54.608590][ T6238] netlink: 512 bytes leftover after parsing attributes in process `syz.1.53'.
[   54.714611][ T6219] FAULT_INJECTION: forcing a failure.
[   54.714611][ T6219] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   54.718748][ T6219] CPU: 3 UID: 0 PID: 6219 Comm: syz.3.42 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[   54.721699][ T6219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.724802][ T6219] Call Trace:
[   54.725781][ T6219]  <TASK>
[   54.726646][ T6219]  dump_stack_lvl+0x16c/0x1f0
[   54.728024][ T6219]  should_fail_ex+0x497/0x5b0
[   54.729390][ T6219]  ? fs_reclaim_acquire+0xae/0x150
[   54.730886][ T6219]  should_fail_alloc_page+0xe7/0x130
[   54.732418][ T6219]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   54.734222][ T6219]  __alloc_pages_noprof+0x18e/0x2470
[   54.735755][ T6219]  ? __pfx_mark_lock+0x10/0x10
[   54.737155][ T6219]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   54.738937][ T6219]  ? hlock_class+0x4e/0x130
[   54.740287][ T6219]  ? __lock_acquire+0xcc5/0x3c40
[   54.741738][ T6219]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   54.743398][ T6219]  ? mark_lock+0xb5/0xc60
[   54.744671][ T6219]  ? widen_string+0xdd/0x2d0
[   54.746018][ T6219]  ? __pfx_widen_string+0x10/0x10
[   54.747485][ T6219]  ? __pfx_mark_lock+0x10/0x10
[   54.748874][ T6219]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   54.750579][ T6219]  ? policy_nodemask+0xea/0x4e0
[   54.752007][ T6219]  alloc_pages_mpol_noprof+0x2c8/0x620
[   54.753594][ T6219]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   54.755344][ T6219]  pte_alloc_one+0x20/0x390
[   54.756671][ T6219]  __pte_alloc+0x6e/0x3b0
[   54.757928][ T6219]  ? __pfx___pte_alloc+0x10/0x10
[   54.759375][ T6219]  ? find_held_lock+0x2d/0x110
[   54.760658][ T1462] vhci_hcd: vhci_device speed not set
[   54.760802][ T6219]  do_pte_missing+0x2810/0x3e00
[   54.763809][ T6219]  ? mt_find+0x82d/0xa20
[   54.765066][ T6219]  __handle_mm_fault+0x103c/0x2a40
[   54.766568][ T6219]  ? __pfx___handle_mm_fault+0x10/0x10
[   54.768165][ T6219]  handle_mm_fault+0x3fa/0xaa0
[   54.769565][ T6219]  __get_user_pages+0x8d9/0x3b50
[   54.771014][ T6219]  ? __pfx___get_user_pages+0x10/0x10
[   54.772546][ T6219]  ? down_read_killable+0xcc/0x380
[   54.774050][ T6219]  ? __pfx_down_read_killable+0x10/0x10
[   54.775675][ T6219]  __gup_longterm_locked+0x211/0x1870
[   54.777241][ T6219]  ? __pfx___gup_longterm_locked+0x10/0x10
[   54.778940][ T6219]  ? gup_fast_fallback+0x1218/0x2690
[   54.780540][ T6219]  ? __pfx_lock_release+0x10/0x10
[   54.781991][ T6219]  ? trace_lock_acquire+0x14e/0x1f0
[   54.783508][ T6219]  gup_fast_fallback+0x1802/0x2690
[   54.785016][ T6219]  ? __pfx_gup_fast_fallback+0x10/0x10
[   54.786603][ T6219]  ? mtree_load+0x326/0xa40
[   54.787941][ T6219]  ? find_held_lock+0x2d/0x110
[   54.789349][ T6219]  get_user_pages_fast+0xa8/0x100
[   54.790832][ T6219]  ? __pfx_get_user_pages_fast+0x10/0x10
[   54.792452][ T6219]  kernel_get_mempolicy+0x8fb/0x1670
[   54.794000][ T6219]  ? __pfx_kernel_get_mempolicy+0x10/0x10
[   54.795630][ T6219]  ? ksys_write+0x1ba/0x250
[   54.796947][ T6219]  ? __pfx_ksys_write+0x10/0x10
[   54.798341][ T6219]  __ia32_sys_get_mempolicy+0xba/0x160
[   54.799896][ T6219]  ? lockdep_hardirqs_on+0x7c/0x110
[   54.801428][ T6219]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   54.803327][ T6219]  __do_fast_syscall_32+0x73/0x120
[   54.804823][ T6219]  do_fast_syscall_32+0x32/0x80
[   54.806267][ T6219]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   54.808093][ T6219] RIP: 0023:0xf7f54579
[   54.809269][ T6219] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   54.814752][ T6219] RSP: 002b:00000000f506455c EFLAGS: 00000296 ORIG_RAX: 0000000000000113
[   54.817153][ T6219] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[   54.819423][ T6219] RDX: 0000000000400010 RSI: 0000000020394000 RDI: 0000000000000003
[   54.821717][ T6219] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   54.823990][ T6219] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   54.826268][ T6219] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   54.828541][ T6219]  </TASK>
[   55.542701][  T833] libceph: connect (1)[c::]:6789 error -101
[   55.545834][  T833] libceph: mon0 (1)[c::]:6789 connect error
[   55.592764][ T5944] Bluetooth: hci3: Malformed LE Event: 0x0d
[   55.600875][ T6266] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   55.602106][ T6264] __nla_validate_parse: 2 callbacks suppressed
[   55.602119][ T6264] netlink: 48 bytes leftover after parsing attributes in process `syz.0.58'.
[   55.610920][ T6264] netlink: 48 bytes leftover after parsing attributes in process `syz.0.58'.
[   55.686197][ T6268] lo speed is unknown, defaulting to 1000
[   55.801831][  T833] libceph: connect (1)[c::]:6789 error -101
[   55.804224][  T833] libceph: mon0 (1)[c::]:6789 connect error
[   56.162053][ T6259] ceph: No mds server is up or the cluster is laggy
[   56.673595][ T6295] syz.3.67 uses obsolete (PF_INET,SOCK_PACKET)
[   56.772228][ T6293] /dev/sr0: Can't open blockdev
[   56.806852][ T6309] sctp: [Deprecated]: syz.0.71 (pid 6309) Use of struct sctp_assoc_value in delayed_ack socket option.
[   56.806852][ T6309] Use struct sctp_sack_info instead
[   56.808883][ T6316] Zero length message leads to an empty skb
[   56.816335][ T6309] netlink: 4 bytes leftover after parsing attributes in process `syz.0.71'.
[   57.016662][ T6333] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   57.352701][ T6342] netlink: 'syz.0.82': attribute type 1 has an invalid length.
[   57.398487][ T6342] bond1: entered promiscuous mode
[   57.401360][ T6342] 8021q: adding VLAN 0 to HW filter on device bond1
[   57.460760][ T6342] 8021q: adding VLAN 0 to HW filter on device bond2
[   57.463582][ T6342] bond1: (slave bond2): making interface the new active one
[   57.465518][ T6342] bond2: entered promiscuous mode
[   57.467357][ T6342] bond1: (slave bond2): Enslaving as an active interface with an up link
[   57.710708][ T5999] vhci_hcd: vhci_device speed not set
[   57.796747][ T6354] netlink: 12 bytes leftover after parsing attributes in process `syz.3.86'.
[   57.799806][ T6354] bridge_slave_1: left allmulticast mode
[   57.801625][ T6354] bridge_slave_1: left promiscuous mode
[   57.804149][ T6354] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.988014][ T6377] overlayfs: missing 'lowerdir'
[   58.366728][ T6396] netlink: 32 bytes leftover after parsing attributes in process `syz.2.90'.
[   58.490241][ T6408] FAULT_INJECTION: forcing a failure.
[   58.490241][ T6408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.494282][ T6408] CPU: 1 UID: 0 PID: 6408 Comm: syz.1.91 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[   58.497096][ T6408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.500058][ T6408] Call Trace:
[   58.501010][ T6408]  <TASK>
[   58.501850][ T6408]  dump_stack_lvl+0x16c/0x1f0
[   58.503157][ T6408]  should_fail_ex+0x497/0x5b0
[   58.504445][ T6408]  _copy_from_user+0x2e/0xd0
[   58.505800][ T6408]  bm_register_write+0x119/0x1820
[   58.507213][ T6408]  ? __pfx_bm_register_write+0x10/0x10
[   58.508668][ T6408]  vfs_write+0x24c/0x1150
[   58.509865][ T6408]  ? __fget_files+0x1fc/0x3a0
[   58.511175][ T6408]  ? __pfx___mutex_lock+0x10/0x10
[   58.512611][ T6408]  ? __pfx_vfs_write+0x10/0x10
[   58.514292][ T6408]  ? __fget_files+0x206/0x3a0
[   58.515658][ T6408]  ksys_write+0x12b/0x250
[   58.516922][ T6408]  ? __pfx_ksys_write+0x10/0x10
[   58.518273][ T6408]  __do_fast_syscall_32+0x73/0x120
[   58.519734][ T6408]  do_fast_syscall_32+0x32/0x80
[   58.521277][ T6408]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   58.523447][ T6408] RIP: 0023:0xf7f24579
[   58.524908][ T6408] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   58.531045][ T6408] RSP: 002b:00000000f503455c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   58.533382][ T6408] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000200
[   58.535604][ T6408] RDX: 000000000000003b RSI: 0000000000000000 RDI: 0000000000000000
[   58.537795][ T6408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   58.540101][ T6408] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   58.542324][ T6408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   58.544562][ T6408]  </TASK>
[   58.923325][ T6426] netlink: 'syz.3.95': attribute type 12 has an invalid length.
[   58.925574][ T6426] netlink: 'syz.3.95': attribute type 29 has an invalid length.
[   58.927828][ T6426] netlink: 'syz.3.95': attribute type 2 has an invalid length.
[   58.930031][ T6426] netlink: 'syz.3.95': attribute type 2 has an invalid length.
[   58.932308][ T6426] netlink: 'syz.3.95': attribute type 1 has an invalid length.
[   58.934523][ T6426] netlink: 'syz.3.95': attribute type 37 has an invalid length.
[   58.936794][ T6426] netlink: 'syz.3.95': attribute type 2 has an invalid length.
[   58.939052][ T6426] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.036199][ T6429] netlink: 28 bytes leftover after parsing attributes in process `syz.3.96'.
[   59.039356][ T6428] netlink: 28 bytes leftover after parsing attributes in process `syz.3.96'.
[   59.062742][ T6428] netlink: 28 bytes leftover after parsing attributes in process `syz.3.96'.
[   59.062752][ T6429] netlink: 28 bytes leftover after parsing attributes in process `syz.3.96'.
[   59.065623][ T6428] netlink: 28 bytes leftover after parsing attributes in process `syz.3.96'.
[   59.078056][ T6429] batadv0: entered promiscuous mode
[   59.086335][ T6429] batadv_slave_1: entered promiscuous mode
[   59.088597][ T6429] batadv_slave_1: left promiscuous mode
[   59.091970][ T6429] batadv0: left promiscuous mode
[   59.107037][ T6428] batadv0: entered promiscuous mode
[   59.109870][ T6428] batadv_slave_1: entered promiscuous mode
[   59.112383][ T6428] batadv_slave_1: left promiscuous mode
[   59.129948][ T6428] batadv0: left promiscuous mode
[   59.279560][ T6438] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   59.436412][ T6447] netlink: 'syz.3.103': attribute type 1 has an invalid length.
[   59.464940][ T6447] 8021q: adding VLAN 0 to HW filter on device bond1
[   59.516160][ T6447] bond1: (slave veth3): Enslaving as an active interface with a down link
[   59.525509][ T6447] bond1: (slave ip6erspan0): making interface the new active one
[   59.528341][ T6447] ip6erspan0: entered promiscuous mode
[   59.530438][ T6447] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[   59.535182][ T6447] syz.3.103 (6447) used greatest stack depth: 20976 bytes left
[   60.023391][ T6464] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   60.475169][ T5998] IPVS: starting estimator thread 0...
