last executing test programs:

3.909582818s ago: executing program 0 (id=2149):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x4a141)
syz_usb_disconnect(0xffffffffffffffff)
pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000080)='V', 0x1}], 0x1, 0x0, 0x0)
r2 = epoll_create(0x9fe546d)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000280))
connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xe, &(0x7f0000002380)=ANY=[@ANYBLOB="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"/3002], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3f)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32, @ANYBLOB="080005f606000000"], 0x24}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r6, 0x0, 0x29, 0x0, 0x5000)

3.199386792s ago: executing program 0 (id=2152):
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
accept4$phonet_pipe(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=0x10, 0x800) (async)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000980)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581d3b3"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) (async)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
prctl$PR_SCHED_CORE(0x3e, 0x80000000000001, 0x0, 0x2, 0x0) (async, rerun: 32)
socket$nl_netfilter(0x10, 0x3, 0xc) (async, rerun: 32)
getpid() (async)
socket$inet_sctp(0x2, 0x1, 0x84)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x1, 0x130, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x17f)
chdir(0x0) (async, rerun: 64)
mmap(&(0x7f0000bff000/0x400000)=nil, 0x400000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) (async, rerun: 64)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000103c0)={0x0, r4}, 0xfffffffffffffeb9)
r5 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x2000, 0x8, 0x63}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000010300)=[{0x0}, {0x0}, {&(0x7f0000010100)=""/81, 0x51}, {&(0x7f0000010180)=""/72, 0x48}, {&(0x7f0000010200)=""/160, 0xa0}, {&(0x7f0000010380)=""/47, 0x2f}], 0x6) (async)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r6, 0x29, 0xd2, 0x0, 0x0) (async)
r7 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r7, &(0x7f0000000000)={0x2, 0x4e23, @rand_addr=0x64010101}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000340)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000500)=[@rdma_args={0x48, 0x114, 0x1, {{0x0, 0xfffffffe}, {0x0}, &(0x7f00000007c0)}}], 0x48}, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) (async)
r8 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r8, 0xc0185648, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f905, 0x8002, '\x00', @p_u16=&(0x7f00000010c0)=0xa5b}})

2.669926429s ago: executing program 1 (id=2158):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x402, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x3a)
setsockopt$sock_int(r5, 0x1, 0x25, &(0x7f0000000080)=0xff, 0x4)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1, 0x6}, 0x1c)
sendto$inet6(r5, &(0x7f0000000100)="80000fdc2208a1ce", 0x8, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000006280)=[{{0x0, 0x24, 0x0}}], 0x1, 0x0, 0x0)
modify_ldt$write(0x1, &(0x7f0000000040)={0xc}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = getpid()
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067000000050000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r7}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000780)=ANY=[@ANYBLOB="03000000", @ANYRES16=r4, @ANYBLOB="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", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], &(0x7f0000000640)='GPL\x00', 0x6, 0x49, &(0x7f0000000680)=""/73, 0x0, 0x2, '\x00', 0x0, 0x19, r2, 0x8, &(0x7f0000000700)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x4, 0x1, 0x80}, 0x10, 0x8400, 0xffffffffffffffff, 0x7, 0x0, &(0x7f0000000cc0)=[{0x1, 0x4, 0xd, 0xb}, {0x4, 0x4, 0x20a, 0xc}, {0x3, 0x5, 0x5, 0x4}, {0x1, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xa}, {0x3, 0x4, 0xb, 0x342941b6c525dbcf}, {0x3, 0x1003, 0x3, 0x9}], 0x10, 0x3, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

2.370125207s ago: executing program 1 (id=2159):
pipe(0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1181})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000140)={0x8, 0x0, &(0x7f0000000040)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000200)="ee"})

1.639931327s ago: executing program 3 (id=2165):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040001)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
socket(0x0, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x14, 0x4, 0x6, 0x201}, 0x14}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$sock_int(r2, 0x1, 0x29, 0x0, 0x0)
write$binfmt_misc(r2, &(0x7f0000000300), 0x6)
recvmmsg(r2, &(0x7f0000000600), 0x204083acb88ff8b, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r5], 0x90}}, 0x0)

1.439087149s ago: executing program 1 (id=2166):
r0 = openat$tcp_mem(0xffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000040)=<r1=>0xffffffffffffffff)
close_range(r0, r1, 0x2)
r2 = openat$vhost_vsock(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VHOST_VDPA_SET_VRING_ENABLE(r2, 0x4008af75, &(0x7f00000000c0)={0x0, 0x9})
r3 = syz_open_dev$sndpcmc(&(0x7f0000000100), 0x8, 0x604080)
ioctl$SNDRV_PCM_IOCTL_UNLINK(r3, 0x4161, 0x0)
ioctl$VHOST_VDPA_GET_VRING_NUM(r2, 0x8002af76, &(0x7f0000000140))
r4 = syz_open_dev$sndctrl(&(0x7f0000000180), 0xc6f1, 0x8000)
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r4, 0xc0045520, &(0x7f00000001c0)=0x7ff)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r5, {<r7=>0xee00, 0xee00}}, './file0\x00'})
fstat(r3, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
fstat(r3, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000003c0)=@nat={'nat\x00', 0x1b, 0x5, 0x56c, 0x150, 0x150, 0xffffffff, 0x150, 0x394, 0x4a4, 0x4a4, 0xffffffff, 0x4a4, 0x4a4, 0x5, &(0x7f0000000200), {[{{@uncond, 0x0, 0x108, 0x150, 0x0, {}, [@common=@unspec=@owner={{0x34}, {0xee00, r7, r8, r9, 0x0, 0x2}}, @common=@ah={{0x30}, {[0x4d3, 0x4d3], 0x8, 0x3, 0x1}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x1, @ipv4=@multicast2, @ipv4=@multicast1, @port=0x4e20, @port=0x4e24}}}, {{@uncond, 0x0, 0xa4, 0x110}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0xa, 0x1, 0x5, 0x0, 0x0, "11f3e094b08aeffe8555adf28794d0f23e8a572da24f7915dc2641706555ba0ab8481d86d16660ba26ed454c82411ac858e7c64bdbf7b2f5aa271720de1c01ec"}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0xd}, [0xff000000, 0xff000000], [0x0, 0xffffff00, 0xffffffff, 0xff000000], 'veth0_to_team\x00', 'syzkaller1\x00', {0xff}, {}, 0x0, 0x3, 0x6, 0x1}, 0x0, 0xf4, 0x134, 0x0, {}, [@common=@inet=@esp={{0x2c}, {[0x4d5, 0x4d2], 0x1}}, @common=@icmp6={{0x24}, {0x0, "5ba7", 0x1}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x8, 0xf9, {0x8000}}}}, {{@ipv6={@private0={0xfc, 0x0, '\x00', 0x1}, @empty, [0x0, 0xffffffff, 0xff, 0xff], [0xffffffff, 0xff, 0xffffff00, 0xffffff00], 'nicvf0\x00', 'dvmrp0\x00', {0xff}, {}, 0xaa, 0x0, 0x0, 0x22}, 0x0, 0xc8, 0x110, 0x0, {}, [@common=@eui64={{0x24}}]}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x1, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}, @ipv6=@empty, @port=0x4e24, @icmp_id=0x64}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x5c8)
r10 = syz_open_dev$sndctrl(&(0x7f00000009c0), 0x5, 0x80800)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r10, 0xc1205531, &(0x7f0000000a00)={0xfffffff8, 0x6, 0xffff, 0x8, '\x00', '\x00', '\x00', 0xbc83, 0x2, 0x4, 0x4, "917b450ca871d708ed32cb134ac85276"})
r11 = dup2(r1, r10)
open_by_handle_at(r11, &(0x7f0000000b40)=@ceph_nfs_fh={0x8, 0x1, {0x9e}}, 0x800)
ioctl$BTRFS_IOC_GET_DEV_STATS(r6, 0xc4089434, &(0x7f0000000b80)={<r12=>0x0, 0x6, 0x1, [0x4, 0x0, 0x9279, 0x40, 0xe], [0x8, 0x4, 0x4, 0x3, 0x200, 0x0, 0x7, 0x5, 0x3, 0x1, 0xffffffff, 0x9, 0x334, 0x8000000000000001, 0x0, 0x9, 0x6, 0x8000000000000001, 0x10000, 0x5, 0x4, 0x7af0, 0x527, 0x7, 0x4, 0x4, 0xe41, 0x7, 0x9, 0x1, 0x5, 0x4, 0x5000, 0xf, 0x6, 0xff, 0x4, 0xfffffffffffeffff, 0x8, 0x0, 0x0, 0x632e, 0x100, 0xc2, 0x7f, 0x7f, 0xa474, 0x5, 0x3, 0x81, 0x10, 0x6b7, 0x3, 0x4, 0x5, 0x1, 0x8c, 0xf, 0x2000, 0x3, 0x0, 0x7, 0x40, 0x400, 0xfff, 0x1, 0x6, 0x2, 0x1ff, 0xfffffffffffffff9, 0xc5, 0x7fffffffffffffff, 0x9, 0x3, 0xffff, 0x5, 0x4, 0x8, 0x8, 0xfffffffffffffff9, 0x0, 0x8, 0x5b, 0x400, 0xfffffffffffffff8, 0xfffffffffffffffb, 0x0, 0x0, 0x7, 0xf7c, 0x9, 0x8000000000000001, 0x4, 0x602, 0x200, 0x4, 0x6, 0x0, 0x8, 0x3, 0x6, 0x4, 0x8001, 0xd13, 0x10, 0x4, 0x902, 0xb, 0xb1, 0xe, 0xf6d4, 0xfffffffffffffc00, 0x9, 0xffffffff, 0x2d10cf0d, 0x2, 0x5, 0x2, 0x2170d198, 0x4, 0xc]})
ioctl$BTRFS_IOC_RESIZE(r4, 0x50009403, &(0x7f0000000fc0)={{r10}, {@val={r12}, @actul_num={@void, 0x4, 0x4b}}})
setsockopt$SO_TIMESTAMPING(r11, 0x1, 0x41, &(0x7f0000001000)=0x100, 0x4)
r13 = openat$autofs(0xffffff9c, &(0x7f0000001040), 0x8080, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r13, 0xc0189374, &(0x7f0000001080)={{0x1, 0x1, 0x18, <r14=>r4, {0x4}}, './file0\x00'})
openat$rdma_cm(0xffffff9c, &(0x7f00000010c0), 0x2, 0x0)
ioctl$NBD_DISCONNECT(r14, 0xab08)
openat$pfkey(0xffffff9c, &(0x7f0000001100), 0x401, 0x0)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000001140))
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001640)={r11, 0xe0, &(0x7f0000001540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000001340)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0xa, 0x4, &(0x7f0000001380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001400)=[0x0, 0x0, 0x0, 0x0], <r15=>0x0, 0xa7, &(0x7f0000001440)=[{}], 0x8, 0x10, &(0x7f0000001480), &(0x7f00000014c0), 0x8, 0x87, 0x8, 0x8, &(0x7f0000001500)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001700)={0x10, 0x10, &(0x7f0000001180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x8000}, [@initr0={0x18, 0x0, 0x0, 0x0, 0xffff8001, 0x0, 0x0, 0x0, 0x2b}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @tail_call={{0x18, 0x2, 0x1, 0x0, r14}}, @call={0x85, 0x0, 0x0, 0x68}, @ldst={0x2, 0x2, 0x6, 0x8, 0x8, 0xc, 0x1}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}, @jmp={0x5, 0x0, 0x7, 0x0, 0x3, 0xffffffffffffffe0, 0x4}, @call={0x85, 0x0, 0x0, 0xb7}]}, &(0x7f0000001200)='GPL\x00', 0x10, 0x4e, &(0x7f0000001240)=""/78, 0x41100, 0x4c, '\x00', 0x0, @fallback=0x5, r2, 0x8, &(0x7f00000012c0)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000001300)={0x2, 0x7, 0x4, 0x1}, 0x10, r15, r11, 0x4, &(0x7f0000001680)=[r6, r6, r14], &(0x7f00000016c0)=[{0x4, 0x4, 0x9, 0x8}, {0x1, 0x3, 0x1, 0x2}, {0x0, 0x1, 0xf, 0xa}, {0x1, 0x2, 0xa, 0x2}], 0x10, 0x6, @void, @value}, 0x94)

1.438750268s ago: executing program 1 (id=2167):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, 0x0)
sendto$packet(r1, 0x0, 0x0, 0x20008000, &(0x7f0000000000)={0x11, 0x1c, 0x0, 0x1, 0x8, 0x6, @random="6d6eb1f60783"}, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = socket(0x2, 0x1, 0x0)
sched_getaffinity(0x0, 0x8, &(0x7f0000000040))
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, &(0x7f0000000680)=""/36, &(0x7f0000000840)=0x24)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4138ae84, &(0x7f0000000000))
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$netlink(0x10, 0x3, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r8, 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r8, 0x4008af03, &(0x7f0000000700)={0x8, 0x0, [{0x4, 0x7d, &(0x7f0000000200)=""/125}, {0xeeee8000, 0xb, &(0x7f0000000180)=""/11}, {0x2000, 0x7b, &(0x7f0000000280)=""/123}, {0x100000, 0x53, &(0x7f0000000300)=""/83}, {0x80a0000, 0x57, &(0x7f0000000380)=""/87}, {0x1000, 0xd4, &(0x7f0000000480)=""/212}, {0x8000000, 0x8, &(0x7f0000000400)=""/8}, {0xeeef0000, 0x91, &(0x7f00000005c0)=""/145}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r9], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xbf03, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$inet_sctp6_SCTP_INITMSG(r7, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r7, &(0x7f0000000580)="03", 0x34000, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)

909.707972ms ago: executing program 3 (id=2168):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000480))
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000080)=0x200000000)
r5 = dup2(r4, r4)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@ipv6_getaddr={0x18, 0x16, 0x1}, 0x18}}, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000400)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/126, 0x0})
write$vhost_msg_v2(r5, &(0x7f0000000280)={0x2, 0x0, {&(0x7f0000000140)=""/128, 0x20000, 0x0, 0x0, 0x2}}, 0x48)
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000100)=0x1)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r2, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x808)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r9=>0x0})
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfd, 0x200000}, 0xc)
r10 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r10, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r10, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r10, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r13=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r11, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000600)={0x44, r12, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r13}, @val={0xc, 0x99, {0x8001, 0x79}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'veth1_to_bond\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xa}]}, 0x44}}, 0x0)
sendmsg$NL80211_CMD_FRAME(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r9, @ANYBLOB="08002600ad1600004000330010000000080211000000080211000000080211000001000000000000010001002d1a40000b0000000000000000040003000b0000000600500000000304006c"], 0x68}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)

569.84928ms ago: executing program 3 (id=2169):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@const={0x0, 0x0, 0x0, 0xa, 0x4}]}}, 0x0, 0x26, 0x0, 0x1, 0x620, 0x0, @void, @value}, 0x20)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder1\x00', 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x7c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x39}, @IPSET_ATTR_DATA={0x44, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x9}, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0x4}, @IPSET_ATTR_NAME={0x9, 0x12, 'syz2\x00'}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x8}, @IPSET_ATTR_IP2_TO={0x18, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @loopback}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x14, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz2\x00'}}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r2 = dup3(r0, r0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000480)={0x8, 0x0, &(0x7f0000000240)=[@increfs={0x400c6313, 0x2}], 0x0, 0x0, 0x0})

