last executing test programs:

5.430825001s ago: executing program 2 (id=330):
openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$DRM_IOCTL_GET_CAP(0xffffffffffffffff, 0xc010640c, 0x0)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x2e, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$kcm(0x10, 0x2, 0x10)
r5 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000014c0)=""/4097, 0x1001}], 0x1}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020030000b02d25a806f8c2d94f90424fc602f1a04000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, 0x0, 0x15)
dup(r6)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000080)={0xf0f041})
ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(r2, 0xf505, 0x0)
ioctl$LOOP_SET_STATUS(r7, 0x4c02, &(0x7f0000000380)={0x0, {}, 0x0, {}, 0x1, 0xa, 0xb, 0x1, "16066d1fd2899384dc7c24a93de5a9ce2fbf2f3a1a39df49430823c337b80b2df85a387811557d4302f2e5126ab97a2a2b699391294df995986f368e426a98db", "154662bdbb9ccdcee6b4fabd2ca49b4da053bb73e9dcf7748e6efc2c0433a138", [0xd, 0x200]})
syz_genetlink_get_family_id$fou(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$FOU_CMD_GET(0xffffffffffffffff, 0x0, 0x0)

4.922739921s ago: executing program 1 (id=332):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201fb0019b40320d812010079de01ec020109021b0001000003000904000001785e4c00090585020004"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
syz_usb_disconnect(r0)
r2 = io_uring_setup(0x5c01, &(0x7f0000000240))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x0)
r3 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x40)
ioctl$HIDIOCGRAWPHYS(r3, 0x80404805, &(0x7f0000000080))
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000280)={{}, {}, [{}], {}, [{}]}, 0x34, 0x0)
chroot(&(0x7f0000000040)='./file0/file0/file0/file0/file0\x00')
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r6, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

4.903563741s ago: executing program 2 (id=333):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newqdisc={0x40, 0x24, 0x200, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0x5}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x11}, @TCA_FQ_QUANTUM={0x8}]}}]}, 0x40}}, 0x0)
r3 = openat$uhid(0xffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x137)
syz_open_dev$ttys(0xc, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0xa, &(0x7f0000000400)=[{0x3, 0x10, 0x80, 0x6}, {0x28, 0x4, 0x3, 0x800}, {0x4, 0xc, 0x3, 0x8}, {0x9, 0xf6, 0x6, 0x7}, {0x8, 0x6f, 0x0, 0x5}, {0x8, 0x7, 0x1, 0xfffffffb}, {0x4, 0x6, 0x8, 0x5}, {0xca, 0x9, 0x3b, 0x10000}, {0x4, 0x8, 0x4, 0xfffffe00}, {0x7, 0xff, 0xff, 0x7}]})
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = open_tree(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000380)={0x0, 0x40000000000ead}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setscheduler(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x110, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_PEC(r6, 0x708, 0x40)
ioctl$I2C_SMBUS(r6, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000080)={0x0, "6a4dbabcdf3aa54bce5d926ef908d52773fa7f00"}})
ioctl$TCXONC(r4, 0x540a, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_trie\x00')
preadv(r7, &(0x7f0000000b00)=[{&(0x7f0000000300)=""/30, 0x1e}], 0x1, 0x80000001, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10, &(0x7f0000000280), 0x0, &(0x7f0000000340)=[@ip_ttl={{0x10, 0x0, 0x2, 0x2d57}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x7cd9}}], 0x20}, 0x0)
syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

3.80335489s ago: executing program 3 (id=335):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000240)=""/64, 0x40}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000000340)=""/112, 0x70}], 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="55fa00000b000000002000800100000000080000", @ANYRES32, @ANYBLOB="0200"/20, @ANYRES32=0x0, @ANYBLOB="13230def89ad4eba2f80f2b07242958b532bb44d4e8903d3f07a5c42b7efaf8e2d40989ea84d155b83b1072b50fa16672def7c823d233592e7f00ffb8bd9e126ba45595ef139c933a020d084f83d6af8720007636c3d54a694a25c9c81b32cc9a5ef26c7b0c0fd49b11485ac1b40a29c0072f538e0af4e9a47289c13e57d65adcc9639e74b1b05eb10ebb62055dd18dd05c8bafb38f0b3f2b3b64bab0d9f685bf622be7b59ee7836b1666e1262bca40b803c2c9f97bbc8941d9a0d6dd2849540141d83ed19a483af0b452291c6bc083be4f13fe0b17b3bb13db8f8a3a34670fe2221", @ANYBLOB="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"], 0x48)
r3 = fanotify_init(0x0, 0x0)
writev(r3, &(0x7f0000000500)=[{&(0x7f0000000080)="88", 0x1}], 0x1)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x15, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="b70000000000000007000000000000009500000000000000bdc5072e4c75223f107e6ca306000000000000009c91420b66f0980e90dc0a9900d145243692fe648adf4cbc1dc631c378820861eccfa60822e798d6526600eea6c33dd5b2a7762091ec88ae3708013fdc5b2a1dbc7dffffb6d9a01d03491c35fee5ff00002e40db34dea1062a0dbc352f3eaf2e3d7b68859275943a5a7090b1c08454a24881bd7f9a0c0e16793732f7c9af95af001000009500020000c7a2006c74c29cc8ca9e1e5223d7b6f2e4980e5be2d3f36ae968af01953b524b3aa3fe0c375b2128e228cdf4b9b5caccc4722cf3e6cfa6567c5a8e01bf465f0a27e54911827c4fa432ca89bf5ac89effedbe12b66ce9643697ac0e12090000000000000079d71eb2597dd9000000000000000000000000001d5bdafcd419016b45507fedc616a94a06268d9b21e956eabc2cc07d801e7498bd3ba25e41f98253155db0116145c05a632a45d5"], &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f0000000280)=0x5d, 0x4)
listen(r5, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x44, &(0x7f0000009000)=r4, 0x4)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
r6 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_STREAMOFF(r6, 0x40045613, &(0x7f0000000180)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
prctl$PR_SET_THP_DISABLE(0x41, 0x9)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1, 0xffffffff}, 0x1c)
shutdown(r0, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a440000102030109025c0002010000000904000001a3f45747d649f9a30105240000000d240f8100000000000000000006241a0000000905810300000000000904010000020d00000904010102020d000009058202000000000009050302"], 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582"], 0x0)

3.783395586s ago: executing program 2 (id=336):
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newlink={0x28, 0x10, 0x401, 0x13c3, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_MASTER={0x8, 0x3, r2}]}, 0x28}, 0x1, 0x8}, 0x0)

3.650838284s ago: executing program 2 (id=337):
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x1de)
write$binfmt_script(r0, &(0x7f00000019c0)={'#! ', './file0'}, 0xb)
close(r0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x1101000, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x25, &(0x7f0000000840)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0xfffffffffffffe61)
r1 = socket(0x0, 0x0, 0x6)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
write$P9_RXATTRCREATE(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$vbi(&(0x7f0000000800), 0x2, 0x2)
ioctl$VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000080)={0x8, 0x6, 0x1})
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x6)
mkdirat(r0, &(0x7f0000000040)='./file0/file0\x00', 0x15d)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, 0x0, 0x8000)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$sock_int(r5, 0x1, 0x2a, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000001440)=[{{&(0x7f0000000280)=@un=@abs, 0x80, &(0x7f0000000040), 0x0, 0x0, 0xfffffffffffffeb0}, 0xfffffffc}], 0x1, 0x40000040, 0x0)
write$binfmt_misc(r4, &(0x7f00000000c0)=ANY=[], 0x3e)
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0)

3.576433164s ago: executing program 0 (id=339):
r0 = openat$vcsu(0xffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080))
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x3, 0x2, 0x187a8434, 0x1411, 0x1, 0x7fffffff, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x5, 0x7, @void, @value, @void, @value}, 0x50)
r4 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000600)={'team0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r5, {}, {0xffff, 0xffff}, {0x0, 0xd}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x8, 0xb, 0xa}}}}]}, 0x40}, 0x1, 0x7a00}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r7 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r7, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r7, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000017c0)=ANY=[@ANYBLOB="b702000009000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2e6405000000000065060400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000002c3f2cc2b7956244cef7baf48e6d2885a09a87507ebfc75b5b0f4e4309ebcdac5f7a860c008cbdd3b4c3b7f28754860c9c781f6410457253e89ad528d985636a86ec0f68f59cd1159a2c2e85d726859a919cc9548a349980d1ccdce27f94bc074c27f81078545c146a0857153b7b8f00034debae58a4ab415b0d7ff0575cc272cd3d7e8d974927676468ff2d86e0ffac94792ed9cf6b40b3cf252a47c05ae8a70d57cc3e067d1867b54d24e20000000000000020009ebf84d3b042d6e432cd080e3b57239f0127473e6ba922aff649609d40b47ec331ccba3cf96f9483ff19a6471bf5abc742d9cbcfb964b11b31034694a6aad86cf08a6c7b2235dc99de9aa3e6b77c7a2877261ed32da90864987f30926c9013eec3b86836ae50447aa5a79f40c235000000453302712c3d8fc4e2b61adb0695e800000000d4f4e91f0000002c33df424d1bafe5725c8a404724f8a4f1cda7997b65954f74097579b91da309b887af2485c2d9ab09b506000000000000000bf7b2ff4602aec1eea200000064881c5630521a08e051374cf05c921a06fb7818000000009dc8d95e0e5b365d10e1004dae58b3b5b89709b0ff47b200000000004000cbef88811dc8c1b27ac7d9a6bb70f60eb9c01dd2fc79b85e4d961498f3a80131d21d856177a2189f45d011ef1da5c6d57bb8fd387ccea9c3899a914e47e82f040000009d81003f927355408f87264797d3fa970949793b94329d580500d1f91c0d22587e05a61e3d8576ca168e88d7a9af95b04a37c27bfffab9abbb31fa8c0080258cfa6d3f166e695f3c56490aeef464d9965d70a50f1282619344f223548e75fa39643adac1322c87ca253ff2fb1882760d6feab16bacdf83c11816dbe959ebc5ec479c8319f73e2249eab0486b110702a481d3b51976a52303056e800b4ae5acc2df636a65eb1d672bf2000000cda8462cc9b16624998be65683321e970000000009b8e20762c1bf4a3eb6769f2b23e842bacd9c685edea0ffa3e975424f8ede49e61a4de808a38ba3512d64dc71867df4eee3f1ff791cf7c9862f98b45852e4b2f78721b978a2df2f2a29a387c6f0576b36038f819286eca99a6a434811cf2a117d775fe986a49fb82cf5f15972d5ab18f1045384501adabb20f7b0e15ff47f1744e2341b59034959a1289ba6e243668e6735305707e3de7652bfc5b60c76deff43a1d6fd6a4180ab723735abbeffe7f2ec3a0bb86f9eddfc0f3d1d503d7a54b49e1ae6c5aa620d27e91aa0aa0ed6fcacfc91fbb4c256409e54daefbb107c381fa729ff5f3907d93430da178d685d7730f5e129438a5214f722096d29863301b0b811f69145d3fbd78a9059e454474f92e65828b018174a9f4738b8c71fbdeac26ab95e02f9a847182766964976b1fccdb9f35721e43e33883cf16ed1343fb7429eb395123b0a4262b7023c22039b9002589a378ed4c6267965af78b861bd025312538cec97966b8973d4e299d9802264d06e40ae118e1d242d1128dcedeb44030df12ef68f78215d65f96eb55db8cbcb060008000d988374f85451a694ffe38a1d03916ff1eec72b31c98d42e1a1bda1290de1a499a5a385b31112a48ba3e6d6849914c1788a7aca37177cc341fff44fec5c5e0abae01c439a1b0311e074e81ae9993b5b3459553e4ece78d4c1501c70f5d81e0725d5b273755c0000000000000000aa4234ff82182952a76233d18e7d49638aeb04e7a9e9e7eafb7c255372795d2d192a0a33cab0f5bf2e93e0544fcdf2df2bc6ce96e5a11993d54f97a23754ac828674dbb93c0ad345715be4a13678b01edf76d8a923655800a2c88cce004505ab45d8f5f88aa887bbce5c18970428516f6099bdbb2cd7a2356397f1a0a23e662e2a6c4834400cbaa41c3c574e6e6aefb7a68da5ec1ae49f968bbe0e0bf9878516f553639f5b4828e92019b61f5874be1c7cdd9482df50bc24a8a1fa10d291390eb84e26a2e8dbeaa45604b05a116c1210a7540bf81005044273f5a8ffc538db289350eb248e483bd8920efcf30a798c2b636243e0a37262ca47dfeefa753ba528f7ba77e825051ce69b4475d7d714ba0c636e6ae9f710411d30ef424aeaabe057c7df6ff8f767bcd9012e1047c686f5ccb76ab3a5df53cbc22ba7ea8f6a8e220bb4d83de1e4dc19d6c1be841503850803bc2c2d5e0e34270a7f1cca0c6c53a8e5f891f7a793a70da62d6d88fbb90d220acc687931b42d6be83ab870da3c0a567f5e65ec0457f4ad2a4ec0b671b36388afd5520a8483a4b11f7d02a41b315f0f9e59f47668d68a74838d6976e12fd45200014041dffacbf60892ec8bd7560686f137a806d3dfaba900b47cac62f828342fff009adb5b2251461a1b9d6ba625b8fe04e69a1a4be2696f0000000086e172932e03000000000000005942e1b9d6dc28ab8e19e1111dd893e801015642faf21eef40d6e7de3ef62c4bc5ff17e7aeb2841098f845d1cc9ec4eee79c298fb0ba939b13707044e2e9cc0d350438c1c8c6bb9a38c6ac5ca0d9cf1f3d6915f25cb26edfc28b3079b97df32601240e454db103fb0c4a14c16837394d2b3673a3f160d3a7b83ecd0509ce9eba0c7bf7843799b1b56a234f9eaab8a3f14f1472bb6aaeb8ac9ee4054605558ab31f339f6a4caf2ee2fd01f34dca3300000000000000000000000000000000f59f8e6e00000000c44130098d833a24000000000095e6f945ba9a941cef5e70b8c152321e24b5b29bcf374dcf5a29a35d76e6e2bf8df95462690a4fc9ec8129e92b6ebb4b40a992a75d3c5954d0bfc87db24d856359079b29b3c374d081c300b2cfaa596d24e800ef8e2201f2fb7a9946f89f9f31f7cbd603fd7f8898c70b5c65f2e28f22e1a79a6af3a54861b07f124642e98389557affbdede09b5566a4a1ee73b20846810030a754acddcdafe3ceeeebc0b5f2fedfe7d198e3067f3dbac9441a9ab8409cbbb7e15b9ae3944097de34de2001c8533a3766e6e4c4c4702ccb932a27a3962814cd6aa8fc684beeaa3932efae3a9052be8eec1e95f6ad8d41dd34829503ba4b66e27154cb6e34aa13450522df1723130b6fb9bec59ae347c93f00e40e293c98d849a33f773c743728992f40faccd5c23130a1c6bfd6fc661bca1598137ddd1090ded672f5a48a40cab3f640c8241a364cbde0f188eec7da7bccafbd5bf28a46f0eecc6b550471b0b0770c6a5a411c0e0b19e15a461e7c6833ba936e214b013f2819ec6572a43b5cd32b11d7e4f8dcf8f7820a17b7b2ee6178a03351dd25091e46bfd82a3979b9cad109fd6217cd52aa81bdabd50826a674bd16b8f7e6aed12a305366599f5f029a7b24558c02750500002f1c19d16a6f391906000000cc0bbbfb8c698ecc137d96711100e0108d3bd2afed0b279ebf0527552a9331e646c424b14ffbb815622bfd2f635855bed1b164d0a56bd104be069854111c5b26ec3c652b5f0a6b9676dae987ec23456ba05a4dfb15321ef6b76e7e547a688c67ab531cfc784c9f940d9fb0464a6cce635e14b80dc5c1c64e75e6bd5355d84f8df272f18f58c570e7afd83ee77f157c146aa747b728969aeb4aba1d8f9de14275bf4a53e95235ae13768ab3fb8ab6ea50e884c2ea98e6400bf0c5ae2887cd1da0e57ccfdf5eca2b455247efcc13102846c0a85f20c80007c0ce6efce627b95b8ad3003385de97101678fb2163ecea6e70a77a6fbc089e31a5ccece932229b8f79faa6863d6857c3d9a9710f9f8ad16eeb8342278f311cbc226498028234d21466892983378fe64acbb44f694cd78e43c74aa75505cb1c91b189f8f89f233a05f5cd4e173a373178557843dd705268f74a9e5429945503195aefd6706b584d8408c9652b3fe68500747f7ee8375fa559c3ad195d3795df1a8364cd13acc3256ee4634c73eeb6954d0fcf09ab84df0b8900e0c6fea2ccb600ae7a4b128cae19df160e7c207b89132d1d5bdc9ffc79f0549b82df521817651d5fead5128205b92ccdccc69407ab556217af277af911dbd456dfc43dd061b6c91485dcc208cf0b3d0bf851de413f5de5ec015e296914afab6411109355e027ce04990d9aae251b9deb11b7db45b9f15b7b55d8fdbedd9e6cf891205694f02be8b9ea8ecd41308a0e1b93ae3435bfa88b440b1f701b4d0fc49c82193f27f8023b630ea97edbf3bf421a0a1a2b4ac7bb30bcd1cdd172c0df37408fd6827bb03e8742fc1c7a2befd1299928c5f79e846a8dc7ca648d960a759e6711b69776896a9656d59af6d44bc5348229fa84ae78af8421a22c4b4c17a3d24a4a0104000000000000d77cc4eef51c2b417c8c7458ddd7dd9d1a863bf0a9e1a30a19020490038017a5c7e474c83302a2c2b5c976dacf3dda7191c757f208000000000000005f7ed983f65723fbb36b9b51abb0dbcd33570000000000000000251aa4f139d0485ffcf89f01639fd1579a3802f720a0215c720a97071f5065a23642a58275dbca444b00e2e5835185d5d5b2796eb0fe32cf3b0633f58ecc7648c3c6efe82f93a3008052416512eea30ea9472e0b456a652883c0907323cf03be193ad0438cdef7a98a1671a1918df310dc4bfd61c3db4819ab1c57b348a8ff1ed36364a20fe846f11d045de81f069bac8425b31c5d08b433562ffb318c1285011f9b78b2401989384311101e452f54661ecdb2514a6ae50dbdd422de0f0f8c670000000000390be79688f80c4c314cb1b14afcaa5d23f9032e0ec51f45f447d6a7c798fcf7e60e2180e289410801e4f03a0e140f388f25b92da1025d8409e171a2336ed71cca86eb4658fe06df286e0e20276b0618eeffd05774f15686cd9d3182ca2fec863875f305fed6baf48a594db12582a38cfdffffffffffffff0cf8d920517835fe7d09cfcb624f6931f1cc6f6b71f58de9ddc38e0c43992f6bc57a718d0cfd197b5324b4e05ef1caa96db3ae1f2f2e5791faba2ebbe1a6faf21f2748fb1fb6743c3ca8af4e6b02518c9b7fdc1b5721eb1c3ed98db25536f74ac7861afc94544e52dcb5c60460a05802e3b437ac977bfa26b887a2443e8d559c58187f004eb82b07937df6e96f77ed551926bec4e0188fae10a35d1c5f1768ac6be829be1827f9df303160df18597efba46f1babc3d74adc31ca71bdab9079e4288881b434484eadde9da6b81802842abd462d546c59d87acc014f81d3414759bda12d2a2c6bc1bfa807bd3101eb227184a61107b6d0618e2a3b842671e084ac3f0ff94dc48b51601247318ab4d1c5106458000000000008000000000000cfee0107e6c2fe8639d926829fdbbd86bf591a8c3c235d8939af9d923f648165881a6c29997234406200b3b1c321cc158dbe17123eace3000000000000000000000000000000000000796de6ae4ae40bdf9a6e8c5dc29562262af9cd54e8e3ecc7e3c8cba0ecc791683496c4e5c1a5729714d9f9031f49b400cd2667b4ea6df54809615a4f973f93e6ccec72f16ff998e29ed99df733680a9d5cea57f99cc139b6ea9014f3000000000000000000000000000000000000feeab45a4046a622b0dceb413e4e39b7317e92cbed46b41ab5115bfb542c933783d750852dfdc6656aaf15e10615a88821f2f1bc53969b52d6852755e7681ad5beda80b38ccd34116b99f50b4fdd967b3f20f260455412b675639a26c76840cce40e323bde9d673fceda0ad6981565c8a183d928903b4f4472dde41b6dcd75314c31e704dfcb222c8359fe88944f852242270c932abfaeece0843d708f5cd25b2a63ae1e79723c1c3c013836b47da0a35d0f34c0705caae54024cf8ade6396ff44482284f415e5769d9ae8688a8d5516690aae9ce1c785262734723519b042a161e6efabf263a46ba92254a51ff6502470f3038cf6d8d991931cfd82ea97e1b596133e7754908d912d1054d174f5a731c019f152a5ca2e48599b6d563bfcd8c0950f4292769217a6e309452b14e64ae64ad58ced33582a1b3d2e0c300059fb1ee78cdddb827293de267d64bf47c3c8c419683c948e46de8cea0b232da00ff39ebef3b73b3d6fbeecd3f9ff06b7e08ed8ce2b9b9cf2e08975f5959fa7028f68c525ab173c0c553d21bd1e9176abdf799e7a08d2f3c14e1ca99d525bc3af0ca0f48f145c65b10dfc67803aab67f6b631d3d7e237fec4bc6eacc364b7cdd925973705d40c5a614e354d9b92357845d15ea41ad3e3a98396131f835e17f0cbfbdc59453991e689f9ce19bd4a3b4121e5a8b5dbb519b5556cb70603ceac0b7ca02cb05a01afa3164ca428add947673cdba49a0e6e8aeeddf52c0f0ef224c69a3c96c2fddf56d74c4ae7"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r9 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$SIOCX25SFACILITIES(r9, 0x89e3, &(0x7f0000000000)={0x3})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r8, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)