[   60.560678][ T6472] IPVS: using max 38 ests per chain, 91200 per kthread
[   61.120690][ T6000] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   61.231141][ T6493] infiniband s
z1: set active
[   61.240311][ T6493] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   61.245955][ T6494] infiniband s
z1: set active
[   61.281158][ T6000] usb 5-1: Using ep0 maxpacket: 32
[   61.286338][ T6000] usb 5-1: config 1 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 91, changing to 10
[   61.289455][ T6000] usb 5-1: config 1 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[   61.294205][ T6000] usb 5-1: config 1 interface 0 has no altsetting 0
[   61.297612][ T6000] usb 5-1: New USB device found, idVendor=045e, idProduct=0750, bcdDevice= 0.40
[   61.300174][ T6000] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   61.302765][ T6000] usb 5-1: Product: syz
[   61.304007][ T6000] usb 5-1: Manufacturer: syz
[   61.305412][ T6000] usb 5-1: SerialNumber: syz
[   61.316574][   T57] lo speed is unknown, defaulting to 1000
[   61.319035][ T6001] lo speed is unknown, defaulting to 1000
[   61.555733][ T6000] usbhid 5-1:1.0: can't add hid device: -71
[   61.557691][ T6000] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[   61.568028][ T6000] usb 5-1: USB disconnect, device number 2
[   61.609141][ T6503] syz.0.121: vmalloc error: size 1847640064, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   61.613402][ T6503] CPU: 2 UID: 0 PID: 6503 Comm: syz.0.121 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[   61.616144][ T6503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.619121][ T6503] Call Trace:
[   61.620082][ T6503]  <TASK>
[   61.620927][ T6503]  dump_stack_lvl+0x16c/0x1f0
[   61.622237][ T6503]  warn_alloc+0x24d/0x3a0
[   61.623503][ T6503]  ? __pfx_warn_alloc+0x10/0x10
[   61.624911][ T6503]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   61.626610][ T6503]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   61.628123][ T6503]  ? kasan_save_stack+0x42/0x60
[   61.629471][ T6503]  ? kasan_save_stack+0x33/0x60
[   61.630811][ T6503]  ? kasan_save_track+0x14/0x30
[   61.632169][ T6503]  ? __kasan_kmalloc+0xaa/0xb0
[   61.633520][ T6503]  ? vb2_vmalloc_alloc+0xe2/0x3d0
[   61.634944][ T6503]  ? vb2_core_create_bufs+0x558/0xab0
[   61.636401][ T6503]  ? vb2_create_bufs+0x566/0x780
[   61.637778][ T6503]  ? vb2_ioctl_create_bufs+0x244/0x3e0
[   61.639326][ T6503]  __vmalloc_node_range_noprof+0x10df/0x1530
[   61.640939][ T6503]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   61.642327][ T6503]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   61.644071][ T6503]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   61.645502][ T6503]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   61.647069][ T6503]  vmalloc_user_noprof+0x6b/0x90
[   61.648453][ T6503]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   61.649834][ T6503]  vb2_vmalloc_alloc+0x11e/0x3d0
[   61.651187][ T6503]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   61.652658][ T6503]  __vb2_queue_alloc+0x896/0x1230
[   61.654055][ T6503]  ? vbi_out_queue_setup+0x1e3/0x2b0
[   61.655497][ T6503]  vb2_core_create_bufs+0x558/0xab0
[   61.656927][ T6503]  ? __pfx_vbi_out_queue_setup+0x10/0x10
[   61.658493][ T6503]  ? __pfx_vb2_core_create_bufs+0x10/0x10
[   61.660041][ T6503]  ? lock_acquire.part.0+0x11b/0x380
[   61.661480][ T6503]  vb2_create_bufs+0x566/0x780
[   61.662824][ T6503]  ? __pfx_vb2_create_bufs+0x10/0x10
[   61.664303][ T6503]  ? __video_do_ioctl+0x4a2/0xf00
[   61.665686][ T6503]  vb2_ioctl_create_bufs+0x244/0x3e0
[   61.667163][ T6503]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   61.668780][ T6503]  vidioc_create_bufs+0x7d/0xf0
[   61.670132][ T6503]  v4l_create_bufs+0x198/0x270
[   61.671487][ T6503]  __video_do_ioctl+0xaf0/0xf00
[   61.672813][ T6503]  ? __pfx___video_do_ioctl+0x10/0x10
[   61.674295][ T6503]  ? __kmalloc_noprof+0x23b/0x4f0
[   61.675708][ T6503]  ? video_usercopy+0x1b4/0x1520
[   61.677098][ T6503]  video_usercopy+0x427/0x1520
[   61.678433][ T6503]  ? __pfx___video_do_ioctl+0x10/0x10
[   61.679925][ T6503]  ? __pfx_video_usercopy+0x10/0x10
[   61.681324][ T6503]  v4l2_ioctl+0x1ba/0x250
[   61.682481][ T6503]  ? __fget_files+0x191/0x3a0
[   61.683787][ T6503]  v4l2_compat_ioctl32+0x214/0x2c0
[   61.685205][ T6503]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[   61.686791][ T6503]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   61.688255][ T6503]  __do_fast_syscall_32+0x73/0x120
[   61.689672][ T6503]  do_fast_syscall_32+0x32/0x80
[   61.691010][ T6503]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   61.692775][ T6503] RIP: 0023:0xf7f65579
[   61.693959][ T6503] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   61.699241][ T6503] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   61.701522][ T6503] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c0f8565c
[   61.703617][ T6503] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[   61.705725][ T6503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   61.707959][ T6503] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   61.710194][ T6503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   61.712709][ T6503]  </TASK>
[   61.719793][ T6503] Mem-Info:
[   61.720888][ T6503] active_anon:4901 inactive_anon:0 isolated_anon:0
[   61.720888][ T6503]  active_file:4990 inactive_file:34809 isolated_file:0
[   61.720888][ T6503]  unevictable:1768 dirty:1003 writeback:0
[   61.720888][ T6503]  slab_reclaimable:9933 slab_unreclaimable:56136
[   61.720888][ T6503]  mapped:23959 shmem:2488 pagetables:662
[   61.720888][ T6503]  sec_pagetables:293 bounce:0
[   61.720888][ T6503]  kernel_misc_reclaimable:0
[   61.720888][ T6503]  free:68955 free_pcp:1175 free_cma:0
[   61.736313][ T6503] Node 0 active_anon:3216kB inactive_anon:0kB active_file:13252kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5280kB dirty:4kB writeback:0kB shmem:4396kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9412kB pagetables:564kB sec_pagetables:1112kB all_unreclaimable? yes
[   61.747104][ T6503] Node 1 active_anon:16388kB inactive_anon:0kB active_file:6708kB inactive_file:139236kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:90556kB dirty:4008kB writeback:0kB shmem:5556kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4108kB pagetables:2084kB sec_pagetables:60kB all_unreclaimable? no
[   61.757945][ T6503] Node 0 DMA free:2972kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:16kB inactive_anon:0kB active_file:896kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:236kB local_pcp:20kB free_cma:0kB
[   61.766152][ T6503] lowmem_reserve[]: 0 296 0 0 0
[   61.767650][ T6503] Node 0 DMA32 free:23272kB boost:4096kB min:17768kB low:21184kB high:24600kB reserved_highatomic:4096KB active_anon:3200kB inactive_anon:0kB active_file:12356kB inactive_file:0kB unevictable:3536kB writepending:4kB present:1032196kB managed:303684kB mlocked:0kB bounce:0kB free_pcp:680kB local_pcp:328kB free_cma:0kB
[   61.780010][ T6503] lowmem_reserve[]: 0 0 0 0 0
[   61.783514][ T6503] Node 1 DMA32 free:248896kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:18392kB inactive_anon:0kB active_file:6708kB inactive_file:139236kB unevictable:3536kB writepending:4008kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:3552kB local_pcp:720kB free_cma:0kB
[   61.796127][ T6503] lowmem_reserve[]: 0 0 0 0 0
[   61.797467][ T6503] Node 0 DMA: 73*4kB (UME) 53*8kB (UME) 37*16kB (UME) 28*32kB (UME) 8*64kB (UME) 2*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2972kB
[   61.812346][ T6503] Node 0 DMA32: 494*4kB (UMH) 142*8kB (UMH) 32*16kB (UMEH) 187*32kB (UMEH) 71*64kB (UMEH) 25*128kB (UEH) 11*256kB (UMEH) 2*512kB (UE) 2*1024kB (UM) 0*2048kB 0*4096kB = 23240kB
[   61.818368][ T6503] Node 1 DMA32: 37*4kB (UME) 63*8kB (UME) 27*16kB (UE) 46*32kB (UME) 90*64kB (UME) 97*128kB (UME) 65*256kB (UM) 47*512kB (UME) 30*1024kB (UM) 17*2048kB (UME) 28*4096kB (UM) = 241660kB
[   61.827108][ T6503] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   61.836359][ T6503] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   61.839778][ T6503] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   61.843615][ T6503] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   61.846644][ T6503] 44188 total pagecache pages
[   61.848220][ T6503] 0 pages in swap cache
[   61.849406][ T6503] Free swap  = 124648kB
[   61.857634][ T6503] Total swap = 124996kB
[   61.866680][ T6503] 524155 pages RAM
[   61.870646][ T6503] 0 pages HighMem/MovableOnly
[   61.872115][ T6503] 207331 pages reserved
[   61.873286][ T6503] 0 pages cma reserved
[   61.938474][ T6514] team0 (unregistering): Port device team_slave_0 removed
[   61.949176][ T6514] team0 (unregistering): Port device team_slave_1 removed
[   62.299881][ T6537] netlink: 'syz.0.127': attribute type 4 has an invalid length.
[   62.371724][ T6539] lo speed is unknown, defaulting to 1000
[   62.569004][ T6191] bond0: (slave bond_slave_0): interface is now down
[   62.570233][ T6547] netlink: 'syz.0.131': attribute type 10 has an invalid length.
[   62.571023][ T6191] bond0: (slave bond_slave_1): interface is now down
[   62.572442][ T6191] bond0: now running without any active interface!
[   62.578694][ T6547] syz_tun: entered promiscuous mode
[   62.585693][ T6547] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   62.593454][ T6192] bond0: (slave syz_tun): interface is now down
[   62.596213][ T6192] bond0: now running without any active interface!
[   62.792439][   T39] audit: type=1326 audit(1737475515.672:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.798512][   T39] audit: type=1326 audit(1737475515.672:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.807480][   T39] audit: type=1326 audit(1737475515.672:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.813974][   T39] audit: type=1326 audit(1737475515.672:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.821010][ T6550] can0: slcan on ttyS3.
[   62.831245][   T39] audit: type=1326 audit(1737475515.682:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.839096][   T39] audit: type=1326 audit(1737475515.682:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.848472][   T39] audit: type=1326 audit(1737475515.682:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.857212][   T39] audit: type=1326 audit(1737475515.682:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.865563][   T39] audit: type=1326 audit(1737475515.682:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.876187][   T39] audit: type=1326 audit(1737475515.682:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.1.130" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[   62.981488][ T6549] can0 (unregistered): slcan off ttyS3.
[   63.366023][ T6566] wireguard0: entered promiscuous mode
[   63.422912][ T6571] process 'syz.1.138' launched '/dev/fd/3' with NULL argv: empty string added
[   63.428968][ T6571] __nla_validate_parse: 1 callbacks suppressed
[   63.428977][ T6571] netlink: 8 bytes leftover after parsing attributes in process `syz.1.138'.
[   63.504425][ T6572] netlink: 48 bytes leftover after parsing attributes in process `syz.1.138'.
[   64.023884][ T6578] netlink: 4 bytes leftover after parsing attributes in process `syz.0.140'.
[   64.150126][ T6584] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   64.179120][ T6588] IPv6: addrconf: prefix option has invalid lifetime
[   64.569570][ T6603] befs: Unknown parameter 'b±Fs	µÚì'
[   65.173361][ T6622] netlink: 20 bytes leftover after parsing attributes in process `syz.0.152'.
[   65.178621][ T6622] netlink: 164 bytes leftover after parsing attributes in process `syz.0.152'.
[   65.181510][ T6622] netlink: 164 bytes leftover after parsing attributes in process `syz.0.152'.
[   66.292928][ T6646] Cannot find map_set index 0 as target
[   66.884412][ T6000] libceph: connect (1)[c::]:6789 error -101
[   66.886178][ T6000] libceph: mon0 (1)[c::]:6789 connect error
[   66.899889][ T6666] netlink: 316 bytes leftover after parsing attributes in process `syz.2.165'.
[   66.928987][ T5944] Bluetooth: hci1: Malformed LE Event: 0x0d
[   67.019426][ T6671] netlink: 'syz.2.167': attribute type 1 has an invalid length.
[   67.038723][ T6671] bond1: entered promiscuous mode
[   67.041237][ T6671] 8021q: adding VLAN 0 to HW filter on device bond1
[   67.052692][ T6671] FAULT_INJECTION: forcing a failure.
[   67.052692][ T6671] name failslab, interval 1, probability 0, space 0, times 1
[   67.056647][ T6671] CPU: 0 UID: 0 PID: 6671 Comm: syz.2.167 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[   67.059516][ T6671] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.062563][ T6671] Call Trace:
[   67.063547][ T6671]  <TASK>
[   67.064384][ T6671]  dump_stack_lvl+0x16c/0x1f0
[   67.065800][ T6671]  should_fail_ex+0x497/0x5b0
[   67.067201][ T6671]  should_failslab+0xc2/0x120
[   67.068576][ T6671]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   67.070114][ T6671]  ? skb_clone+0x190/0x3f0
[   67.071460][ T6671]  skb_clone+0x190/0x3f0
[   67.072717][ T6671]  netlink_deliver_tap+0xafd/0xca0
[   67.074479][ T6671]  netlink_unicast+0x5e1/0x7f0
[   67.076167][ T6671]  ? __pfx_netlink_unicast+0x10/0x10
[   67.077708][ T6671]  ? __phys_addr_symbol+0x30/0x80
[   67.079193][ T6671]  ? __check_object_size+0x488/0x710
[   67.080709][ T6671]  netlink_sendmsg+0x8b8/0xd70
[   67.082079][ T6671]  ? __pfx_netlink_sendmsg+0x10/0x10
[   67.083642][ T6671]  ____sys_sendmsg+0x9ae/0xb40
[   67.085004][ T6671]  ? __pfx_____sys_sendmsg+0x10/0x10
[   67.086562][ T6671]  ? get_compat_msghdr+0x11b/0x170
[   67.088039][ T6671]  ___sys_sendmsg+0x135/0x1e0
[   67.089402][ T6671]  ? __pfx____sys_sendmsg+0x10/0x10
[   67.090910][ T6671]  ? __pfx_lock_release+0x10/0x10
[   67.092311][ T6671]  ? trace_lock_acquire+0x14e/0x1f0
[   67.093832][ T6671]  ? __fget_files+0x206/0x3a0
[   67.095202][ T6671]  __sys_sendmsg+0x16e/0x220
[   67.096564][ T6671]  ? __pfx___sys_sendmsg+0x10/0x10
[   67.098029][ T6671]  __do_fast_syscall_32+0x73/0x120
[   67.099514][ T6671]  do_fast_syscall_32+0x32/0x80
[   67.101089][ T6671]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   67.103020][ T6671] RIP: 0023:0xf7fd0579
[   67.104240][ T6671] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   67.110043][ T6671] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   67.112474][ T6671] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000280
[   67.114845][ T6671] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[   67.117186][ T6671] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   67.119457][ T6671] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   67.121660][ T6671] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.123969][ T6671]  </TASK>
[   67.152259][   T57] libceph: connect (1)[c::]:6789 error -101
[   67.155918][   T57] libceph: mon0 (1)[c::]:6789 connect error
[   67.400684][ T6671] 8021q: adding VLAN 0 to HW filter on device bond2
[   67.410228][ T6671] bond1: (slave bond2): making interface the new active one
[   67.430622][ T6671] bond2: entered promiscuous mode
[   67.432755][ T6671] bond1: (slave bond2): Enslaving as an active interface with an up link
[   67.499864][ T6653] ceph: No mds server is up or the cluster is laggy
[   67.625092][ T6683] netlink: 'syz.0.170': attribute type 1 has an invalid length.