569.519715ms ago: executing program 3 (id=2170):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x3a)
setsockopt$sock_int(r5, 0x1, 0x25, &(0x7f0000000080)=0xff, 0x4)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1, 0x6}, 0x1c)
sendto$inet6(r5, &(0x7f0000000100)="80000fdc2208a1ce", 0x8, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000006280)=[{{0x0, 0x24, 0x0}}], 0x1, 0x0, 0x0)
modify_ldt$write(0x1, &(0x7f0000000040)={0xc}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x62000000, 0x0, 0x11, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = getpid()
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067000000050000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r7}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000780)=ANY=[@ANYBLOB="03000000", @ANYRES16=r4, @ANYBLOB="00000000000000003d06500008000000181300005113754014da6c91c342ba03ddf384091fbe68fe3a533ddbaed1cbdbd414b3b75e7c64f961c7cf03f40a1585f338b491ea1da6daed544885ae413bd3b5046bee0ed3911a20113e70ec2189f706b248c17f60e41e0f9ce8444dd5c9e9df9e5bbb714bca44bfa4e8b80f7e675dc6a3f99debaacadbd8d5b8c0ff7111265e347beda80ef3ca94eb2b4ae61380a4790cc6d325c3419144664b77a5fa9b751779e34761793addab7262368ab3fece9c9b72880c7f94cf2590ee95a39d1e33aefcaf6b0efbb9180dda7694852307f435f492d1ed61b30aa558c35d567a86a3ebfeb00f4215c4576ee0f6ea0d8fa0beec04ac98d84b11550385ca2d1bde7d92bdaf04bd3b95fe6a340ef1e5751ef184cec7e508f8af4e7566449b97755c65132b55fc5ff15dd8f1c44a8c16b471b8880e1600485e3949912c39d645dce3fdded7cba694e413b64174eec1957e9b415235c48b8c6f6bf39554b9f70ac4e2636b5713e62e38ab7074825eb14f69afe8a69ed54e94ca603e0133f15e33f2cb4eea8eb93a0c499e13c7", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], &(0x7f0000000640)='GPL\x00', 0x6, 0x49, &(0x7f0000000680)=""/73, 0x0, 0x2, '\x00', 0x0, 0x19, r2, 0x8, &(0x7f0000000700)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x4, 0x1, 0x80}, 0x10, 0x8400, 0xffffffffffffffff, 0x7, 0x0, &(0x7f0000000cc0)=[{0x1, 0x4, 0xd, 0xb}, {0x4, 0x4, 0x20a, 0xc}, {0x3, 0x5, 0x5, 0x4}, {0x1, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xa}, {0x3, 0x4, 0xb, 0x342941b6c525dbcf}, {0x3, 0x1003, 0x3, 0x9}], 0x10, 0x3, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

569.241471ms ago: executing program 2 (id=2161):
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000440)={&(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x80000, 0x0, <r0=>0xffffffffffffffff})
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x40, 0x0, 0x4, 0x70bd25, 0x25dfdbff, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x885)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x1c0)
r1 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x10, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200000, 0x41)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x58, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x0}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x58}}, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000200)={0x100, r2}, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file0\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000280)={0x100, r4}, 0x0)
openat$ttynull(0xffffff9c, &(0x7f0000000000), 0x105200, 0x0)
close(r4)
close(r2)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000340)={0x100, r5}, 0x0)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
landlock_restrict_self(r1, 0x0)
close(r1)
mknodat(0xffffffffffffff9c, &(0x7f0000000380)='./file1/file0\x00', 0x81c0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000003c0)='./file2\x00', 0x81c0, 0x0)

568.195523ms ago: executing program 1 (id=2171):
r0 = dup(0xffffffffffffffff)
ioctl$PPPIOCSMRRU(r0, 0x4004743b, &(0x7f0000000200)=0xf8f) (async)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x140) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$packet(0x11, 0x3, 0x300) (async)
socket$inet_sctp(0x2, 0x5, 0x84) (async, rerun: 32)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x10, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="250a00000000000061114400000000ed180000000000000100000000000000009500000000000000e74d56403ad2f942be348d7e127339704d1eef12b57f3be133d0759a8888cd50b453dbca7bfb38ccb5e7caba6ed8733bbeb7c34dce6ff6103f6aa8d14157c19e4678af78edad904514b42704fb2408269894b13358251d218845eb810d45c9b583786745219aae0691b6410c000a4bfbf7e55ce90c6e6ea8612f57cfa9d467b2"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) (async, rerun: 64)
r3 = socket$inet6(0xa, 0x80002, 0x0) (rerun: 64)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2000000011000100000000020000000000000000", @ANYRES64=r3], 0x20}}, 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = dup(r5)
mount$9p_fd(0x0, &(0x7f00000004c0)='./bus\x00', &(0x7f00000001c0), 0x5000, &(0x7f0000000780)=ANY=[@ANYBLOB="7472616e733d66642c726664ff4f6e6f3dbba7cae3e7cede55ff0ce41dcbc1bd93db5457632ab04fc6b9b515d3aafbe67ce26a64a3dd765a4df0a8434cefa833c2e51cef599c8ec92bda2378c196084002000000000000007088cfac197a97b49c86f64a1cb324c15c5fe21b012fdfe73b3dc40143eda4ac9dec94515db444707a2a1fb129f66a539ddb4b5d9720a3d60226ccfa862c00"/161, @ANYRESDEC=r1, @ANYBLOB="2c2d787d6e6f3df4d233ca8a28cfcdc3350c6a727ecc246c75bb7d2dd83923157518fc0aa576d2e07a05ccedf4255806fe029b9206911c72bf9a34588938777796393d2a33494ca449d25258d47ee86206f47edd0645bd37bb1b29479aa35a8143232304e37c1a6eb853840ff120b8a5ce3edc0fd8deea75268f807eb52839e82f3f5e55a9c92680229cde9b", @ANYRESHEX=r6, @ANYRESDEC=r1]) (async)
syz_open_dev$MSR(&(0x7f0000000280), 0x9, 0x0)

489.493418ms ago: executing program 2 (id=2172):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), r0)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000200)={0x0, 0x700, &(0x7f0000000240)={&(0x7f0000000000)={0x20, r1, 0x3e8c4ddb697c9f8f, 0x0, 0x0, {0x4}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x20}, 0x1, 0x3000000}, 0x0)

489.058249ms ago: executing program 2 (id=2173):
r0 = socket(0x10, 0x80803, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
gettid()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@ipv4_newaddr={0x40, 0x14, 0x509, 0x0, 0x0, {0x2, 0x20, 0x0, 0x0, r4}, [@IFA_TARGET_NETNSID={0x8}, @IFA_LOCAL={0x8, 0x2, @multicast2}, @IFA_RT_PRIORITY={0x8, 0x9, 0x5889}, @IFA_BROADCAST={0x8, 0x4, @local}, @IFA_RT_PRIORITY={0x8, 0x9, 0x8000103}]}, 0x40}, 0x1, 0x0, 0x0, 0x48000}, 0x8080)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r6=>0x0})
setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000300)={0x3c, @empty, 0x4e22, 0x2, 'fo\x00', 0x1, 0x10, 0x6e}, 0x2c)
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0)
rt_sigqueueinfo(0x0, 0x2a, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x800823, &(0x7f0000000680)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000050000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYRES16=0x0])
r7 = dup(0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)=ANY=[@ANYRES32, @ANYRESDEC, @ANYBLOB=',wfdno=', @ANYBLOB="0000d01fbe26ed470e87b7283c3b43f5f9dfaa1bd77f9e35aade40c6cd6ec92f47ac758056a77f3b2d96868aa95dad07000000573692f7dcfc38932e4301b21f13d6122b2f9a92b38f4af6e8b4333f7d4a34be73a230d4a1dd53745dc7a91731046bda291101274dcc70999ac7826d6cb26f3b164ff2c86242fc75c406ce8a2d106d9870fddf79ed7eeaffc87d875631826fdadd3e9d258ad799a1047eee705da34a6900"])
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1c, 0x4, 0x8, 0x3, 0x12000, 0xffffffffffffffff, 0x2, '\x00', r6, 0xffffffffffffffff, 0x1, 0x1, 0x0, 0x0, @void, @value, @value=r7}, 0x50)
socket$rxrpc(0x21, 0x2, 0xa)

389.486759ms ago: executing program 1 (id=2174):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r1, {0x7, 0x28, 0x0, 0x611076}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x60}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mount$overlay(0xfff0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = timerfd_create(0x0, 0x0)
dup3(r2, r0, 0x0)

388.967065ms ago: executing program 2 (id=2175):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040001)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x68)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
socket(0x0, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x14, 0x4, 0x6, 0x201}, 0x14}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$sock_int(r2, 0x1, 0x29, 0x0, 0x0)
write$binfmt_misc(r2, &(0x7f0000000300), 0x6)
recvmmsg(r2, &(0x7f0000000600), 0x204083acb88ff8b, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r5], 0x90}}, 0x0)

240.089141ms ago: executing program 3 (id=2176):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r0], 0x20}, 0x1, 0x0, 0x0, 0x20801}, 0x20000041)

180.040531ms ago: executing program 3 (id=2177):
syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffd4a)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000940), 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000001700), 0x0, 0x0)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, &(0x7f0000000100)={"9fcaa0504b38d5004b9277c079417ff857dc9b7ac770169aed764b4d2ada8bde"})
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = syz_io_uring_setup(0x23b, &(0x7f0000000280)={0x0, 0x0, 0x10100, 0x0, 0xfffffffe}, 0x0, 0x0)
io_uring_enter(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000045c0)={0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f0000004640)={0xf8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = epoll_create(0x7)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, 0xffffffffffffffff, &(0x7f0000000a00))
splice(r4, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000b, 0x8012, r2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'netdevsim0\x00', &(0x7f0000000200)=@ethtool_channels={0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}})

179.753142ms ago: executing program 0 (id=2178):
r0 = socket$nl_route(0x10, 0x3, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000040)=0x14)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000400)={'hsr0\x00', <r3=>0x0})
socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket(0x10, 0x3, 0x0)
write(r5, &(0x7f00000000c0)="1800000016005f0214fffffffffffff80700000001000000", 0x18)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r5)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x6, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1802000020a000000000000000000000850000001700000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$netlink(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="3400000010000100000000000000000008000000", @ANYRES32=r7, @ANYRES32=r4], 0x34}], 0x1}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r5)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r2, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}, 0x14)
r8 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r8, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000019c0)={&(0x7f0000000180)={0x2, 0x808, 0x0, {0x77359400}, {0x77359400}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "a9d350ea09a558bbc069972fd6135503414190c502f593570fa6bb0fa85d9b3128353dcadf8bb71c06e619b08986d626a032ff1c224c9e1aa390b57d5bcf9ff7"}}, 0x80}}, 0x0)
r9 = openat$ndctl0(0xffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_xfrm(r9, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000580)=@newae={0x214, 0x1e, 0x200, 0x70bd28, 0x25dfdbfc, {{@in=@local, 0x4d3, 0xa, 0xff}, @in6=@dev={0xfe, 0x80, '\x00', 0x1e}, 0x40}, [@tmpl={0x84, 0x5, [{{@in=@multicast1, 0x4d6, 0x3c}, 0xa, @in=@remote, 0x3502, 0x0, 0x3, 0xf3, 0x0, 0x1ff, 0x10}, {{@in6=@empty, 0x4d6, 0x6c}, 0xa, @in6=@dev={0xfe, 0x80, '\x00', 0x25}, 0x0, 0x2, 0x1, 0x10, 0x6, 0xa9, 0xe7fa}]}, @replay_val={0x10, 0xa, {0x70bd25, 0x70bd28, 0x32}}, @algo_auth_trunc={0x135, 0x14, {{'sha256-arm64-neon\x00'}, 0x748, 0x0, "3834d51023c1ad0e9c7841ab02f54a2e4a984623a7ac332413694cf6d3073246fa1920ab4d39434bedb9d172b9d978b5d2d477b7b4efc904f004a501e41b77713d5ad683488da7e2b85978284fb479f673d5546cd63839e1a6f095565622064bfb30eb5c7bb48a66dc3ce77a531c3699b46075bb59d2fcb0d9cae0fd159b496f63d4bd2fefad8561920b3b1f0700842930e0d8fe367b6f4dcb45199cdcb726e571885cddc35478013be54accfa682ddf57bbffe0bf72055f56ed22ad652d4ae15223e5e9c0408240b1d579794ada743909d192296ca86249639ef66ede9c43f2ec556d3e0e03529f91"}}, @extra_flags={0x8, 0x18, 0x4}]}, 0x214}, 0x1, 0x0, 0x0, 0x4000000}, 0x400a1)
sendmsg$nl_route_sched(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000080)=@newqdisc={0x6c, 0x24, 0x200, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0xfff3, 0x4}, {0xfff2, 0xf}, {0x9, 0x2}}, [@TCA_RATE={0x6, 0x5, {0x8, 0x3}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x635216b3}, @TCA_STAB={0x38, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x8, 0xa, 0x2, 0x3, 0x2, 0x2, 0x0, 0xa}}, {0x18, 0x2, [0x2, 0xcf23, 0x3ff, 0xfffe, 0x229, 0x6, 0x6, 0xfe48, 0x6, 0x5]}}]}]}, 0x6c}}, 0x400c444)

129.699214ms ago: executing program 2 (id=2179):
set_mempolicy(0x8006, &(0x7f0000000080)=0xffe, 0x200)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001680)={0x1, 0xe, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000200), 0x8, 0x10, &(0x7f0000000000)={0x2, 0x40000, 0x1, 0xe}, 0xffffffffffffff7d, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x15)

129.370206ms ago: executing program 2 (id=2180):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4000084}, 0x4000)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0)
io_uring_setup(0x177f, &(0x7f0000000340)={0x0, 0x5a27})
syz_open_procfs(0x0, &(0x7f0000000380)='oom_adj\x00')
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x200000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$inet_sctp(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r3, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r5}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

80.095782ms ago: executing program 0 (id=2181):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x16, 0x14, &(0x7f0000000580)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x10001}, {0x85, 0x0, 0x0, 0x72}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x10, 0x38, &(0x7f00000002c0)="0000030000000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

79.936337ms ago: executing program 0 (id=2182):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="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", 0x107)
r1 = accept4(r0, 0x0, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$9p_virtio(0x0, 0x0, 0x0, 0x2200800, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e1301"], 0x16)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
sendmsg$alg(r1, &(0x7f00000041c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000004180)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10, 0x90}, 0x80)
recvmmsg(r1, &(0x7f0000005d80)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000340)=""/4096, 0x34000}], 0x1}}], 0x1, 0x0, 0x0)

0s ago: executing program 0 (id=2183):
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
unshare(0x80)
unshare(0x2040a00)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000480)={{0x1, 0x1, 0x18, r0}, './file1/file0\x00'})
write$binfmt_aout(r0, 0x0, 0xff2e)
chdir(&(0x7f0000000140)='./file1\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r2, 0xffffffff80000800, 0xee01, &(0x7f00000000c0)={0x0, 0x3, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdf})
r3 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.log\x00', 0x1810c0, 0x0)
fchown(r3, 0xee01, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
syz_io_uring_setup(0x6909, &(0x7f0000000340)={0x0, 0xd194, 0x10100, 0x80, 0x4}, &(0x7f0000000080), &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_setup(0x1b67, &(0x7f00000003c0), &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r5, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x8})
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r6, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x20000240, 0x20000270, 0x200002a0, 0x0, 0x6000000], 0x0, 0x0, &(0x7f0000000240)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0xe0)
openat$cgroup_int(r1, &(0x7f00000004c0)='hugetlb.2MB.limit_in_bytes\x00', 0x2, 0x0)

kernel console output (not intermixed with test programs):