2.862375255s ago: executing program 1 (id=340):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000110020850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r3, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140003006272696467655f736c6176655f31000008000a00", @ANYRES32=r6], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="400000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140003006272696467655f736c6176655f3100000a000100be"], 0x40}}, 0x0)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$pokeuser(0x6, r7, 0x1, 0xfffffffe)
r8 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r8, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x10)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@mpls_getroute={0x24, 0x1a, 0x1, 0x0, 0x0, {0x1c, 0x14}, [@RTA_DST={0x8, 0x13}]}, 0x24}}, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r8, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {{}, {}, {0x18, 0x17, {0x1c, 0x6, @l2={'eth', 0x3a, 'team0\x00'}}}}, ["", ""]}, 0x34}, 0x1, 0x0, 0x0, 0x8110}, 0xc0)

2.714207233s ago: executing program 1 (id=341):
r0 = socket(0x10, 0x5, 0x2002)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00'})
fstatfs(r0, &(0x7f0000000200)=""/136)
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r3, 0x400, 0x1)
openat$dir(0xffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
fcntl$getflags(r2, 0x3)
r4 = openat$proc_mixer(0xffffffffffffff9c, 0x0, 0x22882, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r4, 0x80049367, 0x0)
setns(r3, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ppoll(&(0x7f0000000000), 0x20000000000000a4, 0x0, 0x0, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000002380)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x8000}})
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
write$FUSE_INIT(r6, &(0x7f0000002300)={0x50, 0x0, 0x0, {0x7, 0x9, 0x0, 0x1030002}}, 0x50)
write$FUSE_INTERRUPT(r6, &(0x7f0000002240)={0x10, 0xffffffffffffffda}, 0x10)
r7 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
dup3(r7, r6, 0x0)

2.520997343s ago: executing program 0 (id=342):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000e00)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x240080a0)
sendmmsg$inet(r0, &(0x7f0000003bc0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)="3cdf9a0df115c376edfe5a129e71cc04a100846663b0fa4576b19cbb131cc17fb88f775547cd8571ace7c507ed037f2183abffd89ab8b4ca62ca863357b6b48d305c30d5b69887d2472f508896925e0660adb38902b29f791d95c838042f98b9", 0x60}, {&(0x7f0000000180)="eea99986e4f7ccb042247fe67856fc8e253ecb6f4fa3016ef0e762ac2738fb7f6a4346ac99b50fb421267a17645365b35e566b3354639752c01185e7f41e3d5c2672ea3c4624e84cabd527c74c9da01a2e0f5b964a2ad0f5fb9b740dd54086652a1ca05c64aa67ba434e688ef70287442299c908", 0x74}], 0x2}}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000340)="49e645d1377f5f3ca1b267498c94", 0xe}, {&(0x7f0000000380)="f3d064919ec3e096b13d306ef7b6c4ca11bfb2191bfe0e715fbe8337c71b05ba4a5015a3f3f3fe7b3464b5f0a76b4fc0594d7234cc6cae2bb3f49e0e671b3bb10d59e4c31a52ee84f26d336d696a43f49c626fc25ffd24cbd689046473665225ecab", 0x62}, {&(0x7f0000000440)}, {&(0x7f0000000500)="82ecd52e29fc43073eadc02b964dae38fd1a4dda4e8845559d", 0x19}, {&(0x7f0000000540)="2918e647a78743e1ab60dbe7e59065085e24f575e5b944ec946ab1f1b5b6c23cc289096b1ed2ba487aac4679a98b854e7b9405783efdaec6b9fa25bdce1f4ea4d08967466b4ad46acca659b2c3eb7568ea3ae4b08dea296cf35efde79dc9941a798b72545ac8ff4d25a62349c8b42975811fff007f74749382f452c1163ef2ade0bab7e7ff0e835f685f107593941da36c647c803d8cb574538d2d27263890dd94b3c9c6eab09e06b38b2e773cb328691a2c7bb7004fdbf2e4a58e41e2e75dbe63266050c0f906d5d9f24dc50072560a96ad1f02c3ecb022f9e9e249daea6a49940728d3b84a11", 0xe7}, {&(0x7f0000000640)="6576f33482e91c81", 0x8}, {&(0x7f0000000880)="3fde694efb6b43c17bf92103d75945c4668991b5a8b6b181db8705a39503a922e50e087b2df249cdc1924ef996bc941b10d8ad0fe3b9cebbd95618ae0bfffde89500f4df8b949435b2b1eadf771b73bbbb7df9872cb63cc5658772f49545175e5ab784c5130d46", 0x67}, {&(0x7f00000006c0)="5d5e0d1d45bc6a12144312041aca0360e3b269367b1ce7921eb6ab68f2e1c8eb352d6710e18688e3f497f17a85fa70d1b5ee5c1dd2c8cd3da4cf5e441c925a9db29858329a7458fce81f0c7afcf50f29539eb1528e5915134f63c899164844e88e2b71c76a4f3fcdc105b6c0bf7041f1e74cee", 0x73}, {&(0x7f0000000740)="b01bdc442c79626417868bd6d9cee7c3312817e415ec2b4cf10e19e2f8263018109c49", 0x23}, {&(0x7f0000000780)="9bf4187f38b4f98574142f7e6a924765", 0x10}], 0xa}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000ac0)="14e9eb2b4328892813f7a65cbad23a6a1484efeba29d36f200bf436d544c1d5f566464e8be16d1e0287842f7a547aa903342772221fcb36e448a980dcc9b46bdc8adad97ab335f8eb53a5931acdc2dd54674028b2a57b06db577355be0646070d18ec93f1ad96ffc497fec11e3cabecceb22504b118f62beea15b30d5f39e466652b2e60d66b39ed8f5c", 0x8a}, {&(0x7f0000000940)="faced4a3c55a0baee904aa452aadf862fbb1665f60bf5ef26c53d0fe2fb3b84cebdca71c7161135d8dfca94143a2cd93642230ea0568fe0687bc2b748fdebee6c271b4358c1cf71be8829dde3d4ed97f70c5ba8a5cd1ed9e", 0x58}, {&(0x7f00000009c0)="fd8af5e10c88a4544d81f9175dc1f0cddcd9501d8e0157b3fa05e888c2015ee5087ba1f4e9453adb7113f76f8aab87999da78bc4ff2637b6eb5110a460f52a631926f7d44be900e725411402ee71a20057642c6a61c07425483391521405a242af2671f5cc30c2a70d88a7b36d8425ad54b5adb03b43894dd70a61b3ad234193b78f629fa4746b89448ad8da47aee1d5733cb46ffa004b1af613612fb5608bcd01ab90f8d1c6c2761b0de2dfe2b1f23e9125603e543d08d64fd1b7a3d96f7b53a476ac2055c109f5d38b8267cd88a358ebc833139bfe5512233959f4321338649c23", 0xe2}], 0x3}}, {{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000d80)="e726305e41d163b72c8b089344a057aa42a9c154e1090843a1958bf26669fa", 0x1f}], 0x1}}], 0x4, 0x24048844)

2.430887344s ago: executing program 0 (id=343):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x1, 0x7fe2, 0x1, 0x12, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000007000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000000)={0xc, 0x0, &(0x7f00000003c0)=[@increfs, @enter_looper], 0x0, 0x0, 0x0})
dup3(r5, r4, 0x0)
ppoll(&(0x7f0000000180)=[{r5}], 0x1, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000580)={0x10, 0x0, &(0x7f0000000700)=[@request_death={0x400c630e, 0x0, 0xffffff7f00000000}], 0x0, 0x1000000000000, 0x0})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fdinfo\x00')

2.320300667s ago: executing program 3 (id=344):
socket$packet(0x11, 0x2, 0x300)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000), 0xe)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bind$inet6(r2, &(0x7f0000000340)={0xa, 0x4e22, 0x1, @private2, 0x9}, 0x1c)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000b80)=ANY=[@ANYBLOB="9feb01005ffc"], 0x0, 0xfc5f, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
listen(r0, 0x4)
sched_setscheduler(0x0, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x30, &(0x7f0000000c80)=ANY=[@ANYBLOB], 0x210)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x2, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, 0x0)
io_submit(0x0, 0x6, &(0x7f0000000780)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x8, 0xffffffffffffffff, &(0x7f00000003c0)="f71732a0b8207a2f2697166278d45f955298bd11bdb9911be5424e0a5b4aa54ee00161f037ca89380cdd2c99521d801c9116d8de812821448f3f", 0x3a, 0xff, 0x0, 0x1}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x2, 0x9, 0xffffffffffffffff, &(0x7f0000000440), 0x0, 0xffffffff, 0x0, 0x2}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, &(0x7f0000000bc0)="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", 0x1000, 0x4166}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x7, 0x9dc8, r3, &(0x7f0000000580)="2690e09c94d1f28c07677183dbb2c803eee692e5e7fdf5d2", 0x18, 0x3}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, &(0x7f0000000600)="8a40acdbae5466a61e32d28960b343cfad6195", 0x13, 0x2, 0x0, 0x1}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x7, 0x6a7a, 0xffffffffffffffff, &(0x7f00000006c0)="c08dbf885bf2", 0x6, 0x3ef4}])
finit_module(0xffffffffffffffff, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000480)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000080)={r5, 0x3, r2, 0x6, 0x80000})
socket$nl_route(0x10, 0x3, 0x0)

1.921177145s ago: executing program 3 (id=345):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x101301)
ioctl$USBDEVFS_CLAIM_PORT(r0, 0x80045518, &(0x7f0000000000))
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000002fc0)={0x0, 0xfffffffffffffe30, &(0x7f0000002f80)={&(0x7f00000003c0)=ANY=[@ANYBLOB="081931060000008fecd0692545f831d18f"], 0x14}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getpgrp(0x0)
process_vm_readv(0x0, &(0x7f0000008400)=[{0x0}], 0x1, &(0x7f0000008640)=[{0x0}], 0x1, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
syz_init_net_socket$llc(0x1a, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="20000000010805000000000000000000000000000900010073797a30000000e1"], 0x20}}, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000580)='gadgetfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000340), &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000840)=ANY=[@ANYRES64])
chdir(&(0x7f00000002c0)='./file0\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000640)={'#! ', './bus', [], 0xa, "9f4773c8a3593a5db4b8b7d54ae6588a263c120d7eebb78d280c78f59206c2037a870ab1c7dbc0c9a5096b4fb19a9a2a205d4f97a6bf2f381d79cdf16bc3e6d824f9b9"}, 0x4c)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x10012, r4, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_int(r5, &(0x7f0000000200), 0x12)
chdir(&(0x7f0000000500)='./bus\x00')

1.70916422s ago: executing program 2 (id=346):
r0 = socket$igmp6(0xa, 0x3, 0x2)
open(0x0, 0x2a00, 0x5)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
syz_emit_ethernet(0x76, &(0x7f0000000280)={@local, @local, @val={@val, {0x8100, 0x0, 0x0, 0x33}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f81fcb", 0x38, 0x3a, 0x0, @private0, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, "4aa1d3", 0x0, 0x0, 0x0, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [@srh={0x88}]}}}}}}}, 0x0)

1.566937765s ago: executing program 2 (id=347):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ptrace$setregset(0x4205, 0xffffffffffffffff, 0x1, &(0x7f0000000400)={&(0x7f0000000480)="53725ad700d75d7a25d29fc6bd923b1fd8ae073a7f33bb1fbb6f8f0385db2caa2c1129acb9f3dfb64339e156f0c2e09ee3ccf3b234349f8737169455894cd49d4501a914a81e517faef9647ba06e9cbe297de1064d0529553f016eb7d46fbdd0acb8f60e200c0157d3763c7506e8e01b390c3d26844f5df3c20ccaac262ba74a555140cc9596e6968a2c6a88c08537db5b05c26906d7a188ff6908350eb297c9c623585ca1761b836d3a06938332e7fd65053242eb05435b3857183caa693e9eefc2d71648ef2e57740800003ef52262fb7e8b4d62ea80c34e0685bf657092e26906ef937f101b2100"/247, 0xf7})
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r1, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
setsockopt$inet6_int(r1, 0x29, 0x1a, &(0x7f00000003c0)=0x6, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @loopback}, @in6={0xa, 0x0, 0x0, @private0}], 0x38)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000180)=[@in={0x2, 0x4e22, @empty}], 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000eba7f617905500000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="200000001000fbf1dc791eef010000000c0002006e6c383032313100e899bc543ad3c5d0ee82408edf03d81f63eeba7d8e8df28d3bf6aa7449ff913a8278149c2d437ed04a522972371e92df88d1cc7c04f13148bc3a6ea15d478ec3b8e12c0f756442b75473c38300"/114], 0x20}}, 0x0)
recvmmsg(r5, &(0x7f0000000a40)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000100)=""/210, 0xd2}, {&(0x7f0000000400)=""/203, 0xcb}, {&(0x7f0000000200)=""/7, 0x7}, {&(0x7f0000000280)=""/118, 0x76}], 0x4}, 0x33a}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x2)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000810500"/20, @ANYRES32, @ANYBLOB="0000000000000000280012800a00010063616e"], 0x48}}, 0x0)
ioctl$KVM_SET_IRQCHIP(r3, 0xc048aec8, &(0x7f0000000080)={0x0, 0x0, @ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}]}})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
syz_open_dev$media(&(0x7f00000001c0), 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206050000010000000000000000000005000100070900000000000000797a30000000000c000780080006000000000015000300686173683a69702c706f72742c6e65740000000005000500020000000500040000000000"], 0x5c}}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000300)={{{@in=@dev}}, {{@in=@multicast1}, 0x0, @in6=@empty}}, &(0x7f0000000040)=0xe4)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x29}}, 0x10)

1.352003259s ago: executing program 0 (id=348):
syz_emit_ethernet(0x5e, &(0x7f00000000c0)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x28, 0x6, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "6e7c98555e857f7174c52a2c43d2c855"}]}}}}}}}}, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c023a02000009053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0e00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002cc0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000002d00)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_MPATH(r3, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000002d40)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001600000008000300", @ANYRES32=r5], 0x28}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000300)=0x9)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000004000000000000000000190095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r7}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000500)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @private, @dev}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000003d80)=""/102384, 0x18ff0}], 0x1, 0x0, 0x0)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ipv6_route\x00')
lseek(r8, 0xae7e, 0x0)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r9, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=@newsa={0x1b4, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@mcast2}, {@in=@loopback, 0x0, 0x32}, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0xd9e3, 0x0, 0x3}, {}, 0x0, 0x0, 0xa, 0x0, 0x0, 0x5}, [@algo_aead={0xc7, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x3d8, 0x0, "0ee5a2d957f94b8c18d13b9dae1d762ebf9650ab6807acf22dd30406208ef6f8673d819a3674129b175bd95e0a6f288f795c374e2f8987b6317856f46d9bd409e2e2addf47aa3febd134be326cc8dc14ab668cd9778859d31d94ee040000008c91d570aa02abbd1761fcbd8f06b13fc6f0b1a5f36d50b30a21e404"}}]}, 0x1b4}}, 0x0)
r10 = openat$sr(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r10, 0x5392, &(0x7f00000002c0)=ANY=[])

951.2667ms ago: executing program 1 (id=349):
r0 = openat$cdrom(0xffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$CDROM_MEDIA_CHANGED(r0, 0x5325, 0x1000000)

708.490079ms ago: executing program 1 (id=350):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm={0x4, 0x4000000}, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)

690.572252ms ago: executing program 3 (id=351):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000e00)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x240080a0)
sendmmsg$inet(r0, &(0x7f0000003bc0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)="3cdf9a0df115c376edfe5a129e71cc04a100846663b0fa4576b19cbb131cc17fb88f775547cd8571ace7c507ed037f2183abffd89ab8b4ca62ca863357b6b48d305c30d5b69887d2472f508896925e0660adb38902b29f791d95c838042f98b9", 0x60}, {&(0x7f0000000180)="eea99986e4f7ccb042247fe67856fc8e253ecb6f4fa3016ef0e762ac2738fb7f6a4346ac99b50fb421267a17645365b35e566b3354639752c01185e7f41e3d5c2672ea3c4624e84cabd527c74c9da01a2e0f5b964a2ad0f5fb9b740dd54086652a1ca05c64aa67ba434e688ef70287442299c908", 0x74}], 0x2}}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000340)="49e645d1377f5f3ca1b267498c94", 0xe}, {&(0x7f0000000380)="f3d064919ec3e096b13d306ef7b6c4ca11bfb2191bfe0e715fbe8337c71b05ba4a5015a3f3f3fe7b3464b5f0a76b4fc0594d7234cc6cae2bb3f49e0e671b3bb10d59e4c31a52ee84f26d336d696a43f49c626fc25ffd24cbd689046473665225ecab", 0x62}, {&(0x7f0000000440)="6d7ddccc0f4bde59f95c2f2f8e9f63bfd3bf597c226526ed889b6b4921b44e21a9e15c477b2fd46764ed28b5ec13f817dcf9926ae2d4ca4f3b90307305c94c2013cb", 0x42}, {&(0x7f0000000500)="82ecd52e29fc43073eadc02b964dae38fd1a4dda4e8845559d", 0x19}, {&(0x7f0000000540)="2918e647a78743e1ab60dbe7e59065085e24f575e5b944ec946ab1f1b5b6c23cc289096b1ed2ba487aac4679a98b854e7b9405783efdaec6b9fa25bdce1f4ea4d08967466b4ad46acca659b2c3eb7568ea3ae4b08dea296cf35efde79dc9941a798b72545ac8ff4d25a62349c8b42975811fff007f74749382f452c1163ef2ade0bab7e7ff0e835f685f107593941da36c647c803d8cb574538d2d27263890dd94b3c9c6eab09e06b38b2e773cb328691a2c7bb7004fdbf2e4a58e41e2e75dbe63266050c0f906d5d9f24dc50072560a96ad1f02c3ecb022f9e9e249daea6a49940728d3b84a11", 0xe7}, {&(0x7f0000000640)="6576f33482e91c81", 0x8}, {&(0x7f0000000880)="3fde694efb6b43c17bf92103d75945c4668991b5a8b6b181db8705a39503a922e50e087b2df249cdc1924ef996bc941b10d8ad0fe3b9cebbd95618ae0bfffde89500f4df8b949435b2b1eadf771b73bbbb7df9872cb63cc5658772f49545175e5ab784c5130d46", 0x67}, {&(0x7f00000006c0)="5d5e0d1d45bc6a12144312041aca0360e3b269367b1ce7921eb6ab68f2e1c8eb352d6710e18688e3f497f17a85fa70d1b5ee5c1dd2c8cd3da4cf5e441c925a9db29858329a7458fce81f0c7afcf50f29539eb1528e5915134f63c899164844e88e2b71c76a4f3fcdc105b6c0bf7041f1e74cee", 0x73}, {&(0x7f0000000740)="b01bdc442c79626417868bd6d9cee7c3312817e415ec2b4cf10e19e2f8263018109c49", 0x23}, {&(0x7f0000000780)="9bf4187f38b4f98574142f7e6a924765", 0x10}], 0xa}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000ac0)="14e9eb2b4328892813f7a65cbad23a6a1484efeba29d36f200bf436d544c1d5f566464e8be16d1e0287842f7a547aa903342772221fcb36e448a980dcc9b46bdc8adad97ab335f8eb53a5931acdc2dd54674028b2a57b06db577355be0646070d18ec93f1ad96ffc497fec11e3cabecceb22504b118f62beea15b30d5f39e466652b2e60d66b39ed8f5c", 0x8a}, {&(0x7f0000000940)="faced4a3c55a0baee904aa452aadf862fbb1665f60bf5ef26c53d0fe2fb3b84cebdca71c7161135d8dfca94143a2cd93642230ea0568fe0687bc2b748fdebee6c271b4358c1cf71be8829dde3d4ed97f70c5ba8a5cd1ed9e", 0x58}, {&(0x7f00000009c0)="fd8af5e10c88a4544d81f9175dc1f0cddcd9501d8e0157b3fa05e888c2015ee5087ba1f4e9453adb7113f76f8aab87999da78bc4ff2637b6eb5110a460f52a631926f7d44be900e725411402ee71a20057642c6a61c07425483391521405a242af2671f5cc30c2a70d88a7b36d8425ad54b5adb03b43894dd70a61b3ad234193b78f629fa4746b89448ad8da47aee1d5733cb46ffa004b1af613612fb5608bcd01ab90f8d1c6c2761b0de2dfe2b1f23e9125603e543d08d64fd1b7a3d96f7b53a476ac2055c109f5d38b8267cd88a358ebc833139bfe5512233959f4321338649c23", 0xe2}], 0x3}}, {{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000d80)="e726305e41d163b72c8b089344a057aa42a9c154e1090843a1958bf26669fa", 0x1f}], 0x1}}], 0x4, 0x24048844)