[   67.710526][ T6683] bond3: entered promiscuous mode
[   67.713517][ T6683] 8021q: adding VLAN 0 to HW filter on device bond3
[   67.890939][ T6679] fuse: Unknown parameter '0x0000000000000008'
[   67.974094][ T6692] netlink: 4 bytes leftover after parsing attributes in process `syz.1.171'.
[   68.070619][ T6694] Driver unsupported XDP return value 0 on prog  (id 42) dev N/A, expect packet loss!
[   68.478395][ T6712] 9pnet_fd: Insufficient options for proto=fd
[   68.515892][ T6714] netlink: 48 bytes leftover after parsing attributes in process `syz.2.180'.
[   68.519071][ T6714] netlink: 48 bytes leftover after parsing attributes in process `syz.2.180'.
[   69.047490][ T6736] netlink: 28 bytes leftover after parsing attributes in process `syz.2.183'.
[   69.050377][ T6736] netlink: 28 bytes leftover after parsing attributes in process `syz.2.183'.
[   69.264871][   T57] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   69.410645][   T57] usb 5-1: Using ep0 maxpacket: 8
[   69.415017][   T57] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   69.418112][   T57] usb 5-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[   69.421897][   T57] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   69.424514][   T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.430894][   T57] usbtmc 5-1:16.0: bulk endpoints not found
[   69.787286][   T39] kauditd_printk_skb: 8 callbacks suppressed
[   69.787300][   T39] audit: type=1326 audit(1737475522.672:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.795563][ T6746] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   69.797892][   T39] audit: type=1326 audit(1737475522.672:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.799631][ T6746] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   69.807455][   T39] audit: type=1326 audit(1737475522.672:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.811303][ T6746] vhci_hcd vhci_hcd.0: Device attached
[   69.816893][   T39] audit: type=1326 audit(1737475522.682:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.828132][   T39] audit: type=1326 audit(1737475522.682:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.836159][   T39] audit: type=1326 audit(1737475522.682:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.844392][   T39] audit: type=1326 audit(1737475522.682:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.850494][   T39] audit: type=1326 audit(1737475522.682:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.857592][   T39] audit: type=1326 audit(1737475522.682:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.869316][   T39] audit: type=1326 audit(1737475522.682:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.2.188" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[   69.903049][  T101] Bluetooth: (null): Invalid header checksum
[   69.905013][  T101] Bluetooth: (null): Invalid header checksum
[   69.925160][ T6751] netlink: 8 bytes leftover after parsing attributes in process `syz.1.189'.
[   69.928105][ T6751] netlink: 8 bytes leftover after parsing attributes in process `syz.1.189'.
[   69.930731][ T6751] netlink: 8 bytes leftover after parsing attributes in process `syz.1.189'.
[   70.012936][ T6193] Bluetooth: (null): Invalid header checksum
[   70.050667][ T6278] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[   70.080719][ T5999] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   70.121883][ T6193] Bluetooth: (null): Invalid header checksum
[   70.232920][  T101] Bluetooth: (null): Invalid header checksum
[   70.260657][ T5999] usb 7-1: Using ep0 maxpacket: 16
[   70.268694][ T5999] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[   70.273195][ T5999] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   70.276186][ T5999] usb 7-1: Product: syz
[   70.277718][ T5999] usb 7-1: Manufacturer: syz
[   70.279431][ T5999] usb 7-1: SerialNumber: syz
[   70.284447][ T5999] usb 7-1: config 0 descriptor??
[   70.288976][ T5999] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected
[   70.295030][ T5999] usb 7-1: Detected FT232H
[   70.342291][ T6189] Bluetooth: (null): Invalid header checksum
[   70.451728][ T6188] Bluetooth: (null): Invalid header checksum
[   70.492788][ T6746] Bluetooth: Invalid esc byte 0x7f
[   70.498722][ T5999] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[   70.504687][ T5999] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[   70.507133][ T5999] ftdi_sio 7-1:0.0: GPIO initialisation failed: -71
[   70.511458][ T5999] usb 7-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   70.515923][ T6757] overlayfs: missing 'lowerdir'
[   70.516838][ T5999] usb 7-1: USB disconnect, device number 2
[   70.527722][ T5999] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   70.532338][ T5999] ftdi_sio 7-1:0.0: device disconnected
[   70.550801][ T6747] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 2
[   70.556773][ T6189] vhci_hcd: stop threads
[   70.558060][ T6189] vhci_hcd: release socket
[   70.563324][ T6189] vhci_hcd: disconnect device
[   70.763998][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[   70.766722][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[   70.810962][  T101] ip6erspan0: left promiscuous mode
[   71.286907][ T6769] input: syz1 as /devices/virtual/input/input5
[   71.475872][ T6766] lo speed is unknown, defaulting to 1000
[   71.554458][ T5944] Bluetooth: hci0: Malformed LE Event: 0x0d
[   72.142240][ T5999] usb 5-1: USB disconnect, device number 3
[   72.605977][ T6822] sctp: [Deprecated]: syz.0.213 (pid 6822) Use of struct sctp_assoc_value in delayed_ack socket option.
[   72.605977][ T6822] Use struct sctp_sack_info instead
[   72.617882][ T6822] netlink: 4 bytes leftover after parsing attributes in process `syz.0.213'.
[   72.766004][ T6831] netlink: 'syz.0.215': attribute type 1 has an invalid length.
[   72.788241][ T6831] bond4: entered promiscuous mode
[   72.790076][ T6831] 8021q: adding VLAN 0 to HW filter on device bond4
[   72.802245][ T6831] 8021q: adding VLAN 0 to HW filter on device bond5
[   72.808186][ T6831] bond4: (slave bond5): making interface the new active one
[   72.810442][ T6831] bond5: entered promiscuous mode
[   72.812629][ T6831] bond4: (slave bond5): Enslaving as an active interface with an up link
[   73.041027][ T6839] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   73.581065][ T6848] netlink: 12 bytes leftover after parsing attributes in process `syz.1.220'.
[   73.681719][ T6859] evm: overlay not supported
[   73.701680][ T6859] syz.2.221: attempt to access beyond end of device
[   73.701680][ T6859] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[   73.705704][ T6859] FAT-fs (nbd2): unable to read boot sector
[   74.179087][ T6870] netlink: 'syz.3.224': attribute type 10 has an invalid length.
[   74.185413][ T6870] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.188957][ T6870] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   74.221634][ T6872] input: syz1 as /devices/virtual/input/input6
[   74.783801][ T6887] netlink: 'syz.0.230': attribute type 1 has an invalid length.
[   74.792869][ T6887] 8021q: adding VLAN 0 to HW filter on device bond6
[   74.819700][ T6887] bond6: (slave veth3): Enslaving as an active interface with a down link
[   74.827902][ T6891] lo speed is unknown, defaulting to 1000
[   74.843830][ T6887] bond6: (slave ip6erspan0): making interface the new active one
[   74.846609][ T6887] ip6erspan0: entered promiscuous mode
[   74.848350][ T6887] bond6: (slave ip6erspan0): Enslaving as an active interface with an up link
[   74.889820][ T6895] netlink: 'syz.0.232': attribute type 12 has an invalid length.
[   74.892406][ T6895] netlink: 'syz.0.232': attribute type 29 has an invalid length.
[   74.894735][ T6895] netlink: 'syz.0.232': attribute type 2 has an invalid length.
[   74.896927][ T6895] netlink: 'syz.0.232': attribute type 2 has an invalid length.
[   74.899127][ T6895] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[   74.901458][ T6895] netlink: 'syz.0.232': attribute type 37 has an invalid length.
[   74.903691][ T6895] netlink: 'syz.0.232': attribute type 2 has an invalid length.
[   74.906461][ T6895] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.953452][ T6900] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   74.989847][ T6902] overlayfs: metacopy with no lower data found - abort lookup (/bus)
[   75.136456][ T6913] bridge0: port 3(hsr_slave_1) entered blocking state
[   75.138736][ T6913] bridge0: port 3(hsr_slave_1) entered disabled state
[   75.141777][ T6913] hsr_slave_1: entered allmulticast mode
[   75.150682][ T6278] vhci_hcd: vhci_device speed not set
[   75.152108][ T6913] hsr_slave_1: left allmulticast mode
[   75.692930][ T6922] 8021q: adding VLAN 0 to HW filter on device bond3
[   75.717803][ T6922] bond3: (slave veth3): Enslaving as an active interface with a down link
[   75.739031][ T6922] bond3: (slave ip6erspan0): making interface the new active one
[   75.741751][ T6922] ip6erspan0: entered promiscuous mode
[   75.743422][ T6922] bond3: (slave ip6erspan0): Enslaving as an active interface with an up link
[   76.067073][ T6939] usb usb8: usbfs: process 6939 (syz.0.247) did not claim interface 0 before use
[   76.073079][ T6939] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.080035][ T6939] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.082817][ T6939] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.085605][ T6939] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.088232][ T6939] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.092171][ T6939] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   76.097291][ T6939] netlink: 4 bytes leftover after parsing attributes in process `syz.0.247'.
[   76.100651][ T6939] bridge_slave_1: left allmulticast mode
[   76.102743][ T6939] bridge_slave_1: left promiscuous mode
[   76.104913][ T6939] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.114103][ T6939] bridge_slave_0: left allmulticast mode
[   76.116228][ T6939] bridge_slave_0: left promiscuous mode
[   76.118175][ T6939] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.121081][ T6190] bond0: (slave bridge0): interface is now down
[   76.140779][ T6189] bond0: (slave bridge0): interface is now down
[   76.160804][ T6189] bond0: (slave bridge0): interface is now down
[   76.180781][ T6189] bond0: (slave bridge0): interface is now down
[   76.200860][ T6189] bond0: (slave bridge0): interface is now down
[   76.215179][ T6939] bond0: (slave bridge0): Releasing backup interface
[   76.716799][ T6959] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[   76.734683][ T6960] lo speed is unknown, defaulting to 1000
[   76.754199][ T6959] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.756391][ T6959] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.128300][ T6981] tipc: Started in network mode
[   77.129764][ T6981] tipc: Node identity ac1414aa, cluster identity 4711
[   77.153078][ T6983] mmap: syz.0.262 (6983) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   77.157195][ T6981] tipc: Enabled bearer <udp:s>, priority 10
[   77.313751][ T6991] lo speed is unknown, defaulting to 1000
[   77.656027][ T6995] lo speed is unknown, defaulting to 1000
[   77.656520][ T6189] bond0: (slave bond_slave_0): interface is now down
[   77.662735][ T6189] bond0: (slave bond_slave_1): interface is now down
[   77.664682][ T6189] bond0: (slave batadv0): interface is now down
[   77.667687][ T6997] syz_tun: entered promiscuous mode
[   77.672677][ T6997] bond0: (slave syz_tun): Enslaving as an active interface with a down link
[   77.682488][ T6189] bond0: now running without any active interface!
[   77.729412][ T6995] sctp: [Deprecated]: syz.1.265 (pid 6995) Use of struct sctp_assoc_value in delayed_ack socket option.
[   77.729412][ T6995] Use struct sctp_sack_info instead
[   77.785524][ T7006] xt_CT: You must specify a L4 protocol and not use inversions on it
[   77.809199][ T5944] Bluetooth: hci0: unexpected event 0x03 length: 17 > 11
[   77.822907][ T7007] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   78.151529][  T834] tipc: Node number set to 2886997162
[   78.527746][ T7021] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   78.534307][ T7021] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[   78.536249][ T7021] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   78.539027][ T7021] vhci_hcd vhci_hcd.0: Device attached
[   78.720802][ T5999] vhci_hcd: vhci_device speed not set
[   78.741006][   T39] kauditd_printk_skb: 65 callbacks suppressed
[   78.741016][   T39] audit: type=1326 audit(1737475531.632:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.748785][   T39] audit: type=1326 audit(1737475531.632:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.810301][   T39] audit: type=1326 audit(1737475531.632:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.817804][   T39] audit: type=1326 audit(1737475531.632:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.825480][   T39] audit: type=1326 audit(1737475531.632:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.832074][   T39] audit: type=1326 audit(1737475531.632:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.838149][   T39] audit: type=1326 audit(1737475531.632:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.844383][ T5999] usb 41-1: new full-speed USB device number 4 using vhci_hcd
[   78.850745][   T39] audit: type=1326 audit(1737475531.632:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.856772][   T39] audit: type=1326 audit(1737475531.632:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   78.971661][   T39] audit: type=1326 audit(1737475531.632:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.0.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[   79.108295][ T7027] netlink: 4 bytes leftover after parsing attributes in process `syz.3.274'.
[   79.621514][ T7022] vhci_hcd: connection reset by peer
[   79.625532][ T6190] vhci_hcd: stop threads
[   79.628612][ T6190] vhci_hcd: release socket
[   79.631060][ T6190] vhci_hcd: disconnect device
[   79.665747][ T7038] netlink: 4 bytes leftover after parsing attributes in process `syz.0.278'.