1: entered promiscuous mode
[  319.320014][T11471] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.332570][T11473] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.335008][   T39] tipc: Disabling bearer <udp:s>
[  319.339815][   T39] tipc: Left network mode
[  319.344884][T11471] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  319.356005][T11473] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  319.393754][T11471] team0: Port device team_slave_0 added
[  319.400759][T11471] team0: Port device team_slave_1 added
[  319.413971][   T39] mac80211_hwsim hwsim17 wlan1 (unregistering): left allmulticast mode
[  319.491241][T11473] team0: Port device team_slave_0 added
[  319.493399][T11471] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.495211][T11471] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.502521][T11510] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1848'.
[  319.511127][T11471] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.515504][T11473] team0: Port device team_slave_1 added
[  319.534100][T11471] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.535936][T11471] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.543700][T11471] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.598206][T11473] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.602758][T11473] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.609766][T11473] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.632601][T11473] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.634312][T11473] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.640938][T11473] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.646597][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  319.654498][T11471] hsr_slave_0: entered promiscuous mode
[  319.656458][T11471] hsr_slave_1: entered promiscuous mode
[  319.658782][T11471] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  319.660698][T11471] Cannot create hsr debugfs directory
[  319.706269][T11473] hsr_slave_0: entered promiscuous mode
[  319.708327][T11473] hsr_slave_1: entered promiscuous mode
[  319.710223][T11473] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  319.712215][T11473] Cannot create hsr debugfs directory
[  319.744829][   T39] batadv_slave_1: left promiscuous mode
[  319.751472][   T39] hsr_slave_0: left promiscuous mode
[  319.753468][   T39] hsr_slave_1: left promiscuous mode
[  319.755345][   T39] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  319.758652][   T39] batman_adv: batadv0: Removing interface: batadv_slave_0
[  319.760922][   T39] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  319.762890][   T39] batman_adv: batadv0: Removing interface: batadv_slave_1
[  319.785565][   T39] veth0_macvtap: left promiscuous mode
[  319.787253][   T39] veth1_vlan: left promiscuous mode
[  319.788652][   T39] veth0_vlan: left promiscuous mode
[  320.526754][ T5350] Bluetooth: hci2: command tx timeout
[  320.527269][ T5357] Bluetooth: hci0: command tx timeout
[  320.579411][   T39] team0 (unregistering): Port device team_slave_1 removed
[  320.666782][   T39] team0 (unregistering): Port device team_slave_0 removed
[  320.696596][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  321.727435][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  321.949643][T11471] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  322.000372][T11473] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.008122][T11471] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  322.015358][T11471] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  322.030354][T11471] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  322.030619][   T39] IPVS: stop unused estimator thread 0...
[  322.090484][T11473] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.134819][T11471] 8021q: adding VLAN 0 to HW filter on device bond0
[  322.160496][T11471] 8021q: adding VLAN 0 to HW filter on device team0
[  322.171594][ T7637] bridge0: port 1(bridge_slave_0) entered blocking state
[  322.173493][ T7637] bridge0: port 1(bridge_slave_0) entered forwarding state
[  322.178288][ T7637] bridge0: port 2(bridge_slave_1) entered blocking state
[  322.180251][ T7637] bridge0: port 2(bridge_slave_1) entered forwarding state
[  322.213499][T11473] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.285394][T11471] 8021q: adding VLAN 0 to HW filter on device batadv0
[  322.308061][T11471] veth0_vlan: entered promiscuous mode
[  322.312520][T11471] veth1_vlan: entered promiscuous mode
[  322.326575][T11471] veth0_macvtap: entered promiscuous mode
[  322.330273][T11471] veth1_macvtap: entered promiscuous mode
[  322.336467][T11471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  322.340228][T11471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.342778][T11471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  322.345455][T11471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.349906][T11471] batman_adv: batadv0: Interface activated: batadv_slave_0
[  322.364064][T11473] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.379590][T11471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  322.383119][T11471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.386399][T11471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  322.390027][T11471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.393950][T11471] batman_adv: batadv0: Interface activated: batadv_slave_1
[  322.400649][T11471] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  322.402994][T11471] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  322.405883][T11471] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  322.409085][T11471] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  322.447104][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  322.449482][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  322.454840][  T419] bridge_slave_1: left allmulticast mode
[  322.456395][  T419] bridge_slave_1: left promiscuous mode
[  322.459264][  T419] bridge0: port 2(bridge_slave_1) entered disabled state
[  322.466804][  T419] bridge_slave_0: left allmulticast mode
[  322.468338][  T419] bridge_slave_0: left promiscuous mode
[  322.469913][  T419] bridge0: port 1(bridge_slave_0) entered disabled state
[  322.606682][ T5357] Bluetooth: hci2: command tx timeout
[  322.616677][ T5357] Bluetooth: hci0: command tx timeout
[  322.776602][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  323.104979][  T419] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  323.108923][  T419] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  323.112456][  T419] bond0 (unregistering): Released all slaves
[  323.116990][  T419] bond1 (unregistering): Released all slaves
[  323.125876][T11586] FAULT_INJECTION: forcing a failure.
[  323.125876][T11586] name failslab, interval 1, probability 0, space 0, times 0
[  323.130119][T11586] CPU: 0 UID: 0 PID: 11586 Comm: syz.0.1853 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  323.132838][T11586] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.135623][T11586] Call Trace:
[  323.136509][T11586]  <TASK>
[  323.137308][T11586]  dump_stack_lvl+0x16c/0x1f0
[  323.138551][T11586]  should_fail_ex+0x497/0x5b0
[  323.139795][T11586]  ? fs_reclaim_acquire+0xae/0x160
[  323.141152][T11586]  should_failslab+0xc2/0x120
[  323.142411][T11586]  __kmalloc_cache_noprof+0x6b/0x310
[  323.143804][T11586]  ? register_netdevice+0x504/0x1e20
[  323.145208][T11586]  register_netdevice+0x504/0x1e20
[  323.146565][T11586]  ? kasan_save_track+0x14/0x30
[  323.147849][T11586]  ? __pfx_register_netdevice+0x10/0x10
[  323.149309][T11586]  ? alloc_netdev_mqs+0xf2a/0x12a0
[  323.150665][T11586]  ? validate_linkmsg+0x6d2/0x9a0
[  323.151990][T11586]  br_dev_newlink+0x27/0x110
[  323.153249][T11586]  ? __pfx_br_dev_newlink+0x10/0x10
[  323.154621][T11586]  __rtnl_newlink+0x119c/0x1920
[  323.155914][T11586]  ? __pfx___rtnl_newlink+0x10/0x10
[  323.157305][T11586]  rtnl_newlink+0x67/0xa0
[  323.158455][T11586]  ? __pfx_rtnl_newlink+0x10/0x10
[  323.159783][T11586]  rtnetlink_rcv_msg+0x3c7/0xea0
[  323.161100][T11586]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  323.162574][T11586]  ? __pfx___lock_acquire+0x10/0x10
[  323.163944][T11586]  netlink_rcv_skb+0x165/0x410
[  323.165227][T11586]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  323.166677][T11586]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  323.168067][T11586]  ? netlink_deliver_tap+0x1ae/0xcf0
[  323.169466][T11586]  netlink_unicast+0x53c/0x7f0
[  323.170728][T11586]  ? __pfx_netlink_unicast+0x10/0x10
[  323.172112][T11586]  ? __phys_addr_symbol+0x30/0x80
[  323.173445][T11586]  ? __check_object_size+0x488/0x710
[  323.174830][T11586]  netlink_sendmsg+0x8b8/0xd70
[  323.176087][T11586]  ? __pfx_netlink_sendmsg+0x10/0x10
[  323.177478][T11586]  ? lock_acquire+0x2f/0xb0
[  323.178676][T11586]  ____sys_sendmsg+0x9ae/0xb40
[  323.180086][T11586]  ? __pfx_____sys_sendmsg+0x10/0x10
[  323.181505][T11586]  ? get_compat_msghdr+0x11b/0x170
[  323.182881][T11586]  ? __pfx___lock_acquire+0x10/0x10
[  323.184279][T11586]  ___sys_sendmsg+0x135/0x1e0
[  323.185558][T11586]  ? __pfx____sys_sendmsg+0x10/0x10
[  323.186945][T11586]  ? lock_acquire+0x2f/0xb0
[  323.188156][T11586]  ? __fget_files+0x40/0x3f0
[  323.189392][T11586]  ? fdget+0x176/0x210
[  323.190488][T11586]  __sys_sendmsg+0x117/0x1f0
[  323.191718][T11586]  ? __pfx___sys_sendmsg+0x10/0x10
[  323.193069][T11586]  ? __fget_files+0x244/0x3f0
[  323.194345][T11586]  __do_fast_syscall_32+0x73/0x120
[  323.195698][T11586]  do_fast_syscall_32+0x32/0x80
[  323.196988][T11586]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  323.198659][T11586] RIP: 0023:0xf748e579
[  323.199742][T11586] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  323.204769][T11586] RSP: 002b:00000000f573456c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  323.206953][T11586] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  323.209029][T11586] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  323.211107][T11586] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  323.213177][T11586] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  323.215243][T11586] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  323.217318][T11586]  </TASK>
[  323.218209][    C0] vkms_vblank_simulate: vblank timer overrun
[  323.225786][ T7637] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  323.229358][ T7637] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  323.254684][T11473] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  323.266015][T11473] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  323.269591][T11473] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  323.272922][T11473] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  323.357803][T11473] 8021q: adding VLAN 0 to HW filter on device bond0
[  323.369200][T11473] 8021q: adding VLAN 0 to HW filter on device team0
[  323.373745][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.373793][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[  323.374381][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.374409][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[  323.465610][  T419] mac80211_hwsim hwsim15 wlan1 (unregistering): left allmulticast mode
[  323.537978][  T419] hsr_slave_0: left promiscuous mode
[  323.541310][  T419] hsr_slave_1: left promiscuous mode
[  323.546099][  T419] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  323.550775][  T419] batman_adv: batadv0: Removing interface: batadv_slave_0
[  323.553577][  T419] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  323.556394][  T419] batman_adv: batadv0: Removing interface: batadv_slave_1
[  323.610798][  T419] veth1_vlan: left promiscuous mode
[  323.612487][  T419] veth0_vlan: left promiscuous mode
[  323.772899][T11611] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  323.774653][T11611] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  323.782236][T11611] vhci_hcd vhci_hcd.0: Device attached
[  323.809816][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  323.848149][T11612] vhci_hcd: connection closed
[  323.848667][ T1212] vhci_hcd: stop threads
[  323.851111][ T1212] vhci_hcd: release socket
[  323.854307][ T1212] vhci_hcd: disconnect device
[  324.367226][  T419] team0 (unregistering): Port device team_slave_1 removed
[  324.502094][  T419] team0 (unregistering): Port device team_slave_0 removed
[  324.687764][ T5357] Bluetooth: hci0: command tx timeout
[  324.687792][ T5350] Bluetooth: hci2: command tx timeout
[  324.847862][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  325.100373][T11619] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1859'.
[  325.103844][T11619] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1859'.
[  325.125613][T11473] 8021q: adding VLAN 0 to HW filter on device batadv0
[  325.182325][T11473] veth0_vlan: entered promiscuous mode
[  325.187200][T11473] veth1_vlan: entered promiscuous mode
[  325.201798][T11473] veth0_macvtap: entered promiscuous mode
[  325.207375][T11473] veth1_macvtap: entered promiscuous mode
[  325.214365][T11473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.218851][T11473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.222354][T11473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.225964][T11473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.232453][T11473] batman_adv: batadv0: Interface activated: batadv_slave_0
[  325.239655][T11473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  325.242830][T11473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.245658][T11473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  325.255327][T11473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.264588][T11473] batman_adv: batadv0: Interface activated: batadv_slave_1
[  325.273819][T11473] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  325.276120][T11473] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  325.279002][T11473] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  325.281298][T11473] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  325.335825][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  325.339158][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  325.352580][ T1212] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  325.354764][ T1212] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  325.886636][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  326.285536][T11657] syz.2.1869: vmalloc error: size 1842069504, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  326.291818][T11657] CPU: 2 UID: 0 PID: 11657 Comm: syz.2.1869 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  326.295531][T11657] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.299010][T11657] Call Trace:
[  326.299894][T11657]  <TASK>
[  326.300682][T11657]  dump_stack_lvl+0x16c/0x1f0
[  326.301961][T11657]  warn_alloc+0x24d/0x3a0
[  326.303132][T11657]  ? __pfx_warn_alloc+0x10/0x10
[  326.304415][T11657]  ? __pfx_stack_trace_save+0x10/0x10
[  326.305829][T11657]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  326.307283][T11657]  ? kasan_save_stack+0x42/0x60
[  326.308567][T11657]  ? kasan_save_stack+0x33/0x60
[  326.309853][T11657]  ? kasan_save_track+0x14/0x30
[  326.311138][T11657]  ? __kasan_kmalloc+0xaa/0xb0
[  326.312529][T11657]  ? vb2_vmalloc_alloc+0xe2/0x3d0
[  326.314372][T11657]  ? vb2_core_create_bufs+0x558/0xab0
[  326.316359][T11657]  ? vb2_create_bufs+0x566/0x780
[  326.318185][T11657]  ? vb2_ioctl_create_bufs+0x244/0x3e0
[  326.319649][T11657]  __vmalloc_node_range_noprof+0x11a7/0x15a0
[  326.321265][T11657]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  326.322648][T11657]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  326.324298][T11657]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  326.325649][T11657]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  326.327076][T11657]  vmalloc_user_noprof+0x6b/0x90
[  326.328382][T11657]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  326.329727][T11657]  vb2_vmalloc_alloc+0x11e/0x3d0
[  326.331027][T11657]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  326.332476][T11657]  __vb2_queue_alloc+0x896/0x1230
[  326.333816][T11657]  ? vbi_out_queue_setup+0x1e3/0x2b0
[  326.335218][T11657]  vb2_core_create_bufs+0x558/0xab0
[  326.336578][T11657]  ? __pfx_vbi_out_queue_setup+0x10/0x10
[  326.338065][T11657]  ? __pfx_vb2_core_create_bufs+0x10/0x10
[  326.339567][T11657]  vb2_create_bufs+0x566/0x780
[  326.340838][T11657]  ? __pfx_vb2_create_bufs+0x10/0x10
[  326.342330][T11657]  ? __mutex_lock+0x1a6/0x9c0
[  326.343633][T11657]  vb2_ioctl_create_bufs+0x244/0x3e0
[  326.345020][T11657]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  326.346605][T11657]  vidioc_create_bufs+0x7d/0xf0
[  326.347897][T11657]  v4l_create_bufs+0x198/0x270
[  326.349162][T11657]  __video_do_ioctl+0xaf0/0xf00
[  326.350472][T11657]  ? __pfx___video_do_ioctl+0x10/0x10
[  326.351879][T11657]  ? trace_kmalloc+0x2d/0xe0
[  326.353133][T11657]  ? __kmalloc_noprof+0x207/0x410
[  326.354531][T11657]  video_usercopy+0x426/0x1500
[  326.355795][T11657]  ? __pfx___video_do_ioctl+0x10/0x10
[  326.357215][T11657]  ? __pfx_video_usercopy+0x10/0x10
[  326.358604][T11657]  v4l2_ioctl+0x1ba/0x250
[  326.359743][T11657]  v4l2_compat_ioctl32+0x214/0x2c0
[  326.361108][T11657]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  326.362651][T11657]  __do_compat_sys_ioctl+0x259/0x2b0
[  326.364050][T11657]  __do_fast_syscall_32+0x73/0x120
[  326.365391][T11657]  do_fast_syscall_32+0x32/0x80
[  326.366672][T11657]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  326.368295][T11657] RIP: 0023:0xf7f2f579
[  326.369382][T11657] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  326.374396][T11657] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  326.376556][T11657] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0f8565c
[  326.378668][T11657] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  326.380734][T11657] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  326.382872][T11657] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  326.384760][T11657] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  326.386797][T11657]  </TASK>
[  326.388565][T11657] Mem-Info:
[  326.390573][T11657] active_anon:1410 inactive_anon:1931 isolated_anon:0
[  326.390573][T11657]  active_file:7772 inactive_file:14038 isolated_file:0
[  326.390573][T11657]  unevictable:768 dirty:42 writeback:0
[  326.390573][T11657]  slab_reclaimable:4723 slab_unreclaimable:60983
[  326.390573][T11657]  mapped:22375 shmem:986 pagetables:676
[  326.390573][T11657]  sec_pagetables:325 bounce:0
[  326.390573][T11657]  kernel_misc_reclaimable:0