530.887555ms ago: executing program 1 (id=352):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket(0x40000000015, 0x5, 0x0)
timer_create(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
r1 = fsopen(&(0x7f0000000240)='sockfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
fsconfig$FSCONFIG_SET_FLAG(r2, 0x5, &(0x7f0000000200)='ro\x00', 0x0, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0)
getuid()
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x2a2066a8d516c90, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000140)=0x7)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0xff)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000003c0))

530.524405ms ago: executing program 3 (id=353):
socket$packet(0x11, 0x2, 0x300)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000), 0xe)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bind$inet6(r2, &(0x7f0000000340)={0xa, 0x4e22, 0x1, @private2, 0x9}, 0x1c)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000b80)=ANY=[@ANYBLOB="9feb01005ffc"], 0x0, 0xfc5f, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
listen(r0, 0x4)
sched_setscheduler(0x0, 0x1, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x2, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, 0x0)
io_submit(0x0, 0x6, &(0x7f0000000780)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x8, 0xffffffffffffffff, &(0x7f00000003c0)="f71732a0b8207a2f2697166278d45f955298bd11bdb9911be5424e0a5b4aa54ee00161f037ca89380cdd2c99521d801c9116d8de812821448f3f", 0x3a, 0xff, 0x0, 0x1}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x2, 0x9, 0xffffffffffffffff, &(0x7f0000000440), 0x0, 0xffffffff, 0x0, 0x2}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, &(0x7f0000000bc0)="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", 0x1000, 0x4166}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x7, 0x9dc8, r3, &(0x7f0000000580)="2690e09c94d1f28c07677183dbb2c803eee692e5e7fdf5d2", 0x18, 0x3}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, &(0x7f0000000600)="8a40acdbae5466a61e32d28960b343cfad6195", 0x13, 0x2, 0x0, 0x1}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x7, 0x6a7a, 0xffffffffffffffff, &(0x7f00000006c0)="c08dbf885bf2", 0x6, 0x3ef4}])
finit_module(0xffffffffffffffff, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000480)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000080)={r5, 0x3, r2, 0x6, 0x80000})
socket$nl_route(0x10, 0x3, 0x0)

270.832245ms ago: executing program 0 (id=354):
syz_open_dev$usbfs(0x0, 0x201, 0xcf341)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
listen(r0, 0x10)
r1 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
syz_open_dev$video4linux(0x0, 0x401, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000100))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x1e, 0x1, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
socket$qrtr(0x2a, 0x2, 0x0)
r4 = socket(0x11, 0x800000003, 0x0)
r5 = socket(0x10, 0x3, 0x80002)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000600))
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
r6 = socket(0x11, 0x803, 0xffffffff)
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'xfrm0\x00'})
sendto$packet(r6, &(0x7f0000000140)="4dcdc7d96a7600000001000500000000000000ff", 0x14, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r7 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000eced762bc112990cefce0000c62da0d011dc945ec0eac4987317b05567c014fb5c7c4540970eabd62bca9f314cdf9d6aecf3ad6b63985dd8db"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000020000000000000000020000181200", @ANYRES32=r7, @ANYBLOB="0000000000000000b70300000000000085000000ad000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0x8, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x200)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r9 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$CDROM_SELECT_SPEED(r9, 0x5322, 0xc)

270.117101ms ago: executing program 3 (id=355):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = socket$inet_sctp(0x2, 0x400000000001, 0x84)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000003dca4d06445a96850018110000050e93f93ddb51fe195c76cc606f1a9f20833f9afca453731c9a033874f586e2b80826d8f7ccd2fdc82d4d143e4ded7d4478272e436706681d31421ee388c513a8428416ddb853a7a6f6be3212e8eaace90dd0003367964c6d6338d3d9df14744a5aeb635957b3fbbd109485bf5aa52c32c61f", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = syz_open_procfs(0x0, &(0x7f0000000600)='net/netstat\x00')
lseek(r4, 0xeb, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
r5 = syz_io_uring_setup(0x269e, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000380)=<r6=>0x0)
syz_io_uring_setup(0x5e2, &(0x7f00000003c0), &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r7, r6, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1})
io_uring_enter(r5, 0xa3d, 0x0, 0x0, 0x0, 0x0)
r8 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
preadv(r8, &(0x7f0000000340)=[{&(0x7f0000000080)=""/82, 0x52}], 0x1, 0x0, 0x0)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r9, 0x6, 0x4, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000000)=@newtaction={0x14}, 0x14}}, 0x0)
getsockopt$inet6_mptcp_buf(0xffffffffffffffff, 0x11c, 0x4, &(0x7f0000000000)=""/152, &(0x7f00000000c0)=0x98)
getsockopt$inet_tcp_int(r9, 0x6, 0x4, 0x0, &(0x7f00000001c0))
gettid()
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000000)=0x639)
readv(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000000)={0x1}, 0x8)
close(r0)