[   79.800701][ T5944] Bluetooth: hci0: command tx timeout
[   79.952405][ T7045] wireguard0: entered promiscuous mode
[   80.724813][ T7075] validate_nla: 5 callbacks suppressed
[   80.724824][ T7075] netlink: 'syz.0.288': attribute type 4 has an invalid length.
[   80.862986][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   80.871187][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   80.873696][   T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   80.876571][   T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   80.879121][   T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   80.881474][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   80.899076][ T7080] lo speed is unknown, defaulting to 1000
[   80.991592][ T7080] chnl_net:caif_netlink_parms(): no params data found
[   81.021125][ T1337] cfg80211: failed to load regulatory.db
[   81.037151][ T7080] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.039335][ T7080] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.042161][ T7080] bridge_slave_0: entered allmulticast mode
[   81.044359][ T7080] bridge_slave_0: entered promiscuous mode
[   81.047734][ T7080] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.049869][ T7080] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.052368][ T7080] bridge_slave_1: entered allmulticast mode
[   81.054704][ T7080] bridge_slave_1: entered promiscuous mode
[   81.072791][ T7080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.076696][ T7080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.096461][ T7080] team0: Port device team_slave_0 added
[   81.099283][ T7080] team0: Port device team_slave_1 added
[   81.117568][ T7080] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.119583][ T7080] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.127212][ T7080] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.132130][ T7080] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.134463][ T7080] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.143437][ T7080] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.167926][ T7080] hsr_slave_0: entered promiscuous mode
[   81.170106][ T7080] hsr_slave_1: entered promiscuous mode
[   81.172163][ T7080] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   81.175106][ T7080] Cannot create hsr debugfs directory
[   81.241408][ T7080] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   81.244910][ T7080] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   81.248167][ T7080] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   81.252533][ T7080] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   81.261008][ T7080] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.263071][ T7080] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.265201][ T7080] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.267243][ T7080] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.290888][ T7080] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.297960][ T6189] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.304165][ T6189] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.315606][ T7080] 8021q: adding VLAN 0 to HW filter on device team0
[   81.328184][ T6189] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.330901][ T6189] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.337874][ T6193] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.340725][ T6193] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.423795][ T7080] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.520126][ T7080] veth0_vlan: entered promiscuous mode
[   81.524585][ T7080] veth1_vlan: entered promiscuous mode
[   81.545803][ T7080] veth0_macvtap: entered promiscuous mode
[   81.548712][ T7080] veth1_macvtap: entered promiscuous mode
[   81.556056][ T7107] netlink: 4 bytes leftover after parsing attributes in process `syz.3.293'.
[   81.557077][ T7105] netlink: 'syz.1.292': attribute type 1 has an invalid length.
[   81.558984][ T7080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.565008][ T7080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.567754][ T7080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.570946][ T7080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.573766][ T7080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.576664][ T7080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.579289][ T7080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.582369][ T7080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.585862][ T7080] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.595825][ T7105] bond1: entered promiscuous mode
[   81.597403][ T7105] 8021q: adding VLAN 0 to HW filter on device bond1
[   81.606922][ T7080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.609902][ T7080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.613115][ T7080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.616041][ T7080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.618738][ T7080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.621747][ T7080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.624397][ T7080] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.627294][ T7080] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.630955][ T7080] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.635687][ T7080] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.635704][ T7080] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.635717][ T7080] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.635730][ T7080] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.682908][ T6178] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.682920][ T6178] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.698049][  T101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.698062][  T101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.710201][ T6178] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.193830][ T6178] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.280094][ T6178] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.283394][ T7126] tipc: Started in network mode
[   82.283423][ T7126] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   82.284743][ T7126] tipc: Enabled bearer <eth:team0>, priority 0
[   82.295839][ T7125] can0: slcan on ptm0.
[   82.334336][ T6178] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.435655][ T6178] bridge_slave_1: left allmulticast mode
[   82.435696][ T6178] bridge_slave_1: left promiscuous mode
[   82.436376][ T6178] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.454704][ T6178] bridge_slave_0: left allmulticast mode
[   82.454717][ T6178] bridge_slave_0: left promiscuous mode
[   82.458704][ T6178] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.550746][   T57] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   82.603161][ T6178] bond3 (unregistering): (slave ip6erspan0): Releasing active interface
[   82.605589][ T6178] ip6erspan0 (unregistering): left promiscuous mode
[   82.657761][ T7138] netlink: 48 bytes leftover after parsing attributes in process `syz.1.301'.
[   82.667650][ T7138] netlink: 48 bytes leftover after parsing attributes in process `syz.1.301'.
[   82.703041][   T57] usb 5-1: config 0 has an invalid interface number: 255 but max is 0
[   82.705411][   T57] usb 5-1: config 0 has no interface number 0
[   82.707191][   T57] usb 5-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[   82.710317][   T57] usb 5-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[   82.715643][   T57] usb 5-1: config 0 interface 255 has no altsetting 0
[   82.719014][   T57] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[   82.721686][   T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.724020][   T57] usb 5-1: Product: syz
[   82.725324][   T57] usb 5-1: Manufacturer: syz
[   82.726776][   T57] usb 5-1: SerialNumber: syz
[   82.730995][   T57] usb 5-1: config 0 descriptor??
[   82.831061][ T6178] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   82.834945][ T6178] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.838377][ T6178] bond0 (unregistering): Released all slaves
[   82.906272][ T6178] bond1 (unregistering): (slave bond2): Releasing backup interface
[   82.908645][ T6178] bond2 (unregistering): left promiscuous mode
[   82.911164][ T6178] bond1 (unregistering): Released all slaves
[   82.933585][ T5944] Bluetooth: hci0: command tx timeout
[   82.950260][  T833] usb 5-1: USB disconnect, device number 4
[   83.006807][ T6178] bond2 (unregistering): Released all slaves
[   83.063584][ T6178] bond3 (unregistering): (slave veth3): Releasing active interface
[   83.067059][ T6178] bond3 (unregistering): Released all slaves
[   83.081197][ T7140] netlink: 19 bytes leftover after parsing attributes in process `syz.4.300'.
[   83.211732][ T7124] can0 (unregistered): slcan off ptm0.
[   83.411962][ T1337] tipc: Node number set to 11578026
[   83.498108][ T6178] hsr_slave_0: left promiscuous mode
[   83.507103][ T6178] hsr_slave_1: left promiscuous mode
[   83.509395][ T6178] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.511780][ T6178] batman_adv: batadv0: Removing interface: batadv_slave_0
[   83.516060][ T6178] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   83.518158][ T6178] batman_adv: batadv0: Removing interface: batadv_slave_1
[   83.521109][ T7176] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   83.574719][ T6178] veth1_macvtap: left promiscuous mode
[   83.576581][ T6178] veth0_macvtap: left promiscuous mode
[   83.579102][ T6178] veth1_vlan: left promiscuous mode
[   83.580996][ T6178] veth0_vlan: left promiscuous mode
[   83.618835][ T6178] infiniband s
z1: set down
[   83.906906][ T7193] IPVS: set_ctl: invalid protocol: 60 0.0.0.0:20004
[   83.950645][ T5999] vhci_hcd: vhci_device speed not set
[   83.961473][ T7195] netlink: 8 bytes leftover after parsing attributes in process `syz.4.310'.
[   83.964143][ T7195] netlink: 8 bytes leftover after parsing attributes in process `syz.4.310'.
[   83.966650][ T7195] netlink: 8 bytes leftover after parsing attributes in process `syz.4.310'.
[   84.206703][ T7213] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   84.209303][ T7213] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   84.313691][ T6178] team0 (unregistering): Port device team_slave_1 removed
[   84.387778][ T6178] team0 (unregistering): Port device team_slave_0 removed
[   84.515560][   T39] kauditd_printk_skb: 7 callbacks suppressed
[   84.515570][   T39] audit: type=1326 audit(1737475537.402:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.527735][   T39] audit: type=1326 audit(1737475537.402:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.537503][   T39] audit: type=1326 audit(1737475537.402:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.543761][   T39] audit: type=1326 audit(1737475537.402:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.549768][   T39] audit: type=1326 audit(1737475537.402:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.556500][   T39] audit: type=1326 audit(1737475537.402:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.562705][   T39] audit: type=1326 audit(1737475537.402:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.569749][   T39] audit: type=1326 audit(1737475537.402:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.576099][   T39] audit: type=1326 audit(1737475537.402:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.582277][   T39] audit: type=1326 audit(1737475537.402:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.4.313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[   84.950964][  T101] smc: removing ib device s
z1
[   84.963818][ T7184] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.966031][ T7184] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.973598][ T7186] can0: slcan on ptm0.
[   84.989753][ T1337] lo speed is unknown, defaulting to 1000
[   85.001108][ T5944] Bluetooth: hci0: command tx timeout
[   85.062962][ T7186] can0 (unregistered): slcan off ptm0.
[   85.511690][ T7277] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   85.514291][ T7277] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   85.874609][ T7291] sctp: [Deprecated]: syz.0.330 (pid 7291) Use of struct sctp_assoc_value in delayed_ack socket option.
[   85.874609][ T7291] Use struct sctp_sack_info instead
[   85.886220][ T7291] netlink: 4 bytes leftover after parsing attributes in process `syz.0.330'.
[   85.939786][ T7298] vivid-002: disconnect
[   86.002074][ T7310] netlink: 32 bytes leftover after parsing attributes in process `syz.0.332'.
[   86.260839][ T6191] ip6erspan0: left promiscuous mode
[   86.383304][ T7338] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   86.519904][ T7283] vivid-002: reconnect
[   86.630126][ T7345] netlink: 'syz.4.341': attribute type 12 has an invalid length.
[   86.632630][ T7345] netlink: 'syz.4.341': attribute type 29 has an invalid length.
[   86.634970][ T7345] netlink: 'syz.4.341': attribute type 2 has an invalid length.
[   86.637276][ T7345] netlink: 'syz.4.341': attribute type 2 has an invalid length.
[   86.639555][ T7345] netlink: 'syz.4.341': attribute type 1 has an invalid length.
[   86.642339][ T7345] netlink: 'syz.4.341': attribute type 37 has an invalid length.
[   86.644670][ T7345] netlink: 'syz.4.341': attribute type 2 has an invalid length.
[   86.647443][ T7345] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.694190][ T7350] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   86.695050][ T7346] syz.3.340: attempt to access beyond end of device
[   86.695050][ T7346] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[   86.704168][ T7346] FAT-fs (nbd3): unable to read boot sector
[   86.954433][ T7360] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   86.956999][ T7360] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   87.080630][ T5944] Bluetooth: hci0: command tx timeout
[   87.421675][ T7374] warning: `syz.0.348' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   87.635917][ T7386] netlink: 100 bytes leftover after parsing attributes in process `syz.4.353'.
[   87.641853][ T7386] =======================================================
[   87.641853][ T7386] WARNING: The mand mount option has been deprecated and
[   87.641853][ T7386]          and is ignored by this kernel. Remove the mand
[   87.641853][ T7386]          option from the mount to silence this warning.
[   87.641853][ T7386] =======================================================
[   87.673312][ T7386] syzkaller0: entered promiscuous mode
[   87.674946][ T7386] syzkaller0: entered allmulticast mode
[   88.679860][ T7404] usb usb8: usbfs: process 7404 (syz.3.359) did not claim interface 0 before use
[   88.683189][ T7404] netlink: 'syz.3.359': attribute type 10 has an invalid length.
[   88.735416][ T7406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.359'.
[   88.777899][ T7391] bridge_slave_0: entered promiscuous mode
[   88.785851][ T7404] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.800727][ T7404] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.802873][ T7404] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.806345][ T7404] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   88.809009][ T7406] bridge_slave_0: left allmulticast mode
[   88.810841][ T7406] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.821997][ T6191] bond0: (slave bridge0): interface is now down
[   88.831150][ T7406] bond0: (slave bridge0): Releasing backup interface
[   89.013025][ T7418] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   89.015467][ T7418] IPv6: NLM_F_CREATE should be set when creating new route
[   89.082684][ T7421] netlink: 'syz.1.364': attribute type 1 has an invalid length.
[   89.101662][ T7421] 8021q: adding VLAN 0 to HW filter on device bond2
[   89.115399][ T7419] overlayfs: missing 'lowerdir'
[   89.126412][ T7421] bond2: (slave veth3): Enslaving as an active interface with a down link
[   89.138838][ T7421] bond2: (slave ip6erspan0): making interface the new active one
[   89.141588][ T7421] ip6erspan0: entered promiscuous mode
[   89.143431][ T7421] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link
[   89.161031][ T5944] Bluetooth: hci0: command tx timeout
[   89.343330][ T7434] tipc: Resetting bearer <eth:team0>
[   89.363651][ T7434] tipc: Disabling bearer <eth:team0>
[   89.388280][ T7434] team0 (unregistering): Port device team_slave_0 removed
[   89.394928][ T7434] team0 (unregistering): Port device team_slave_1 removed
[   89.411570][  T101] bond0: (slave bond_slave_0): interface is now down
[   89.412847][ T7436] netlink: 'syz.1.369': attribute type 10 has an invalid length.
[   89.413621][  T101] bond0: (slave bond_slave_1): interface is now down
[   89.430641][  T101] bond0: (slave bond_slave_0): interface is now down
[   89.430983][ T7436] syz_tun: entered promiscuous mode
[   89.433164][  T101] bond0: (slave bond_slave_1): interface is now down
[   89.437105][ T7436] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   89.460655][ T6189] bond0: (slave bond_slave_0): interface is now down
[   89.462651][ T6189] bond0: (slave bond_slave_1): interface is now down
[   89.464531][ T6189] bond0: (slave syz_tun): interface is now down
[   89.468768][ T6189] bond0: now running without any active interface!