[  326.390573][T11657]  free:91831 free_pcp:879 free_cma:0
[  326.403112][T11657] Node 0 active_anon:52kB inactive_anon:8kB active_file:44kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4748kB dirty:4kB writeback:0kB shmem:2444kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9444kB pagetables:1116kB sec_pagetables:1188kB all_unreclaimable? no
[  326.411185][T11657] Node 1 active_anon:5588kB inactive_anon:7716kB active_file:31044kB inactive_file:56148kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:84752kB dirty:64kB writeback:0kB shmem:1500kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2492kB pagetables:1588kB sec_pagetables:112kB all_unreclaimable? no
[  326.423614][T11657] Node 0 DMA free:948kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:52kB local_pcp:12kB free_cma:0kB
[  326.431152][T11657] lowmem_reserve[]: 0 273 0 0 0
[  326.432955][T11657] Node 0 DMA32 free:20980kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:52kB inactive_anon:8kB active_file:44kB inactive_file:4kB unevictable:1536kB writepending:4kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:576kB local_pcp:64kB free_cma:0kB
[  326.440675][T11657] lowmem_reserve[]: 0 0 0 0 0
[  326.442335][T11657] Node 1 DMA32 free:345396kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:2048KB active_anon:5588kB inactive_anon:7716kB active_file:31044kB inactive_file:56148kB unevictable:1536kB writepending:64kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:3164kB local_pcp:320kB free_cma:0kB
[  326.454969][T11657] lowmem_reserve[]: 0 0 0 0 0
[  326.456961][T11657] Node 0 DMA: 71*4kB (UE) 73*8kB (UE) 4*16kB (U) 2*32kB (E) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 996kB
[  326.461440][T11657] Node 0 DMA32: 735*4kB (U) 493*8kB (UMEH) 22*16kB (UMEH) 42*32kB (UMEH) 34*64kB (UMEH) 22*128kB (UMEH) 10*256kB (UM) 8*512kB (UMH) 1*1024kB (M) 0*2048kB 0*4096kB = 21252kB
[  326.465649][T11657] Node 1 DMA32: 198*4kB (ME) 708*8kB (UME) 1182*16kB (UME) 453*32kB (UME) 665*64kB (UME) 465*128kB (UME) 237*256kB (UM) 93*512kB (UM) 44*1024kB (UM) 16*2048kB (MH) 4*4096kB (UME) = 344440kB
[  326.470690][T11657] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  326.472920][T11657] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  326.475187][T11657] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  326.477750][T11657] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  326.480063][T11657] 23250 total pagecache pages
[  326.481218][T11657] 454 pages in swap cache
[  326.482263][T11657] Free swap  = 116020kB
[  326.483261][T11657] Total swap = 124996kB
[  326.484262][T11657] 524155 pages RAM
[  326.485146][T11657] 0 pages HighMem/MovableOnly
[  326.486279][T11657] 206681 pages reserved
[  326.487471][T11657] 0 pages cma reserved
[  326.713477][T11668] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1871'.
[  326.715938][T11668] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1871'.
[  326.769218][ T5350] Bluetooth: hci0: command tx timeout
[  326.769295][ T5357] Bluetooth: hci2: command tx timeout
[  326.890634][   T40] audit: type=1326 audit(1727663593.696:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.891438][T11675] FAULT_INJECTION: forcing a failure.
[  326.891438][T11675] name failslab, interval 1, probability 0, space 0, times 0
[  326.899668][T11675] CPU: 1 UID: 0 PID: 11675 Comm: syz.3.1874 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  326.902407][T11675] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.905146][T11675] Call Trace:
[  326.905149][   T40] audit: type=1326 audit(1727663593.696:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.906038][T11675]  <TASK>
[  326.906047][T11675]  dump_stack_lvl+0x16c/0x1f0
[  326.913739][T11675]  should_fail_ex+0x497/0x5b0
[  326.915005][T11675]  should_failslab+0xc2/0x120
[  326.916252][T11675]  __kmalloc_noprof+0xcb/0x410
[  326.917529][T11675]  aa_label_asxprint+0x75/0x140
[  326.918834][T11675]  apparmor_secid_to_secctx+0xb1/0x180
[  326.918856][   T40] audit: type=1326 audit(1727663593.696:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.920303][T11675]  security_secid_to_secctx+0x9c/0x290
[  326.920329][T11675]  audit_log_task_context+0xf5/0x170
[  326.927977][   T40] audit: type=1326 audit(1727663593.696:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.928753][T11675]  ? __pfx_audit_log_task_context+0x10/0x10
[  326.928770][T11675]  ? from_kuid+0x89/0xd0
[  326.928785][T11675]  ? __pfx_audit_log_start+0x10/0x10
[  326.930634][   T40] audit: type=1326 audit(1727663593.696:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.935785][T11675]  audit_log_task+0x1d0/0x300
[  326.935812][T11675]  ? __pfx_audit_log_task+0x10/0x10
[  326.937508][   T40] audit: type=1326 audit(1727663593.696:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=333 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.938515][T11675]  ? migrate_enable+0x1ef/0x260
[  326.938535][T11675]  ? __pfx_migrate_enable+0x10/0x10
[  326.939973][   T40] audit: type=1326 audit(1727663593.696:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.945427][T11675]  audit_seccomp+0x7a/0x280
[  326.945454][T11675]  __seccomp_filter+0x816/0xf40
[  326.946812][   T40] audit: type=1326 audit(1727663593.696:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.948098][T11675]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  326.948121][T11675]  ? __pfx___seccomp_filter+0x10/0x10
[  326.953764][   T40] audit: type=1326 audit(1727663593.696:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.954957][T11675]  ? __do_compat_sys_kexec_load+0x279/0x330
[  326.954981][T11675]  __secure_computing+0x26c/0x3f0
[  326.956395][   T40] audit: type=1326 audit(1727663593.696:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11674 comm="syz.3.1874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  326.956746][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  326.962131][T11675]  syscall_trace_enter+0x8b/0x240
[  326.962158][T11675]  __do_fast_syscall_32+0xc2/0x120
[  326.962176][T11675]  do_fast_syscall_32+0x32/0x80
[  326.962189][T11675]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  326.962205][T11675] RIP: 0023:0xf7f8f579
[  326.962215][T11675] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  326.962225][T11675] RSP: 002b:00000000f57165a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  326.962237][T11675] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5716620
[  326.962244][T11675] RDX: 000000000000000f RSI: 00000000f741bff4 RDI: 0000000000000000
[  326.962275][T11675] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  326.962282][T11675] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  326.962289][T11675] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  326.962300][T11675]  </TASK>
[  327.966614][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  328.250791][T11689] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1877'.
[  328.335545][ T5357] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  328.341145][ T5357] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  328.344693][ T5357] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  328.356093][ T5357] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  328.360970][ T5357] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  328.363450][ T5357] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  328.533574][T11692] chnl_net:caif_netlink_parms(): no params data found
[  328.603991][T11692] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.605940][T11692] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.608173][T11692] bridge_slave_0: entered allmulticast mode
[  328.610399][T11692] bridge_slave_0: entered promiscuous mode
[  328.613110][T11692] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.615003][T11692] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.617012][T11692] bridge_slave_1: entered allmulticast mode
[  328.619068][T11692] bridge_slave_1: entered promiscuous mode
[  328.671254][T11692] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  328.674990][T11692] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  328.699736][T11692] team0: Port device team_slave_0 added
[  328.703575][T11692] team0: Port device team_slave_1 added
[  328.722602][T11692] batman_adv: batadv0: Adding interface: batadv_slave_0
[  328.724485][T11692] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  328.732044][T11692] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  328.735508][T11692] batman_adv: batadv0: Adding interface: batadv_slave_1
[  328.737390][T11692] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  328.743919][T11692] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  328.767731][T11692] hsr_slave_0: entered promiscuous mode
[  328.769706][T11692] hsr_slave_1: entered promiscuous mode
[  328.959046][T11632] usb 7-1: new low-speed USB device number 25 using dummy_hcd
[  329.006636][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  329.116697][T11632] usb 7-1: Invalid ep0 maxpacket: 64
[  329.244337][T11692] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  329.246659][T11632] usb 7-1: new low-speed USB device number 26 using dummy_hcd
[  329.247951][T11692] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  329.251637][T11692] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  329.257772][T11692] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  329.276236][T11692] bridge0: port 2(bridge_slave_1) entered blocking state
[  329.278187][T11692] bridge0: port 2(bridge_slave_1) entered forwarding state
[  329.280140][T11692] bridge0: port 1(bridge_slave_0) entered blocking state
[  329.282007][T11692] bridge0: port 1(bridge_slave_0) entered forwarding state
[  329.303382][T11692] 8021q: adding VLAN 0 to HW filter on device bond0
[  329.311174][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  329.314682][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  329.332542][T11692] 8021q: adding VLAN 0 to HW filter on device team0
[  329.340504][ T1126] bridge0: port 1(bridge_slave_0) entered blocking state
[  329.342441][ T1126] bridge0: port 1(bridge_slave_0) entered forwarding state
[  329.346487][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  329.348416][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  329.406827][T11632] usb 7-1: Invalid ep0 maxpacket: 64
[  329.416775][T11632] usb usb7-port1: attempt power cycle
[  329.427959][T11692] 8021q: adding VLAN 0 to HW filter on device batadv0
[  329.444556][T11692] veth0_vlan: entered promiscuous mode
[  329.448667][T11692] veth1_vlan: entered promiscuous mode
[  329.459437][T11692] veth0_macvtap: entered promiscuous mode
[  329.462592][T11692] veth1_macvtap: entered promiscuous mode
[  329.470220][T11692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  329.472994][T11692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.475538][T11692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  329.478304][T11692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.480748][T11692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  329.483501][T11692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.487081][T11692] batman_adv: batadv0: Interface activated: batadv_slave_0
[  329.493437][T11692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.496211][T11692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.501165][T11692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.503874][T11692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.506444][T11692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.509207][T11692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.512469][T11692] batman_adv: batadv0: Interface activated: batadv_slave_1
[  329.518380][T11692] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  329.521225][T11692] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  329.524213][T11692] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  329.526866][T11692] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  329.574777][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  329.579489][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  329.607657][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  329.609778][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  329.644238][T11727] input: syz0 as /devices/virtual/input/input45
[  329.668440][T11729] tipc: Started in network mode
[  329.669827][T11729] tipc: Node identity ac1414aa, cluster identity 4711
[  329.671875][T11729] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  329.673836][T11729] tipc: Enabled bearer <udp:s>, priority 10
[  329.677615][ T6398] IPVS: starting estimator thread 0...
[  329.766794][T11632] usb 7-1: new low-speed USB device number 27 using dummy_hcd
[  329.776694][T11730] IPVS: using max 35 ests per chain, 84000 per kthread
[  329.787694][T11632] usb 7-1: Invalid ep0 maxpacket: 64
[  329.806789][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  329.917883][T11632] usb 7-1: new low-speed USB device number 28 using dummy_hcd
[  329.937338][T11632] usb 7-1: Invalid ep0 maxpacket: 64
[  329.938959][T11632] usb usb7-port1: unable to enumerate USB device
[  329.946631][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  330.056640][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  330.086675][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  330.211581][T11739] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  330.213387][T11739] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  330.215541][T11739] vhci_hcd vhci_hcd.0: Device attached
[  330.220789][T11737] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1889'.
[  330.226633][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  330.448056][ T5357] Bluetooth: hci3: command tx timeout
[  330.518097][ T6398] usb 16-1: SetAddress Request (2) to port 0
[  330.521106][ T6398] usb 16-1: new SuperSpeed USB device number 2 using vhci_hcd
[  330.806752][ T5406] tipc: Node number set to 2886997162
[  330.946667][    C0] net_ratelimit: 3 callbacks suppressed
[  330.946680][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  330.969925][T11747] xt_hashlimit: size too large, truncated to 1048576
[  330.971931][T11747] xt_hashlimit: overflow, try lower: 0/0
[  331.079153][T11740] vhci_hcd: connection reset by peer
[  331.086617][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  331.089246][   T64] vhci_hcd: stop threads
[  331.090411][   T64] vhci_hcd: release socket
[  331.092680][   T64] vhci_hcd: disconnect device
[  331.216685][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  331.400341][T11769] input: syz1 as /devices/virtual/input/input46
[  331.467180][T11772] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1895'.
[  331.469618][T11772] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1895'.
[  331.746622][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  332.000252][T11785] program syz.1.1899 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  332.047352][T11792] random: crng reseeded on system resumption
[  332.126676][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  332.305552][T11798] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1903'.
[  332.455378][T11802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1905'.
[  332.596616][T11808] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1908'.
[  332.610240][T11808] program syz.0.1908 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  332.766607][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  332.785852][T11825] Invalid ELF header type: 3 != 1
[  332.840887][T11829] siw: device registration error -23
[  332.868859][T11833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1915'.
[  333.160696][   T40] kauditd_printk_skb: 21 callbacks suppressed
[  333.160707][   T40] audit: type=1326 audit(1727663599.966:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11839 comm="syz.0.1919" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0
[  333.166618][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  333.806649][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  334.120055][   T40] audit: type=1804 audit(1727663600.906:508): pid=11858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.126046][   T40] audit: type=1804 audit(1727663600.926:509): pid=11859 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.132172][   T40] audit: type=1804 audit(1727663600.936:510): pid=11858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.138346][   T40] audit: type=1804 audit(1727663600.946:511): pid=11858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.145363][   T40] audit: type=1804 audit(1727663600.946:512): pid=11858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.152075][   T40] audit: type=1804 audit(1727663600.946:513): pid=11858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.159513][   T40] audit: type=1804 audit(1727663600.946:514): pid=11859 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.168294][   T40] audit: type=1804 audit(1727663600.946:515): pid=11858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.176168][   T40] audit: type=1804 audit(1727663600.946:516): pid=11858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1922" name="/newroot/488/file0/file0" dev="9p" ino=36574410 res=1 errno=0
[  334.206609][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  334.846650][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  335.140029][T11867] FAULT_INJECTION: forcing a failure.
[  335.140029][T11867] name failslab, interval 1, probability 0, space 0, times 0
[  335.143903][T11867] CPU: 1 UID: 0 PID: 11867 Comm: syz.1.1924 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  335.146954][T11867] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.149784][T11867] Call Trace:
[  335.150658][T11867]  <TASK>
[  335.151435][T11867]  dump_stack_lvl+0x16c/0x1f0
[  335.152789][T11867]  should_fail_ex+0x497/0x5b0
[  335.154009][T11867]  ? fs_reclaim_acquire+0xae/0x160
[  335.155347][T11867]  should_failslab+0xc2/0x120
[  335.156736][T11867]  __kmalloc_noprof+0xcb/0x410
[  335.158213][T11867]  ? kasan_save_track+0x14/0x30
[  335.159727][T11867]  alloc_pipe_info+0x1ec/0x590
[  335.160980][T11867]  splice_direct_to_actor+0x793/0xa40
[  335.162392][T11867]  ? __pfx_direct_splice_actor+0x10/0x10
[  335.163850][T11867]  ? __pfx_aa_file_perm+0x10/0x10
[  335.165176][T11867]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  335.166709][T11867]  ? __fget_files+0x23a/0x3f0
[  335.168191][T11867]  do_splice_direct+0x178/0x250
[  335.169741][T11867]  ? __pfx_do_splice_direct+0x10/0x10
[  335.171584][T11867]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  335.173662][T11867]  do_sendfile+0xb0c/0xe40
[  335.175147][T11867]  ? __pfx_do_sendfile+0x10/0x10