0s ago: executing program 0 (id=356):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x68)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
r1 = socket(0x0, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000}, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
iopl(0x3)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, 0x0)
shmget$private(0x0, 0x400000, 0x800, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x20001439) (fail_nth: 34)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x38, 0x4, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x38}}, 0x4040010)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
bind$netlink(r5, &(0x7f00000000c0)={0x10, 0x0, 0x25dfdbfc, 0x100000}, 0xc)
bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r1)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)={0x5c, r6, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x40}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}]}, @MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x10}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40001}, 0x4000000)
setsockopt$sock_int(r5, 0x1, 0x28, 0x0, 0x53)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:30382' (ED25519) to the list of known hosts.
[   50.604539][ T5338] cgroup: Unknown subsys name 'net'
[   50.762105][ T5338] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   51.897844][ T5338] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   56.434179][   T66] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   56.438264][   T66] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   56.442704][   T66] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   56.447196][   T66] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   56.453112][   T66] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   56.455846][ T5361] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   56.457191][   T66] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   56.460355][ T5361] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   56.461388][ T5363] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   56.462622][ T5363] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   56.463359][ T5364] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   56.464102][ T5364] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   56.465656][ T5361] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   56.468443][ T5365] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   56.470555][ T5361] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   56.475233][ T5365] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   56.480631][ T4777] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   56.481356][ T4777] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   56.484673][ T5365] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   56.486714][ T4777] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   56.489681][ T5365] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   56.517950][ T5364] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   56.522114][ T5364] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   56.525772][ T5364] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   56.917385][ T5348] chnl_net:caif_netlink_parms(): no params data found
[   57.094304][ T5355] chnl_net:caif_netlink_parms(): no params data found
[   57.101545][ T5356] chnl_net:caif_netlink_parms(): no params data found
[   57.227482][ T5350] chnl_net:caif_netlink_parms(): no params data found
[   57.342040][ T5348] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.344867][ T5348] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.348028][ T5348] bridge_slave_0: entered allmulticast mode
[   57.355329][ T5348] bridge_slave_0: entered promiscuous mode
[   57.417311][ T5348] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.419967][ T5348] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.422718][ T5348] bridge_slave_1: entered allmulticast mode
[   57.426393][ T5348] bridge_slave_1: entered promiscuous mode
[   57.563716][ T5348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.576303][ T5348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.609794][ T5356] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.612684][ T5356] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.615486][ T5356] bridge_slave_0: entered allmulticast mode
[   57.619324][ T5356] bridge_slave_0: entered promiscuous mode
[   57.624133][ T5355] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.626882][ T5355] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.629806][ T5355] bridge_slave_0: entered allmulticast mode
[   57.633926][ T5355] bridge_slave_0: entered promiscuous mode
[   57.725121][ T5356] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.728308][ T5356] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.731438][ T5356] bridge_slave_1: entered allmulticast mode
[   57.735699][ T5356] bridge_slave_1: entered promiscuous mode
[   57.768204][ T5355] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.771268][ T5355] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.774059][ T5355] bridge_slave_1: entered allmulticast mode
[   57.777886][ T5355] bridge_slave_1: entered promiscuous mode
[   57.843309][ T5348] team0: Port device team_slave_0 added
[   57.904868][ T5350] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.907814][ T5350] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.912104][ T5350] bridge_slave_0: entered allmulticast mode
[   57.915775][ T5350] bridge_slave_0: entered promiscuous mode
[   57.922608][ T5348] team0: Port device team_slave_1 added
[   57.927012][ T5356] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.932378][ T5356] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.975320][ T5350] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.977296][ T5350] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.979450][ T5350] bridge_slave_1: entered allmulticast mode
[   57.981895][ T5350] bridge_slave_1: entered promiscuous mode
[   58.038041][ T5355] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.130557][ T5355] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.167037][ T5348] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.172561][ T5348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.182209][ T5348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.191267][ T5356] team0: Port device team_slave_0 added
[   58.221316][ T5350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.225446][ T5348] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.227802][ T5348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.235781][ T5348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.241136][ T5356] team0: Port device team_slave_1 added
[   58.274310][ T5355] team0: Port device team_slave_0 added
[   58.279833][ T5350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.347784][ T5355] team0: Port device team_slave_1 added
[   58.429832][ T5356] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.432467][ T5356] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.441426][ T5356] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.447451][ T5356] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.450078][ T5356] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.459626][ T5356] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.489788][ T5350] team0: Port device team_slave_0 added
[   58.530103][ T5364] Bluetooth: hci3: command tx timeout
[   58.530379][ T5351] Bluetooth: hci0: command tx timeout
[   58.532446][ T5360] Bluetooth: hci2: command tx timeout
[   58.535383][ T5355] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.540166][ T5355] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.550447][ T5355] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.559116][ T5350] team0: Port device team_slave_1 added
[   58.608564][ T5364] Bluetooth: hci1: command tx timeout
[   58.622649][ T5355] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.625369][ T5355] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.635144][ T5355] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.681017][ T5348] hsr_slave_0: entered promiscuous mode
[   58.684923][ T5348] hsr_slave_1: entered promiscuous mode
[   58.714519][ T5356] hsr_slave_0: entered promiscuous mode
[   58.716739][ T5356] hsr_slave_1: entered promiscuous mode
[   58.719052][ T5356] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.721478][ T5356] Cannot create hsr debugfs directory
[   58.756288][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.759085][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.768241][ T5350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.774635][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.777002][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.786413][ T5350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.940941][ T5355] hsr_slave_0: entered promiscuous mode
[   58.948902][ T5355] hsr_slave_1: entered promiscuous mode
[   58.951907][ T5355] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.954571][ T5355] Cannot create hsr debugfs directory
[   59.106317][ T5350] hsr_slave_0: entered promiscuous mode
[   59.121930][ T5350] hsr_slave_1: entered promiscuous mode
[   59.128634][ T5350] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.131855][ T5350] Cannot create hsr debugfs directory
[   59.601287][ T5356] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   59.613116][ T5356] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   59.620785][ T5356] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   59.628508][ T5356] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   59.681948][ T5348] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   59.694476][ T5348] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   59.710764][ T5348] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   59.717436][ T5348] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   59.771374][ T5355] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   59.778340][ T5355] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   59.794608][ T5355] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   59.813369][ T5355] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   59.876551][ T5350] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   59.900968][ T5350] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   59.905910][ T5350] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   59.923232][ T5350] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   59.971961][ T5356] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.024743][ T5356] 8021q: adding VLAN 0 to HW filter on device team0
[   60.034778][ T5348] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.056695][ T1101] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.058822][ T1101] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.063666][ T1101] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.065504][ T1101] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.095457][ T5348] 8021q: adding VLAN 0 to HW filter on device team0
[   60.118731][   T76] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.121476][   T76] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.146112][ T5355] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.180050][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.182567][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.220105][ T5355] 8021q: adding VLAN 0 to HW filter on device team0
[   60.244853][ T1101] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.247674][ T1101] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.271744][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.274549][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.347131][ T5350] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.397431][ T5350] 8021q: adding VLAN 0 to HW filter on device team0
[   60.414623][ T1110] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.416700][ T1110] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.423979][ T1110] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.426598][ T1110] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.462204][ T5356] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.519501][ T5356] veth0_vlan: entered promiscuous mode
[   60.532524][ T5356] veth1_vlan: entered promiscuous mode
[   60.572273][ T5356] veth0_macvtap: entered promiscuous mode
[   60.581042][ T5355] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.596158][ T5356] veth1_macvtap: entered promiscuous mode
[   60.608559][ T5364] Bluetooth: hci2: command tx timeout
[   60.609020][ T5360] Bluetooth: hci0: command tx timeout
[   60.613890][ T5348] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.618645][ T5360] Bluetooth: hci3: command tx timeout
[   60.655936][ T5356] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.674936][ T5356] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.699477][ T5360] Bluetooth: hci1: command tx timeout
[   60.704542][ T5356] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.707414][ T5356] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.710322][ T5356] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.712859][ T5356] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.733094][ T5355] veth0_vlan: entered promiscuous mode
[   60.777069][ T5348] veth0_vlan: entered promiscuous mode
[   60.785501][ T5355] veth1_vlan: entered promiscuous mode
[   60.839751][ T5348] veth1_vlan: entered promiscuous mode
[   60.846251][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.852818][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.863631][ T5350] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.904668][   T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.908158][   T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.922338][ T5355] veth0_macvtap: entered promiscuous mode
[   60.933684][ T5355] veth1_macvtap: entered promiscuous mode
[   60.952222][ T5348] veth0_macvtap: entered promiscuous mode
[   60.970506][ T5348] veth1_macvtap: entered promiscuous mode
[   60.993731][ T5355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.998184][ T5355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.006886][ T5355] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.031660][ T5355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.034356][ T5355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.039902][ T5355] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.057789][ T5355] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.063715][ T5355] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.066938][ T5355] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.070689][ T5355] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.077447][ T5350] veth0_vlan: entered promiscuous mode
[   61.084481][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.088098][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.094509][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.098049][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.103888][ T5348] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.112096][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.116060][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.119322][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.122925][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.129380][ T5348] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.137408][ T5350] veth1_vlan: entered promiscuous mode
[   61.145665][ T5348] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.148030][ T5348] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.150721][ T5348] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.153239][ T5348] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.239808][ T5350] veth0_macvtap: entered promiscuous mode
[   61.240322][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.244923][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.263275][ T5350] veth1_macvtap: entered promiscuous mode
[   61.270281][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.272583][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.316604][ T1102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.318208][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.321341][ T1102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.327984][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.331928][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.336096][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.339303][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.342950][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.348190][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.361884][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.365656][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.369300][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.372924][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.376238][ T5350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.380157][ T5350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.386229][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.392652][ T5350] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.395785][ T5350] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.399968][ T5350] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.402842][ T5350] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.418302][   T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.422215][   T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.496590][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.501299][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.552829][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.556128][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.699726][ T5418] geneve1: entered promiscuous mode
[   61.714104][ T5418] geneve1: left promiscuous mode
[   61.791928][ T5418] overlayfs: conflicting options: nfs_export=on,index=off
[   62.151924][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   62.154841][ T5430] netlink: 'syz.1.7': attribute type 4 has an invalid length.
[   62.214085][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   62.254958][ T5430] netlink: 'syz.1.7': attribute type 4 has an invalid length.
[   62.698970][ T5360] Bluetooth: hci2: command tx timeout
[   62.700741][ T5364] Bluetooth: hci3: command tx timeout
[   62.701571][ T5360] Bluetooth: hci0: command tx timeout
[   62.778666][ T5351] Bluetooth: hci1: command tx timeout
[   63.124520][ T5430] syz.1.7 (5430) used greatest stack depth: 21472 bytes left
[   63.459450][ T5442] netlink: 'syz.0.10': attribute type 4 has an invalid length.
[   63.463610][ T5442] netlink: 'syz.0.10': attribute type 4 has an invalid length.
[   63.466703][ T5442] netlink: 126012 bytes leftover after parsing attributes in process `syz.0.10'.
[   63.587781][ T5450] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   63.952051][   T35] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   63.994641][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   64.148514][   T35] usb 6-1: Using ep0 maxpacket: 32
[   64.171605][   T35] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   64.179374][   T35] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   64.182618][   T35] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   64.185360][   T35] usb 6-1: Product: syz
[   64.186805][   T35] usb 6-1: Manufacturer: syz
[   64.192529][   T35] usb 6-1: SerialNumber: syz
[   64.205331][   T35] usb 6-1: config 0 descriptor??
[   64.209339][ T5455] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   64.211734][ T5465] syz.3.14 uses obsolete (PF_INET,SOCK_PACKET)
[   64.256976][ T5351] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[   64.260994][ T5351] CPU: 2 UID: 0 PID: 5351 Comm: kworker/u33:2 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[   64.264843][ T5351] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.269041][ T5351] Workqueue: hci2 hci_rx_work
[   64.271059][ T5351] Call Trace:
[   64.272484][ T5351]  <TASK>
[   64.273667][ T5351]  dump_stack_lvl+0x16c/0x1f0
[   64.275499][ T5351]  sysfs_warn_dup+0x7f/0xa0
[   64.277227][ T5351]  sysfs_create_dir_ns+0x24d/0x2b0
[   64.279024][ T5351]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   64.280856][ T5351]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   64.282654][ T5351]  ? do_raw_spin_unlock+0x172/0x230
[   64.284547][ T5351]  kobject_add_internal+0x2c8/0x990
[   64.286754][ T5351]  kobject_add+0x16f/0x240
[   64.288644][ T5351]  ? __pfx_kobject_add+0x10/0x10
[   64.290629][ T5351]  ? do_raw_spin_unlock+0x172/0x230
[   64.292569][ T5351]  ? kobject_put+0xab/0x5a0
[   64.294250][ T5351]  device_add+0x289/0x1a70
[   64.295929][ T5351]  ? __pfx_dev_set_name+0x10/0x10
[   64.297815][ T5351]  ? __pfx_device_add+0x10/0x10
[   64.299624][ T5351]  ? mgmt_send_event_skb+0x2f2/0x460
[   64.301607][ T5351]  hci_conn_add_sysfs+0x17e/0x230
[   64.303393][ T5351]  le_conn_complete_evt+0xfc7/0x1cf0
[   64.305328][ T5351]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   64.307573][ T5351]  ? trace_contention_end+0xea/0x140
[   64.309723][ T5351]  hci_le_enh_conn_complete_evt+0x23d/0x380
[   64.311992][ T5351]  ? skb_pull_data+0x166/0x210
[   64.313748][ T5351]  hci_le_meta_evt+0x2e2/0x5d0
[   64.315508][ T5351]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[   64.317774][ T5351]  hci_event_packet+0x666/0x1190
[   64.319600][ T5351]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   64.321651][ T5351]  ? __pfx_hci_event_packet+0x10/0x10
[   64.323635][ T5351]  ? mark_held_locks+0x9f/0xe0
[   64.325426][ T5351]  ? kcov_remote_start+0x3cf/0x6e0
[   64.327479][ T5351]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.329947][ T5351]  hci_rx_work+0x2c6/0x1610
[   64.332045][ T5351]  process_one_work+0x958/0x1ad0
[   64.334044][ T5351]  ? __pfx_lock_acquire+0x10/0x10
[   64.335870][ T5351]  ? __pfx_process_one_work+0x10/0x10
[   64.337817][ T5351]  ? assign_work+0x1a0/0x250
[   64.339543][ T5351]  worker_thread+0x6c8/0xf00
[   64.341291][ T5351]  ? __kthread_parkme+0x148/0x220
[   64.343135][ T5351]  ? __pfx_worker_thread+0x10/0x10
[   64.344952][ T5351]  kthread+0x2c1/0x3a0
[   64.346483][ T5351]  ? _raw_spin_unlock_irq+0x23/0x50
[   64.348551][ T5351]  ? __pfx_kthread+0x10/0x10
[   64.350576][ T5351]  ret_from_fork+0x45/0x80
[   64.352423][ T5351]  ? __pfx_kthread+0x10/0x10
[   64.354124][ T5351]  ret_from_fork_asm+0x1a/0x30
[   64.355878][ T5351]  </TASK>
[   64.361965][ T5351] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   64.367257][ T5351] Bluetooth: hci2: failed to register connection device
[   64.541942][ T1286] usb 6-1: USB disconnect, device number 2
[   64.769425][ T5351] Bluetooth: hci3: command tx timeout
[   64.769502][ T5360] Bluetooth: hci2: command tx timeout
[   64.769539][ T5364] Bluetooth: hci0: command tx timeout
[   64.848590][ T5360] Bluetooth: hci1: command tx timeout
[   64.918574][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   66.049447][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   66.141076][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   66.478761][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   66.530254][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   66.578687][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   66.794639][ T5496] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20'.
[   66.849541][ T5351] Bluetooth: hci2: command tx timeout
[   66.866785][ T5499] tipc: Started in network mode
[   66.871868][ T5499] tipc: Node identity , cluster identity 4711
[   66.874500][ T5499] tipc: Failed to obtain node identity
[   66.877511][ T5499] tipc: Enabling of bearer <eth:ip6_vti0> rejected, failed to enable media
[   66.883292][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   66.934131][ T5503] (syz.3.20,5503,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[   66.936879][ T5503] (syz.3.20,5503,1):ocfs2_fill_super:1178 ERROR: status = -22
[   67.484469][   T58] cfg80211: failed to load regulatory.db
[   68.340507][ T5517] tipc: Started in network mode
[   68.342598][ T5517] tipc: Node identity ac1414aa, cluster identity 4711
[   68.357099][ T5517] tipc: Enabled bearer <udp:syz2>, priority 10
[   68.565127][ T5518] netlink: 'syz.1.27': attribute type 4 has an invalid length.
[   68.768818][ T5351] Bluetooth: hci3: command 0x0405 tx timeout
[   69.195614][ T5523] netlink: 'syz.3.28': attribute type 2 has an invalid length.
[   69.246476][ T5523] fuse: Unknown parameter 'groupÍ'
[   69.470922][ T1413] tipc: Node number set to 2886997162
[   70.190835][ T5538] netlink: 4 bytes leftover after parsing attributes in process `syz.1.33'.
[   70.202710][ T5538] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   70.303280][ T5541] netlink: 269 bytes leftover after parsing attributes in process `syz.1.33'.
[   70.306536][ T5541] netlink: 269 bytes leftover after parsing attributes in process `syz.1.33'.
[   70.478676][ T1286] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   70.669662][ T1286] usb 5-1: Using ep0 maxpacket: 16
[   70.674142][ T1286] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   70.689280][ T1286] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   70.694736][ T1286] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   70.705686][ T1286] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.729875][ T1286] usb 5-1: config 0 descriptor??
[   71.118528][    T8] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   71.147412][ T5547] syzkaller0: entered promiscuous mode
[   71.149623][ T5547] syzkaller0: entered allmulticast mode
[   71.258609][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[   71.261716][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[   71.288504][    T8] usb 6-1: device descriptor read/64, error -71
[   71.565256][    T8] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   71.714024][ T1286] usbhid 5-1:0.0: can't add hid device: -71
[   71.716915][ T1286] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[   71.731312][    T8] usb 6-1: device descriptor read/64, error -71
[   71.734298][ T1286] usb 5-1: USB disconnect, device number 2
[   71.856010][    T8] usb usb6-port1: attempt power cycle
[   72.371540][    T8] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   72.409454][    T8] usb 6-1: device descriptor read/8, error -71
[   72.449501][ T5558] netlink: 80 bytes leftover after parsing attributes in process `syz.2.39'.
[   72.583501][ T5558] netlink: 4 bytes leftover after parsing attributes in process `syz.2.39'.
[   72.714078][    T8] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   72.763884][    T8] usb 6-1: device descriptor read/8, error -71
[   72.888784][    T8] usb usb6-port1: unable to enumerate USB device
[   73.611294][   T39] audit: type=1326 audit(1726581342.397:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.627596][   T39] audit: type=1326 audit(1726581342.397:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.637360][   T39] audit: type=1326 audit(1726581342.397:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.647669][   T39] audit: type=1326 audit(1726581342.407:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.657786][   T39] audit: type=1326 audit(1726581342.407:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.665161][   T39] audit: type=1326 audit(1726581342.407:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.676457][   T39] audit: type=1326 audit(1726581342.407:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.684605][   T39] audit: type=1326 audit(1726581342.407:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.694311][   T39] audit: type=1326 audit(1726581342.407:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.704830][   T39] audit: type=1326 audit(1726581342.407:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5577 comm="syz.1.45" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   73.769104][ T5574] netlink: 8 bytes leftover after parsing attributes in process `syz.3.44'.
[   73.788568][ T5574] capability: warning: `syz.3.44' uses 32-bit capabilities (legacy support in use)
[   73.926059][ T5582] sp0: Synchronizing with TNC
[   74.102332][ T5585] netlink: 4 bytes leftover after parsing attributes in process `syz.2.46'.
[   74.292693][ T5588] Invalid ELF header type: 0 != 1
[   74.309795][ T5581] [U] è
[   74.975292][ T5594] mkiss: ax0: crc mode is auto.
[   75.042628][ T5598] netlink: 'syz.3.51': attribute type 4 has an invalid length.
[   75.045560][ T5598] netlink: 'syz.3.51': attribute type 4 has an invalid length.
[   75.049602][ T5598] netlink: 126012 bytes leftover after parsing attributes in process `syz.3.51'.
[   75.698624][ T5393] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   75.890960][ T5393] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   75.894833][ T5393] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   75.897991][ T5393] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   75.909018][ T5393] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.936152][ T5611] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   75.944440][ T5393] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[   76.243465][ T5631] input: syz0 as /devices/virtual/input/input5
[   76.375523][ T1286] usb 5-1: USB disconnect, device number 3
[   76.510261][ T5625] netlink: 64 bytes leftover after parsing attributes in process `syz.1.54'.
[   77.213164][ T5635] Illegal XDP return value 4294967294 on prog  (id 28) dev N/A, expect packet loss!
[   77.593351][ T5640] Invalid ELF header type: 0 != 1
[   78.312187][ T5643] binder_alloc: 5641: binder_alloc_buf, no vma
[   78.371658][ T5654] Invalid ELF header type: 0 != 1
[   78.381297][ T5646] netlink: 'syz.2.60': attribute type 4 has an invalid length.
[   78.384625][ T5646] netlink: 'syz.2.60': attribute type 4 has an invalid length.
[   78.387081][ T5646] netlink: 126012 bytes leftover after parsing attributes in process `syz.2.60'.
[   79.789462][ T5675] Invalid ELF header type: 0 != 1
[   79.839622][   T30] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   80.028532][   T30] usb 7-1: Using ep0 maxpacket: 32
[   80.036223][   T30] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   80.044495][   T30] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   80.047760][   T30] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   80.050741][   T30] usb 7-1: Product: syz
[   80.052280][   T30] usb 7-1: Manufacturer: syz
[   80.054247][   T30] usb 7-1: SerialNumber: syz
[   80.059988][   T30] usb 7-1: config 0 descriptor??
[   80.065618][ T5672] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   80.359423][ T5677] Bluetooth: MGMT ver 1.23
[   80.361586][ T5677] Bluetooth: hci3: service_discovery: expected 260 bytes, got 7 bytes
[   80.363011][    T8] usb 7-1: USB disconnect, device number 2
[   81.107620][ T5689] sp0: Synchronizing with TNC
[   81.346018][ T5690] netlink: 4 bytes leftover after parsing attributes in process `syz.3.69'.
[   81.468968][   T58] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   81.668705][   T58] usb 5-1: Using ep0 maxpacket: 32
[   81.676355][   T58] usb 5-1: config 0 has an invalid interface number: 129 but max is 3
[   81.691927][   T58] usb 5-1: config 0 has an invalid interface number: 246 but max is 3
[   81.700961][   T58] usb 5-1: config 0 has an invalid interface number: 110 but max is 3
[   81.706019][   T58] usb 5-1: config 0 has an invalid interface number: 118 but max is 3
[   81.718552][   T58] usb 5-1: config 0 has an invalid descriptor of length 181, skipping remainder of the config
[   81.723084][   T58] usb 5-1: config 0 has no interface number 0
[   81.729432][   T58] usb 5-1: config 0 has no interface number 1
[   81.734483][   T58] usb 5-1: config 0 has no interface number 2
[   81.740654][   T58] usb 5-1: config 0 has no interface number 3