[   89.565265][ T7440] syz_tun: left promiscuous mode
[   89.588569][ T7443] xt_CT: You must specify a L4 protocol and not use inversions on it
[   89.743705][ T7452] netlink: 36 bytes leftover after parsing attributes in process `syz.4.375'.
[   90.051022][ T7477] IPv6: addrconf: prefix option has invalid lifetime
[   90.309374][ T7491] overlayfs: missing 'lowerdir'
[   90.431602][ T7478] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   90.888578][ T7514] netlink: 20 bytes leftover after parsing attributes in process `syz.0.392'.
[   90.894832][ T7514] netlink: 164 bytes leftover after parsing attributes in process `syz.0.392'.
[   90.897507][ T7514] netlink: 164 bytes leftover after parsing attributes in process `syz.0.392'.
[   91.036336][ T7525] slcan: can't register candev
[   91.037812][ T7525] Falling back ldisc for ptm0.
[   91.044646][ T7528] Cannot find map_set index 0 as target
[   91.190955][ T7537] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[   91.192874][ T7537] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   91.196415][ T7537] vhci_hcd vhci_hcd.0: Device attached
[   91.370767][ T1337] vhci_hcd: vhci_device speed not set
[   91.431355][ T1337] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[   91.952454][ T7538] vhci_hcd: connection reset by peer
[   91.991785][  T101] vhci_hcd: stop threads
[   91.993565][  T101] vhci_hcd: release socket
[   91.995426][  T101] vhci_hcd: disconnect device
[   92.306937][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   92.313479][ T7553] wireguard0: entered promiscuous mode
[   92.313727][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   92.320157][   T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   92.328221][   T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   92.337745][   T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   92.340775][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   92.453158][ T7558] chnl_net:caif_netlink_parms(): no params data found
[   92.507591][ T7558] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.509730][ T7558] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.512388][ T7558] bridge_slave_0: entered allmulticast mode
[   92.514694][ T7558] bridge_slave_0: entered promiscuous mode
[   92.517259][ T7558] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.519458][ T7558] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.521860][ T7558] bridge_slave_1: entered allmulticast mode
[   92.532992][ T7558] bridge_slave_1: entered promiscuous mode
[   92.560101][ T7558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.565542][ T7558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.589630][ T7558] team0: Port device team_slave_0 added
[   92.593258][ T7558] team0: Port device team_slave_1 added
[   92.613806][ T7558] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.615855][ T7558] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.626199][ T7558] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.630765][ T7558] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.633080][ T7558] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.640808][ T7558] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.672728][ T7558] hsr_slave_0: entered promiscuous mode
[   92.675907][ T7558] hsr_slave_1: entered promiscuous mode
[   92.799506][ T7558] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   92.814739][ T7558] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   92.819358][ T7558] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   92.823548][ T7558] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   92.836123][ T7558] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.838244][ T7558] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.840402][ T7558] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.842533][ T7558] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.873330][ T7558] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.881172][  T101] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.885473][  T101] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.899012][ T7558] 8021q: adding VLAN 0 to HW filter on device team0
[   92.906006][  T101] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.908140][  T101] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.913593][  T101] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.915644][  T101] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.040448][ T7558] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.072175][ T7593] netlink: 4 bytes leftover after parsing attributes in process `syz.0.409'.
[   93.114167][ T7597] vlan3: entered promiscuous mode
[   93.158247][ T7558] veth0_vlan: entered promiscuous mode
[   93.164891][ T7558] veth1_vlan: entered promiscuous mode
[   93.176700][ T7558] veth0_macvtap: entered promiscuous mode
[   93.179836][ T7558] veth1_macvtap: entered promiscuous mode
[   93.189680][ T7558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.193143][ T7558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.196004][ T7558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.199753][ T7558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.203171][ T7558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.206241][ T7558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.209131][ T7558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.212405][ T7558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.215839][ T7558] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.219823][ T7558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.223301][ T7558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.226276][ T7558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.229342][ T7558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.232573][ T7558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.235665][ T7558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.238491][ T7558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.241631][ T7558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.245394][ T7558] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.255645][ T7558] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.259177][ T7558] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.262830][ T7558] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.265533][ T7558] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.299492][ T6176] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.357931][ T6193] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.360224][ T6193] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.374372][ T6178] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.376678][ T6178] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.396577][ T6176] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.499612][ T7615] netlink: 48 bytes leftover after parsing attributes in process `syz.5.414'.
[   93.503417][ T7615] netlink: 48 bytes leftover after parsing attributes in process `syz.5.414'.
[   93.614670][ T6176] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.732576][ T7629] sctp: [Deprecated]: syz.3.420 (pid 7629) Use of struct sctp_assoc_value in delayed_ack socket option.
[   93.732576][ T7629] Use struct sctp_sack_info instead
[   93.738330][   T57] hid-generic 0000:0000:0000.0002: item fetching failed at offset 0/1
[   93.746213][   T57] hid-generic 0000:0000:0000.0002: probe with driver hid-generic failed with error -22
[   93.751540][ T7629] sctp: [Deprecated]: syz.3.420 (pid 7629) Use of struct sctp_assoc_value in delayed_ack socket option.
[   93.751540][ T7629] Use struct sctp_sack_info instead
[   93.757376][ T7629] netlink: 48 bytes leftover after parsing attributes in process `syz.3.420'.
[   93.758885][ T6176] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.766358][ T7629] netlink: 'syz.3.420': attribute type 1 has an invalid length.
[   93.992395][ T6176] bridge_slave_1: left allmulticast mode
[   93.995771][ T6176] bridge_slave_1: left promiscuous mode
[   93.998605][ T6176] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.007339][ T6176] bridge_slave_0: left allmulticast mode
[   94.009252][ T6176] bridge_slave_0: left promiscuous mode
[   94.014910][ T6176] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.407132][ T6176] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   94.414632][ T6176] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   94.425485][ T6176] bond0 (unregistering): Released all slaves
[   94.441242][ T5944] Bluetooth: hci0: command tx timeout
[   94.676798][ T7658] netlink: 8 bytes leftover after parsing attributes in process `syz.3.424'.
[   94.683816][ T7658] netlink: 64 bytes leftover after parsing attributes in process `syz.3.424'.
[   94.848704][ T7676] input: syz1 as /devices/virtual/input/input7
[   94.888466][ T6176] hsr_slave_0: left promiscuous mode
[   94.898700][ T6176] hsr_slave_1: left promiscuous mode
[   94.909960][ T6176] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   94.913785][ T6176] batman_adv: batadv0: Removing interface: batadv_slave_0
[   94.917757][ T6176] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   94.920953][ T6176] batman_adv: batadv0: Removing interface: batadv_slave_1
[   94.937207][ T7682] netlink: 28 bytes leftover after parsing attributes in process `syz.1.434'.
[   94.960258][ T6176] veth1_macvtap: left promiscuous mode
[   94.962724][ T6176] veth0_macvtap: left promiscuous mode
[   94.965138][ T6176] veth1_vlan: left promiscuous mode
[   94.967455][ T6176] veth0_vlan: left promiscuous mode
[   95.114850][ T7692] netlink: 4 bytes leftover after parsing attributes in process `syz.3.433'.
[   95.282529][ T7697] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   95.881603][ T6176] team0 (unregistering): Port device team_slave_1 removed
[   95.997348][ T6176] team0 (unregistering): Port device team_slave_0 removed
[   96.099004][ T7718] sctp: [Deprecated]: syz.1.443 (pid 7718) Use of struct sctp_assoc_value in delayed_ack socket option.
[   96.099004][ T7718] Use struct sctp_sack_info instead
[   96.137385][ T7718] netlink: 4 bytes leftover after parsing attributes in process `syz.1.443'.
[   96.512075][ T1337] vhci_hcd: vhci_device speed not set
[   96.520819][ T5944] Bluetooth: hci0: command tx timeout
[   96.524179][ T7680] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[   96.648602][ T7732] netlink: 'syz.5.446': attribute type 1 has an invalid length.
[   96.657734][ T7732] bond1 (unregistering): Released all slaves
[   96.794814][ T7752] can0: slcan on ttyS3.
[   96.951535][ T7752] can0 (unregistered): slcan off ttyS3.
[   96.964832][ T7769] netlink: 'syz.3.454': attribute type 10 has an invalid length.
[   96.976872][ T7771] netlink: 12 bytes leftover after parsing attributes in process `syz.5.455'.
[   96.985318][ T7771] bridge_slave_1: left allmulticast mode
[   96.987662][ T7771] bridge_slave_1: left promiscuous mode
[   96.990046][ T7771] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.086795][ T7788] sch_tbf: burst 0 is lower than device lo mtu (18) !
[   97.165109][ T7802] netlink: 24 bytes leftover after parsing attributes in process `syz.5.462'.
[   97.191716][ T7802] netdevsim netdevsim5 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   97.197918][ T7802] netdevsim netdevsim5 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   97.200667][ T7802] netdevsim netdevsim5 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   97.204621][ T7802] netdevsim netdevsim5 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   97.409187][ T7817] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   98.252212][ T7867] loop7: detected capacity change from 0 to 16384
[   98.611187][ T5944] Bluetooth: hci0: command tx timeout
[   98.900072][   T39] kauditd_printk_skb: 7 callbacks suppressed
[   98.900087][   T39] audit: type=1326 audit(1737475551.782:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.5.472" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7fc00000
[   99.092404][   T39] audit: type=1326 audit(1737475551.982:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.5.472" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf708e579 code=0x7fc00000
[   99.185697][ T7906] netlink: 8 bytes leftover after parsing attributes in process `syz.1.478'.
[   99.188442][ T7906] netlink: 24 bytes leftover after parsing attributes in process `syz.1.478'.
[   99.238730][ T7916] syz.0.479: attempt to access beyond end of device
[   99.238730][ T7916] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[   99.244495][ T7916] FAT-fs (nbd0): unable to read boot sector
[   99.273572][ T7925] netlink: 4 bytes leftover after parsing attributes in process `syz.1.482'.
[   99.350228][ T7936] tun0: tun_chr_ioctl cmd 1074025675
[   99.351911][ T7936] tun0: persist enabled
[   99.353238][ T7936] tun0: tun_chr_ioctl cmd 1074025675
[   99.354991][ T7936] tun0: persist enabled
[   99.375346][ T7941] netlink: 'syz.5.486': attribute type 1 has an invalid length.
[   99.597191][   T39] audit: type=1800 audit(1737475552.482:131): pid=7958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.487" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   99.849527][ T6178] bond0: (slave bond_slave_0): interface is now down
[   99.850108][ T7967] netlink: 'syz.5.489': attribute type 10 has an invalid length.
[   99.854678][ T6178] bond0: (slave bond_slave_1): interface is now down
[   99.863715][ T7967] syz_tun: entered promiscuous mode
[   99.869813][ T7967] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   99.883954][ T6176] bond0: (slave bond_slave_0): interface is now down
[   99.886435][ T6176] bond0: (slave bond_slave_1): interface is now down
[   99.888982][ T6176] bond0: (slave syz_tun): interface is now down
[   99.899092][ T6176] bond0: now running without any active interface!
[  100.180665][ T6000] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  100.331969][ T6000] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  100.334566][ T6000] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  100.337528][ T6000] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  100.340131][ T6000] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  100.344998][ T6000] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  100.349071][ T6000] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  100.351859][ T6000] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  100.354212][ T6000] usb 10-1: Product: syz
[  100.355469][ T6000] usb 10-1: Manufacturer: syz
[  100.363060][ T6000] cdc_wdm 10-1:1.0: skipping garbage
[  100.364595][ T6000] cdc_wdm 10-1:1.0: skipping garbage
[  100.370372][ T6000] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  100.372447][ T6000] cdc_wdm 10-1:1.0: Unknown control protocol
[  100.441096][ T7977] usb usb8: usbfs: process 7977 (syz.1.492) did not claim interface 0 before use
[  100.445893][ T7977] netlink: 'syz.1.492': attribute type 10 has an invalid length.
[  100.468949][ T7977] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.471892][ T7977] bridge0: port 2(bridge_slave_1) entered forwarding state
[  100.474909][ T7977] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.477725][ T7977] bridge0: port 1(bridge_slave_0) entered forwarding state
[  100.482333][ T7977] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  100.489435][ T7977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.492'.
[  100.493055][ T7977] bridge_slave_1: left allmulticast mode
[  100.494764][ T7977] bridge_slave_1: left promiscuous mode
[  100.496821][ T7977] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.502106][ T6176] bond0: (slave bridge0): interface is now down
[  100.502282][ T7977] bridge_slave_0: left allmulticast mode
[  100.506210][ T7977] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.530849][ T6189] bond0: (slave bridge0): interface is now down
[  100.536704][ T7977] bond0: (slave bridge0): Releasing backup interface
[  100.565059][ T7971] cdc_wdm 10-1:1.0: Error submitting int urb - -90
[  100.568173][ T1337] usb 10-1: USB disconnect, device number 2
[  100.664279][ T7987] xt_CT: You must specify a L4 protocol and not use inversions on it
[  100.680672][ T5944] Bluetooth: hci0: command tx timeout
[  100.730286][ T7989] netlink: 36 bytes leftover after parsing attributes in process `syz.3.497'.
[  100.741412][ T6176] ip6erspan0: left promiscuous mode
[  101.469953][ T8030] IPv6: addrconf: prefix option has invalid lifetime
[  101.677665][ T8046] tipc: Enabled bearer <udp:s>, priority 10
[  102.262589][ T8052] cdrom: dropping to single frame dma
[  102.275990][ T8059] netlink: 'syz.5.516': attribute type 4 has an invalid length.