[  335.176865][T11867]  ? __fget_files+0x244/0x3f0
[  335.178522][T11867]  __ia32_compat_sys_sendfile+0x1e7/0x230
[  335.180242][T11867]  ? ksys_write+0x1ad/0x260
[  335.181580][T11867]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  335.183604][T11867]  __do_fast_syscall_32+0x73/0x120
[  335.185302][T11867]  do_fast_syscall_32+0x32/0x80
[  335.186915][T11867]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  335.188657][T11867] RIP: 0023:0xf7f9f579
[  335.190078][T11867] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  335.195287][T11867] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  335.197456][T11867] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000003
[  335.199536][T11867] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000000
[  335.201614][T11867] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  335.203656][T11867] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  335.205710][T11867] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  335.207765][T11867]  </TASK>
[  335.276337][T11874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1926'.
[  335.335045][T11887] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  335.347474][T11889] netlink: 'syz.2.1931': attribute type 9 has an invalid length.
[  335.349562][T11889] netlink: 134640 bytes leftover after parsing attributes in process `syz.2.1931'.
[  335.454561][T11897] FAULT_INJECTION: forcing a failure.
[  335.454561][T11897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.457960][T11897] CPU: 3 UID: 0 PID: 11897 Comm: syz.2.1934 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  335.460584][T11897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.463345][T11897] Call Trace:
[  335.464212][T11897]  <TASK>
[  335.464958][T11897]  dump_stack_lvl+0x16c/0x1f0
[  335.466153][T11897]  should_fail_ex+0x497/0x5b0
[  335.467337][T11897]  _copy_to_user+0x30/0xc0
[  335.468506][T11897]  simple_read_from_buffer+0xd0/0x160
[  335.469905][T11897]  proc_fail_nth_read+0x198/0x270
[  335.471179][T11897]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  335.472596][T11897]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  335.474029][T11897]  vfs_read+0x1ce/0xbd0
[  335.475125][T11897]  ? __fget_files+0x23a/0x3f0
[  335.476337][T11897]  ? fdget_pos+0x24c/0x360
[  335.477485][T11897]  ? __pfx_lock_release+0x10/0x10
[  335.478799][T11897]  ? trace_lock_acquire+0x14a/0x1d0
[  335.480149][T11897]  ? __pfx_vfs_read+0x10/0x10
[  335.481428][T11897]  ? __pfx___mutex_lock+0x10/0x10
[  335.482709][T11897]  ? __fget_files+0x244/0x3f0
[  335.483914][T11897]  ksys_read+0x12f/0x260
[  335.485001][T11897]  ? __pfx_ksys_read+0x10/0x10
[  335.486443][T11897]  __do_fast_syscall_32+0x73/0x120
[  335.487761][T11897]  do_fast_syscall_32+0x32/0x80
[  335.488975][T11897]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  335.490552][T11897] RIP: 0023:0xf7f2f579
[  335.491579][T11897] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  335.496350][T11897] RSP: 002b:00000000f56b65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  335.498440][T11897] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f56b6620
[  335.500369][T11897] RDX: 000000000000000f RSI: 00000000f73bbff4 RDI: 0000000000000000
[  335.502353][T11897] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  335.504332][T11897] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  335.506333][T11897] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  335.508375][T11897]  </TASK>
[  335.509225][    C3] vkms_vblank_simulate: vblank timer overrun
[  335.568680][ T6398] usb 16-1: device descriptor read/8, error -110
[  335.570646][T11903] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1936'.
[  335.574071][T11903] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1936'.
[  335.580399][T11903] erspan0: entered promiscuous mode
[  335.583593][T11903] batadv_slave_1: entered promiscuous mode
[  335.604279][T11887] Bluetooth: hci0: Opcode 0x0401 failed: -22
[  335.812388][T11918] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1935'.
[  335.814766][T11918] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1935'.
[  335.817468][ T5357] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  335.822544][ T5357] Bluetooth: hci3: Injecting HCI hardware error event
[  335.825845][ T5357] Bluetooth: hci3: hardware error 0x00
[  335.958247][ T6398] usb usb16-port1: attempt power cycle
[  336.015383][T11925] netlink: 'syz.0.1941': attribute type 9 has an invalid length.
[  336.018530][T11925] netlink: 134640 bytes leftover after parsing attributes in process `syz.0.1941'.
[  336.198531][T11931] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  336.201429][T11936] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1943'.
[  336.201449][T11936] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1943'.
[  336.286866][    C2] net_ratelimit: 3 callbacks suppressed
[  336.286885][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  336.537146][ T6398] usb usb16-port1: unable to enumerate USB device
[  336.926716][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  336.971541][T11951] program syz.3.1949 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  337.302020][T11955] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1950'.
[  337.326651][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  337.434266][T11967] FAULT_INJECTION: forcing a failure.
[  337.434266][T11967] name failslab, interval 1, probability 0, space 0, times 0
[  337.437651][T11967] CPU: 1 UID: 0 PID: 11967 Comm: syz.2.1954 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  337.440396][T11967] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  337.443207][T11967] Call Trace:
[  337.444095][T11967]  <TASK>
[  337.444885][T11967]  dump_stack_lvl+0x16c/0x1f0
[  337.446164][T11967]  should_fail_ex+0x497/0x5b0
[  337.447423][T11967]  ? fs_reclaim_acquire+0xae/0x160
[  337.448800][T11967]  should_failslab+0xc2/0x120
[  337.450069][T11967]  __kmalloc_node_track_caller_noprof+0xcf/0x440
[  337.451742][T11967]  ? kstrdup_const+0x63/0x80
[  337.452999][T11967]  kstrdup+0x3c/0x80
[  337.454055][T11967]  kstrdup_const+0x63/0x80
[  337.455243][T11967]  kvasprintf_const+0x10f/0x1a0
[  337.456543][T11967]  kobject_set_name_vargs+0x5a/0x140
[  337.457949][T11967]  dev_set_name+0xc8/0x100
[  337.459173][T11967]  ? __pfx_dev_set_name+0x10/0x10
[  337.460506][T11967]  ? __init_waitqueue_head+0xca/0x150
[  337.461946][T11967]  netdev_register_kobject+0xc5/0x3f0
[  337.463366][T11967]  register_netdevice+0x1473/0x1e20
[  337.464745][T11967]  ? __pfx_register_netdevice+0x10/0x10
[  337.466205][T11967]  ? alloc_netdev_mqs+0xf2a/0x12a0
[  337.467558][T11967]  ? validate_linkmsg+0x6d2/0x9a0
[  337.468877][T11967]  br_dev_newlink+0x27/0x110
[  337.470094][T11967]  ? __pfx_br_dev_newlink+0x10/0x10
[  337.471422][T11967]  __rtnl_newlink+0x119c/0x1920
[  337.472660][T11967]  ? __pfx___rtnl_newlink+0x10/0x10
[  337.474030][T11967]  rtnl_newlink+0x67/0xa0
[  337.475149][T11967]  ? __pfx_rtnl_newlink+0x10/0x10
[  337.476446][T11967]  rtnetlink_rcv_msg+0x3c7/0xea0
[  337.477763][T11967]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  337.479163][T11967]  ? __pfx___dev_queue_xmit+0x10/0x10
[  337.480549][T11967]  netlink_rcv_skb+0x165/0x410
[  337.481844][T11967]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  337.483235][T11967]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  337.484602][T11967]  ? netlink_deliver_tap+0x1ae/0xcf0
[  337.485937][T11967]  netlink_unicast+0x53c/0x7f0
[  337.487144][T11967]  ? __pfx_netlink_unicast+0x10/0x10
[  337.488498][T11967]  ? __phys_addr_symbol+0x30/0x80
[  337.489790][T11967]  ? __check_object_size+0x488/0x710
[  337.491120][T11967]  netlink_sendmsg+0x8b8/0xd70
[  337.492339][T11967]  ? __pfx_netlink_sendmsg+0x10/0x10
[  337.493674][T11967]  ? lock_acquire+0x2f/0xb0
[  337.494824][T11967]  ____sys_sendmsg+0x9ae/0xb40
[  337.496017][T11967]  ? __pfx_____sys_sendmsg+0x10/0x10
[  337.497383][T11967]  ? get_compat_msghdr+0x11b/0x170
[  337.498739][T11967]  ? __pfx___lock_acquire+0x10/0x10
[  337.500117][T11967]  ___sys_sendmsg+0x135/0x1e0
[  337.501378][T11967]  ? __pfx____sys_sendmsg+0x10/0x10
[  337.502710][T11967]  ? lock_acquire+0x2f/0xb0
[  337.503895][T11967]  ? __fget_files+0x40/0x3f0
[  337.505074][T11967]  ? fdget+0x176/0x210
[  337.506169][T11967]  __sys_sendmsg+0x117/0x1f0
[  337.507398][T11967]  ? __pfx___sys_sendmsg+0x10/0x10
[  337.508727][T11967]  ? __fget_files+0x244/0x3f0
[  337.509967][T11967]  __do_fast_syscall_32+0x73/0x120
[  337.511253][T11967]  do_fast_syscall_32+0x32/0x80
[  337.512489][T11967]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  337.514067][T11967] RIP: 0023:0xf7f2f579
[  337.515081][T11967] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  337.519870][T11967] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  337.521938][T11967] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  337.523908][T11967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  337.525990][T11967] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  337.528065][T11967] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  337.530108][T11967] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  337.532195][T11967]  </TASK>
[  337.646663][ T5350] Bluetooth: hci0: command tx timeout
[  337.896669][ T5357] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  337.966671][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  338.366656][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  339.016636][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  339.089208][ T5407] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  339.112538][T11980] ufs: You didn't specify the type of your ufs filesystem
[  339.112538][T11980] 
[  339.112538][T11980] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  339.112538][T11980] 
[  339.112538][T11980] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  339.123669][T11980] ufs: ufstype=old is supported read-only
[  339.129602][T11980] ufs: ufs_fill_super(): bad magic number
[  339.258588][ T5407] usb 7-1: Using ep0 maxpacket: 16
[  339.265192][ T5407] usb 7-1: too many configurations: 104, using maximum allowed: 8
[  339.269449][ T5407] usb 7-1: unable to read config index 0 descriptor/start: -61
[  339.271398][ T5407] usb 7-1: can't read configurations, error -61
[  339.396663][ T5407] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  339.406637][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  339.556751][ T5407] usb 7-1: Using ep0 maxpacket: 16
[  339.561146][ T5407] usb 7-1: too many configurations: 104, using maximum allowed: 8
[  339.575548][ T5407] usb 7-1: unable to read config index 0 descriptor/start: -61
[  339.578664][ T5407] usb 7-1: can't read configurations, error -61
[  339.581264][ T5407] usb usb7-port1: attempt power cycle
[  339.936632][ T5407] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  339.966996][ T5407] usb 7-1: Using ep0 maxpacket: 16
[  339.968743][ T5407] usb 7-1: too many configurations: 104, using maximum allowed: 8
[  339.972230][ T5407] usb 7-1: unable to read config index 0 descriptor/start: -61
[  339.974447][ T5407] usb 7-1: can't read configurations, error -61
[  340.046720][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  340.116616][ T5407] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  340.139083][ T5407] usb 7-1: Using ep0 maxpacket: 16
[  340.140834][ T5407] usb 7-1: too many configurations: 104, using maximum allowed: 8
[  340.144130][ T5407] usb 7-1: unable to read config index 0 descriptor/start: -61
[  340.146029][ T5407] usb 7-1: can't read configurations, error -61
[  340.148005][ T5407] usb usb7-port1: unable to enumerate USB device
[  340.446618][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  340.559378][T12003] binder: 12002:12003 ioctl 400c620e 20000140 returned -22
[  340.561823][T12003] netlink: 'syz.3.1965': attribute type 6 has an invalid length.
[  340.563694][T12003] netlink: 'syz.3.1965': attribute type 8 has an invalid length.
[  340.862543][T12008] __nla_validate_parse: 3 callbacks suppressed
[  340.862554][T12008] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1967'.
[  340.866764][T12008] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  340.910894][T12010] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1968'.
[  341.040174][T12015] FAULT_INJECTION: forcing a failure.
[  341.040174][T12015] name failslab, interval 1, probability 0, space 0, times 0
[  341.043574][T12015] CPU: 1 UID: 0 PID: 12015 Comm: syz.3.1970 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  341.047400][T12015] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  341.051052][T12015] Call Trace:
[  341.052249][T12015]  <TASK>
[  341.053269][T12015]  dump_stack_lvl+0x16c/0x1f0
[  341.054933][T12015]  should_fail_ex+0x497/0x5b0
[  341.056523][T12015]  ? fs_reclaim_acquire+0xae/0x160
[  341.058298][T12015]  should_failslab+0xc2/0x120
[  341.059869][T12015]  kmem_cache_alloc_node_noprof+0x71/0x310
[  341.061841][T12015]  ? __alloc_skb+0x2b3/0x380
[  341.063437][T12015]  __alloc_skb+0x2b3/0x380
[  341.065163][T12015]  ? __pfx___alloc_skb+0x10/0x10
[  341.066562][T12015]  ? lock_acquire+0x2f/0xb0
[  341.068177][T12015]  netlink_alloc_large_skb+0x69/0x130
[  341.070333][T12015]  netlink_sendmsg+0x689/0xd70
[  341.072055][T12015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.073757][T12015]  ? lock_acquire+0x2f/0xb0
[  341.075328][T12015]  ____sys_sendmsg+0x9ae/0xb40
[  341.076621][T12015]  ? __pfx_____sys_sendmsg+0x10/0x10
[  341.078078][T12015]  ? get_compat_msghdr+0x11b/0x170
[  341.079443][T12015]  ? __pfx___lock_acquire+0x10/0x10
[  341.080810][T12015]  ___sys_sendmsg+0x135/0x1e0
[  341.081125][T12016] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1969'.
[  341.082030][T12015]  ? __pfx____sys_sendmsg+0x10/0x10
[  341.082053][T12015]  ? lock_acquire+0x2f/0xb0
[  341.082067][T12015]  ? __fget_files+0x40/0x3f0
[  341.088331][T12015]  ? fdget+0x176/0x210
[  341.088843][T12016] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1969'.
[  341.089457][T12015]  __sys_sendmsg+0x117/0x1f0
[  341.089475][T12015]  ? __pfx___sys_sendmsg+0x10/0x10
[  341.089489][T12015]  ? __fget_files+0x244/0x3f0
[  341.089507][T12015]  __do_fast_syscall_32+0x73/0x120
[  341.099431][T12015]  do_fast_syscall_32+0x32/0x80
[  341.101147][T12015]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  341.103273][T12015] RIP: 0023:0xf7f8f579
[  341.104665][T12015] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  341.111485][T12015] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  341.114551][T12015] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000fc0
[  341.117253][T12015] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  341.120091][T12015] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  341.122766][T12015] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  341.125455][T12015] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  341.128288][T12015]  </TASK>
[  341.235920][T12023] FAULT_INJECTION: forcing a failure.
[  341.235920][T12023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  341.241132][T12023] CPU: 1 UID: 0 PID: 12023 Comm: syz.3.1972 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  341.244528][T12023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  341.248001][T12023] Call Trace:
[  341.249135][T12023]  <TASK>
[  341.250122][T12023]  dump_stack_lvl+0x16c/0x1f0
[  341.251721][T12023]  should_fail_ex+0x497/0x5b0
[  341.253326][T12023]  _copy_from_iter+0x29b/0x13e0
[  341.254975][T12023]  ? __pfx__copy_from_iter+0x10/0x10
[  341.256732][T12023]  ? __virt_addr_valid+0x1a4/0x590
[  341.258472][T12023]  ? __virt_addr_valid+0x5e/0x590
[  341.260159][T12023]  ? const_folio_flags.constprop.0+0x56/0x150
[  341.262201][T12023]  ? __phys_addr_symbol+0x30/0x80
[  341.263747][T12023]  ? __check_object_size+0x488/0x710
[  341.265197][T12023]  netlink_sendmsg+0x813/0xd70
[  341.266398][T12023]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.267946][T12023]  sock_write_iter+0x4fe/0x5b0
[  341.269580][T12023]  ? __pfx_sock_write_iter+0x10/0x10
[  341.271296][T12023]  ? bpf_lsm_file_permission+0x9/0x10
[  341.273108][T12023]  ? security_file_permission+0x71/0x210
[  341.274974][T12023]  vfs_write+0x6b5/0x1140
[  341.276163][T12023]  ? __pfx_sock_write_iter+0x10/0x10
[  341.277621][T12023]  ? trace_lock_acquire+0x14a/0x1d0
[  341.279293][T12023]  ? __pfx_vfs_write+0x10/0x10
[  341.280657][T12023]  ? __fget_files+0x40/0x3f0
[  341.282032][T12023]  ksys_write+0x1fa/0x260
[  341.283231][T12023]  ? __pfx_ksys_write+0x10/0x10
[  341.284465][T12023]  __do_fast_syscall_32+0x73/0x120
[  341.285752][T12023]  do_fast_syscall_32+0x32/0x80
[  341.287008][T12023]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  341.288796][T12023] RIP: 0023:0xf7f8f579
[  341.290236][T12023] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  341.295170][T12023] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  341.297332][T12023] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[  341.299428][T12023] RDX: 000000000000fe00 RSI: 0000000000000000 RDI: 0000000000000000
[  341.301429][T12023] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  341.303517][T12023] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  341.305805][T12023] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  341.307794][T12023]  </TASK>
[  341.392057][T12029] netlink: 'syz.0.1975': attribute type 5 has an invalid length.
[  341.394683][T12029] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1975'.
[  341.486755][    C2] net_ratelimit: 1 callbacks suppressed
[  341.486773][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  341.542255][T12043] grow_buffers: requested out-of-range block 17726168129035567103 for device sda1
[  341.544542][T12043] EXT4-fs warning (device sda1): ext4_resize_fs:2017: can't read last block, resize aborted
[  342.068017][T12062] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1983'.
[  342.136660][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  342.358744][T12081] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1992'.
[  342.379829][ T5350] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  342.384947][ T5350] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  342.388027][ T5350] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  342.390461][ T5350] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  342.392672][ T5350] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  342.394698][ T5350] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  342.487744][T12085] chnl_net:caif_netlink_parms(): no params data found
[  342.526626][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  342.574620][T12093] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1994'.