[   81.745506][   T58] usb 5-1: config 0 interface 129 altsetting 8 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[   81.754762][   T58] usb 5-1: config 0 interface 129 altsetting 8 endpoint 0xD has an invalid bInterval 254, changing to 11
[   81.766965][   T58] usb 5-1: config 0 interface 129 altsetting 8 endpoint 0x8 has invalid maxpacket 1024, setting to 64
[   81.778554][   T58] usb 5-1: config 0 interface 129 altsetting 8 has a duplicate endpoint with address 0x8, skipping
[   81.791587][   T58] usb 5-1: config 0 interface 110 altsetting 0 endpoint 0xB has an invalid bInterval 0, changing to 7
[   81.799928][ T5696] macsec0: entered promiscuous mode
[   81.802894][   T58] usb 5-1: config 0 interface 110 altsetting 0 has a duplicate endpoint with address 0x9, skipping
[   81.813431][   T58] usb 5-1: config 0 interface 110 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   81.817818][   T58] usb 5-1: config 0 interface 110 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   81.824134][ T5696] veth1_macvtap: left promiscuous mode
[   81.825108][   T58] usb 5-1: config 0 interface 110 altsetting 0 has a duplicate endpoint with address 0x4, skipping
[   81.831160][   T58] usb 5-1: config 0 interface 110 altsetting 0 has a duplicate endpoint with address 0x3, skipping
[   81.838281][   T58] usb 5-1: config 0 interface 110 altsetting 0 has a duplicate endpoint with address 0x8, skipping
[   81.843801][   T58] usb 5-1: config 0 interface 118 altsetting 3 has a duplicate endpoint with address 0x9, skipping
[   81.848895][   T58] usb 5-1: config 0 interface 118 altsetting 3 has a duplicate endpoint with address 0x1, skipping
[   81.854576][   T58] usb 5-1: config 0 interface 118 altsetting 3 bulk endpoint 0x7 has invalid maxpacket 64
[   81.859108][   T58] usb 5-1: config 0 interface 118 altsetting 3 has a duplicate endpoint with address 0x9, skipping
[   81.864074][   T58] usb 5-1: config 0 interface 118 altsetting 3 has a duplicate endpoint with address 0x1, skipping
[   81.868315][   T58] usb 5-1: config 0 interface 118 altsetting 3 endpoint 0xF has invalid maxpacket 431, setting to 64
[   81.874206][   T58] usb 5-1: config 0 interface 118 altsetting 3 has 8 endpoint descriptors, different from the interface descriptor's value: 16
[   81.880884][   T58] usb 5-1: config 0 interface 129 has no altsetting 0
[   81.882909][ T5696] macsec0 (unregistering): left promiscuous mode
[   81.883560][   T58] usb 5-1: config 0 interface 246 has no altsetting 0
[   81.892433][   T58] usb 5-1: config 0 interface 118 has no altsetting 0
[   81.901981][   T58] usb 5-1: New USB device found, idVendor=04ca, idProduct=3004, bcdDevice=87.b9
[   81.905867][   T58] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   81.911639][   T58] usb 5-1: Product: ꙸস≣༖컼ᙾ䬨墙ꙛඒĄ夔�ⅾ䯲奿鹖ᢑ��鹔㣀โ꒧ꉞ�噄㓘噭뵸뎾헡�鹥䇾惜醳呸᭛렘媎熯蘀�虎ꮃ⅒٤�骊㎚茢筂⩂ǽ�⪉㴀뒭糰虊࿂禅跙䣅���瀞ᄱ謋괕�쭊䫆ﶅ冒ᚽ︎莭�礥쉙䬯ᅪ謾�㗗㠟땂†볊�趕쪠ȟ�鵦顚㴧὚콗㩢
[   81.963814][   T58] usb 5-1: Manufacturer: С
[   81.965702][   T58] usb 5-1: SerialNumber: à š
[   81.979937][   T58] usb 5-1: config 0 descriptor??
[   81.984732][ T5683] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   82.079882][ T5688] [U] è
[   82.292721][   T58] usb 5-1: bad CDC descriptors
[   82.328036][   T58] usb 5-1: USB disconnect, device number 4
[   82.473339][ T5702] netlink: 4 bytes leftover after parsing attributes in process `syz.1.73'.
[   82.483690][ T5702] netlink: 4 bytes leftover after parsing attributes in process `syz.1.73'.
[   82.666834][ T5707] affs: No valid root block on device nbd1
[   82.672675][ T5706] input: syz0 as /devices/virtual/input/input6
[   83.631198][ T5723] netlink: 'syz.3.78': attribute type 1 has an invalid length.
[   83.634648][ T5723] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.78'.
[   84.455552][ T5736] FAULT_INJECTION: forcing a failure.
[   84.455552][ T5736] name failslab, interval 1, probability 0, space 0, times 1
[   84.468588][ T5736] CPU: 1 UID: 0 PID: 5736 Comm: syz.3.82 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[   84.472327][ T5736] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.476483][ T5736] Call Trace:
[   84.477870][ T5736]  <TASK>
[   84.479075][ T5736]  dump_stack_lvl+0x16c/0x1f0
[   84.480810][ T5736]  should_fail_ex+0x497/0x5b0
[   84.482544][ T5736]  should_failslab+0xc2/0x120
[   84.484276][ T5736]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   84.486373][ T5736]  ? skb_clone+0x190/0x3f0
[   84.488226][ T5736]  skb_clone+0x190/0x3f0
[   84.489934][ T5736]  netlink_deliver_tap+0xb26/0xcf0
[   84.491880][ T5736]  netlink_unicast+0x5e1/0x7f0
[   84.493588][ T5736]  ? __pfx_netlink_unicast+0x10/0x10
[   84.495485][ T5736]  ? __phys_addr_symbol+0x30/0x80
[   84.497298][ T5736]  ? __check_object_size+0x497/0x720
[   84.499211][ T5736]  netlink_sendmsg+0x8b8/0xd70
[   84.500960][ T5736]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.502914][ T5736]  ____sys_sendmsg+0x9ae/0xb40
[   84.504677][ T5736]  ? __pfx_____sys_sendmsg+0x10/0x10
[   84.506619][ T5736]  ? get_compat_msghdr+0x11b/0x170
[   84.508494][ T5736]  ? __pfx___lock_acquire+0x10/0x10
[   84.510436][ T5736]  ___sys_sendmsg+0x135/0x1e0
[   84.512273][ T5736]  ? __pfx____sys_sendmsg+0x10/0x10
[   84.514421][ T5736]  ? find_held_lock+0x2d/0x110
[   84.516301][ T5736]  ? ksys_write+0x21c/0x260
[   84.518035][ T5736]  ? __fget_light+0x173/0x210
[   84.519758][ T5736]  __sys_sendmsg+0x117/0x1f0
[   84.521231][ T5736]  ? __pfx___sys_sendmsg+0x10/0x10
[   84.522595][ T5736]  __do_fast_syscall_32+0x73/0x120
[   84.523932][ T5736]  do_fast_syscall_32+0x32/0x80
[   84.525249][ T5736]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   84.526987][ T5736] RIP: 0023:0xf7f71579
[   84.528456][ T5736] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   84.534413][ T5736] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   84.537444][ T5736] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180
[   84.540213][ T5736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   84.543084][ T5736] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   84.546201][ T5736] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   84.549137][ T5736] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   84.551250][ T5736]  </TASK>
[   85.941075][ T5758] FAULT_INJECTION: forcing a failure.
[   85.941075][ T5758] name failslab, interval 1, probability 0, space 0, times 0
[   85.945744][ T5758] CPU: 1 UID: 0 PID: 5758 Comm: syz.1.89 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[   85.949324][ T5758] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.953144][ T5758] Call Trace:
[   85.954496][ T5758]  <TASK>
[   85.955613][ T5758]  dump_stack_lvl+0x16c/0x1f0
[   85.957330][ T5758]  should_fail_ex+0x497/0x5b0
[   85.959033][ T5758]  ? fs_reclaim_acquire+0xae/0x160
[   85.960836][ T5758]  should_failslab+0xc2/0x120
[   85.962506][ T5758]  __kmalloc_cache_noprof+0x6b/0x310
[   85.964345][ T5758]  ? sr_read_tocentry.isra.0+0xac/0x530
[   85.966327][ T5758]  sr_read_tocentry.isra.0+0xac/0x530
[   85.968218][ T5758]  ? __pfx_sr_read_tocentry.isra.0+0x10/0x10
[   85.970474][ T5758]  ? __pfx_sr_read_tochdr.isra.0+0x10/0x10
[   85.972789][ T5758]  ? hlock_class+0x4e/0x130
[   85.974502][ T5758]  ? mark_lock+0xb5/0xc60
[   85.976025][ T5758]  sr_audio_ioctl+0x277/0x2e0
[   85.977675][ T5758]  ? __pfx_sr_audio_ioctl+0x10/0x10
[   85.979524][ T5758]  ? __pfx_scsi_test_unit_ready+0x10/0x10
[   85.981504][ T5758]  ? hlock_class+0x4e/0x130
[   85.983122][ T5758]  cdrom_count_tracks+0x3df/0x7e0
[   85.984969][ T5758]  ? __pfx_cdrom_count_tracks+0x10/0x10
[   85.987223][ T5758]  ? __pfx_sr_drive_status+0x10/0x10
[   85.989336][ T5758]  ? lock_acquire+0x1b1/0x560
[   85.991004][ T5758]  cdrom_open+0x73a/0x2680
[   85.992568][ T5758]  ? __pfx_cdrom_open+0x10/0x10
[   85.994271][ T5758]  ? __pfx___mutex_trylock_common+0x10/0x10
[   85.996336][ T5758]  ? rcu_is_watching+0x12/0xc0
[   85.998000][ T5758]  ? trace_contention_end+0xea/0x140
[   85.999850][ T5758]  ? __mutex_lock+0x1a6/0x9c0
[   86.001555][ T5758]  ? sr_block_open+0x167/0x270
[   86.003325][ T5758]  ? mark_held_locks+0x9f/0xe0
[   86.005131][ T5758]  ? __pfx___mutex_lock+0x10/0x10
[   86.007092][ T5758]  ? _raw_spin_unlock_irq+0x23/0x50
[   86.008923][ T5758]  ? disk_check_media_change+0x1cf/0x280
[   86.010889][ T5758]  ? __pfx_disk_check_media_change+0x10/0x10
[   86.013031][ T5758]  ? lockdep_hardirqs_on+0x7c/0x110
[   86.014848][ T5758]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   86.016646][ T5758]  sr_block_open+0x174/0x270
[   86.018056][ T5758]  ? __pfx_sr_block_open+0x10/0x10
[   86.019880][ T5758]  ? __pfx_sr_block_open+0x10/0x10
[   86.021370][ T5758]  blkdev_get_whole+0x96/0x290
[   86.022656][ T5758]  bdev_open+0x2c7/0xe20
[   86.023770][ T5758]  ? iput+0x62/0x80
[   86.024823][ T5758]  blkdev_open+0x36c/0x450
[   86.026080][ T5758]  do_dentry_open+0x6ca/0x1530
[   86.027643][ T5758]  ? __pfx_blkdev_open+0x10/0x10
[   86.029512][ T5758]  vfs_open+0x82/0x3f0
[   86.031101][ T5758]  ? may_open+0x1f2/0x400
[   86.032363][ T5758]  path_openat+0x1e6a/0x2d60
[   86.033659][ T5758]  ? __pfx_path_openat+0x10/0x10
[   86.035125][ T5758]  ? __pfx___lock_acquire+0x10/0x10
[   86.036921][ T5758]  ? find_held_lock+0x2d/0x110
[   86.038586][ T5758]  do_filp_open+0x1dc/0x430
[   86.039797][ T5758]  ? __pfx_do_filp_open+0x10/0x10
[   86.041143][ T5758]  ? find_held_lock+0x2d/0x110
[   86.042904][ T5758]  ? _raw_spin_unlock+0x28/0x50
[   86.044588][ T5758]  ? alloc_fd+0x2d7/0x6c0
[   86.046054][ T5758]  do_sys_openat2+0x17a/0x1e0
[   86.047983][ T5758]  ? __pfx_do_sys_openat2+0x10/0x10
[   86.049724][ T5758]  __ia32_compat_sys_openat+0x16e/0x210
[   86.051455][ T5758]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[   86.053174][ T5758]  ? ksys_write+0x1ab/0x260
[   86.054699][ T5758]  __do_fast_syscall_32+0x73/0x120
[   86.056305][ T5758]  do_fast_syscall_32+0x32/0x80
[   86.058498][ T5758]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   86.060782][ T5758] RIP: 0023:0xf73ae579
[   86.061844][ T5758] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   86.068147][ T5758] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[   86.070361][ T5758] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000080
[   86.072594][ T5758] RDX: 0000000000006002 RSI: 0000000000000000 RDI: 0000000000000000
[   86.075110][ T5758] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   86.078165][ T5758] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   86.080569][ T5758] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   86.082631][ T5758]  </TASK>
[   86.176232][ T5761] veth0_vlan: entered allmulticast mode
[   86.422465][ T5768] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   86.496708][ T5770] netlink: 4 bytes leftover after parsing attributes in process `syz.3.94'.
[   86.509540][ T5770] netlink: 12 bytes leftover after parsing attributes in process `syz.3.94'.
[   86.988554][   T35] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   87.188875][   T35] usb 8-1: Using ep0 maxpacket: 32
[   87.194983][   T35] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   87.206535][   T35] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   87.210025][   T35] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   87.213104][   T35] usb 8-1: Product: syz
[   87.214685][   T35] usb 8-1: Manufacturer: syz
[   87.216442][   T35] usb 8-1: SerialNumber: syz
[   87.221294][   T35] usb 8-1: config 0 descriptor??
[   87.224265][ T5779] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   87.495055][   T35] usb 8-1: USB disconnect, device number 2
[   88.797150][ T5798] netlink: 'syz.0.104': attribute type 4 has an invalid length.
[   88.805357][ T5798] netlink: 'syz.0.104': attribute type 4 has an invalid length.
[   88.809919][ T5798] netlink: 126012 bytes leftover after parsing attributes in process `syz.0.104'.
[   91.298501][ T1413] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   91.375960][ T5831] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   91.391339][ T5831] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   91.491457][ T1413] usb 7-1: Using ep0 maxpacket: 32
[   91.503404][ T1413] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   91.510334][ T1413] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   91.513974][ T1413] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   91.517309][ T1413] usb 7-1: Product: syz
[   91.520007][ T1413] usb 7-1: Manufacturer: syz
[   91.521901][ T1413] usb 7-1: SerialNumber: syz
[   91.527676][ T1413] usb 7-1: config 0 descriptor??
[   91.531474][ T5829] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   91.835376][ T5837] netlink: 'syz.0.114': attribute type 4 has an invalid length.
[   91.838630][ T5837] netlink: 'syz.0.114': attribute type 4 has an invalid length.
[   91.842257][ T5837] netlink: 126012 bytes leftover after parsing attributes in process `syz.0.114'.
[   91.884868][   T56] usb 7-1: USB disconnect, device number 3
[   92.782134][ T5844] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   92.844709][ T5851] sp0: Synchronizing with TNC
[   92.946985][ T5852] netlink: 24 bytes leftover after parsing attributes in process `syz.3.118'.
[   93.138632][ T1286] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   93.202578][ T5848] [U] è
[   93.338855][ T1286] usb 6-1: Using ep0 maxpacket: 8
[   93.419325][ T1286] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   93.425187][ T1286] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[   93.429544][ T1286] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[   93.433600][ T1286] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   93.443587][ T1286] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   93.454297][ T1286] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   93.482037][ T1286] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   93.485955][ T1286] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[   93.495700][ T1286] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[   93.500967][ T1286] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   93.505989][ T1286] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   93.510866][ T1286] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   93.523608][ T1286] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   93.528502][ T1286] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[   93.531419][ T1286] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[   93.535930][ T1286] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   93.540799][ T1286] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   93.545064][ T1286] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   93.580187][ T1286] usb 6-1: string descriptor 0 read error: -22
[   93.583162][ T1286] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   93.586846][ T1286] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.602991][ T1286] adutux 6-1:246.0: interrupt endpoints not found
[   93.718477][ T1413] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   93.865353][   T58] usb 6-1: USB disconnect, device number 7
[   93.899128][ T1413] usb 8-1: too many configurations: 9, using maximum allowed: 8
[   93.903416][ T1413] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.906793][ T1413] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.910482][ T1413] usb 8-1: config 0 interface 0 has no altsetting 0
[   93.914129][ T1413] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.917148][ T1413] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.922321][ T1413] usb 8-1: config 0 interface 0 has no altsetting 0
[   93.925989][ T1413] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.929101][ T1413] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.932639][ T1413] usb 8-1: config 0 interface 0 has no altsetting 0
[   93.936138][ T1413] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.941436][ T1413] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.945478][ T1413] usb 8-1: config 0 interface 0 has no altsetting 0
[   93.950230][ T1413] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.953210][ T1413] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.957016][ T1413] usb 8-1: config 0 interface 0 has no altsetting 0
[   93.962839][ T1413] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.965829][ T1413] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.973059][ T1413] usb 8-1: config 0 interface 0 has no altsetting 0
[   93.976853][ T1413] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.980098][ T1413] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.983752][ T1413] usb 8-1: config 0 interface 0 has no altsetting 0
[   93.987374][ T1413] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.990794][ T1413] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.994374][ T1413] usb 8-1: config 0 interface 0 has no altsetting 0
[   94.004063][ T1413] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   94.007370][ T1413] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   94.015017][ T1413] usb 8-1: Product: syz
[   94.016521][ T1413] usb 8-1: Manufacturer: syz
[   94.018126][ T1413] usb 8-1: SerialNumber: syz
[   94.039360][ T1413] usb 8-1: config 0 descriptor??
[   94.058845][ T1413] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0
[   94.312452][ T5867] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.317175][ T5867] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.329310][ T5867] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.333515][ T5867] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.334136][ T5868] geneve1: entered promiscuous mode
[   94.349386][ T5868] geneve1: left promiscuous mode
[   94.516578][ T5872] netlink: 4 bytes leftover after parsing attributes in process `syz.1.126'.
[   94.520908][ T5872] netlink: 4 bytes leftover after parsing attributes in process `syz.1.126'.
[   94.593760][ T5873] netlink: 'syz.2.125': attribute type 4 has an invalid length.
[   94.596936][ T5873] netlink: 'syz.2.125': attribute type 4 has an invalid length.
[   94.601973][ T5873] netlink: 126012 bytes leftover after parsing attributes in process `syz.2.125'.
[   94.742411][ T5875] affs: No valid root block on device nbd1
[   94.923289][ T5879] overlayfs: conflicting options: verity=on,redirect_dir=follow
[   95.672474][ T5885] Invalid ELF header type: 0 != 1
[   96.292053][   T58] usb 8-1: USB disconnect, device number 3
[   96.303504][   T58] yurex 8-1:0.0: USB YUREX #0 now disconnected
[   96.867921][ T5899] netlink: 20 bytes leftover after parsing attributes in process `syz.2.132'.
[   97.134653][ T5905] Invalid ELF header type: 0 != 1
[   97.534739][ T5911] FAULT_INJECTION: forcing a failure.
[   97.534739][ T5911] name failslab, interval 1, probability 0, space 0, times 0
[   97.541437][ T5911] CPU: 3 UID: 0 PID: 5911 Comm: syz.0.136 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[   97.545303][ T5911] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.549361][ T5911] Call Trace:
[   97.550699][ T5911]  <TASK>
[   97.551953][ T5911]  dump_stack_lvl+0x16c/0x1f0
[   97.554075][ T5911]  should_fail_ex+0x497/0x5b0
[   97.556112][ T5911]  ? fs_reclaim_acquire+0xae/0x160
[   97.558125][ T5911]  should_failslab+0xc2/0x120
[   97.559954][ T5911]  __kmalloc_cache_noprof+0x6b/0x310
[   97.561899][ T5911]  ? ieee802154_nl_fill_phy.constprop.0+0xa5/0x5e0
[   97.564415][ T5911]  ieee802154_nl_fill_phy.constprop.0+0xa5/0x5e0
[   97.567040][ T5911]  ? __pfx_ieee802154_nl_fill_phy.constprop.0+0x10/0x10
[   97.569978][ T5911]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   97.572175][ T5911]  ? lockdep_hardirqs_on+0x7c/0x110
[   97.574184][ T5911]  ieee802154_dump_phy_iter+0x155/0x210
[   97.576296][ T5911]  ? __pfx_wpan_phy_iter+0x10/0x10
[   97.578266][ T5911]  class_for_each_device+0x25f/0x2f0
[   97.580294][ T5911]  ? __pfx_class_for_each_device+0x10/0x10
[   97.582688][ T5911]  ? rcu_is_watching+0x12/0xc0
[   97.584864][ T5911]  ? trace_contention_end+0xea/0x140
[   97.587270][ T5911]  ? __pfx_ieee802154_dump_phy_iter+0x10/0x10
[   97.589613][ T5911]  wpan_phy_for_each+0x86/0xb0
[   97.591400][ T5911]  ? __pfx_wpan_phy_for_each+0x10/0x10
[   97.593610][ T5911]  ? __pfx_ieee802154_dump_phy_iter+0x10/0x10
[   97.596108][ T5911]  ? __pfx___mutex_lock+0x10/0x10
[   97.598418][ T5911]  ieee802154_dump_phy+0xb9/0x190
[   97.600529][ T5911]  ? __pfx_ieee802154_dump_phy+0x10/0x10
[   97.602706][ T5911]  ? __alloc_skb+0x200/0x380
[   97.604496][ T5911]  ? __pfx___alloc_skb+0x10/0x10
[   97.606428][ T5911]  ? do_fast_syscall_32+0x32/0x80
[   97.608364][ T5911]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.610776][ T5911]  genl_dumpit+0x11c/0x220
[   97.612283][ T5911]  netlink_dump+0x552/0xcc0
[   97.613819][ T5911]  ? __pfx_netlink_dump+0x10/0x10
[   97.615505][ T5911]  ? kasan_save_track+0x14/0x30
[   97.617110][ T5911]  ? __kasan_kmalloc+0xaa/0xb0
[   97.618680][ T5911]  ? genl_start+0x677/0x950
[   97.620159][ T5911]  __netlink_dump_start+0x6d9/0x980
[   97.622171][ T5911]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[   97.624354][ T5911]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[   97.626687][ T5911]  ? genl_op_from_small+0x25/0x440
[   97.628537][ T5911]  ? __pfx_genl_get_cmd+0x10/0x10
[   97.630505][ T5911]  ? __pfx_genl_start+0x10/0x10
[   97.632298][ T5911]  ? __pfx_genl_dumpit+0x10/0x10
[   97.634232][ T5911]  ? __pfx_genl_done+0x10/0x10
[   97.636352][ T5911]  ? __radix_tree_lookup+0x21f/0x2c0
[   97.638547][ T5911]  genl_rcv_msg+0x470/0x800
[   97.640365][ T5911]  ? __pfx_genl_rcv_msg+0x10/0x10
[   97.642240][ T5911]  ? __pfx_ieee802154_dump_phy+0x10/0x10
[   97.644105][ T5911]  ? __pfx___lock_acquire+0x10/0x10
[   97.645675][ T5911]  netlink_rcv_skb+0x165/0x410
[   97.647105][ T5911]  ? __pfx_genl_rcv_msg+0x10/0x10
[   97.648780][ T5911]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   97.650604][ T5911]  ? down_read+0xc9/0x330
[   97.651959][ T5911]  ? __pfx_down_read+0x10/0x10
[   97.653422][ T5911]  ? netlink_deliver_tap+0x1ae/0xcf0
[   97.655116][ T5911]  genl_rcv+0x28/0x40
[   97.656273][ T5911]  netlink_unicast+0x53c/0x7f0
[   97.657672][ T5911]  ? __pfx_netlink_unicast+0x10/0x10
[   97.659393][ T5911]  ? __phys_addr_symbol+0x30/0x80
[   97.661020][ T5911]  ? __check_object_size+0x497/0x720
[   97.662905][ T5911]  netlink_sendmsg+0x8b8/0xd70
[   97.664613][ T5911]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.666801][ T5911]  ____sys_sendmsg+0x9ae/0xb40
[   97.668760][ T5911]  ? __pfx_____sys_sendmsg+0x10/0x10
[   97.670714][ T5911]  ? get_compat_msghdr+0x11b/0x170
[   97.672560][ T5911]  ? __pfx___lock_acquire+0x10/0x10
[   97.674290][ T5911]  ___sys_sendmsg+0x135/0x1e0
[   97.675910][ T5911]  ? __pfx____sys_sendmsg+0x10/0x10
[   97.677611][ T5911]  ? find_held_lock+0x2d/0x110
[   97.679163][ T5911]  ? ksys_write+0x21c/0x260
[   97.680636][ T5911]  ? __fget_light+0x173/0x210
[   97.682213][ T5911]  __sys_sendmsg+0x117/0x1f0
[   97.683804][ T5911]  ? __pfx___sys_sendmsg+0x10/0x10
[   97.685780][ T5911]  __do_fast_syscall_32+0x73/0x120
[   97.687946][ T5911]  do_fast_syscall_32+0x32/0x80
[   97.689870][ T5911]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.692059][ T5911] RIP: 0023:0xf7f56579
[   97.693406][ T5911] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   97.699641][ T5911] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   97.702526][ T5911] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000e40
[   97.705569][ T5911] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   97.708646][ T5911] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   97.711542][ T5911] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   97.714417][ T5911] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.717233][ T5911]  </TASK>
[   98.310721][ T5929] sp0: Synchronizing with TNC
[   98.518642][ T5934] netlink: 24 bytes leftover after parsing attributes in process `syz.0.141'.
[   99.219826][ T5928] [U] è
[   99.451558][ T5944] netlink: 4 bytes leftover after parsing attributes in process `syz.0.146'.
[   99.454658][ T5944] netlink: 4 bytes leftover after parsing attributes in process `syz.0.146'.
[  100.205501][ T5937] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.734914][ T5963] capability: warning: `syz.3.149' uses deprecated v2 capabilities in a way that may be insecure
[  100.868654][ T5966] netlink: 4 bytes leftover after parsing attributes in process `syz.0.150'.
[  101.270498][ T1413] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  102.414340][ T5986] sp0: Synchronizing with TNC
[  102.619274][ T5987] netlink: 24 bytes leftover after parsing attributes in process `syz.3.154'.
[  102.770722][ T5360] Bluetooth: hci0: command tx timeout
[  103.008567][ T5482] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  103.057801][   T39] kauditd_printk_skb: 33 callbacks suppressed
[  103.057813][   T39] audit: type=1326 audit(1726581371.837:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.068271][   T39] audit: type=1326 audit(1726581371.847:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=114 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.076061][   T39] audit: type=1326 audit(1726581371.857:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.088522][   T39] audit: type=1326 audit(1726581371.857:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.094374][   T39] audit: type=1326 audit(1726581371.857:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=227 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.105304][ T5994] netlink: 4 bytes leftover after parsing attributes in process `syz.1.157'.
[  103.105734][ T5985] [U] è
[  103.113696][ T5994] netlink: 12 bytes leftover after parsing attributes in process `syz.1.157'.
[  103.118634][   T39] audit: type=1326 audit(1726581371.857:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.126182][   T39] audit: type=1326 audit(1726581371.857:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.149474][   T39] audit: type=1326 audit(1726581371.867:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.155019][   T39] audit: type=1326 audit(1726581371.867:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.166107][   T39] audit: type=1326 audit(1726581371.867:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5993 comm="syz.1.157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[  103.198639][ T5482] usb 7-1: Using ep0 maxpacket: 32
[  103.205077][ T5482] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  103.216531][ T5482] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  103.219116][ T5482] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  103.221204][ T5482] usb 7-1: Product: syz
[  103.222321][ T5482] usb 7-1: Manufacturer: syz
[  103.223607][ T5482] usb 7-1: SerialNumber: syz
[  103.229832][ T5482] usb 7-1: config 0 descriptor??
[  103.235837][ T5989] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  103.566606][   T35] usb 7-1: USB disconnect, device number 4
[  103.587101][ T6005] tipc: Started in network mode
[  103.589965][ T6005] tipc: Node identity aaaaaaaaaa41, cluster identity 4711
[  103.600420][ T6005] tipc: Enabled bearer <eth:geneve1>, priority 10
[  104.599687][ T5482] tipc: Node number set to 15444650
[  104.849063][ T6019] netlink: 4 bytes leftover after parsing attributes in process `syz.3.164'.
[  104.973715][ T6023] Invalid ELF header type: 0 != 1
[  105.463043][ T6025] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  105.543602][ T6031] netlink: 64 bytes leftover after parsing attributes in process `syz.0.168'.
[  105.546048][ T6031] netlink: 64 bytes leftover after parsing attributes in process `syz.0.168'.
[  105.810184][   T30] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  105.923514][ T6041] netlink: 'syz.2.170': attribute type 4 has an invalid length.
[  105.926578][ T6041] netlink: 'syz.2.170': attribute type 4 has an invalid length.
[  105.931288][ T6041] netlink: 126012 bytes leftover after parsing attributes in process `syz.2.170'.
[  105.998491][   T30] usb 6-1: Using ep0 maxpacket: 32
[  106.002839][   T30] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  106.020755][   T30] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  106.024168][   T30] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  106.027306][   T30] usb 6-1: Product: syz
[  106.038466][   T30] usb 6-1: Manufacturer: syz
[  106.040278][   T30] usb 6-1: SerialNumber: syz
[  106.049566][   T30] usb 6-1: config 0 descriptor??
[  106.052359][ T6029] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  106.355457][   T58] usb 6-1: USB disconnect, device number 8
[  107.065284][ T6059] sp0: Synchronizing with TNC
[  107.148597][    T8] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  107.254833][ T6060] netlink: 24 bytes leftover after parsing attributes in process `syz.2.175'.
[  107.328615][    T8] usb 5-1: Using ep0 maxpacket: 32
[  107.340520][    T8] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  107.343413][    T8] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  107.350431][    T8] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  107.353687][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  107.357197][    T8] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  107.360941][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  107.365231][    T8] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  107.369092][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.374325][    T8] usb 5-1: config 0 descriptor??
[  107.513961][ T1101] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.611492][    T8] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  107.629559][    T8] usb 5-1: USB disconnect, device number 5
[  107.642792][    T8] usblp0: removed
[  107.681311][ T1101] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.797083][ T1101] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.839475][ T6058] [U] è
[  107.931360][ T1101] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.982507][ T5351] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  107.987975][ T5351] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  107.996203][ T5351] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  108.001276][ T5351] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  108.005880][ T5351] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  108.018734][ T5351] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  108.132732][ T1101] bridge_slave_1: left allmulticast mode
[  108.135105][ T1101] bridge_slave_1: left promiscuous mode
[  108.140082][ T1101] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.160648][ T1101] bridge_slave_0: left allmulticast mode
[  108.163815][ T1101] bridge_slave_0: left promiscuous mode
[  108.166328][ T1101] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.169652][    T8] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  108.358563][    T8] usb 5-1: Using ep0 maxpacket: 32
[  108.362849][    T8] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  108.366055][    T8] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  108.370243][    T8] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  108.373877][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  108.407216][    T8] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  108.415608][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  108.426197][    T8] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  108.431581][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.440058][    T8] usb 5-1: config 0 descriptor??
[  108.656433][    T8] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 6 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  108.830644][ T1101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.848758][ T1101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  108.872498][ T1101] bond0 (unregistering): Released all slaves
[  108.879516][    C2] usblp0: nonzero read bulk status received: -71
[  108.882165][ T1413] usb 5-1: USB disconnect, device number 6
[  109.090911][ T6050] usblp0: removed