[  102.282875][ T8061] IPv6: addrconf: prefix option has invalid lifetime
[  102.820093][ T8076] overlay: filesystem on ./bus not supported as upperdir
[  102.937422][ T8079] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  103.415321][ T8103] syz_tun: left promiscuous mode
[  103.447227][ T8105] netlink: 'syz.5.526': attribute type 6 has an invalid length.
[  103.723099][ T8116] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  103.946136][ T8126] netlink: 20 bytes leftover after parsing attributes in process `syz.3.534'.
[  103.950802][ T8126] netlink: 164 bytes leftover after parsing attributes in process `syz.3.534'.
[  103.953369][ T8126] netlink: 164 bytes leftover after parsing attributes in process `syz.3.534'.
[  104.000971][ T8128] input: syz1 as /devices/virtual/input/input8
[  104.033717][   T57] e1000 0000:00:06.0 eth0: Reset adapter
[  104.133123][ T8136] syz.3.535 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  104.193006][ T8141] Cannot find map_set index 0 as target
[  104.444322][ T8165] netlink: 4 bytes leftover after parsing attributes in process `syz.1.541'.
[  106.201813][ T6000] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  113.876059][ T8252] ata3.00: invalid multi_count 1 ignored
[  113.916167][ T8260] IPVS: Error joining to the multicast group
[  113.983205][ T8268] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  114.039973][ T8270] sctp: [Deprecated]: syz.1.548 (pid 8270) Use of struct sctp_assoc_value in delayed_ack socket option.
[  114.039973][ T8270] Use struct sctp_sack_info instead
[  114.195143][ T8270] netlink: 4 bytes leftover after parsing attributes in process `syz.1.548'.
[  114.316435][ T8291] netlink: 12 bytes leftover after parsing attributes in process `syz.0.553'.
[  114.410458][ T8294] netlink: 'syz.3.555': attribute type 10 has an invalid length.
[  114.459578][ T8296] netlink: 12 bytes leftover after parsing attributes in process `syz.3.556'.
[  114.474761][ T8296] bridge0: port 1(bridge_slave_1) entered blocking state
[  114.477030][ T8296] bridge0: port 1(bridge_slave_1) entered disabled state
[  114.479068][ T8296] bridge_slave_1: entered allmulticast mode
[  114.481393][ T8296] bridge_slave_1: entered promiscuous mode
[  114.580443][ T8306] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  114.882772][ T8318] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  115.132143][ T8325] wireguard0: entered promiscuous mode
[  115.402404][ T8337] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  116.093795][ T8363] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.097166][ T8363] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  116.177301][ T8363] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.181101][ T8363] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  116.303295][ T8363] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.307308][ T8363] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  116.419516][ T8363] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.423793][ T8363] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  116.553405][ T8363] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  116.556985][ T8363] netdevsim netdevsim5 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  116.564173][ T8363] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  116.567439][ T8363] netdevsim netdevsim5 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  116.573742][ T8363] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  116.576172][ T8363] netdevsim netdevsim5 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  116.581074][ T8363] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  116.583455][ T8363] netdevsim netdevsim5 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  116.647637][ T8380] netlink: 36 bytes leftover after parsing attributes in process `syz.5.591'.
[  116.717213][ T8389] netlink: 'syz.5.586': attribute type 1 has an invalid length.
[  116.726759][ T8389] 8021q: adding VLAN 0 to HW filter on device bond1
[  116.746741][ T8389] bond1: (slave veth3): Enslaving as an active interface with a down link
[  116.757531][ T8389] bond1: (slave ip6erspan0): making interface the new active one
[  116.760299][ T8389] ip6erspan0: entered promiscuous mode
[  116.762267][ T8389] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  117.092611][ T8414] netlink: 'syz.1.589': attribute type 10 has an invalid length.
[  117.213723][   T39] audit: type=1326 audit(1737475570.102:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.3.584" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f54579 code=0x7fc00000
[  117.473085][ T8429] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[  117.500384][ T8426] netlink: 8 bytes leftover after parsing attributes in process `syz.1.592'.
[  117.547764][   T39] audit: type=1326 audit(1737475570.432:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.3.584" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f54579 code=0x7fc00000
[  117.709363][ T8436] usb usb8: usbfs: process 8436 (syz.0.594) did not claim interface 0 before use
[  117.714378][ T8436] netlink: 'syz.0.594': attribute type 10 has an invalid length.
[  117.717031][ T8436] netlink: 4 bytes leftover after parsing attributes in process `syz.0.594'.
[  117.738123][ T8446] syz.1.597: attempt to access beyond end of device
[  117.738123][ T8446] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  117.742030][ T8446] FAT-fs (nbd1): unable to read boot sector
[  117.882756][ T8453] syzkaller0: entered allmulticast mode
[  117.891786][ T8453] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  117.897308][ T8451] syzkaller0: left allmulticast mode
[  118.084412][ T8456] overlay: filesystem on ./bus not supported as upperdir
[  119.695825][ T8484] netlink: 24 bytes leftover after parsing attributes in process `syz.0.605'.
[  119.761292][ T8483] netlink: 28 bytes leftover after parsing attributes in process `syz.3.604'.
[  119.763918][ T8483] netlink: 28 bytes leftover after parsing attributes in process `syz.3.604'.
[  120.613342][ T8517] syz.0.614: attempt to access beyond end of device
[  120.613342][ T8517] nbd0: rw=0, sector=2, nr_sectors = 2 limit=0
[  120.617892][ T8517] syz.0.614: attempt to access beyond end of device
[  120.617892][ T8517] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0
[  120.888650][ T8517] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[  120.945464][ T8530] wireguard0: entered promiscuous mode
[  121.057917][ T8532] netlink: 'syz.5.615': attribute type 16 has an invalid length.
[  121.060503][ T8532] netlink: 'syz.5.615': attribute type 3 has an invalid length.
[  121.063464][ T8532] netlink: 132 bytes leftover after parsing attributes in process `syz.5.615'.
[  121.670346][ T8544] netlink: 4 bytes leftover after parsing attributes in process `syz.0.620'.
[  121.706379][ T8547] netlink: 8 bytes leftover after parsing attributes in process `syz.0.621'.
[  121.879660][ T8550] netlink: 316 bytes leftover after parsing attributes in process `syz.0.623'.
[  121.897751][ T8551] vlan2: entered allmulticast mode
[  121.899668][ T8551] bond0: entered allmulticast mode
[  121.901325][ T8551] bond_slave_0: entered allmulticast mode
[  121.903009][ T8551] bond_slave_1: entered allmulticast mode
[  121.904750][ T8551] syz_tun: entered allmulticast mode
[  121.911591][ T8551] bond0: left allmulticast mode
[  121.913061][ T8551] bond_slave_0: left allmulticast mode
[  121.914648][ T8551] bond_slave_1: left allmulticast mode
[  121.916244][ T8551] syz_tun: left allmulticast mode
[  122.081555][ T8538] Process accounting resumed
[  122.294361][ T8563] netlink: 28 bytes leftover after parsing attributes in process `syz.5.628'.
[  122.351221][ T8588] input: syz1 as /devices/virtual/input/input9
[  122.563932][ T8599] netlink: 20 bytes leftover after parsing attributes in process `syz.1.640'.
[  122.586892][ T8599] netlink: 164 bytes leftover after parsing attributes in process `syz.1.640'.
[  122.618216][ T8598] syz_tun: entered allmulticast mode
[  122.737448][ T8605] Cannot find map_set index 0 as target
[  123.244794][ T8630] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  124.384238][ T8658] sp0: Synchronizing with TNC
[  124.398874][ T8660] sctp: [Deprecated]: syz.3.657 (pid 8660) Use of struct sctp_assoc_value in delayed_ack socket option.
[  124.398874][ T8660] Use struct sctp_sack_info instead
[  124.549690][ T8655] [U] è
[  124.662952][ T8666] netlink: 'syz.1.660': attribute type 10 has an invalid length.
[  124.665369][ T8668] sp0: Synchronizing with TNC
[  124.669643][ T8666] 8021q: adding VLAN 0 to HW filter on device batadv0
[  124.673084][ T8666] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  124.681824][ T6190] bond0: (slave batadv0): interface is now down
[  124.709279][ T8670] __nla_validate_parse: 3 callbacks suppressed
[  124.709290][ T8670] netlink: 12 bytes leftover after parsing attributes in process `syz.1.661'.
[  124.712446][  T101] bond0: (slave batadv0): interface is now down
[  124.718129][ T8670] bridge0: port 1(bridge_slave_1) entered blocking state
[  124.720239][ T8670] bridge0: port 1(bridge_slave_1) entered disabled state
[  124.722434][ T8670] bridge_slave_1: entered allmulticast mode
[  124.724601][ T8670] bridge_slave_1: entered promiscuous mode
[  124.731784][ T6190] bond0: (slave batadv0): interface is now down
[  124.761178][  T101] bond0: (slave batadv0): interface is now down
[  124.764996][  T101] bond0: now running without any active interface!
[  125.172076][ T5944] block nbd5: Receive control failed (result -107)
[  125.341499][ T8710] nbd5: detected capacity change from 0 to 20
[  125.345610][ T8236] block nbd5: Dead connection, failed to find a fallback
[  125.347882][ T8236] block nbd5: shutting down sockets
[  125.350270][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.353870][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.356305][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.358963][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.361411][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.364084][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.366412][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.369013][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.371666][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.374674][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.377045][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.379641][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.382754][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.386187][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.388534][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.391224][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.393481][ T8236] ldm_validate_partition_table(): Disk read failed.
[  125.395820][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.398413][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.400837][ T8236] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  125.403473][ T8236] Buffer I/O error on dev nbd5, logical block 0, async page read
[  125.405884][ T8236] Dev nbd5: unable to read RDB block 0
[  125.407675][ T8236]  nbd5: unable to read partition table
[  125.409421][ T8236] nbd5: partition table beyond EOD, truncated
[  125.415034][ T8236] ldm_validate_partition_table(): Disk read failed.
[  125.417133][ T8236] Dev nbd5: unable to read RDB block 0
[  125.418873][ T8236]  nbd5: unable to read partition table
[  125.420649][ T8236] nbd5: partition table beyond EOD, truncated
[  125.553250][ T8724] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  126.012245][ T8752] netlink: 36 bytes leftover after parsing attributes in process `syz.1.691'.
[  126.285992][ T8766] netlink: 'syz.1.694': attribute type 1 has an invalid length.
[  126.334266][ T8766] 8021q: adding VLAN 0 to HW filter on device bond3
[  126.367200][ T8766] bond3: (slave veth5): Enslaving as an active interface with a down link
[  126.496381][ T8780] netlink: 28 bytes leftover after parsing attributes in process `syz.5.696'.
[  126.866294][ T8806] netlink: 'syz.0.701': attribute type 10 has an invalid length.
[  126.868880][ T8806] syz_tun: entered promiscuous mode
[  126.898924][ T8809] xt_CT: You must specify a L4 protocol and not use inversions on it
[  126.973224][ T8813] netlink: 4 bytes leftover after parsing attributes in process `syz.1.705'.
[  127.652016][ T8838] input: syz0 as /devices/virtual/input/input10
[  127.653865][ T8838] input: failed to attach handler leds to device input10, error: -6
[  127.756115][ T8843] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  127.815458][ T8841] usb usb8: usbfs: process 8841 (syz.5.713) did not claim interface 0 before use
[  127.819581][ T8841] netlink: 'syz.5.713': attribute type 10 has an invalid length.
[  127.823719][ T8841] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.829156][ T8841] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.831902][ T8841] bridge0: port 1(bridge_slave_0) entered forwarding state
[  127.835177][ T8841] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  127.841765][ T8841] netlink: 4 bytes leftover after parsing attributes in process `syz.5.713'.
[  127.844714][ T8841] bridge_slave_0: left allmulticast mode
[  127.846385][ T8841] bridge_slave_0: left promiscuous mode
[  127.847992][ T8841] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.863070][ T8841] bond0: (slave bridge0): Releasing backup interface
[  128.060871][ T6178] ip6erspan0: left promiscuous mode
[  128.094023][ T8856] netlink: 20 bytes leftover after parsing attributes in process `syz.0.716'.
[  128.101411][ T8856] devtmpfs: Bad value for 'mpol'
[  128.198143][ T8862] can0: slcan on ttyS3.
[  128.491358][ T8861] can0 (unregistered): slcan off ttyS3.
[  128.754753][ T8887] futex_wake_op: syz.0.724 tries to shift op by -1; fix this program
[  129.000690][ T1337] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  129.063627][ T8906] netlink: 64985 bytes leftover after parsing attributes in process `syz.3.731'.
[  129.066661][ T8906] Invalid ELF header type: 2 != 1
[  129.170666][ T1337] usb 5-1: Using ep0 maxpacket: 8
[  129.174516][ T1337] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  129.177327][ T1337] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  129.180126][ T1337] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  129.183458][ T1337] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  129.187250][ T1337] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  129.189756][ T1337] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.309573][ T8915] netlink: 4 bytes leftover after parsing attributes in process `syz.1.733'.
[  129.315935][ T8915] macvtap1: entered promiscuous mode
[  129.396061][ T1337] usb 5-1: GET_CAPABILITIES returned 0
[  129.397657][ T1337] usbtmc 5-1:16.0: can't read capabilities
[  129.411866][ T8920] netlink: 28 bytes leftover after parsing attributes in process `syz.5.729'.
[  129.414342][ T8920] netlink: 28 bytes leftover after parsing attributes in process `syz.5.729'.