[  342.579936][T12085] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.582246][T12085] bridge0: port 1(bridge_slave_0) entered disabled state
[  342.584650][T12085] bridge_slave_0: entered allmulticast mode
[  342.588818][T12085] bridge_slave_0: entered promiscuous mode
[  342.591656][T12085] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.593576][T12085] bridge0: port 2(bridge_slave_1) entered disabled state
[  342.595513][T12085] bridge_slave_1: entered allmulticast mode
[  342.597978][T12085] bridge_slave_1: entered promiscuous mode
[  342.642954][T12085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  342.647325][T12085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  342.680721][T12085] team0: Port device team_slave_0 added
[  342.685714][T12085] team0: Port device team_slave_1 added
[  342.710860][T12085] batman_adv: batadv0: Adding interface: batadv_slave_0
[  342.712753][T12085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  342.721783][T12085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  342.727929][T12085] batman_adv: batadv0: Adding interface: batadv_slave_1
[  342.730179][T12085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  342.739317][T12085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  342.775639][T12085] hsr_slave_0: entered promiscuous mode
[  342.780497][T12085] hsr_slave_1: entered promiscuous mode
[  342.782545][T12085] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  342.784508][T12085] Cannot create hsr debugfs directory
[  342.836611][   T35] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  342.894448][T12085] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.048121][T12085] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.128588][T12085] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.166704][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  343.227568][T12085] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.342789][T12085] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  343.347652][T12085] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  343.351704][T12085] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  343.356213][T12085] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  343.408221][T12085] 8021q: adding VLAN 0 to HW filter on device bond0
[  343.437763][T12085] 8021q: adding VLAN 0 to HW filter on device team0
[  343.448244][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.450144][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  343.458171][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.460037][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  343.566589][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  343.590093][T12085] 8021q: adding VLAN 0 to HW filter on device batadv0
[  343.604345][T12120] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  343.612415][T12120] batadv_slave_0: entered promiscuous mode
[  343.632749][T12085] veth0_vlan: entered promiscuous mode
[  343.639035][T12085] veth1_vlan: entered promiscuous mode
[  343.657970][T12085] veth0_macvtap: entered promiscuous mode
[  343.663769][T12085] veth1_macvtap: entered promiscuous mode
[  343.676113][T12085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.680082][T12085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.683368][T12085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.687285][T12085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.690595][T12085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.694104][T12085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.698652][T12085] batman_adv: batadv0: Interface activated: batadv_slave_0
[  343.704500][T12085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.708881][T12085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.712279][T12085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.715809][T12085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.719795][T12085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.723417][T12085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.726738][T12085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.730195][T12085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.736386][T12085] batman_adv: batadv0: Interface activated: batadv_slave_1
[  343.741124][T12085] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  343.744026][T12085] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  343.747701][T12085] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  343.750593][T12085] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  343.775146][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  343.779188][T12127] fuse: Bad value for 'rootmode'
[  343.784202][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  343.793247][T12125] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  343.795056][T12125] tipc: Enabled bearer <udp:s¨>, priority 10
[  343.818948][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  343.821012][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  343.915976][T12138] netlink: 'syz.3.2009': attribute type 25 has an invalid length.
[  343.921636][T12138] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2009'.
[  343.923945][T12138] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2009'.
[  343.926649][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  344.077526][T12151] netlink: 'syz.2.2011': attribute type 3 has an invalid length.
[  344.080121][T12151] netlink: 'syz.2.2011': attribute type 3 has an invalid length.
[  344.138160][T12158] sg_write: data in/out 3292/251 bytes for SCSI command 0x15-- guessing data in;
[  344.138160][T12158]    program syz.2.2011 not setting count and/or reply_len properly
[  344.196647][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  344.206813][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  344.446684][ T5357] Bluetooth: hci2: command tx timeout
[  344.606816][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  345.401204][T12166] FAULT_INJECTION: forcing a failure.
[  345.401204][T12166] name failslab, interval 1, probability 0, space 0, times 0
[  345.404985][T12166] CPU: 0 UID: 0 PID: 12166 Comm: syz.1.2017 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  345.407711][T12166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.410530][T12166] Call Trace:
[  345.411483][T12166]  <TASK>
[  345.412499][T12166]  dump_stack_lvl+0x16c/0x1f0
[  345.414130][T12166]  should_fail_ex+0x497/0x5b0
[  345.415516][T12166]  ? fs_reclaim_acquire+0xae/0x160
[  345.417166][T12166]  should_failslab+0xc2/0x120
[  345.418729][T12166]  __kmalloc_noprof+0xcb/0x410
[  345.420212][T12166]  ? __pfx_perf_event_init_task+0x10/0x10
[  345.422171][T12166]  ? audit_alloc+0xa3/0x7b0
[  345.423725][T12166]  ? __pfx_audit_alloc+0x10/0x10
[  345.425421][T12166]  lsm_blob_alloc+0x68/0x90
[  345.426976][T12166]  security_task_alloc+0x2d/0x260
[  345.428565][T12166]  copy_process+0x2126/0x6f00
[  345.430195][T12166]  ? __pfx_copy_process+0x10/0x10
[  345.431799][T12166]  ? lockdep_init_map_type+0x16d/0x7d0
[  345.433661][T12166]  ? __raw_spin_lock_init+0x3a/0x110
[  345.435439][T12166]  ? __pfx_vhost_worker_killed+0x10/0x10
[  345.437373][T12166]  ? __pfx_vhost_run_work_list+0x10/0x10
[  345.438981][T12166]  vhost_task_create+0x1bd/0x2b0
[  345.440670][T12166]  ? __pfx_vhost_task_create+0x10/0x10
[  345.442543][T12166]  ? __pfx_vhost_task_fn+0x10/0x10
[  345.444101][T12166]  vhost_worker_create+0x152/0x370
[  345.445477][T12166]  ? __pfx_vhost_worker_create+0x10/0x10
[  345.447038][T12166]  ? rcu_is_watching+0x12/0xc0
[  345.448688][T12166]  ? trace_kmalloc+0x2d/0xe0
[  345.450123][T12166]  ? rcu_watching_snap_stopped_since+0x71/0x110
[  345.452099][T12166]  ? trace_kmalloc+0x2d/0xe0
[  345.453687][T12166]  vhost_dev_set_owner+0x5c8/0xa70
[  345.455341][T12166]  vhost_dev_ioctl+0x937/0xe20
[  345.456999][T12166]  ? __pfx___mutex_lock+0x10/0x10
[  345.458604][T12166]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[  345.460406][T12166]  vhost_vsock_dev_ioctl+0x3aa/0xb50
[  345.462232][T12166]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  345.464213][T12166]  ? __fget_files+0x244/0x3f0
[  345.465824][T12166]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  345.467786][T12166]  compat_ptr_ioctl+0x6b/0xa0
[  345.469411][T12166]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  345.471249][T12166]  __do_compat_sys_ioctl+0x259/0x2b0
[  345.473066][T12166]  __do_fast_syscall_32+0x73/0x120
[  345.474817][T12166]  do_fast_syscall_32+0x32/0x80
[  345.476188][T12166]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  345.478053][T12166] RIP: 0023:0xf7f9f579
[  345.479405][T12166] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  345.484873][T12166] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  345.487225][T12166] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000af01
[  345.489892][T12166] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  345.492494][T12166] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  345.495005][T12166] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  345.497669][T12166] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.500322][T12166]  </TASK>
[  345.943488][T12199] FAULT_INJECTION: forcing a failure.
[  345.943488][T12199] name failslab, interval 1, probability 0, space 0, times 0
[  345.947156][T12199] CPU: 1 UID: 0 PID: 12199 Comm: syz.3.2029 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  345.949877][T12199] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.952667][T12199] Call Trace:
[  345.953641][T12199]  <TASK>
[  345.954518][T12199]  dump_stack_lvl+0x16c/0x1f0
[  345.955818][T12199]  should_fail_ex+0x497/0x5b0
[  345.957072][T12199]  ? fs_reclaim_acquire+0xae/0x160
[  345.958420][T12199]  should_failslab+0xc2/0x120
[  345.959663][T12199]  kmem_cache_alloc_lru_noprof+0x72/0x2f0
[  345.961218][T12199]  ? alloc_inode+0xba/0x230
[  345.962541][T12199]  alloc_inode+0xba/0x230
[  345.963680][T12199]  new_inode+0x22/0x210
[  345.964782][T12199]  ? start_creating.part.0+0x25d/0x3a0
[  345.966371][T12199]  __debugfs_create_file+0x11a/0x660
[  345.967752][T12199]  kvm_dev_ioctl+0x14b9/0x1ab0
[  345.969027][T12199]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  345.970365][T12199]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  345.971631][T12199]  __do_compat_sys_ioctl+0x259/0x2b0
[  345.972941][T12199]  __do_fast_syscall_32+0x73/0x120
[  345.974278][T12199]  do_fast_syscall_32+0x32/0x80
[  345.975567][T12199]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  345.977202][T12199] RIP: 0023:0xf7fa7579
[  345.978258][T12199] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  345.982970][T12199] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  345.985132][T12199] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000ae01
[  345.987314][T12199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  345.989377][T12199] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  345.991465][T12199] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  345.993658][T12199] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.995741][T12199]  </TASK>
[  346.002307][T12199] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests'
[  346.123630][T12205] program syz.3.2031 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  346.215572][   T40] kauditd_printk_skb: 23 callbacks suppressed
[  346.216092][   T40] audit: type=1326 audit(1727663613.016:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12201 comm="syz.2.2030" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f2f579 code=0x0
[  346.240372][   T40] audit: type=1326 audit(1727663613.046:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12201 comm="syz.2.2030" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f2f579 code=0x0
[  346.536684][ T5357] Bluetooth: hci2: command tx timeout
[  346.696588][    C2] net_ratelimit: 5 callbacks suppressed
[  346.696601][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  346.846621][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  347.326720][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  347.608773][T12217] FAULT_INJECTION: forcing a failure.
[  347.608773][T12217] name failslab, interval 1, probability 0, space 0, times 0
[  347.612609][T12217] CPU: 0 UID: 0 PID: 12217 Comm: syz.1.2034 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  347.615385][T12217] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.618232][T12217] Call Trace:
[  347.619132][T12217]  <TASK>
[  347.619929][T12217]  dump_stack_lvl+0x16c/0x1f0
[  347.621423][T12217]  should_fail_ex+0x497/0x5b0
[  347.621461][T12217]  ? fs_reclaim_acquire+0xae/0x160
[  347.621464][T12220] FAULT_INJECTION: forcing a failure.
[  347.621464][T12220] name failslab, interval 1, probability 0, space 0, times 0
[  347.621475][T12217]  should_failslab+0xc2/0x120
[  347.621490][T12217]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  347.621504][T12217]  ? security_inode_alloc+0x34/0x2b0
[  347.621520][T12217]  security_inode_alloc+0x34/0x2b0
[  347.621532][T12217]  inode_init_always+0xc5b/0xf90
[  347.621546][T12217]  alloc_inode+0x7d/0x230
[  347.621557][T12217]  new_inode+0x22/0x210
[  347.621570][T12217]  proc_pid_make_inode+0x22/0x160
[  347.621585][T12217]  proc_fd_instantiate+0x57/0x240
[  347.621598][T12217]  proc_fill_cache+0x362/0x470
[  347.621612][T12217]  ? __pfx_proc_fd_instantiate+0x10/0x10
[  347.621625][T12217]  ? __pfx_proc_fill_cache+0x10/0x10
[  347.621638][T12217]  ? __pfx_vsnprintf+0x10/0x10
[  347.621655][T12217]  ? proc_readfd_common+0x1d3/0x990
[  347.621667][T12217]  ? snprintf+0xc8/0x100
[  347.621686][T12217]  ? proc_readfd_common+0x1d3/0x990
[  347.621698][T12217]  proc_readfd_common+0x254/0x990
[  347.621711][T12217]  ? __pfx_proc_fd_instantiate+0x10/0x10
[  347.621724][T12217]  ? __pfx_proc_readfd_common+0x10/0x10
[  347.621737][T12217]  ? down_read_killable+0xcc/0x380
[  347.621752][T12217]  ? __pfx_down_read_killable+0x10/0x10
[  347.621768][T12217]  ? apparmor_file_permission+0x251/0x400
[  347.621783][T12217]  iterate_dir+0x52f/0xb40
[  347.621802][T12217]  __ia32_sys_getdents64+0x14c/0x2e0
[  347.621813][T12217]  ? __pfx___ia32_sys_getdents64+0x10/0x10
[  347.621829][T12217]  ? __pfx_filldir64+0x10/0x10
[  347.621848][T12217]  __do_fast_syscall_32+0x73/0x120
[  347.621863][T12217]  do_fast_syscall_32+0x32/0x80
[  347.621876][T12217]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  347.621891][T12217] RIP: 0023:0xf7f9f579
[  347.621900][T12217] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  347.621911][T12217] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 00000000000000dc
[  347.621922][T12217] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020002f40
[  347.621929][T12217] RDX: 0000000000001002 RSI: 0000000000000000 RDI: 0000000000000000
[  347.621936][T12217] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  347.621942][T12217] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  347.621949][T12217] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  347.621961][T12217]  </TASK>
[  347.621967][T12220] CPU: 2 UID: 0 PID: 12220 Comm: syz.3.2035 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  347.621980][T12220] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.621987][T12220] Call Trace:
[  347.621991][T12220]  <TASK>
[  347.621996][T12220]  dump_stack_lvl+0x16c/0x1f0
[  347.622013][T12220]  should_fail_ex+0x497/0x5b0
[  347.622028][T12220]  ? fs_reclaim_acquire+0xae/0x160
[  347.622042][T12220]  should_failslab+0xc2/0x120
[  347.622056][T12220]  __kmalloc_noprof+0xcb/0x410
[  347.622073][T12220]  drm_atomic_state_init+0x17e/0x320
[  347.622107][T12220]  ? __kasan_kmalloc+0xaa/0xb0
[  347.622120][T12220]  drm_atomic_state_alloc+0xd3/0x120
[  347.622134][T12220]  drm_client_modeset_commit_atomic+0xd8/0x800
[  347.622149][T12220]  ? trace_contention_end+0xea/0x140
[  347.622166][T12220]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  347.622177][T12220]  ? trace_contention_end+0xea/0x140
[  347.622192][T12220]  ? drm_master_internal_acquire+0x21/0x80
[  347.622211][T12220]  ? rcu_is_watching+0x12/0xc0
[  347.622228][T12220]  drm_client_modeset_dpms+0x17e/0x210
[  347.622241][T12220]  drm_fb_helper_blank+0x13d/0x260
[  347.622252][T12220]  ? __pfx_drm_fb_helper_blank+0x10/0x10
[  347.622262][T12220]  fb_blank+0x105/0x190
[  347.622285][T12220]  ? __pfx_fb_blank+0x10/0x10
[  347.622296][T12220]  ? lock_acquire+0x2f/0xb0
[  347.622314][T12220]  do_fb_ioctl+0x432/0x7d0
[  347.622327][T12220]  ? __pfx_do_fb_ioctl+0x10/0x10
[  347.622339][T12220]  ? tomoyo_path_number_perm+0x292/0x5b0
[  347.622364][T12220]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  347.622393][T12220]  fb_compat_ioctl+0x55f/0x670
[  347.622405][T12220]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  347.622421][T12220]  ? __fget_files+0x244/0x3f0
[  347.622434][T12220]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  347.622447][T12220]  __do_compat_sys_ioctl+0x259/0x2b0
[  347.622464][T12220]  __do_fast_syscall_32+0x73/0x120
[  347.622478][T12220]  do_fast_syscall_32+0x32/0x80
[  347.622491][T12220]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  347.622505][T12220] RIP: 0023:0xf7fa7579
[  347.622514][T12220] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  347.622524][T12220] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  347.622535][T12220] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004611
[  347.622542][T12220] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000000
[  347.622548][T12220] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  347.622554][T12220] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  347.622561][T12220] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  347.622574][T12220]  </TASK>
[  347.727107][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  347.869952][T12230] __nla_validate_parse: 1 callbacks suppressed
[  347.869963][T12230] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2039'.
[  347.880563][T12230] macsec1: entered allmulticast mode
[  347.882409][T12230] veth1_macvtap: entered allmulticast mode
[  347.886765][T12230] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2039'.
[  347.896586][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  347.945177][T12230] veth1_macvtap (unregistering): left allmulticast mode
[  348.018378][T12228] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2038'.
[  348.026714][T12228] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2038'.
[  348.366665][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  348.480851][T12251] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2047'.