[  109.312716][ T6091] overlayfs: conflicting options: nfs_export=on,index=off
[  109.381274][ T6067] chnl_net:caif_netlink_parms(): no params data found
[  109.468666][ T6100] netlink: 32 bytes leftover after parsing attributes in process `syz.2.187'.
[  109.528283][ T1101] hsr_slave_0: left promiscuous mode
[  109.534839][ T1101] hsr_slave_1: left promiscuous mode
[  109.542279][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  109.545017][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_0
[  109.550166][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  109.552711][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_1
[  109.577505][ T1101] veth1_macvtap: left promiscuous mode
[  109.579740][ T1101] veth0_macvtap: left promiscuous mode
[  109.581375][ T1101] veth1_vlan: left promiscuous mode
[  109.583005][ T1101] veth0_vlan: left promiscuous mode
[  110.062713][ T5360] Bluetooth: hci2: command tx timeout
[  110.122622][ T6116] sctp: [Deprecated]: syz.1.191 (pid 6116) Use of int in max_burst socket option deprecated.
[  110.122622][ T6116] Use struct sctp_assoc_value instead
[  110.193374][ T6119] block nbd1: NBD_DISCONNECT
[  111.245528][ T1101] team0 (unregistering): Port device team_slave_1 removed
[  111.346221][ T1101] team0 (unregistering): Port device team_slave_0 removed
[  111.498663][   T35] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  111.689771][   T35] usb 5-1: Using ep0 maxpacket: 8
[  111.717121][   T35] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  111.725775][   T35] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  111.731092][   T35] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  111.734782][   T35] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  111.740045][   T35] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  111.743512][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.958658][   T35] usb 5-1: GET_CAPABILITIES returned 0
[  111.960452][   T35] usbtmc 5-1:16.0: can't read capabilities
[  112.140418][ T5360] Bluetooth: hci2: command tx timeout
[  112.288324][ T6109] @: renamed from vlan0 (while UP)
[  112.320317][ T6126] netlink: 'syz.0.193': attribute type 1 has an invalid length.
[  112.383228][ T6067] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.385770][ T6067] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.391707][ T6067] bridge_slave_0: entered allmulticast mode
[  112.394195][ T6067] bridge_slave_0: entered promiscuous mode
[  112.401148][ T6067] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.403968][ T6067] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.407574][ T6067] bridge_slave_1: entered allmulticast mode
[  112.413011][ T6067] bridge_slave_1: entered promiscuous mode
[  112.546821][ T6067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  112.560820][ T6067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  112.658527][ T6067] team0: Port device team_slave_0 added
[  112.663130][ T6067] team0: Port device team_slave_1 added
[  112.689164][ T5482] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  112.767627][ T6067] batman_adv: batadv0: Adding interface: batadv_slave_0
[  112.772853][ T6067] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.781661][ T6067] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  112.818103][ T6067] batman_adv: batadv0: Adding interface: batadv_slave_1
[  112.821396][ T6067] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.830147][ T6067] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  112.888582][ T5482] usb 7-1: Using ep0 maxpacket: 32
[  112.899316][ T5482] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  112.908007][ T5482] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  112.921598][ T5482] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  112.928354][ T5482] usb 7-1: Product: syz
[  112.935732][ T5482] usb 7-1: Manufacturer: syz
[  112.937595][ T5482] usb 7-1: SerialNumber: syz
[  112.938971][ T6067] hsr_slave_0: entered promiscuous mode
[  112.945412][ T6067] hsr_slave_1: entered promiscuous mode
[  112.948232][ T6067] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  112.951634][ T5482] usb 7-1: config 0 descriptor??
[  112.955060][ T6129] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  112.955462][ T6067] Cannot create hsr debugfs directory
[  113.215836][ T6129] usbtmc 5-1:16.0: send_request_dev_dep_msg_in returned -90
[  113.252517][ T5482] usb 7-1: USB disconnect, device number 5
[  113.809226][ T6067] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  113.817980][ T6067] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  113.825723][ T6067] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  113.847007][ T6067] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  113.932338][ T6067] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.947488][ T6067] 8021q: adding VLAN 0 to HW filter on device team0
[  113.953789][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.956668][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.964534][ T1102] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.966537][ T1102] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.206731][ T6067] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.209140][ T5360] Bluetooth: hci2: command tx timeout
[  114.255854][ T6067] veth0_vlan: entered promiscuous mode
[  114.264721][ T6067] veth1_vlan: entered promiscuous mode
[  114.292645][ T6067] veth0_macvtap: entered promiscuous mode
[  114.299304][ T6067] veth1_macvtap: entered promiscuous mode
[  114.314955][ T6067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.321214][ T6067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.325308][ T6067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.329587][ T6067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.333185][ T6067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.339943][ T6067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.351867][ T6067] batman_adv: batadv0: Interface activated: batadv_slave_0
[  114.356162][ T6067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.428536][ T6067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.436942][   T35] usb 5-1: USB disconnect, device number 7
[  114.443061][ T6067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.447306][ T6067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.459193][ T6067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.478818][ T6067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.486270][ T6184] syz.1.196 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  114.490525][ T6067] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.528237][ T6187] netlink: 128 bytes leftover after parsing attributes in process `syz.0.199'.
[  114.536742][ T6067] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.546811][ T6067] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.552203][ T6067] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.555555][ T6067] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.576429][ T6187] tipc: Started in network mode
[  114.577802][ T6187] tipc: Node identity ffff000000a0ffffff00000000000001, cluster identity 4711
[  114.586154][ T6187] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  114.604170][ T6177] snd_dummy snd_dummy.0: control 2:16:11:syz0:32769 is already present
[  114.724837][ T1110] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.727081][ T1110] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.791868][ T1110] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.794738][ T1110] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.249838][   T30] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  115.448768][   T30] usb 8-1: Using ep0 maxpacket: 32
[  115.453255][   T30] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  115.460621][   T30] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  115.464855][   T30] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  115.484525][   T30] usb 8-1: Product: syz
[  115.487979][   T30] usb 8-1: Manufacturer: syz
[  115.495105][   T30] usb 8-1: SerialNumber: syz
[  115.510407][   T30] usb 8-1: config 0 descriptor??
[  115.519367][ T6213] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  115.718361][ T6224] netlink: 16 bytes leftover after parsing attributes in process `syz.2.205'.
[  115.866128][ T1286] usb 8-1: USB disconnect, device number 4
[  115.879453][ T6228] block device autoloading is deprecated and will be removed.
[  116.200452][ T6235] netlink: 12 bytes leftover after parsing attributes in process `syz.2.207'.
[  116.298516][ T5360] Bluetooth: hci2: command tx timeout
[  116.514181][ T6239] Invalid ELF header type: 0 != 1
[  116.917685][ T6233] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  117.478563][   T35] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  117.659441][   T35] usb 8-1: Using ep0 maxpacket: 32
[  117.663846][   T35] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  117.670812][   T35] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  117.674653][   T35] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  117.677711][   T35] usb 8-1: Product: syz
[  117.680083][   T35] usb 8-1: Manufacturer: syz
[  117.681864][   T35] usb 8-1: SerialNumber: syz
[  117.692041][   T35] usb 8-1: config 0 descriptor??
[  117.694927][ T6246] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  117.984832][   T35] usb 8-1: USB disconnect, device number 5
[  118.317621][ T6259] xt_connbytes: Forcing CT accounting to be enabled
[  118.943688][ T6272] syz.0.217: attempt to access beyond end of device
[  118.943688][ T6272] loop0: rw=4096, sector=2, nr_sectors = 2 limit=0
[  118.960385][ T6272] EXT4-fs (loop0): unable to read superblock
[  119.013403][ T6276] usb 2-1: USB disconnect, device number 2
[  119.224079][ T6272] hub 2-0:1.0: USB hub found
[  119.236941][ T6272] hub 2-0:1.0: 6 ports detected
[  119.469915][ T1413] usb 2-1: new high-speed USB device number 3 using ehci-pci
[  119.721454][ T1413] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  119.727598][ T1413] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  119.736271][ T1413] usb 2-1: Product: QEMU USB Tablet
[  119.742369][ T1413] usb 2-1: Manufacturer: QEMU
[  119.747854][ T1413] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  119.826971][ T1413] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0003/input/input7
[  119.974769][ T1413] hid-generic 0003:0627:0001.0003: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  120.053652][ T6286] netlink: 4 bytes leftover after parsing attributes in process `syz.2.221'.
[  120.071175][ T6286] netlink: 4 bytes leftover after parsing attributes in process `syz.2.221'.
[  120.128184][ T6288] geneve1: entered promiscuous mode
[  120.134490][ T6288] geneve1: left promiscuous mode
[  120.213322][ T6288] overlayfs: conflicting options: nfs_export=on,index=off
[  120.302337][ T6290] affs: No valid root block on device nbd2
[  121.170614][ T5360] Bluetooth: hci0: failed to read key size for handle 201
[  121.388646][   T57] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  121.524426][   T39] kauditd_printk_skb: 37 callbacks suppressed
[  121.524442][   T39] audit: type=1326 audit(1726581390.307:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.2.232" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x0
[  121.533958][   T39] audit: type=1326 audit(1726581390.307:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.2.232" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x0
[  121.587023][ T6325] block device autoloading is deprecated and will be removed.
[  121.598695][   T57] usb 6-1: Using ep0 maxpacket: 32
[  121.601545][   T57] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  121.609971][   T57] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  121.613127][   T57] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  121.615877][   T57] usb 6-1: Product: syz
[  121.617093][   T57] usb 6-1: Manufacturer: syz
[  121.618341][   T57] usb 6-1: SerialNumber: syz
[  121.624229][   T57] usb 6-1: config 0 descriptor??
[  121.627576][ T6304] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  121.699067][   T58] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  121.879612][   T58] usb 8-1: Using ep0 maxpacket: 32
[  121.885148][   T58] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  121.892410][   T58] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  121.895743][   T58] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  121.899104][   T58] usb 8-1: Product: syz
[  121.900701][   T58] usb 8-1: Manufacturer: syz
[  121.902493][   T58] usb 8-1: SerialNumber: syz
[  121.907938][   T35] usb 6-1: USB disconnect, device number 9
[  121.908996][   T58] usb 8-1: config 0 descriptor??
[  121.913138][ T6316] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  122.019041][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  122.243018][ T1286] usb 8-1: USB disconnect, device number 6
[  122.508823][ T6316] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  122.511023][ T6316] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  122.520362][ T6316] vhci_hcd vhci_hcd.0: Device attached
[  122.550841][ T6344] vhci_hcd: connection closed
[  122.552833][ T6347] dccp_invalid_packet: pskb_may_pull failed
[  122.557834][ T1102] vhci_hcd: stop threads
[  122.560725][ T1102] vhci_hcd: release socket
[  122.562468][ T1102] vhci_hcd: disconnect device
[  122.613485][ T6349] FAULT_INJECTION: forcing a failure.
[  122.613485][ T6349] name failslab, interval 1, probability 0, space 0, times 0
[  122.618050][ T6349] CPU: 0 UID: 0 PID: 6349 Comm: syz.0.240 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  122.622282][ T6349] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.625922][ T6349] Call Trace:
[  122.627072][ T6349]  <TASK>
[  122.628092][ T6349]  dump_stack_lvl+0x16c/0x1f0
[  122.629823][ T6349]  should_fail_ex+0x497/0x5b0
[  122.631539][ T6349]  ? fs_reclaim_acquire+0xae/0x160
[  122.633473][ T6349]  should_failslab+0xc2/0x120
[  122.635249][ T6349]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  122.637185][ T6349]  ? security_file_alloc+0x34/0x2b0
[  122.639001][ T6349]  ? rcu_is_watching+0x12/0xc0
[  122.640732][ T6349]  security_file_alloc+0x34/0x2b0
[  122.642447][ T6349]  init_file+0x93/0x230
[  122.643864][ T6349]  alloc_empty_file+0x91/0x1e0
[  122.645614][ T6349]  path_openat+0xe1/0x2d60
[  122.647330][ T6349]  ? hlock_class+0x4e/0x130
[  122.649040][ T6349]  ? __lock_acquire+0x1620/0x3cb0
[  122.650911][ T6349]  ? __pfx_path_openat+0x10/0x10
[  122.652661][ T6349]  ? __pfx___lock_acquire+0x10/0x10
[  122.654430][ T6349]  ? find_held_lock+0x2d/0x110
[  122.656054][ T6349]  do_filp_open+0x1dc/0x430
[  122.657632][ T6349]  ? __pfx_do_filp_open+0x10/0x10
[  122.659454][ T6349]  ? _raw_spin_unlock+0x28/0x50
[  122.661243][ T6349]  ? alloc_fd+0x2d7/0x6c0
[  122.662933][ T6349]  do_sys_openat2+0x17a/0x1e0
[  122.664716][ T6349]  ? __pfx_do_sys_openat2+0x10/0x10
[  122.666595][ T6349]  ? bpf_trace_run2+0x2a6/0x590
[  122.668298][ T6349]  __ia32_compat_sys_open+0x147/0x1e0
[  122.670170][ T6349]  ? __pfx___ia32_compat_sys_open+0x10/0x10
[  122.672182][ T6349]  ? rcu_is_watching+0x12/0xc0
[  122.673842][ T6349]  __do_fast_syscall_32+0x73/0x120
[  122.675667][ T6349]  do_fast_syscall_32+0x32/0x80
[  122.677514][ T6349]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  122.679884][ T6349] RIP: 0023:0xf7f56579
[  122.681285][ T6349] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  122.687768][ T6349] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000005
[  122.690573][ T6349] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000000000
[  122.693270][ T6349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  122.696146][ T6349] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  122.699134][ T6349] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  122.702016][ T6349] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  122.704715][ T6349]  </TASK>
[  122.995867][ T6352] tc_dump_action: action bad kind
[  123.187570][ T6357] tmpfs: Bad value for 'mpol'
[  123.250832][ T5360] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  123.254198][ T5360] Bluetooth: hci1: Injecting HCI hardware error event
[  123.258908][ T5360] Bluetooth: hci1: hardware error 0x00
[  123.341096][ T6355] netlink: 64 bytes leftover after parsing attributes in process `syz.1.242'.
[  123.697486][ T6371] netlink: 24 bytes leftover after parsing attributes in process `syz.2.247'.
[  125.095634][ T6398] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  125.097861][ T6398] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  125.110729][ T6398] vhci_hcd vhci_hcd.0: Device attached
[  125.248930][ T5351] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  125.252368][ T5351] Bluetooth: hci0: Injecting HCI hardware error event
[  125.256807][ T5351] Bluetooth: hci0: hardware error 0x00
[  125.329162][ T5360] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  125.345627][ T6399] vhci_hcd: connection closed
[  125.347974][ T1102] vhci_hcd: stop threads
[  125.354336][ T1102] vhci_hcd: release socket
[  125.375210][ T1102] vhci_hcd: disconnect device
[  125.526724][   T64] Bluetooth: hci4: Frame reassembly failed (-84)
[  126.969659][   T39] audit: type=1326 audit(1726581395.757:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  126.978704][   T39] audit: type=1326 audit(1726581395.757:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  126.986641][   T39] audit: type=1326 audit(1726581395.757:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  127.030995][   T39] audit: type=1326 audit(1726581395.807:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  127.040520][   T39] audit: type=1326 audit(1726581395.807:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  127.050368][   T39] audit: type=1326 audit(1726581395.807:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  127.060224][   T39] audit: type=1326 audit(1726581395.807:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  127.069203][   T39] audit: type=1326 audit(1726581395.807:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  127.076495][ T6439] binder: 6438:6439 ioctl c0306201 20000680 returned -14
[  127.079077][   T39] audit: type=1326 audit(1726581395.807:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  127.089946][   T39] audit: type=1326 audit(1726581395.807:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6438 comm="syz.2.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  127.329009][ T5351] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  127.482660][ T6444] netlink: 40 bytes leftover after parsing attributes in process `syz.2.266'.
[  127.570345][ T5351] Bluetooth: hci4: command 0x1003 tx timeout
[  127.575410][ T5360] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  128.078532][   T58] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  128.206205][ T6452] netlink: 'syz.3.270': attribute type 4 has an invalid length.
[  128.210719][ T6452] netlink: 'syz.3.270': attribute type 4 has an invalid length.
[  128.213256][ T6452] netlink: 126012 bytes leftover after parsing attributes in process `syz.3.270'.
[  128.235643][ T6457] dccp_check_seqno: Step 6 failed for RESET packet, (LSWL(47557058776455) <= P.seqno(0) <= S.SWH(47557058776529)) and (P.ackno exists or LAWL(182671998901238) <= P.ackno(182671998901240) <= S.AWH(182671998901240), sending SYNC...
[  128.328637][   T58] usb 6-1: Using ep0 maxpacket: 32
[  128.334897][   T58] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  128.345216][   T58] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  128.349212][   T58] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  128.352267][   T58] usb 6-1: Product: syz
[  128.363561][   T58] usb 6-1: Manufacturer: syz
[  128.368563][   T58] usb 6-1: SerialNumber: syz
[  128.395293][   T58] usb 6-1: config 0 descriptor??
[  128.408761][ T6446] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  128.693993][   T56] usb 6-1: USB disconnect, device number 10
[  129.207139][ T6463] Zero length message leads to an empty skb
[  130.544645][ T6504] FAULT_INJECTION: forcing a failure.
[  130.544645][ T6504] name failslab, interval 1, probability 0, space 0, times 0
[  130.549643][ T6504] CPU: 0 UID: 0 PID: 6504 Comm: syz.3.279 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  130.553416][ T6504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.557368][ T6504] Call Trace:
[  130.558620][ T6504]  <TASK>
[  130.559690][ T6504]  dump_stack_lvl+0x16c/0x1f0
[  130.561396][ T6504]  should_fail_ex+0x497/0x5b0
[  130.563157][ T6504]  should_failslab+0xc2/0x120
[  130.564866][ T6504]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  130.566956][ T6504]  ? hlock_class+0x4e/0x130
[  130.568759][ T6504]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  130.571241][ T6504]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  130.573534][ T6504]  idr_get_free+0x528/0xa40
[  130.575387][ T6504]  idr_alloc_u32+0x191/0x2f0
[  130.577141][ T6504]  ? __pfx_idr_alloc_u32+0x10/0x10
[  130.579326][ T6504]  idr_alloc_cyclic+0x10c/0x230
[  130.581405][ T6504]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[  130.583551][ T6504]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  130.585524][ T6504]  ? bpf_prog_select_runtime+0x23b/0x4c0
[  130.587630][ T6504]  bpf_prog_load+0xed3/0x2670
[  130.589356][ T6504]  ? __pfx_bpf_prog_load+0x10/0x10
[  130.591266][ T6504]  ? find_held_lock+0x2d/0x110
[  130.592914][ T6504]  __sys_bpf+0x9d4/0x5590
[  130.594603][ T6504]  ? __pfx___sys_bpf+0x10/0x10
[  130.596528][ T6504]  ? ksys_write+0x12f/0x260
[  130.598255][ T6504]  ? find_held_lock+0x2d/0x110
[  130.599973][ T6504]  ? ksys_write+0x21c/0x260
[  130.601592][ T6504]  ? __pfx_lock_release+0x10/0x10
[  130.603393][ T6504]  ? vfs_write+0x14d/0x1140
[  130.605083][ T6504]  ? __mutex_unlock_slowpath+0x164/0x650
[  130.607122][ T6504]  ? fput+0x30/0x390
[  130.608643][ T6504]  ? ksys_write+0x1ab/0x260
[  130.610559][ T6504]  ? __pfx_ksys_write+0x10/0x10
[  130.612584][ T6504]  __ia32_sys_bpf+0x76/0xe0
[  130.614369][ T6504]  __do_fast_syscall_32+0x73/0x120
[  130.616332][ T6504]  do_fast_syscall_32+0x32/0x80
[  130.618117][ T6504]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  130.620426][ T6504] RIP: 0023:0xf73ee579
[  130.621919][ T6504] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  130.629283][ T6504] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  130.632514][ T6504] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000240
[  130.635428][ T6504] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  130.638311][ T6504] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  130.641137][ T6504] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  130.643968][ T6504] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  130.646865][ T6504]  </TASK>
[  130.648181][    C0] vkms_vblank_simulate: vblank timer overrun
[  130.975878][ T6525] netlink: 4 bytes leftover after parsing attributes in process `syz.2.283'.
[  130.989435][ T6525] netlink: 4 bytes leftover after parsing attributes in process `syz.2.283'.
[  131.261946][ T6537] affs: No valid root block on device nbd2
[  131.294257][ T6535] netlink: 32 bytes leftover after parsing attributes in process `syz.3.285'.
[  132.321568][ T6564] netlink: 'syz.2.288': attribute type 4 has an invalid length.
[  132.445118][ T6567] netem: change failed
[  132.457774][ T6567] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  132.485842][ T6571] netlink: 'syz.2.288': attribute type 4 has an invalid length.
[  132.702435][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[  132.708546][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  132.780490][ T6574] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  133.598500][ T6598] netlink: 4 bytes leftover after parsing attributes in process `syz.1.296'.
[  133.603664][ T6598] netlink: 4 bytes leftover after parsing attributes in process `syz.1.296'.
[  133.653379][ T6592] warning: `syz.2.295' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  133.762970][ T6601] affs: No valid root block on device nbd1
[  134.024886][ T6603] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  134.027426][ T6603] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  134.044124][ T6603] vhci_hcd vhci_hcd.0: Device attached
[  134.311672][   T57] usb 13-1: new low-speed USB device number 2 using vhci_hcd
[  134.670447][ T6614] FAULT_INJECTION: forcing a failure.
[  134.670447][ T6614] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  134.674049][ T6614] CPU: 3 UID: 0 PID: 6614 Comm: syz.1.299 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  134.677309][ T6614] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.681437][ T6614] Call Trace:
[  134.682911][ T6614]  <TASK>
[  134.684124][ T6614]  dump_stack_lvl+0x16c/0x1f0
[  134.685832][ T6614]  should_fail_ex+0x497/0x5b0
[  134.687492][ T6614]  _copy_to_user+0x30/0xc0
[  134.688892][ T6614]  simple_read_from_buffer+0xd0/0x160
[  134.690554][ T6614]  proc_fail_nth_read+0x198/0x270
[  134.692219][ T6614]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  134.693832][ T6614]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  134.695658][ T6614]  vfs_read+0x1ce/0xbd0
[  134.696861][ T6614]  ? __fdget_pos+0xe8/0x170
[  134.698487][ T6614]  ? __pfx_vfs_read+0x10/0x10
[  134.700131][ T6614]  ? __pfx___mutex_lock+0x10/0x10
[  134.701854][ T6614]  ? __fget_files+0x244/0x3f0
[  134.703381][ T6614]  ksys_read+0x12f/0x260
[  134.704614][ T6614]  ? __pfx_ksys_read+0x10/0x10
[  134.706023][ T6614]  __do_fast_syscall_32+0x73/0x120
[  134.707744][ T6614]  do_fast_syscall_32+0x32/0x80
[  134.709093][ T6614]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  134.711116][ T6614] RIP: 0023:0xf73ae579
[  134.712493][ T6614] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  134.718963][ T6614] RSP: 002b:00000000f56965a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  134.721839][ T6614] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5696620
[  134.724190][ T6614] RDX: 000000000000000f RSI: 00000000f739bff4 RDI: 0000000000000000
[  134.726906][ T6614] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  134.729508][ T6614] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  134.732269][ T6614] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.734818][ T6614]  </TASK>
[  134.823165][ T6605] vhci_hcd: connection reset by peer
[  134.826137][ T1102] vhci_hcd: stop threads
[  134.827834][ T1102] vhci_hcd: release socket
[  134.829848][ T1102] vhci_hcd: disconnect device
[  135.020651][ T6627] netlink: 4 bytes leftover after parsing attributes in process `syz.1.303'.
[  135.024365][ T6627] netlink: 4 bytes leftover after parsing attributes in process `syz.1.303'.
[  135.147334][ T6628] affs: No valid root block on device nbd1
[  136.105284][ T6639] 9pnet_virtio: no channels available for device syz
[  136.579426][ T6649] netlink: 4 bytes leftover after parsing attributes in process `syz.1.309'.
[  136.721938][ T6651] netlink: 64 bytes leftover after parsing attributes in process `syz.3.310'.
[  136.782986][ T6656] vcan0 speed is unknown, defaulting to 1000
[  136.787557][ T6656] vcan0 speed is unknown, defaulting to 1000
[  136.803153][ T6656] vcan0 speed is unknown, defaulting to 1000
[  137.063908][ T5475] vcan0 speed is unknown, defaulting to 1000
[  137.065937][ T6656] infiniband syz1: set active
[  137.067740][ T6656] infiniband syz1: added vcan0
[  137.137892][ T6656] RDS/IB: syz1: added
[  137.147600][ T6656] smc: adding ib device syz1 with port count 1
[  137.154842][ T6656] smc:    ib device syz1 port 1 has pnetid 
[  137.159958][ T5475] vcan0 speed is unknown, defaulting to 1000
[  137.165969][ T6656] vcan0 speed is unknown, defaulting to 1000
[  137.342593][ T6674] syz.2.315: attempt to access beyond end of device
[  137.342593][ T6674] loop2: rw=0, sector=0, nr_sectors = 8 limit=0
[  137.347843][ T6674] F2FS-fs (loop2): Unable to read 1th superblock
[  137.352969][ T6674] syz.2.315: attempt to access beyond end of device
[  137.352969][ T6674] loop2: rw=0, sector=8, nr_sectors = 8 limit=0
[  137.358179][ T6674] F2FS-fs (loop2): Unable to read 2th superblock
[  137.583588][ T6656] vcan0 speed is unknown, defaulting to 1000
[  137.995455][ T6656] vcan0 speed is unknown, defaulting to 1000
[  138.154657][ T6656] vcan0 speed is unknown, defaulting to 1000
[  138.517538][ T6684] netlink: 'syz.2.317': attribute type 10 has an invalid length.
[  138.520792][ T6684] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.522863][ T6684] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.532510][ T6684] bridge0: port 2(bridge_slave_1) entered blocking state
[  138.533022][ T6684] bridge0: port 2(bridge_slave_1) entered forwarding state
[  138.534674][ T6684] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.534828][ T6684] bridge0: port 1(bridge_slave_0) entered forwarding state
[  138.541507][ T6684] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  138.571519][ T6684] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.571739][ T6684] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.818515][ T5393] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  138.864832][ T6689] 9pnet_fd: Insufficient options for proto=fd
[  139.003763][ T5393] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  139.003789][ T5393] usb 6-1: config 0 has no interfaces?
[  139.003818][ T5393] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  139.003839][ T5393] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.018800][ T5393] usb 6-1: config 0 descriptor??
[  139.408551][   T57] vhci_hcd: vhci_device speed not set
[  140.194022][ T6704] netlink: 'syz.3.322': attribute type 4 has an invalid length.
[  140.197043][ T6704] netlink: 'syz.3.322': attribute type 4 has an invalid length.
[  140.204455][ T6704] netlink: 126012 bytes leftover after parsing attributes in process `syz.3.322'.
[  140.952875][   T39] kauditd_printk_skb: 50 callbacks suppressed
[  140.952889][   T39] audit: type=1326 audit(1726581409.737:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  140.978490][   T39] audit: type=1326 audit(1726581409.737:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  140.978538][   T39] audit: type=1326 audit(1726581409.747:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=461 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  141.024855][   T39] audit: type=1326 audit(1726581409.747:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  141.030940][   T39] audit: type=1326 audit(1726581409.747:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  141.037286][   T39] audit: type=1326 audit(1726581409.747:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  141.045596][   T39] audit: type=1326 audit(1726581409.747:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  141.053229][   T39] audit: type=1326 audit(1726581409.747:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  141.059204][   T39] audit: type=1326 audit(1726581409.747:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  141.067179][   T39] audit: type=1326 audit(1726581409.757:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6719 comm="syz.3.326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  141.518755][   T30] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  141.708821][   T30] usb 8-1: Using ep0 maxpacket: 32
[  141.718202][   T30] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  141.737251][   T30] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  141.742245][   T30] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  141.745898][   T30] usb 8-1: Product: syz
[  141.748019][   T30] usb 8-1: Manufacturer: syz
[  141.753000][   T30] usb 8-1: SerialNumber: syz
[  141.758079][   T30] usb 8-1: config 0 descriptor??
[  141.764375][ T6727] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  141.917144][ T6730] netlink: 64 bytes leftover after parsing attributes in process `syz.0.329'.