[  129.655123][ T8929] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  129.659620][ T8929] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  129.703465][ T6000] usb 5-1: USB disconnect, device number 5
[  129.731429][   T39] audit: type=1326 audit(1737475582.622:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.737812][   T39] audit: type=1326 audit(1737475582.622:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.745188][   T39] audit: type=1326 audit(1737475582.622:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.751558][   T39] audit: type=1326 audit(1737475582.622:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.757571][   T39] audit: type=1326 audit(1737475582.622:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.766974][   T39] audit: type=1326 audit(1737475582.622:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.774288][   T39] audit: type=1326 audit(1737475582.622:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.781118][   T39] audit: type=1326 audit(1737475582.622:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.787291][   T39] audit: type=1326 audit(1737475582.622:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  129.794665][   T39] audit: type=1326 audit(1737475582.632:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8925 comm="syz.3.736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f54579 code=0x7ffc0000
[  130.257860][ T8938] netlink: 180 bytes leftover after parsing attributes in process `syz.0.739'.
[  130.260506][ T8938] netlink: 180 bytes leftover after parsing attributes in process `syz.0.739'.
[  130.313261][ T8941] netlink: 'syz.0.740': attribute type 1 has an invalid length.
[  130.329555][ T8941] bond7: entered promiscuous mode
[  130.332928][ T8941] 8021q: adding VLAN 0 to HW filter on device bond7
[  130.406160][ T8944] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  130.452242][ T8953] netlink: 4 bytes leftover after parsing attributes in process `syz.0.743'.
[  130.459823][ T8944] netlink: 4 bytes leftover after parsing attributes in process `syz.1.741'.
[  130.498485][ T8961] netlink: 'syz.0.745': attribute type 2 has an invalid length.
[  130.647486][ T8970] misc userio: Invalid payload size
[  130.677001][ T8970] misc userio: Invalid payload size
[  130.704888][ T8972] netlink: 4 bytes leftover after parsing attributes in process `syz.3.747'.
[  130.725670][ T8974] netlink: 48 bytes leftover after parsing attributes in process `syz.1.749'.
[  130.728234][ T8974] netlink: 48 bytes leftover after parsing attributes in process `syz.1.749'.
[  130.757323][ T8976] netlink: 8 bytes leftover after parsing attributes in process `syz.3.750'.
[  130.904740][ T8983] netlink: 316 bytes leftover after parsing attributes in process `syz.0.753'.
[  130.999813][ T8992] overlayfs: failed to clone upperpath
[  131.028099][ T8991] netlink: 8 bytes leftover after parsing attributes in process `syz.0.755'.
[  132.000709][ T9031] input: syz1 as /devices/virtual/input/input11
[  132.168065][ T9053] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  132.173682][ T9053] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  132.204269][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  132.206685][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  132.560381][ T9077] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  133.317192][ T9085] syz_tun: entered promiscuous mode
[  133.318736][ T9085] syz_tun: entered allmulticast mode
[  133.380783][ T6278] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  133.575370][ T6278] usb 10-1: config 1 interface 0 altsetting 73 bulk endpoint 0x1 has invalid maxpacket 1023
[  133.578439][ T6278] usb 10-1: config 1 interface 0 altsetting 73 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  133.582559][ T6278] usb 10-1: config 1 interface 0 has no altsetting 0
[  133.585828][ T6278] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  133.588413][ T6278] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.592625][ T6278] usb 10-1: Product: syz
[  133.593882][ T6278] usb 10-1: Manufacturer: syz
[  133.595236][ T6278] usb 10-1: SerialNumber: syz
[  133.597739][ T9080] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  133.599850][ T9080] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  133.823908][ T9080] netlink: 'syz.5.781': attribute type 1 has an invalid length.
[  134.052619][ T6278] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 73 proto 1 vid 0x0525 pid 0xA4A8
[  134.057334][ T6278] usb 10-1: USB disconnect, device number 3
[  134.061348][ T6278] usblp0: removed
[  135.092001][ T9120] sctp: [Deprecated]: syz.3.792 (pid 9120) Use of struct sctp_assoc_value in delayed_ack socket option.
[  135.092001][ T9120] Use struct sctp_sack_info instead
[  135.154189][    C1] vkms_vblank_simulate: vblank timer overrun
[  135.216916][ T9125] netlink: 'syz.0.793': attribute type 1 has an invalid length.
[  135.364136][ T9125] bond8: entered promiscuous mode
[  135.365936][ T9125] 8021q: adding VLAN 0 to HW filter on device bond8
[  135.369794][ T9134] netlink: 'syz.1.795': attribute type 10 has an invalid length.
[  135.452935][ T9125] 8021q: adding VLAN 0 to HW filter on device bond9
[  135.459713][ T9125] bond8: (slave bond9): making interface the new active one
[  135.462303][ T9125] bond9: entered promiscuous mode
[  135.464097][ T9125] bond8: (slave bond9): Enslaving as an active interface with an up link
[  135.780008][ T9155] __nla_validate_parse: 6 callbacks suppressed
[  135.780019][ T9155] netlink: 8 bytes leftover after parsing attributes in process `syz.3.799'.
[  135.785098][ T9155] netlink: 8 bytes leftover after parsing attributes in process `syz.3.799'.
[  135.787638][ T9155] netlink: 8 bytes leftover after parsing attributes in process `syz.3.799'.
[  135.835072][ T9160] netlink: 12 bytes leftover after parsing attributes in process `syz.3.801'.
[  135.842392][ T9160] bridge_slave_1: left allmulticast mode
[  135.844014][ T9160] bridge_slave_1: left promiscuous mode
[  135.845661][ T9160] bridge0: port 1(bridge_slave_1) entered disabled state
[  135.850948][ T9160] bridge1: port 1(bridge_slave_1) entered blocking state
[  135.854723][ T9160] bridge1: port 1(bridge_slave_1) entered disabled state
[  135.857017][ T9160] bridge_slave_1: entered allmulticast mode
[  135.859773][ T9160] bridge_slave_1: entered promiscuous mode
[  136.553399][ T9204] 9pnet_fd: Insufficient options for proto=fd
[  137.531531][ T9235] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  137.647833][ T9258] netlink: 36 bytes leftover after parsing attributes in process `syz.0.831'.
[  137.950381][ T9256] netlink: 596 bytes leftover after parsing attributes in process `syz.1.830'.
[  138.133247][ T9274] netlink: 'syz.3.834': attribute type 1 has an invalid length.
[  138.137382][ T9275] ipt_REJECT: ECHOREPLY no longer supported.
[  138.148382][ T9274] 8021q: adding VLAN 0 to HW filter on device bond2
[  138.180057][ T9274] bond2: (slave veth5): Enslaving as an active interface with a down link
[  138.428855][ T9309] netlink: 'syz.5.840': attribute type 10 has an invalid length.
[  138.431212][ T9309] syz_tun: left allmulticast mode
[  138.457744][ T9314] xt_CT: You must specify a L4 protocol and not use inversions on it
[  138.483971][ T9317] netlink: 4 bytes leftover after parsing attributes in process `syz.5.842'.
[  138.560510][ T9324] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  138.630453][ T9325] netlink: 188 bytes leftover after parsing attributes in process `syz.3.845'.
[  138.633939][ T9325] netlink: 'syz.3.845': attribute type 1 has an invalid length.
[  139.043103][ T9332] netlink: 'syz.0.848': attribute type 11 has an invalid length.
[  139.245724][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  139.245736][   T39] audit: type=1326 audit(1737475592.134:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9338 comm="syz.0.851" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f65579 code=0x0
[  139.753559][ T9365] overlayfs: failed to clone upperpath
[  139.992474][ T9370] tipc: Started in network mode
[  139.994102][ T9370] tipc: Node identity ac1414aa, cluster identity 4711
[  139.997236][ T9370] tipc: Enabled bearer <udp:s>, priority 10
[  140.133180][ T9384] overlayfs: conflicting options: metacopy=off,verity=on
[  140.136206][ T9382] netlink: 8 bytes leftover after parsing attributes in process `syz.5.863'.
[  140.719803][ T9403] netlink: 92 bytes leftover after parsing attributes in process `syz.1.868'.
[  141.001835][ T5998] tipc: Node number set to 2886997162
[  141.104301][ T9409] wireguard1: entered promiscuous mode
[  141.684927][ T9419] usb usb8: usbfs: process 9419 (syz.5.873) did not claim interface 0 before use
[  141.688776][ T9419] netlink: 'syz.5.873': attribute type 10 has an invalid length.
[  141.691394][ T9419] netlink: 4 bytes leftover after parsing attributes in process `syz.5.873'.
[  141.703433][ T9426] tmpfs: Bad value for 'grpquota_block_hardlimit'
[  141.748687][ T9430] netlink: 'syz.0.877': attribute type 4 has an invalid length.
[  142.382353][ T9459] netlink: 8 bytes leftover after parsing attributes in process `syz.5.885'.
[  142.385427][ T9459] netlink: 12 bytes leftover after parsing attributes in process `syz.5.885'.
[  142.399483][ T9459] syz.5.885: attempt to access beyond end of device
[  142.399483][ T9459] nbd5: rw=0, sector=0, nr_sectors = 2 limit=0
[  142.405284][ T9459] FAT-fs (nbd5): unable to read boot sector
[  142.648200][ T9478] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  143.174657][ T9491] trusted_key: encrypted_key: insufficient parameters specified
[  143.439843][ T9494] overlayfs: failed to clone upperpath
[  143.489577][ T9496] netlink: 28 bytes leftover after parsing attributes in process `syz.3.894'.
[  143.492257][ T9496] netlink: 28 bytes leftover after parsing attributes in process `syz.3.894'.
[  143.703322][ T9505] netlink: 180 bytes leftover after parsing attributes in process `syz.1.897'.
[  143.706102][ T9505] netlink: 180 bytes leftover after parsing attributes in process `syz.1.897'.
[  144.110671][   T39] audit: type=1326 audit(1737475596.994:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.116486][   T39] audit: type=1326 audit(1737475596.994:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.124407][   T39] audit: type=1326 audit(1737475596.994:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.132940][   T39] audit: type=1326 audit(1737475596.994:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.140029][   T39] audit: type=1326 audit(1737475596.994:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.147346][   T39] audit: type=1326 audit(1737475597.004:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.154844][   T39] audit: type=1326 audit(1737475597.004:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.162715][   T39] audit: type=1326 audit(1737475597.004:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.170171][   T39] audit: type=1326 audit(1737475597.004:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9512 comm="syz.1.900" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  144.477958][ T9520] netlink: 'syz.3.901': attribute type 1 has an invalid length.
[  144.479563][ T9521] sp0: Synchronizing with TNC
[  144.483800][ T9519] [U] è
[  144.497686][ T9520] bond3: entered promiscuous mode
[  144.499433][ T9520] 8021q: adding VLAN 0 to HW filter on device bond3
[  144.588363][ T9526] netlink: 4 bytes leftover after parsing attributes in process `syz.5.904'.
[  144.631553][ T9529] netlink: 4 bytes leftover after parsing attributes in process `syz.3.906'.
[  144.638986][ T9532] netlink: 48 bytes leftover after parsing attributes in process `syz.5.907'.
[  144.652074][ T9531] 
[  144.652820][ T9531] ======================================================
[  144.654769][ T9531] WARNING: possible circular locking dependency detected
[  144.656793][ T9531] 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0 Not tainted
[  144.659521][ T9531] ------------------------------------------------------
[  144.662874][ T9531] syz.0.905/9531 is trying to acquire lock:
[  144.664560][ T9531] ffff88801ed04620 (&mm->mmap_lock){++++}-{4:4}, at: __might_fault+0xe3/0x190
[  144.667128][ T9531] 
[  144.667128][ T9531] but task is already holding lock:
[  144.669214][ T9531] ffff88802441cd90 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_trace_ioctl+0xc9/0x290
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  144.672047][ T9531] 
[  144.672047][ T9531] which lock already depends on the new lock.