[  348.483329][T12251] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2047'.
[  348.616743][ T5357] Bluetooth: hci2: command tx timeout
[  348.766616][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  348.926656][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  349.170171][T12281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2058'.
[  349.328681][T12285] netlink: 'syz.2.2059': attribute type 10 has an invalid length.
[  349.345764][T12285] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  349.406640][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  349.806619][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  350.436625][ T1412] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  350.596651][ T1412] usb 7-1: Using ep0 maxpacket: 8
[  350.599212][ T1412] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  350.601386][ T1412] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  350.603911][ T1412] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  350.606446][ T1412] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  350.609770][ T1412] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  350.613162][ T1412] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  350.615508][ T1412] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.686719][ T5357] Bluetooth: hci2: command tx timeout
[  350.823909][ T1412] usb 7-1: usb_control_msg returned -32
[  350.825446][ T1412] usbtmc 7-1:16.0: can't read capabilities
[  350.831185][ T1412] usb 7-1: USB disconnect, device number 34
[  350.937829][T12299] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2063'.
[  351.500469][T12317] netlink: 'syz.1.2070': attribute type 4 has an invalid length.
[  351.566448][ T5350] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  351.574185][ T5350] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  351.577350][ T5350] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  351.579861][ T5350] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  351.582565][ T5350] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  351.584624][ T5350] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  351.663217][T12327] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2071'.
[  351.665663][T12327] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2071'.
[  351.748216][T12321] chnl_net:caif_netlink_parms(): no params data found
[  351.862098][T12321] bridge0: port 1(bridge_slave_0) entered blocking state
[  351.865287][T12321] bridge0: port 1(bridge_slave_0) entered disabled state
[  351.871978][T12321] bridge_slave_0: entered allmulticast mode
[  351.883140][T12321] bridge_slave_0: entered promiscuous mode
[  351.886633][    C2] net_ratelimit: 5 callbacks suppressed
[  351.886643][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  351.887727][T12321] bridge0: port 2(bridge_slave_1) entered blocking state
[  351.891823][T12321] bridge0: port 2(bridge_slave_1) entered disabled state
[  351.893804][T12321] bridge_slave_1: entered allmulticast mode
[  351.895833][T12321] bridge_slave_1: entered promiscuous mode
[  351.949178][T12321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  351.953996][T12321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  351.980646][T12321] team0: Port device team_slave_0 added
[  351.985881][T12321] team0: Port device team_slave_1 added
[  352.014730][T12321] batman_adv: batadv0: Adding interface: batadv_slave_0
[  352.017823][T12321] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  352.024597][T12321] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  352.029146][T12321] batman_adv: batadv0: Adding interface: batadv_slave_1
[  352.031036][T12321] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  352.038836][T12321] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  352.046667][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  352.068013][T12321] hsr_slave_0: entered promiscuous mode
[  352.087950][T12321] hsr_slave_1: entered promiscuous mode
[  352.090436][T12321] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  352.092515][T12321] Cannot create hsr debugfs directory
[  352.526658][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  352.656236][T12321] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  352.677277][T12321] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  352.680433][T12321] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  352.683566][T12321] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  352.714929][T12321] 8021q: adding VLAN 0 to HW filter on device bond0
[  352.723099][T12321] 8021q: adding VLAN 0 to HW filter on device team0
[  352.727470][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[  352.729384][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[  352.741310][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  352.743164][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  352.765159][T12321] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  352.768547][T12321] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  352.858221][T12321] 8021q: adding VLAN 0 to HW filter on device batadv0
[  352.883719][T12321] veth0_vlan: entered promiscuous mode
[  352.899694][T12321] veth1_vlan: entered promiscuous mode
[  352.917798][T12321] veth0_macvtap: entered promiscuous mode
[  352.921281][T12321] veth1_macvtap: entered promiscuous mode
[  352.926899][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  352.938024][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  352.940847][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  352.943384][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  352.946064][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  352.949015][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  352.951779][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  352.954325][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  352.957617][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  352.961184][T12321] batman_adv: batadv0: Interface activated: batadv_slave_0
[  352.967743][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  352.970547][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  352.973097][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  352.976014][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  352.980546][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  352.986160][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  352.989095][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  352.991802][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  352.994353][T12321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  353.007661][T12321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.011063][T12321] batman_adv: batadv0: Interface activated: batadv_slave_1
[  353.015123][T12321] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  353.018402][T12321] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  353.020686][T12321] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  353.022968][T12321] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  353.086628][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  353.095366][ T1126] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  353.105106][ T1126] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  353.116426][ T1126] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  353.122451][ T1126] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  353.214100][T12364] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2069'.
[  353.305256][T12372] binder: 12366:12372 ioctl c0306201 20000640 returned -22
[  353.482052][T12378] binder: 12376:12378 ioctl c0306201 20000640 returned -22
[  353.566950][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  353.646696][ T5357] Bluetooth: hci6: command tx timeout
[  353.966596][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  354.105817][T12389] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2088'.
[  354.110168][T12389] trusted_key: encrypted_key: insufficient parameters specified
[  354.115917][T12391] FAULT_INJECTION: forcing a failure.
[  354.115917][T12391] name failslab, interval 1, probability 0, space 0, times 0
[  354.124899][T12391] CPU: 1 UID: 0 PID: 12391 Comm: syz.0.2089 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  354.126590][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  354.127623][T12391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  354.132327][T12391] Call Trace:
[  354.133222][T12391]  <TASK>
[  354.134013][T12391]  dump_stack_lvl+0x16c/0x1f0
[  354.135275][T12391]  should_fail_ex+0x497/0x5b0
[  354.136534][T12391]  ? fs_reclaim_acquire+0xae/0x160
[  354.138116][T12391]  should_failslab+0xc2/0x120
[  354.139415][T12391]  __kmalloc_node_noprof+0xd1/0x440
[  354.140823][T12391]  ? bpf_lsm_capable+0x9/0x10
[  354.142103][T12391]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  354.143572][T12391]  __kvmalloc_node_noprof+0xad/0x1a0
[  354.145042][T12391]  bpf_check+0xba0/0xc7c0
[  354.146220][T12391]  ? __pfx_bpf_check+0x10/0x10
[  354.147569][T12391]  ? find_held_lock+0x2d/0x110
[  354.148860][T12391]  ? ktime_get_with_offset+0x13a/0x240
[  354.150365][T12391]  ? trace_lock_acquire+0x14a/0x1d0
[  354.151752][T12391]  ? ktime_get_with_offset+0x13a/0x240
[  354.153218][T12391]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  354.154726][T12391]  ? lockdep_hardirqs_on+0x7c/0x110
[  354.156108][T12391]  ? read_tsc+0x9/0x20
[  354.157210][T12391]  ? timekeeping_debug_get_ns+0x334/0x5b0
[  354.158721][T12391]  ? bpf_obj_name_cpy+0x156/0x1b0
[  354.160066][T12391]  bpf_prog_load+0xe3f/0x2670
[  354.161356][T12391]  ? __pfx_bpf_prog_load+0x10/0x10
[  354.162723][T12391]  ? find_held_lock+0x2d/0x110
[  354.164007][T12391]  __sys_bpf+0x4c8c/0x5780
[  354.165208][T12391]  ? ksys_write+0x21e/0x260
[  354.166426][T12391]  ? __pfx___sys_bpf+0x10/0x10
[  354.167703][T12391]  ? vfs_write+0x14d/0x1140
[  354.168918][T12391]  ? __mutex_unlock_slowpath+0x164/0x650
[  354.170449][T12391]  ? fput+0x30/0x390
[  354.171493][T12391]  ? ksys_write+0x1ad/0x260
[  354.172698][T12391]  ? __pfx_ksys_write+0x10/0x10
[  354.173999][T12391]  __ia32_sys_bpf+0x76/0xe0
[  354.175211][T12391]  __do_fast_syscall_32+0x73/0x120
[  354.176569][T12391]  do_fast_syscall_32+0x32/0x80
[  354.177870][T12391]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  354.179534][T12391] RIP: 0023:0xf7f58579
[  354.180627][T12391] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  354.185706][T12391] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  354.187898][T12391] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200002c0
[  354.189992][T12391] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  354.192091][T12391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  354.194165][T12391] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  354.196366][T12391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  354.198498][T12391]  </TASK>
[  354.211509][T12397] dlm: Unknown command passed to DLM device : 0
[  354.211509][T12397] 
[  354.349421][T12413] binder: 12407:12413 ioctl c0306201 20000640 returned -22
[  354.370979][T12414] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2095'.
[  354.374015][T12414] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2095'.
[  354.460149][T12418] FAULT_INJECTION: forcing a failure.
[  354.460149][T12418] name failslab, interval 1, probability 0, space 0, times 0
[  354.463425][T12418] CPU: 0 UID: 0 PID: 12418 Comm: syz.0.2100 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  354.466120][T12418] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  354.468898][T12418] Call Trace:
[  354.469780][T12418]  <TASK>
[  354.470562][T12418]  dump_stack_lvl+0x16c/0x1f0
[  354.471804][T12418]  should_fail_ex+0x497/0x5b0
[  354.473048][T12418]  ? fs_reclaim_acquire+0xae/0x160
[  354.474400][T12418]  should_failslab+0xc2/0x120
[  354.475639][T12418]  __kmalloc_noprof+0xcb/0x410
[  354.476910][T12418]  ? rcu_is_watching+0x12/0xc0
[  354.478174][T12418]  ? trace_kmalloc+0x2d/0xe0
[  354.479393][T12418]  vhost_dev_set_owner+0x21b/0xa70
[  354.480750][T12418]  vhost_dev_ioctl+0x937/0xe20
[  354.482016][T12418]  ? __pfx___mutex_lock+0x10/0x10
[  354.483328][T12418]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[  354.484708][T12418]  vhost_vsock_dev_ioctl+0x3aa/0xb50
[  354.486099][T12418]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  354.487625][T12418]  ? __fget_files+0x244/0x3f0
[  354.488862][T12418]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  354.490406][T12418]  compat_ptr_ioctl+0x6b/0xa0
[  354.491659][T12418]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  354.493074][T12418]  __do_compat_sys_ioctl+0x259/0x2b0
[  354.494463][T12418]  __do_fast_syscall_32+0x73/0x120
[  354.495850][T12418]  do_fast_syscall_32+0x32/0x80
[  354.497326][T12418]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  354.499136][T12418] RIP: 0023:0xf7f58579
[  354.500496][T12418] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  354.505648][T12418] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  354.507854][T12418] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000af01
[  354.509929][T12418] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  354.511961][T12418] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  354.514043][T12418] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  354.516114][T12418] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  354.518263][T12418]  </TASK>
[  354.528848][   T11] Bluetooth: hci7: Frame reassembly failed (-84)
[  354.606702][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  355.006660][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  355.166085][T12420] dns_resolver: Unsupported content type (37)
[  355.736670][ T5350] Bluetooth: hci6: command tx timeout
[  355.744804][T12430] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0, syncid = 0, id = 0
[  356.170649][T12439] binder: 12437:12439 ioctl c0306201 20000640 returned -22
[  356.536666][ T5357] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  356.536760][ T5350] Bluetooth: hci7: command 0x1003 tx timeout
[  356.719103][T12441] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2106'.
[  356.759321][T12444] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2108'.
[  356.861208][T12451] binder: 12447:12451 ioctl c0306201 20000640 returned -22
[  356.888100][T12441] MTD: Attempt to mount non-MTD device "/dev/nbd0"
[  356.890110][T12441] syz.0.2106: attempt to access beyond end of device
[  356.890110][T12441] nbd0: rw=0, sector=0, nr_sectors = 2 limit=0
[  357.086668][    C2] net_ratelimit: 5 callbacks suppressed
[  357.086682][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  357.246607][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  357.726731][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  357.735095][T12464] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2112'.
[  357.737985][T12464] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2112'.
[  357.816885][ T5357] Bluetooth: hci6: command tx timeout
[  358.126642][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  358.286637][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  358.766709][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  359.166606][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  359.256661][   T56] usb 8-1: new high-speed USB device number 37 using dummy_hcd
[  359.326868][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  359.406686][   T56] usb 8-1: Using ep0 maxpacket: 8
[  359.409898][   T56] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  359.412466][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  359.415051][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  359.417858][   T56] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  359.421206][   T56] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  359.423531][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.631377][   T56] usb 8-1: usb_control_msg returned -32
[  359.632886][   T56] usbtmc 8-1:16.0: can't read capabilities
[  359.759734][T12476] FAULT_INJECTION: forcing a failure.
[  359.759734][T12476] name failslab, interval 1, probability 0, space 0, times 0
[  359.763046][T12476] CPU: 2 UID: 0 PID: 12476 Comm: syz.0.2116 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  359.765720][T12476] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.768503][T12476] Call Trace:
[  359.769389][T12476]  <TASK>
[  359.770178][T12476]  dump_stack_lvl+0x16c/0x1f0
[  359.771438][T12476]  should_fail_ex+0x497/0x5b0
[  359.772653][T12476]  ? fs_reclaim_acquire+0xae/0x160
[  359.773999][T12476]  should_failslab+0xc2/0x120
[  359.775248][T12476]  __kmalloc_node_noprof+0xd1/0x440
[  359.776615][T12476]  ? __vmalloc_node_range_noprof+0x3d8/0x15a0
[  359.778208][T12476]  __vmalloc_node_range_noprof+0x3d8/0x15a0
[  359.779766][T12476]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  359.781234][T12476]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  359.782887][T12476]  ? __pfx___lock_acquire+0x10/0x10
[  359.784254][T12476]  ? __pfx_aa_get_newest_label+0x10/0x10
[  359.785738][T12476]  ? __pfx___lock_acquire+0x10/0x10
[  359.787081][T12476]  ? __pfx_mark_lock+0x10/0x10
[  359.788303][T12476]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  359.789754][T12476]  __vmalloc_noprof+0x6d/0x90
[  359.790996][T12476]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  359.792438][T12476]  bpf_prog_alloc_no_stats+0x54/0x5e0
[  359.793855][T12476]  ? security_capable+0x7e/0x260
[  359.795156][T12476]  bpf_prog_alloc+0x3b/0x230
[  359.796371][T12476]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  359.797946][T12476]  bpf_prog_load+0x1b4e/0x2670
[  359.799209][T12476]  ? __pfx_bpf_prog_load+0x10/0x10
[  359.800588][T12476]  ? find_held_lock+0x2d/0x110
[  359.801875][T12476]  __sys_bpf+0x4c8c/0x5780
[  359.803053][T12476]  ? ksys_write+0x21e/0x260
[  359.804240][T12476]  ? __pfx___sys_bpf+0x10/0x10
[  359.805465][T12476]  ? vfs_write+0x14d/0x1140
[  359.806660][T12476]  ? __mutex_unlock_slowpath+0x164/0x650
[  359.806666][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  359.808140][T12476]  ? fput+0x30/0x390
[  359.808157][T12476]  ? ksys_write+0x1ad/0x260
[  359.808167][T12476]  ? __pfx_ksys_write+0x10/0x10
[  359.813511][T12476]  __ia32_sys_bpf+0x76/0xe0
[  359.814729][T12476]  __do_fast_syscall_32+0x73/0x120
[  359.816084][T12476]  do_fast_syscall_32+0x32/0x80
[  359.817398][T12476]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  359.819057][T12476] RIP: 0023:0xf7f58579
[  359.820142][T12476] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  359.825157][T12476] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  359.827333][T12476] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000002000e000