[  142.084775][   T58] usb 8-1: USB disconnect, device number 7
[  142.217555][   T30] usb 6-1: USB disconnect, device number 11
[  142.222422][ T6733] netlink: 'syz.2.330': attribute type 4 has an invalid length.
[  142.225335][ T6733] netlink: 'syz.2.330': attribute type 4 has an invalid length.
[  142.227832][ T6733] netlink: 126012 bytes leftover after parsing attributes in process `syz.2.330'.
[  142.352422][ T5360] Bluetooth: hci3: unexpected event for opcode 0x2019
[  142.431214][ T6727] fuse: Bad value for 'fd'
[  142.603746][   T56] hid (null): global environment stack underflow
[  142.606369][   T56] hid (null): invalid report_size 289388976
[  142.611633][   T56] hid-generic 0B7E:FFFF:A3B5.0004: unknown main item tag 0xe
[  142.615473][   T56] hid-generic 0B7E:FFFF:A3B5.0004: global environment stack underflow
[  142.618273][   T56] hid-generic 0B7E:FFFF:A3B5.0004: item 0 1 1 11 parsing failed
[  142.634871][   T56] hid-generic 0B7E:FFFF:A3B5.0004: probe with driver hid-generic failed with error -22
[  142.858930][   T58] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  143.048640][   T58] usb 6-1: Using ep0 maxpacket: 32
[  143.054862][   T58] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  143.065203][   T58] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  143.069007][   T58] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  143.072442][   T58] usb 6-1: Product: syz
[  143.074215][   T58] usb 6-1: Manufacturer: syz
[  143.076563][   T58] usb 6-1: SerialNumber: syz
[  143.100815][   T58] usb 6-1: config 0 descriptor??
[  143.104807][ T6744] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  143.437987][   T30] usb 6-1: USB disconnect, device number 12
[  143.749223][ T6756] all: renamed from lo (while UP)
[  143.816113][ T6758] process 'syz.2.337' launched './file0' with NULL argv: empty string added
[  144.068553][ T5475] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  144.249015][ T5475] usb 8-1: Using ep0 maxpacket: 8
[  144.265629][ T5475] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  144.269962][ T5475] usb 8-1: config 0 has no interface number 0
[  144.272398][ T5475] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  144.288779][ T5475] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  144.293057][ T5475] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.302702][ T5475] usb 8-1: config 0 descriptor??
[  144.320525][ T5475] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  144.546541][ T5475] usb 8-1: USB disconnect, device number 8
[  144.565652][ T5475] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[  144.640764][ T6769] netlink: 12 bytes leftover after parsing attributes in process `syz.1.340'.
[  144.661513][ T6769] bridge_slave_1: left allmulticast mode
[  144.663237][ T6769] bridge_slave_1: left promiscuous mode
[  144.665079][ T6769] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.671007][ T6769] bridge2: port 1(bridge_slave_1) entered blocking state
[  144.672960][ T6769] bridge2: port 1(bridge_slave_1) entered disabled state
[  144.674914][ T6769] bridge_slave_1: entered allmulticast mode
[  144.677340][ T6769] bridge_slave_1: entered promiscuous mode
[  146.218605][ T6798] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.348'.
[  146.368883][ T5360] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  146.372507][ T5360] Bluetooth: hci3: Injecting HCI hardware error event
[  146.377443][ T6795] netlink: 64 bytes leftover after parsing attributes in process `syz.2.347'.
[  146.378227][ T5351] Bluetooth: hci3: hardware error 0x00
[  146.390508][ T6798] netlink: 12 bytes leftover after parsing attributes in process `syz.0.348'.
[  147.652557][   T39] kauditd_printk_skb: 74 callbacks suppressed
[  147.652645][   T39] audit: type=1800 audit(1726581416.437:238): pid=6821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.356" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  147.667611][ T6821] FAULT_INJECTION: forcing a failure.
[  147.667611][ T6821] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.667713][ T6821] 
[  147.667718][ T6821] ======================================================
[  147.667722][ T6821] WARNING: possible circular locking dependency detected
[  147.667728][ T6821] 6.11.0-syzkaller-02574-ga430d95c5efa #0 Not tainted
[  147.667738][ T6821] ------------------------------------------------------
[  147.667742][ T6821] syz.0.356/6821 is trying to acquire lock:
[  147.667750][ T6821] ffffffff8dda7cb8 ((console_sem).lock){-.-.}-{2:2}, at: down_trylock+0x12/0x70
[  147.667791][ T6821] 
[  147.667791][ T6821] but task is already holding lock:
[  147.667794][ T6821] ffff88802b83eb98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  147.667833][ T6821] 
[  147.667833][ T6821] which lock already depends on the new lock.
[  147.667833][ T6821] 
[  147.667837][ T6821] 
[  147.667837][ T6821] the existing dependency chain (in reverse order) is:
[  147.667841][ T6821] 
[  147.667841][ T6821] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  147.667859][ T6821]        _raw_spin_lock_nested+0x31/0x40
[  147.667881][ T6821]        raw_spin_rq_lock_nested+0x29/0x130
[  147.667901][ T6821]        task_fork_fair+0x73/0x250
[  147.667917][ T6821]        sched_cgroup_fork+0x3cf/0x510
[  147.667931][ T6821]        copy_process+0x470a/0x6f50
[  147.667948][ T6821]        kernel_clone+0xfd/0x960
[  147.667962][ T6821]        user_mode_thread+0xb4/0xf0
[  147.667977][ T6821]        rest_init+0x23/0x2b0
[  147.667992][ T6821]        start_kernel+0x3e4/0x4d0
[  147.668012][ T6821]        x86_64_start_reservations+0x18/0x30
[  147.668033][ T6821]        x86_64_start_kernel+0xb2/0xc0
[  147.668053][ T6821]        common_startup_64+0x13e/0x148
[  147.668070][ T6821] 
[  147.668070][ T6821] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  147.668088][ T6821]        _raw_spin_lock_irqsave+0x3a/0x60
[  147.668108][ T6821]        try_to_wake_up+0x9a/0x13e0
[  147.668128][ T6821]        up+0x79/0xb0
[  147.668141][ T6821]        console_unlock+0x23e/0x290
[  147.668155][ T6821]        vga_remove_vgacon+0x90/0xd0
[  147.668174][ T6821]        aperture_remove_conflicting_pci_devices+0x16a/0x1e0
[  147.668192][ T6821]        bochs_pci_probe+0x101/0x1150
[  147.668206][ T6821]        local_pci_probe+0xde/0x1b0
[  147.668226][ T6821]        pci_device_probe+0x29d/0x7b0
[  147.668241][ T6821]        really_probe+0x23e/0xa90
[  147.668255][ T6821]        __driver_probe_device+0x1de/0x440
[  147.668270][ T6821]        driver_probe_device+0x4c/0x1b0
[  147.668286][ T6821]        __driver_attach+0x283/0x580
[  147.668301][ T6821]        bus_for_each_dev+0x13c/0x1d0
[  147.668323][ T6821]        bus_add_driver+0x2e9/0x690
[  147.668335][ T6821]        driver_register+0x15c/0x4b0
[  147.668352][ T6821]        bochs_pci_driver_init+0x67/0x80
[  147.668392][ T6821]        do_one_initcall+0x128/0x630
[  147.668415][ T6821]        kernel_init_freeable+0x660/0xc50
[  147.668436][ T6821]        kernel_init+0x1c/0x2b0
[  147.668452][ T6821]        ret_from_fork+0x45/0x80
[  147.668473][ T6821]        ret_from_fork_asm+0x1a/0x30
[  147.668493][ T6821] 
[  147.668493][ T6821] -> #0 ((console_sem).lock){-.-.}-{2:2}:
[  147.668513][ T6821]        __lock_acquire+0x24ed/0x3cb0
[  147.668533][ T6821]        lock_acquire+0x1b1/0x560
[  147.668553][ T6821]        _raw_spin_lock_irqsave+0x3a/0x60
[  147.668574][ T6821]        down_trylock+0x12/0x70
[  147.668588][ T6821]        __down_trylock_console_sem+0x40/0x140
[  147.668608][ T6821]        vprintk_emit+0x3d3/0x600
[  147.668620][ T6821]        vprintk+0x7f/0xa0
[  147.668632][ T6821]        _printk+0xc8/0x100
[  147.668648][ T6821]        should_fail_ex+0x46c/0x5b0
[  147.668665][ T6821]        strncpy_from_user+0x38/0x320
[  147.668681][ T6821]        strncpy_from_user_nofault+0x7f/0x180
[  147.668702][ T6821]        bpf_probe_read_compat_str+0x131/0x170
[  147.668720][ T6821]        bpf_prog_e3f550b2299101ce+0x40/0x42
[  147.668732][ T6821]        bpf_trace_run4+0x245/0x5a0
[  147.668748][ T6821]        __traceiter_sched_switch+0x6c/0xc0
[  147.668768][ T6821]        __schedule+0x17cf/0x5490
[  147.668788][ T6821]        preempt_schedule_irq+0x51/0x90
[  147.668810][ T6821]        irqentry_exit+0x36/0x90
[  147.668823][ T6821]        asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  147.668848][ T6821]        write_comp_data+0x11/0x90
[  147.668869][ T6821]        unwind_get_return_address+0x87/0xe0
[  147.668884][ T6821]        arch_stack_walk+0xc1/0x170
[  147.668901][ T6821]        stack_trace_save+0x95/0xd0
[  147.668918][ T6821]        kasan_save_stack+0x33/0x60
[  147.668934][ T6821]        kasan_save_track+0x14/0x30
[  147.668950][ T6821]        __kasan_slab_alloc+0x89/0x90
[  147.668966][ T6821]        kmem_cache_alloc_noprof+0x121/0x2f0
[  147.668984][ T6821]        __kernfs_new_node+0xd3/0x890
[  147.668998][ T6821]        kernfs_new_node+0x186/0x240
[  147.669014][ T6821]        __kernfs_create_file+0x53/0x350
[  147.669033][ T6821]        sysfs_add_file_mode_ns+0x1ff/0x3b0
[  147.669053][ T6821]        internal_create_group+0x565/0xe50
[  147.669076][ T6821]        internal_create_groups+0x9d/0x150
[  147.669090][ T6821]        device_add+0x6d3/0x1a70
[  147.669109][ T6821]        netdev_register_kobject+0x187/0x3f0
[  147.669127][ T6821]        register_netdevice+0x1473/0x1e20
[  147.669148][ T6821]        ppp_dev_configure+0x9aa/0xc90
[  147.669167][ T6821]        ppp_ioctl+0x17eb/0x2590
[  147.669187][ T6821]        ppp_compat_ioctl+0x111/0x400
[  147.669206][ T6821]        __do_compat_sys_ioctl+0x2bd/0x330
[  147.669224][ T6821]        __do_fast_syscall_32+0x73/0x120
[  147.669239][ T6821]        do_fast_syscall_32+0x32/0x80
[  147.669254][ T6821]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.669270][ T6821] 
[  147.669270][ T6821] other info that might help us debug this:
[  147.669270][ T6821] 
[  147.669274][ T6821] Chain exists of:
[  147.669274][ T6821]   (console_sem).lock --> &p->pi_lock --> &rq->__lock
[  147.669274][ T6821] 
[  147.669296][ T6821]  Possible unsafe locking scenario:
[  147.669296][ T6821] 
[  147.669300][ T6821]        CPU0                    CPU1
[  147.669304][ T6821]        ----                    ----
[  147.669308][ T6821]   lock(&rq->__lock);
[  147.669316][ T6821]                                lock(&p->pi_lock);
[  147.669325][ T6821]                                lock(&rq->__lock);
[  147.669334][ T6821]   lock((console_sem).lock);
[  147.669343][ T6821] 
[  147.669343][ T6821]  *** DEADLOCK ***
[  147.669343][ T6821] 
[  147.669346][ T6821] 4 locks held by syz.0.356/6821:
[  147.669357][ T6821]  #0: ffffffff8ef0a7e8 (ppp_mutex){+.+.}-{3:3}, at: ppp_ioctl+0xc3/0x2590
[  147.669409][ T6821]  #1: ffffffff8faac368 (rtnl_mutex){+.+.}-{3:3}, at: ppp_ioctl+0x17d8/0x2590
[  147.669456][ T6821]  #2: ffff88802b83eb98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  147.669505][ T6821]  #3: ffffffff8ddb9b60 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x1d6/0x5a0
[  147.669547][ T6821] 
[  147.669547][ T6821] stack backtrace:
[  147.669578][ T6821] CPU: 2 UID: 0 PID: 6821 Comm: syz.0.356 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  147.669604][ T6821] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.669616][ T6821] Call Trace:
[  147.669624][ T6821]  <TASK>
[  147.669633][ T6821]  dump_stack_lvl+0x116/0x1f0
[  147.669656][ T6821]  check_noncircular+0x31a/0x400
[  147.669684][ T6821]  ? __pfx_check_noncircular+0x10/0x10
[  147.669708][ T6821]  ? __pfx__prb_read_valid+0x10/0x10
[  147.669729][ T6821]  ? __pfx_format_decode+0x10/0x10
[  147.669759][ T6821]  ? lockdep_lock+0xc6/0x200
[  147.669780][ T6821]  ? __pfx_lockdep_lock+0x10/0x10
[  147.669802][ T6821]  __lock_acquire+0x24ed/0x3cb0
[  147.669833][ T6821]  ? __pfx___lock_acquire+0x10/0x10
[  147.669859][ T6821]  ? vprintk_store+0x222/0xbb0
[  147.669887][ T6821]  lock_acquire+0x1b1/0x560
[  147.669909][ T6821]  ? down_trylock+0x12/0x70
[  147.669928][ T6821]  ? __pfx_lock_acquire+0x10/0x10
[  147.669951][ T6821]  ? __pfx_mark_lock+0x10/0x10
[  147.669973][ T6821]  ? __pfx_mark_lock+0x10/0x10
[  147.669997][ T6821]  ? mark_lock+0xb5/0xc60
[  147.670021][ T6821]  ? vprintk+0x7f/0xa0
[  147.670039][ T6821]  _raw_spin_lock_irqsave+0x3a/0x60
[  147.670064][ T6821]  ? down_trylock+0x12/0x70
[  147.670082][ T6821]  down_trylock+0x12/0x70
[  147.670100][ T6821]  __down_trylock_console_sem+0x40/0x140
[  147.670126][ T6821]  vprintk_emit+0x3d3/0x600
[  147.670144][ T6821]  vprintk+0x7f/0xa0
[  147.670162][ T6821]  _printk+0xc8/0x100
[  147.670186][ T6821]  ? __pfx__printk+0x10/0x10
[  147.670210][ T6821]  ? ___ratelimit+0x24c/0x580
[  147.670228][ T6821]  ? __pfx___lock_acquire+0x10/0x10
[  147.670251][ T6821]  ? __pfx____ratelimit+0x10/0x10
[  147.670270][ T6821]  should_fail_ex+0x46c/0x5b0
[  147.670295][ T6821]  strncpy_from_user+0x38/0x320
[  147.670318][ T6821]  strncpy_from_user_nofault+0x7f/0x180
[  147.670342][ T6821]  bpf_probe_read_compat_str+0x131/0x170
[  147.670364][ T6821]  bpf_prog_e3f550b2299101ce+0x40/0x42
[  147.670378][ T6821]  bpf_trace_run4+0x245/0x5a0
[  147.670412][ T6821]  ? __pfx_bpf_trace_run4+0x10/0x10
[  147.670436][ T6821]  ? tracing_record_taskinfo_sched_switch+0x54/0x400
[  147.670466][ T6821]  __traceiter_sched_switch+0x6c/0xc0
[  147.670496][ T6821]  __schedule+0x17cf/0x5490
[  147.670530][ T6821]  ? __pfx___schedule+0x10/0x10
[  147.670557][ T6821]  ? lockdep_hardirqs_on+0x7c/0x110
[  147.670591][ T6821]  preempt_schedule_irq+0x51/0x90
[  147.670620][ T6821]  irqentry_exit+0x36/0x90
[  147.670636][ T6821]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  147.670666][ T6821] RIP: 0010:write_comp_data+0x11/0x90
[  147.670695][ T6821] Code: cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 49 89 d2 49 89 f8 49 89 f1 65 48 8b 15 6f b3 78 7e <65> 8b 05 70 b3 78 7e a9 00 01 ff 00 74 1d f6 c4 01 74 67 a9 00 00
[  147.670713][ T6821] RSP: 0018:ffffc900076f72d8 EFLAGS: 00000246
[  147.670728][ T6821] RAX: 0000000000000001 RBX: ffffc900076f7308 RCX: ffffffff813c97c7
[  147.670741][ T6821] RDX: ffff888040ee4880 RSI: 0000000000000000 RDI: 0000000000000005
[  147.670752][ T6821] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[  147.670763][ T6821] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc900076f7350
[  147.670774][ T6821] R13: ffffffff8176dea0 R14: ffffc900076f73c8 R15: ffff888040ee4880
[  147.670788][ T6821]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  147.670812][ T6821]  ? unwind_get_return_address+0x87/0xe0
[  147.670835][ T6821]  unwind_get_return_address+0x87/0xe0
[  147.670855][ T6821]  arch_stack_walk+0xc1/0x170
[  147.670878][ T6821]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.670900][ T6821]  stack_trace_save+0x95/0xd0
[  147.670920][ T6821]  ? __pfx_stack_trace_save+0x10/0x10
[  147.670944][ T6821]  kasan_save_stack+0x33/0x60
[  147.670963][ T6821]  ? kasan_save_stack+0x33/0x60
[  147.670981][ T6821]  ? kasan_save_track+0x14/0x30
[  147.670999][ T6821]  ? __kasan_slab_alloc+0x89/0x90
[  147.671019][ T6821]  ? kmem_cache_alloc_noprof+0x121/0x2f0
[  147.671040][ T6821]  ? __kernfs_new_node+0xd3/0x890
[  147.671056][ T6821]  ? kernfs_new_node+0x186/0x240
[  147.671075][ T6821]  ? __kernfs_create_file+0x53/0x350
[  147.671097][ T6821]  ? sysfs_add_file_mode_ns+0x1ff/0x3b0
[  147.671122][ T6821]  ? internal_create_group+0x565/0xe50
[  147.671149][ T6821]  ? internal_create_groups+0x9d/0x150
[  147.671166][ T6821]  ? device_add+0x6d3/0x1a70
[  147.671188][ T6821]  ? netdev_register_kobject+0x187/0x3f0
[  147.671211][ T6821]  ? register_netdevice+0x1473/0x1e20
[  147.671233][ T6821]  ? ppp_dev_configure+0x9aa/0xc90
[  147.671253][ T6821]  ? ppp_ioctl+0x17eb/0x2590
[  147.671274][ T6821]  ? ppp_compat_ioctl+0x111/0x400
[  147.671298][ T6821]  ? __do_compat_sys_ioctl+0x2bd/0x330
[  147.671318][ T6821]  ? __do_fast_syscall_32+0x73/0x120
[  147.671335][ T6821]  ? do_fast_syscall_32+0x32/0x80
[  147.671368][ T6821]  kasan_save_track+0x14/0x30
[  147.671387][ T6821]  __kasan_slab_alloc+0x89/0x90
[  147.671416][ T6821]  kmem_cache_alloc_noprof+0x121/0x2f0
[  147.671438][ T6821]  ? __kernfs_new_node+0xd3/0x890
[  147.671456][ T6821]  __kernfs_new_node+0xd3/0x890
[  147.671475][ T6821]  ? __pfx___kernfs_new_node+0x10/0x10
[  147.671491][ T6821]  ? __pfx_lock_release+0x10/0x10
[  147.671514][ T6821]  ? down_write+0x14e/0x200
[  147.671538][ T6821]  ? up_write+0x1b2/0x520
[  147.671566][ T6821]  kernfs_new_node+0x186/0x240
[  147.671589][ T6821]  __kernfs_create_file+0x53/0x350
[  147.671615][ T6821]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  147.671646][ T6821]  internal_create_group+0x565/0xe50
[  147.671677][ T6821]  ? __pfx_internal_create_group+0x10/0x10
[  147.671708][ T6821]  ? kernfs_create_link+0x1bd/0x240
[  147.671732][ T6821]  internal_create_groups+0x9d/0x150
[  147.671751][ T6821]  device_add+0x6d3/0x1a70
[  147.671777][ T6821]  ? __pfx_device_add+0x10/0x10
[  147.671802][ T6821]  ? __init_waitqueue_head+0xca/0x150
[  147.671823][ T6821]  netdev_register_kobject+0x187/0x3f0
[  147.671845][ T6821]  register_netdevice+0x1473/0x1e20
[  147.671870][ T6821]  ? idr_alloc+0xde/0x130
[  147.671885][ T6821]  ? __pfx_register_netdevice+0x10/0x10
[  147.671911][ T6821]  ppp_dev_configure+0x9aa/0xc90
[  147.671933][ T6821]  ? alloc_netdev_mqs+0xf2a/0x12a0
[  147.671957][ T6821]  ppp_ioctl+0x17eb/0x2590
[  147.671982][ T6821]  ? __mutex_unlock_slowpath+0x164/0x650
[  147.672002][ T6821]  ? __pfx_ppp_ioctl+0x10/0x10
[  147.672026][ T6821]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  147.672051][ T6821]  ppp_compat_ioctl+0x111/0x400
[  147.672076][ T6821]  ? __pfx_ppp_compat_ioctl+0x10/0x10
[  147.672101][ T6821]  ? __fget_files+0x244/0x3f0
[  147.672126][ T6821]  ? __pfx_ppp_compat_ioctl+0x10/0x10
[  147.672150][ T6821]  __do_compat_sys_ioctl+0x2bd/0x330
[  147.672172][ T6821]  __do_fast_syscall_32+0x73/0x120
[  147.672190][ T6821]  do_fast_syscall_32+0x32/0x80
[  147.672208][ T6821]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.672226][ T6821] RIP: 0023:0xf7f56579
[  147.672239][ T6821] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  147.672255][ T6821] RSP: 002b:00000000f56b556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  147.672270][ T6821] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c004743e
[  147.672281][ T6821] RDX: 0000000020001439 RSI: 0000000000000000 RDI: 0000000000000000
[  147.672292][ T6821] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  147.672303][ T6821] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  147.672315][ T6821] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.672332][ T6821]  </TASK>
[  148.186239][ T6821] CPU: 2 UID: 0 PID: 6821 Comm: syz.0.356 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  148.190180][ T6821] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.194072][ T6821] Call Trace:
[  148.195252][ T6821]  <TASK>
[  148.196381][ T6821]  dump_stack_lvl+0x116/0x1f0
[  148.198193][ T6821]  should_fail_ex+0x497/0x5b0
[  148.200106][ T6821]  strncpy_from_user+0x38/0x320
[  148.202067][ T6821]  strncpy_from_user_nofault+0x7f/0x180
[  148.204141][ T6821]  bpf_probe_read_compat_str+0x131/0x170
[  148.206263][ T6821]  bpf_prog_e3f550b2299101ce+0x40/0x42
[  148.208264][ T6821]  bpf_trace_run4+0x245/0x5a0
[  148.210059][ T6821]  ? __pfx_bpf_trace_run4+0x10/0x10
[  148.212131][ T6821]  ? tracing_record_taskinfo_sched_switch+0x54/0x400
[  148.215092][ T6821]  __traceiter_sched_switch+0x6c/0xc0
[  148.217323][ T6821]  __schedule+0x17cf/0x5490
[  148.219049][ T6821]  ? __pfx___schedule+0x10/0x10
[  148.220922][ T6821]  ? lockdep_hardirqs_on+0x7c/0x110
[  148.222905][ T6821]  preempt_schedule_irq+0x51/0x90
[  148.224815][ T6821]  irqentry_exit+0x36/0x90
[  148.226563][ T6821]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  148.228905][ T6821] RIP: 0010:write_comp_data+0x11/0x90
[  148.231096][ T6821] Code: cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 49 89 d2 49 89 f8 49 89 f1 65 48 8b 15 6f b3 78 7e <65> 8b 05 70 b3 78 7e a9 00 01 ff 00 74 1d f6 c4 01 74 67 a9 00 00
[  148.238360][ T6821] RSP: 0018:ffffc900076f72d8 EFLAGS: 00000246
[  148.240663][ T6821] RAX: 0000000000000001 RBX: ffffc900076f7308 RCX: ffffffff813c97c7
[  148.243618][ T6821] RDX: ffff888040ee4880 RSI: 0000000000000000 RDI: 0000000000000005
[  148.246739][ T6821] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[  148.249819][ T6821] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc900076f7350
[  148.252724][ T6821] R13: ffffffff8176dea0 R14: ffffc900076f73c8 R15: ffff888040ee4880
[  148.255640][ T6821]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  148.258031][ T6821]  ? unwind_get_return_address+0x87/0xe0
[  148.260264][ T6821]  unwind_get_return_address+0x87/0xe0
[  148.262533][ T6821]  arch_stack_walk+0xc1/0x170
[  148.264403][ T6821]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  148.266845][ T6821]  stack_trace_save+0x95/0xd0
[  148.268624][ T6821]  ? __pfx_stack_trace_save+0x10/0x10
[  148.270665][ T6821]  kasan_save_stack+0x33/0x60
[  148.272592][ T6821]  ? kasan_save_stack+0x33/0x60
[  148.274824][ T6821]  ? kasan_save_track+0x14/0x30
[  148.276907][ T6821]  ? __kasan_slab_alloc+0x89/0x90
[  148.278782][ T6821]  ? kmem_cache_alloc_noprof+0x121/0x2f0
[  148.280865][ T6821]  ? __kernfs_new_node+0xd3/0x890
[  148.282820][ T6821]  ? kernfs_new_node+0x186/0x240
[  148.284912][ T6821]  ? __kernfs_create_file+0x53/0x350
[  148.287146][ T6821]  ? sysfs_add_file_mode_ns+0x1ff/0x3b0
[  148.289348][ T6821]  ? internal_create_group+0x565/0xe50
[  148.291457][ T6821]  ? internal_create_groups+0x9d/0x150
[  148.293515][ T6821]  ? device_add+0x6d3/0x1a70
[  148.295275][ T6821]  ? netdev_register_kobject+0x187/0x3f0
[  148.297521][ T6821]  ? register_netdevice+0x1473/0x1e20
[  148.299768][ T6821]  ? ppp_dev_configure+0x9aa/0xc90
[  148.301842][ T6821]  ? ppp_ioctl+0x17eb/0x2590
[  148.303732][ T6821]  ? ppp_compat_ioctl+0x111/0x400
[  148.305732][ T6821]  ? __do_compat_sys_ioctl+0x2bd/0x330
[  148.307756][ T6821]  ? __do_fast_syscall_32+0x73/0x120
[  148.309708][ T6821]  ? do_fast_syscall_32+0x32/0x80
[  148.311620][ T6821]  kasan_save_track+0x14/0x30
[  148.313398][ T6821]  __kasan_slab_alloc+0x89/0x90
[  148.315312][ T6821]  kmem_cache_alloc_noprof+0x121/0x2f0
[  148.317528][ T6821]  ? __kernfs_new_node+0xd3/0x890
[  148.319645][ T6821]  __kernfs_new_node+0xd3/0x890
[  148.321653][ T6821]  ? __pfx___kernfs_new_node+0x10/0x10
[  148.323691][ T6821]  ? __pfx_lock_release+0x10/0x10
[  148.325708][ T6821]  ? down_write+0x14e/0x200
[  148.327484][ T6821]  ? up_write+0x1b2/0x520
[  148.329157][ T6821]  kernfs_new_node+0x186/0x240
[  148.331002][ T6821]  __kernfs_create_file+0x53/0x350
[  148.332954][ T6821]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  148.335018][ T6821]  internal_create_group+0x565/0xe50
[  148.337030][ T6821]  ? __pfx_internal_create_group+0x10/0x10
[  148.339259][ T6821]  ? kernfs_create_link+0x1bd/0x240
[  148.341246][ T6821]  internal_create_groups+0x9d/0x150
[  148.343381][ T6821]  device_add+0x6d3/0x1a70
[  148.345069][ T6821]  ? __pfx_device_add+0x10/0x10
[  148.346925][ T6821]  ? __init_waitqueue_head+0xca/0x150
[  148.348929][ T6821]  netdev_register_kobject+0x187/0x3f0
[  148.351019][ T6821]  register_netdevice+0x1473/0x1e20
[  148.353109][ T6821]  ? idr_alloc+0xde/0x130
[  148.354788][ T6821]  ? __pfx_register_netdevice+0x10/0x10
[  148.356892][ T6821]  ppp_dev_configure+0x9aa/0xc90
[  148.358908][ T6821]  ? alloc_netdev_mqs+0xf2a/0x12a0
[  148.361068][ T6821]  ppp_ioctl+0x17eb/0x2590
[  148.362969][ T6821]  ? __mutex_unlock_slowpath+0x164/0x650
[  148.365027][ T6821]  ? __pfx_ppp_ioctl+0x10/0x10
[  148.366804][ T6821]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  148.369036][ T6821]  ppp_compat_ioctl+0x111/0x400
[  148.370888][ T6821]  ? __pfx_ppp_compat_ioctl+0x10/0x10
[  148.372980][ T6821]  ? __fget_files+0x244/0x3f0
[  148.375041][ T6821]  ? __pfx_ppp_compat_ioctl+0x10/0x10
[  148.377232][ T6821]  __do_compat_sys_ioctl+0x2bd/0x330
[  148.379320][ T6821]  __do_fast_syscall_32+0x73/0x120
[  148.381233][ T6821]  do_fast_syscall_32+0x32/0x80
[  148.383051][ T6821]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  148.385473][ T6821] RIP: 0023:0xf7f56579
[  148.387082][ T6821] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  148.394435][ T6821] RSP: 002b:00000000f56b556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  148.397453][ T6821] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c004743e
[  148.400637][ T6821] RDX: 0000000020001439 RSI: 0000000000000000 RDI: 0000000000000000
[  148.403684][ T6821] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  148.406584][ T6821] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  148.409525][ T6821] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  148.412547][ T6821]  </TASK>
[  148.414051][    C0] vkms_vblank_simulate: vblank timer overrun
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  148.448743][ T5351] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  149.099665][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.242519][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.327205][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.423052][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.497260][   T13] bridge_slave_1: left allmulticast mode
[  149.500020][   T13] bridge_slave_1: left promiscuous mode
[  149.502317][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.507671][   T13] bridge_slave_0: left allmulticast mode
[  149.510273][   T13] bridge_slave_0: left promiscuous mode
[  149.512778][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.674565][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  149.678860][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  149.682244][   T13] bond0 (unregistering): Released all slaves
[  149.793970][   T13] tipc: Left network mode
[  150.062770][   T13] hsr_slave_0: left promiscuous mode
[  150.065771][   T13] hsr_slave_1: left promiscuous mode
[  150.069016][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  150.071837][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  150.079299][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  150.082176][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  150.088123][   T13] veth1_macvtap: left promiscuous mode
[  150.093129][   T13] veth0_macvtap: left promiscuous mode
[  150.095388][   T13] veth1_vlan: left promiscuous mode
[  150.097651][   T13] veth0_vlan: left promiscuous mode
[  150.473929][   T13] team0 (unregistering): Port device team_slave_1 removed
[  150.543723][   T13] team0 (unregistering): Port device team_slave_0 removed
[  151.150811][ T1102] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.218575][ T1102] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.275532][ T1102] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.374533][ T1102] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.484072][ T1102] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.555182][ T1102] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.631909][ T1102] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.690158][ T1102] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.795978][ T1102] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.877562][ T1102] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.947698][ T1102] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.022049][ T1102] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.163361][ T1102] bridge_slave_0: left allmulticast mode
[  152.165671][ T1102] bridge_slave_0: left promiscuous mode
[  152.167855][ T1102] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.177123][ T1102] bridge_slave_1: left allmulticast mode
[  152.179505][ T1102] bridge_slave_1: left promiscuous mode
[  152.181714][ T1102] bridge2: port 1(bridge_slave_1) entered disabled state
[  152.186909][ T1102] bridge_slave_1: left allmulticast mode
[  152.190009][ T1102] bridge_slave_1: left promiscuous mode
[  152.192652][ T1102] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.197378][ T1102] bridge_slave_0: left allmulticast mode
[  152.200241][ T1102] bridge_slave_0: left promiscuous mode
[  152.202533][ T1102] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.209264][ T1102] bridge_slave_1: left allmulticast mode
[  152.211484][ T1102] bridge_slave_1: left promiscuous mode
[  152.213933][ T1102] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.218954][ T1102] bridge_slave_0: left allmulticast mode
[  152.221236][ T1102] bridge_slave_0: left promiscuous mode
[  152.223642][ T1102] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.230085][ T1102] tipc: Resetting bearer <eth:geneve1>
[  152.451637][ T1102] tipc: Disabling bearer <eth:geneve1>
[  152.721943][ T1102] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  152.764695][ T1102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.769397][ T1102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.774504][ T1102] bond0 (unregistering): Released all slaves
[  152.782272][ T1102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.785796][ T1102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.789668][ T1102] bond0 (unregistering): Released all slaves
[  152.801607][ T1102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.807038][ T1102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.814556][ T1102] bond0 (unregistering): Released all slaves
[  152.935382][ T1102] tipc: Left network mode
[  152.954164][ T1102] tipc: Disabling bearer <udp:syz2>
[  152.956319][ T1102] tipc: Left network mode
[  153.783814][ T1102] hsr_slave_0: left promiscuous mode
[  153.799326][ T1102] hsr_slave_1: left promiscuous mode
[  153.816614][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.822876][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.831623][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.834549][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.848564][ T1102] hsr_slave_0: left promiscuous mode
[  153.851700][ T1102] hsr_slave_1: left promiscuous mode
[  153.854835][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.857590][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.862614][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.865756][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.872452][ T1102] hsr_slave_0: left promiscuous mode
[  153.875647][ T1102] hsr_slave_1: left promiscuous mode
[  153.879371][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.882281][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.886596][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.889719][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.900400][ T1102] veth1_macvtap: left promiscuous mode
[  153.902235][ T1102] veth0_macvtap: left promiscuous mode
[  153.904534][ T1102] veth1_vlan: left promiscuous mode
[  153.906570][ T1102] veth0_vlan: left promiscuous mode
[  153.910122][ T1102] veth1_macvtap: left promiscuous mode
[  153.912283][ T1102] veth0_macvtap: left promiscuous mode
[  153.914383][ T1102] veth1_vlan: left promiscuous mode
[  153.916336][ T1102] veth0_vlan: left promiscuous mode
[  153.920227][ T1102] veth0_macvtap: left promiscuous mode
[  153.921945][ T1102] veth1_vlan: left promiscuous mode
[  153.923490][ T1102] veth0_vlan: left promiscuous mode
[  153.982836][ T1102] infiniband syz1: set down
[  154.440859][ T1102] team0 (unregistering): Port device team_slave_1 removed
[  154.502633][ T1102] team0 (unregistering): Port device team_slave_0 removed
[  154.659391][ T1110] smc: removing ib device syz1
[  154.995615][ T1102] team0 (unregistering): Port device team_slave_1 removed
[  155.066339][ T1102] team0 (unregistering): Port device team_slave_0 removed
[  155.493559][ T1102] team0 (unregistering): Port device team_slave_1 removed
[  155.562128][ T1102] team0 (unregistering): Port device team_slave_0 removed
[  155.775357][   T30] vcan0 speed is unknown, defaulting to 1000