[  144.672047][ T9531] 
[  144.675179][ T9531] 
[  144.675179][ T9531] the existing dependency chain (in reverse order) is:
[  144.677702][ T9531] 
[  144.677702][ T9531] -> #5 (&q->debugfs_mutex){+.+.}-{4:4}:
[  144.680168][ T9531]        __mutex_lock+0x19b/0xa60
[  144.681996][ T9531]        blk_mq_init_sched+0x42b/0x640
[  144.684025][ T9531]        elevator_init_mq+0x2cd/0x420
[  144.685913][ T9531]        add_disk_fwnode+0x113/0x1300
[  144.687900][ T9531]        sd_probe+0xa66/0xfa0
[  144.689726][ T9531]        really_probe+0x23e/0xa90
[  144.691265][ T9531]        __driver_probe_device+0x1de/0x440
[  144.693144][ T9531]        driver_probe_device+0x4c/0x1b0
[  144.695166][ T9531]        __device_attach_driver+0x1df/0x310
[  144.696838][ T9531]        bus_for_each_drv+0x157/0x1e0
[  144.698360][ T9531]        __device_attach_async_helper+0x1d3/0x290
[  144.700168][ T9531]        async_run_entry_fn+0x9c/0x530
[  144.701728][ T9531]        process_one_work+0x958/0x1b30
[  144.703404][ T9531]        worker_thread+0x6c8/0xf00
[  144.705455][ T9531]        kthread+0x2c1/0x3a0
[  144.707215][ T9531]        ret_from_fork+0x45/0x80
[  144.708751][ T9531]        ret_from_fork_asm+0x1a/0x30
[  144.710262][ T9531] 
[  144.710262][ T9531] -> #4 (&q->q_usage_counter(queue)#51){++++}-{0:0}:
[  144.712714][ T9531]        blk_queue_enter+0x50f/0x640
[  144.714181][ T9531]        blk_mq_alloc_request+0x59b/0x950
[  144.715730][ T9531]        scsi_execute_cmd+0x20a/0xf30
[  144.717189][ T9531]        read_capacity_16+0x21a/0xe20
[  144.718668][ T9531]        sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  144.720330][ T9531]        sd_probe+0x8ee/0xfa0
[  144.721631][ T9531]        really_probe+0x23e/0xa90
[  144.723107][ T9531]        __driver_probe_device+0x1de/0x440
[  144.724783][ T9531]        driver_probe_device+0x4c/0x1b0
[  144.726342][ T9531]        __device_attach_driver+0x1df/0x310
[  144.728079][ T9531]        bus_for_each_drv+0x157/0x1e0
[  144.729645][ T9531]        __device_attach_async_helper+0x1d3/0x290
[  144.731547][ T9531]        async_run_entry_fn+0x9c/0x530
[  144.733248][ T9531]        process_one_work+0x958/0x1b30
[  144.734957][ T9531]        worker_thread+0x6c8/0xf00
[  144.736407][ T9531]        kthread+0x2c1/0x3a0
[  144.737679][ T9531]        ret_from_fork+0x45/0x80
[  144.739120][ T9531]        ret_from_fork_asm+0x1a/0x30
[  144.740658][ T9531] 
[  144.740658][ T9531] -> #3 (&q->limits_lock){+.+.}-{4:4}:
[  144.743155][ T9531]        __mutex_lock+0x19b/0xa60
[  144.744762][ T9531]        __nbd_set_size+0x2c0/0x730
[  144.746273][ T9531]        nbd_start_device+0x8fd/0xd70
[  144.747734][ T9531]        nbd_ioctl+0x21a/0xfd0
[  144.749076][ T9531]        compat_blkdev_ioctl+0x2f7/0x750
[  144.750642][ T9531]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  144.752266][ T9531]        __do_fast_syscall_32+0x73/0x120
[  144.754318][ T9531]        do_fast_syscall_32+0x32/0x80
[  144.755710][ T9531]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.757643][ T9531] 
[  144.757643][ T9531] -> #2 (&q->q_usage_counter(io)#54){++++}-{0:0}:
[  144.760106][ T9531]        blk_mq_submit_bio+0x1fb6/0x24c0
[  144.761713][ T9531]        __submit_bio+0x384/0x540
[  144.763201][ T9531]        submit_bio_noacct_nocheck+0x698/0xd70
[  144.764964][ T9531]        submit_bio_noacct+0x93a/0x1e20
[  144.766523][ T9531]        block_read_full_folio+0x812/0xa50
[  144.768176][ T9531]        filemap_read_folio+0xc6/0x2a0
[  144.769682][ T9531]        filemap_get_pages+0x155f/0x1be0
[  144.771243][ T9531]        filemap_read+0x3ca/0xd70
[  144.772695][ T9531]        blkdev_read_iter+0x187/0x480
[  144.774472][ T9531]        vfs_read+0x87f/0xbe0
[  144.775838][ T9531]        ksys_read+0x12b/0x250
[  144.777255][ T9531]        do_syscall_64+0xcd/0x250
[  144.778765][ T9531]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.780662][ T9531] 
[  144.780662][ T9531] -> #1 (mapping.invalidate_lock#2){.+.+}-{4:4}:
[  144.783168][ T9531]        down_read+0x9a/0x330
[  144.784545][ T9531]        filemap_fault+0x2e0/0x2820
[  144.786118][ T9531]        __do_fault+0x10a/0x490
[  144.787544][ T9531]        do_pte_missing+0x1a8/0x3e00
[  144.789376][ T9531]        __handle_mm_fault+0x103c/0x2a40
[  144.791560][ T9531]        handle_mm_fault+0x3fa/0xaa0
[  144.793639][ T9531]        __get_user_pages+0x8d9/0x3b50
[  144.795843][ T9531]        faultin_page_range+0x24a/0x980
[  144.798084][ T9531]        do_madvise+0x504/0x770
[  144.800066][ T9531]        __ia32_sys_madvise+0xa7/0x110
[  144.802262][ T9531]        __do_fast_syscall_32+0x73/0x120
[  144.804503][ T9531]        do_fast_syscall_32+0x32/0x80
[  144.806684][ T9531]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.808919][ T9531] 
[  144.808919][ T9531] -> #0 (&mm->mmap_lock){++++}-{4:4}:
[  144.811067][ T9531]        __lock_acquire+0x249e/0x3c40
[  144.812650][ T9531]        lock_acquire.part.0+0x11b/0x380
[  144.814293][ T9531]        __might_fault+0x11b/0x190
[  144.815778][ T9531]        _copy_from_user+0x29/0xd0
[  144.817258][ T9531]        compat_blk_trace_setup+0xc9/0x200
[  144.818869][ T9531]        blk_trace_ioctl+0x24a/0x290
[  144.820315][ T9531]        compat_blkdev_ioctl+0x13c/0x750
[  144.821904][ T9531]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  144.823964][ T9531]        __do_fast_syscall_32+0x73/0x120
[  144.825547][ T9531]        do_fast_syscall_32+0x32/0x80
[  144.827107][ T9531]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.829079][ T9531] 
[  144.829079][ T9531] other info that might help us debug this:
[  144.829079][ T9531] 
[  144.831962][ T9531] Chain exists of:
[  144.831962][ T9531]   &mm->mmap_lock --> &q->q_usage_counter(queue)#51 --> &q->debugfs_mutex
[  144.831962][ T9531] 
[  144.837350][ T9531]  Possible unsafe locking scenario:
[  144.837350][ T9531] 
[  144.840346][ T9531]        CPU0                    CPU1
[  144.842502][ T9531]        ----                    ----
[  144.844572][ T9531]   lock(&q->debugfs_mutex);
[  144.846448][ T9531]                                lock(&q->q_usage_counter(queue)#51);
[  144.849608][ T9531]                                lock(&q->debugfs_mutex);
[  144.852402][ T9531]   rlock(&mm->mmap_lock);
[  144.854225][ T9531] 
[  144.854225][ T9531]  *** DEADLOCK ***
[  144.854225][ T9531] 
[  144.857455][ T9531] 1 lock held by syz.0.905/9531:
[  144.859477][ T9531]  #0: ffff88802441cd90 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_trace_ioctl+0xc9/0x290
[  144.863339][ T9531] 
[  144.863339][ T9531] stack backtrace:
[  144.865259][ T9531] CPU: 0 UID: 0 PID: 9531 Comm: syz.0.905 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  144.868200][ T9531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.871248][ T9531] Call Trace:
[  144.872246][ T9531]  <TASK>
[  144.873239][ T9531]  dump_stack_lvl+0x116/0x1f0
[  144.874646][ T9531]  print_circular_bug+0x41c/0x610
[  144.876104][ T9531]  check_noncircular+0x31a/0x400
[  144.877533][ T9531]  ? __pfx_check_noncircular+0x10/0x10
[  144.879102][ T9531]  ? lockdep_lock+0xc6/0x200
[  144.880431][ T9531]  ? __pfx_lockdep_lock+0x10/0x10
[  144.881874][ T9531]  __lock_acquire+0x249e/0x3c40
[  144.883309][ T9531]  ? __pfx___lock_acquire+0x10/0x10
[  144.884825][ T9531]  ? bdev_name.constprop.0+0x35a/0x5d0
[  144.886447][ T9531]  ? __pfx_bdev_name.constprop.0+0x10/0x10
[  144.888130][ T9531]  lock_acquire.part.0+0x11b/0x380
[  144.889601][ T9531]  ? __might_fault+0xe3/0x190
[  144.890968][ T9531]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  144.892764][ T9531]  ? rcu_is_watching+0x12/0xc0
[  144.894705][ T9531]  ? trace_lock_acquire+0x14e/0x1f0
[  144.896825][ T9531]  ? __pfx_bpf_trace_run2+0x10/0x10
[  144.898909][ T9531]  ? __might_fault+0xe3/0x190
[  144.900787][ T9531]  ? lock_acquire+0x2f/0xb0
[  144.902621][ T9531]  ? __might_fault+0xe3/0x190
[  144.904496][ T9531]  ? __might_fault+0xe3/0x190
[  144.906411][ T9531]  __might_fault+0x11b/0x190
[  144.908218][ T9531]  ? __might_fault+0xe3/0x190
[  144.910142][ T9531]  _copy_from_user+0x29/0xd0
[  144.911877][ T9531]  compat_blk_trace_setup+0xc9/0x200
[  144.913685][ T9531]  ? __pfx_compat_blk_trace_setup+0x10/0x10
[  144.915276][ T9531]  ? blk_trace_ioctl+0xc9/0x290
[  144.916675][ T9531]  ? snprintf+0xc8/0x100
[  144.917904][ T9531]  ? __pfx_snprintf+0x10/0x10
[  144.919275][ T9531]  blk_trace_ioctl+0x24a/0x290
[  144.920650][ T9531]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  144.922262][ T9531]  ? __pfx_lock_release+0x10/0x10
[  144.923809][ T9531]  ? trace_lock_acquire+0x14e/0x1f0
[  144.925365][ T9531]  compat_blkdev_ioctl+0x13c/0x750
[  144.926921][ T9531]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  144.928564][ T9531]  ? __fget_files+0x206/0x3a0
[  144.929952][ T9531]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  144.931644][ T9531]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  144.933249][ T9531]  __do_fast_syscall_32+0x73/0x120
[  144.934833][ T9531]  do_fast_syscall_32+0x32/0x80
[  144.936281][ T9531]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.938257][ T9531] RIP: 0023:0xf7f65579
[  144.939465][ T9531] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.945457][ T9531] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  144.948161][ T9531] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000c0401273
[  144.950484][ T9531] RDX: 0000000020000380 RSI: 0000000000000000 RDI: 0000000000000000
[  144.952952][ T9531] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  144.955304][ T9531] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  144.957609][ T9531] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.959935][ T9531]  </TASK>
[  144.994563][ T5950] bond0: (slave syz_tun): Releasing backup interface
[  145.046560][ T9516] bond0: (slave syz_tun): Releasing backup interface
[  145.067549][ T9531] bond0: (slave syz_tun): Releasing backup interface
[  145.076353][ T9534] bond0: (slave syz_tun): Releasing backup interface
[  145.083974][ T6178] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.174718][ T6178] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.233758][ T6178] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.334218][ T6178] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.404755][ T6178] bridge_slave_1: left allmulticast mode
[  145.406479][ T6178] bridge_slave_1: left promiscuous mode
[  145.408498][ T6178] bridge1: port 1(bridge_slave_1) entered disabled state
[  145.427079][ T6178] bond1 (unregistering): (slave ip6erspan0): Releasing active interface
[  145.691664][ T6178] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  145.695423][ T6178] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.699586][ T6178] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  145.703707][ T6178] bond0 (unregistering): Released all slaves
[  145.711950][ T6178] bond1 (unregistering): (slave veth3): Releasing active interface
[  145.715369][ T6178] bond1 (unregistering): Released all slaves
[  145.809456][ T6178] bond2 (unregistering): (slave veth5): Releasing active interface
[  145.813625][ T6178] bond2 (unregistering): Released all slaves
[  145.821111][ T6178] bond3 (unregistering): Released all slaves
[  145.895003][ T6178] tipc: Disabling bearer <udp:s>
[  145.896997][ T6178] tipc: Left network mode
[  145.924374][ T6178] mac80211_hwsim hwsim7 wlan1 (unregistering): left allmulticast mode
[  146.047236][ T6178] hsr_slave_0: left promiscuous mode
[  146.049944][ T6178] hsr_slave_1: left promiscuous mode
[  146.052971][ T6178] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  146.055937][ T6178] batman_adv: batadv0: Removing interface: batadv_slave_0
[  146.059545][ T6178] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  146.062615][ T6178] batman_adv: batadv0: Removing interface: batadv_slave_1
[  146.065834][ T6178] veth1_macvtap: left promiscuous mode
[  146.067518][ T6178] veth0_macvtap: left promiscuous mode
[  146.069459][ T6178] veth1_vlan: left promiscuous mode
[  146.071811][ T6178] veth0_vlan: left promiscuous mode
[  147.168339][ T6178] IPVS: stop unused estimator thread 0...

VM DIAGNOSIS:
16:06:37  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000074 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8517b025 RDI=ffffffff9aa92500 RBP=ffffffff9aa924c0 RSP=ffffc90024157320
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=732d302e33312e36
R12=0000000000000000 R13=0000000000000074 R14=ffffffff8517afc0 R15=0000000000000000
RIP=ffffffff8517b04f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c35fffe CR3=000000004e7ac000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=0000000000000001 RCX=ffffffff8186b600 RDX=0000000000000001
RSI=0000000000000000 RDI=0000000000000000 RBP=000000000003da8c RSP=ffffc900005a0e28
R8 =0000000000000000 R9 =fffffbfff20bc8ea R10=ffffffff905e4757 R11=ffffc900005a0ff8
R12=ffffc900254b7d68 R13=ffff88802b52ca80 R14=ffff88802b52ca00 R15=ffffffff81868f10
RIP=ffffffff81996a30 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3e0fde CR3=00000000610f8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080000000 RBX=ffffea0001b09f40 RCX=ffffffff8207604a RDX=ffff888025340000
RSI=ffffffff82076058 RDI=0000000000000005 RBP=0000000000000000 RSP=ffffc900261df6a0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=000000000007f6ec
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81996fbb RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73c4230 CR3=000000007030a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffffff90f024c8 RBX=ffffffff906f5efc RCX=dffffc0000000000 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff906f5efc RBP=ffffffff906f5efc RSP=ffffc900005f89a8
R8 =ffffffff90f024ce R9 =ffffffff90f3baea R10=ffffc900005f8a58 R11=0000000000005c1a
R12=ffffffff906f5efc R13=ffffffff815c1ac2 R14=ffffffff906f5efc R15=ffffffff906f5efc
RIP=ffffffff8148f475 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7190360 CR3=0000000049cb4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7483ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000