VM DIAGNOSIS:
13:56:56  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff813bf4ae RDX=ffffffff8da957c0
RSI=ffffffff813bf4cb RDI=0000000000000000 RBP=ffff88802b83eb80 RSP=ffffffff8da07998
R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=ffff88801bebb400
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b63fa40 R15=ffffed1005707d70
RIP=ffffffff813bf4cc RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001100 CR3=000000004737c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000040000 RBX=0000000000000003 RCX=ffffc90003959000 RDX=0000000000040000
RSI=ffffffff813bf4cb RDI=0000000000000000 RBP=ffff88802b63eb80 RSP=ffffc90006d3f558
R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=0000000000000001
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b73fa40 R15=ffffed10056c7d70
RIP=ffffffff813bf4cc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002002f000 CR3=0000000044856000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff84fcd470 RDI=ffffffff9a5e9460 RBP=ffffffff9a5e9420 RSP=ffffc900076f6988
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=732d302e31312e36
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff34bd2de R15=dffffc0000000000
RIP=ffffffff84fcd497 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b800000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f56b4fbc CR3=00000000673a8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88802b83eb80 RCX=ffffffff8b0c1594 RDX=ffffed1005707d71
RSI=0000000000000004 RDI=ffff88802b83eb80 RBP=0000000000000003 RSP=ffffc900005f0b58
R8 =0000000000000000 R9 =ffffed1005707d70 R10=ffff88802b83eb83 R11=ffff88802b93fac0
R12=ffffed1005707d70 R13=0000000000000000 R14=ffff88802b93fa40 R15=0000000000000003
RIP=ffffffff8b0c15d0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b900000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020fad000 CR3=000000002746e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000