[  359.829405][T12476] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  359.831462][T12476] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  359.833532][T12476] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  359.835602][T12476] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  359.837674][T12476]  </TASK>
[  359.841235][T12476] syz.0.2116: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  359.845695][T12476] CPU: 2 UID: 0 PID: 12476 Comm: syz.0.2116 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  359.848411][T12476] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.851219][T12476] Call Trace:
[  359.852102][T12476]  <TASK>
[  359.852901][T12476]  dump_stack_lvl+0x16c/0x1f0
[  359.854153][T12476]  warn_alloc+0x24d/0x3a0
[  359.855297][T12476]  ? __pfx_warn_alloc+0x10/0x10
[  359.856591][T12476]  ? dump_stack_lvl+0x197/0x1f0
[  359.857887][T12476]  ? dump_stack_lvl+0x1a1/0x1f0
[  359.859179][T12476]  ? should_fail_ex+0x2de/0x5b0
[  359.860468][T12476]  ? rcu_is_watching+0x12/0xc0
[  359.861754][T12476]  ? trace_kmalloc+0x2d/0xe0
[  359.862975][T12476]  ? __kmalloc_node_noprof+0x22f/0x440
[  359.864409][T12476]  __vmalloc_node_range_noprof+0x114a/0x15a0
[  359.865998][T12476]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  359.867450][T12476]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  359.869113][T12476]  ? __pfx___lock_acquire+0x10/0x10
[  359.870482][T12476]  ? __pfx_aa_get_newest_label+0x10/0x10
[  359.871948][T12476]  ? __pfx___lock_acquire+0x10/0x10
[  359.873304][T12476]  ? __pfx_mark_lock+0x10/0x10
[  359.874568][T12476]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  359.876024][T12476]  __vmalloc_noprof+0x6d/0x90
[  359.877272][T12476]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  359.878723][T12476]  bpf_prog_alloc_no_stats+0x54/0x5e0
[  359.880168][T12476]  ? security_capable+0x7e/0x260
[  359.881506][T12476]  bpf_prog_alloc+0x3b/0x230
[  359.882724][T12476]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  359.884278][T12476]  bpf_prog_load+0x1b4e/0x2670
[  359.885555][T12476]  ? __pfx_bpf_prog_load+0x10/0x10
[  359.886643][ T5357] Bluetooth: hci6: command tx timeout
[  359.886929][T12476]  ? find_held_lock+0x2d/0x110
[  359.889685][T12476]  __sys_bpf+0x4c8c/0x5780
[  359.890882][T12476]  ? ksys_write+0x21e/0x260
[  359.892087][T12476]  ? __pfx___sys_bpf+0x10/0x10
[  359.893361][T12476]  ? vfs_write+0x14d/0x1140
[  359.894594][T12476]  ? __mutex_unlock_slowpath+0x164/0x650
[  359.896079][T12476]  ? fput+0x30/0x390
[  359.897136][T12476]  ? ksys_write+0x1ad/0x260
[  359.898330][T12476]  ? __pfx_ksys_write+0x10/0x10
[  359.899605][T12476]  __ia32_sys_bpf+0x76/0xe0
[  359.900819][T12476]  __do_fast_syscall_32+0x73/0x120
[  359.902169][T12476]  do_fast_syscall_32+0x32/0x80
[  359.903450][T12476]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  359.905120][T12476] RIP: 0023:0xf7f58579
[  359.906197][T12476] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  359.911195][T12476] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  359.913375][T12476] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000002000e000
[  359.915433][T12476] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  359.917474][T12476] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  359.919540][T12476] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  359.921619][T12476] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  359.923698][T12476]  </TASK>
[  359.924845][T12476] Mem-Info:
[  359.925710][T12476] active_anon:5878 inactive_anon:1941 isolated_anon:0
[  359.925710][T12476]  active_file:7446 inactive_file:14379 isolated_file:0
[  359.925710][T12476]  unevictable:768 dirty:375 writeback:0
[  359.925710][T12476]  slab_reclaimable:5014 slab_unreclaimable:72573
[  359.925710][T12476]  mapped:29543 shmem:1019 pagetables:738
[  359.925710][T12476]  sec_pagetables:325 bounce:0
[  359.925710][T12476]  kernel_misc_reclaimable:0
[  359.925710][T12476]  free:57169 free_pcp:751 free_cma:0
[  359.937380][T12476] Node 0 active_anon:0kB inactive_anon:92kB active_file:12kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4884kB dirty:20kB writeback:0kB shmem:2440kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9424kB pagetables:1164kB sec_pagetables:1188kB all_unreclaimable? no
[  359.945325][T12476] Node 1 active_anon:23548kB inactive_anon:7672kB active_file:29772kB inactive_file:57508kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:113288kB dirty:1480kB writeback:0kB shmem:1636kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3204kB pagetables:1788kB sec_pagetables:112kB all_unreclaimable? no
[  359.953747][T12476] Node 0 DMA free:920kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:4kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:160kB local_pcp:140kB free_cma:0kB
[  359.960966][T12476] lowmem_reserve[]: 0 273 0 0 0
[  359.962341][T12476] Node 0 DMA32 free:21456kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:132kB active_file:8kB inactive_file:8kB unevictable:1536kB writepending:16kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:1000kB local_pcp:32kB free_cma:0kB
[  359.970072][T12476] lowmem_reserve[]: 0 0 0 0 0
[  359.971347][T12476] Node 1 DMA32 free:206884kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:2048KB active_anon:23548kB inactive_anon:7672kB active_file:29772kB inactive_file:57508kB unevictable:1536kB writepending:1480kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:1588kB local_pcp:556kB free_cma:0kB
[  359.979354][T12476] lowmem_reserve[]: 0 0 0 0 0
[  359.980695][T12476] Node 0 DMA: 36*4kB (UE) 73*8kB (UE) 6*16kB (U) 3*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 920kB
[  359.984600][T12476] Node 0 DMA32: 710*4kB (UME) 511*8kB (UMEH) 24*16kB (UMEH) 54*32kB (UMEH) 32*64kB (UMEH) 21*128kB (UMEH) 10*256kB (UM) 8*512kB (UMH) 1*1024kB (M) 0*2048kB 0*4096kB = 21456kB
[  359.989531][T12476] Node 1 DMA32: 59*4kB (UME) 120*8kB (UME) 109*16kB (UME) 124*32kB (UME) 116*64kB (UME) 83*128kB (ME) 198*256kB (UME) 90*512kB (UME) 37*1024kB (UM) 17*2048kB (MEH) 3*4096kB (UM) = 206716kB
[  359.994394][T12476] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  359.996936][T12476] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  359.999315][T12476] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  360.001821][T12476] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  360.004338][T12476] 23319 total pagecache pages
[  360.005641][T12476] 474 pages in swap cache
[  360.006890][T12476] Free swap  = 115656kB
[  360.007983][T12476] Total swap = 124996kB
[  360.009184][T12476] 524155 pages RAM
[  360.010277][T12476] 0 pages HighMem/MovableOnly
[  360.011569][T12476] 206681 pages reserved
[  360.012723][T12476] 0 pages cma reserved
[  360.141901][T12486] binder: 12484:12486 ioctl c0306201 20000640 returned -22
[  360.206627][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  361.010357][T12496] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2121'.
[  361.012865][T12496] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2121'.
[  361.219189][T12498] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  361.369840][T12501] input: syz0 as /devices/virtual/input/input48
[  362.026750][ T4779] usb 8-1: USB disconnect, device number 37
[  362.286613][    C2] net_ratelimit: 5 callbacks suppressed
[  362.286628][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  362.446619][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  362.543589][T12507] dns_resolver: Unsupported server list version (0)
[  362.926756][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  363.312628][T12513] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  363.326604][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  363.486632][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  363.499792][T12520] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2130'.
[  363.514272][T12520] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[  363.521919][T12520] bridge_slave_1: left allmulticast mode
[  363.523401][T12520] bridge_slave_1: left promiscuous mode
[  363.524904][T12520] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.529624][T12520] bridge1: port 1(bridge_slave_1) entered blocking state
[  363.531478][T12520] bridge1: port 1(bridge_slave_1) entered disabled state
[  363.533357][T12520] bridge_slave_1: entered allmulticast mode
[  363.535381][T12520] bridge_slave_1: entered promiscuous mode
[  363.539302][T12520] bridge1: port 1(bridge_slave_1) entered blocking state
[  363.541185][T12520] bridge1: port 1(bridge_slave_1) entered forwarding state
[  363.966645][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  364.357583][T12555] befs: (nullb0): No write support. Marking filesystem read-only
[  364.366600][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  364.366766][T12555] befs: (nullb0): invalid magic header
[  364.526587][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  364.718811][T12550] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2137'.
[  364.721173][T12550] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2137'.
[  364.782849][T12565] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.785579][T12565] bridge1: port 1(bridge_slave_1) entered disabled state
[  364.845988][T12571] binder: 12570:12571 ioctl 80247008 20000080 returned -22
[  364.880381][T12575] bridge0: port 2(ipvlan2) entered blocking state
[  364.882161][T12575] bridge0: port 2(ipvlan2) entered disabled state
[  364.884000][T12575] ipvlan2: entered allmulticast mode
[  364.885413][T12575] bridge0: entered allmulticast mode
[  364.887650][T12575] ipvlan2: left allmulticast mode
[  364.889004][T12575] bridge0: left allmulticast mode
[  365.006681][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  365.163012][T12587] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2150'.
[  365.406611][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  365.667011][T12589] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  365.718816][T12596] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2154'.
[  365.839301][T12599] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2155'.
[  365.841828][T12599] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2155'.
[  366.856954][ T5350] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  366.859786][ T5350] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  366.865068][ T5350] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  366.871745][ T5350] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  366.874030][ T5350] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  366.877285][ T5350] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  366.899447][T12622] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  366.969925][T12618] chnl_net:caif_netlink_parms(): no params data found
[  367.032219][T12618] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.034185][T12618] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.036111][T12618] bridge_slave_0: entered allmulticast mode
[  367.038269][T12618] bridge_slave_0: entered promiscuous mode
[  367.041222][T12618] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.043167][T12618] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.045127][T12618] bridge_slave_1: entered allmulticast mode
[  367.047271][T12618] bridge_slave_1: entered promiscuous mode
[  367.066682][T12618] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  367.070417][T12618] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  367.099605][T12618] team0: Port device team_slave_0 added
[  367.105172][T12618] team0: Port device team_slave_1 added
[  367.126126][T12618] batman_adv: batadv0: Adding interface: batadv_slave_0
[  367.129069][T12618] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  367.135763][T12618] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  367.139661][T12618] batman_adv: batadv0: Adding interface: batadv_slave_1
[  367.141521][T12618] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  367.148680][T12618] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  367.171388][T12618] hsr_slave_0: entered promiscuous mode
[  367.173431][T12618] hsr_slave_1: entered promiscuous mode
[  367.175252][T12618] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  367.178006][T12618] Cannot create hsr debugfs directory
[  367.250391][T12618] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.350799][T12618] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.360026][T12636] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2165'.
[  367.362474][T12636] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2165'.
[  367.426204][T12618] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.486648][    C2] net_ratelimit: 5 callbacks suppressed
[  367.486660][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  367.559777][T12618] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.646873][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  367.706562][T12618] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  367.712296][T12618] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  367.717919][T12618] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  367.723121][T12618] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  367.745821][T12618] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.747963][T12618] bridge0: port 2(bridge_slave_1) entered forwarding state
[  367.750186][T12618] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.752055][T12618] bridge0: port 1(bridge_slave_0) entered forwarding state
[  367.809467][T12618] 8021q: adding VLAN 0 to HW filter on device bond0
[  367.837045][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.841655][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.889891][T12618] 8021q: adding VLAN 0 to HW filter on device team0
[  367.899387][ T1126] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.901456][ T1126] bridge0: port 1(bridge_slave_0) entered forwarding state
[  367.923696][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.925544][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[  368.069202][T12618] 8021q: adding VLAN 0 to HW filter on device batadv0
[  368.093598][T12618] veth0_vlan: entered promiscuous mode
[  368.098739][T12618] veth1_vlan: entered promiscuous mode
[  368.111952][T12618] veth0_macvtap: entered promiscuous mode
[  368.115213][T12618] veth1_macvtap: entered promiscuous mode
[  368.122430][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.125041][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.127783][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.130649][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.133066][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.135613][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.136613][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  368.138049][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.142402][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.144753][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.148232][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.151530][T12618] batman_adv: batadv0: Interface activated: batadv_slave_0
[  368.159510][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.162192][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.164708][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.167797][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.170344][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.172909][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.175417][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.182147][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.184609][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.187316][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.189819][T12618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.192390][T12618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.195694][T12618] batman_adv: batadv0: Interface activated: batadv_slave_1
[  368.202896][T12618] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  368.205119][T12618] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  368.207630][T12618] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  368.209915][T12618] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  368.266048][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  368.268453][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  368.280363][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  368.282399][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  368.526859][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  368.600236][T12684] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2175'.
[  368.602896][T12684] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2175'.
[  368.686613][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  368.726036][T12691] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2178'.
[  368.926819][ T5350] Bluetooth: hci7: command tx timeout
[  368.947887][   T56] ==================================================================
[  368.950096][   T56] BUG: KASAN: slab-use-after-free in __list_del_entry_valid_or_report+0x14c/0x1c0
[  368.952537][   T56] Read of size 8 at addr ffff8880733b5d88 by task kworker/3:1/56
[  368.955293][   T56] 
[  368.956605][   T56] CPU: 3 UID: 0 PID: 56 Comm: kworker/3:1 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  368.959704][   T56] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.962610][   T56] Workqueue: events binder_deferred_func
[  368.964225][   T56] Call Trace:
[  368.965144][   T56]  <TASK>
[  368.965952][   T56]  dump_stack_lvl+0x116/0x1f0
[  368.967244][   T56]  print_report+0xc3/0x620
[  368.968469][   T56]  ? __virt_addr_valid+0x5e/0x590
[  368.969849][   T56]  ? __phys_addr+0xc6/0x150
[  368.971109][   T56]  kasan_report+0xd9/0x110
[  368.972329][   T56]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  368.974081][   T56]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  368.975801][   T56]  __list_del_entry_valid_or_report+0x14c/0x1c0
[  368.977537][   T56]  binder_release_work+0x9b/0x490
[  368.978897][   T56]  binder_deferred_func+0xe6e/0x12e0
[  368.980416][   T56]  process_one_work+0x958/0x1b30
[  368.981894][   T56]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  368.983506][   T56]  ? __pfx_process_one_work+0x10/0x10
[  368.984972][   T56]  ? assign_work+0x1a0/0x250
[  368.986199][   T56]  worker_thread+0x6c8/0xf00
[  368.987469][   T56]  ? __pfx_worker_thread+0x10/0x10
[  368.988882][   T56]  kthread+0x2c1/0x3a0
[  368.990023][   T56]  ? _raw_spin_unlock_irq+0x23/0x50
[  368.991457][   T56]  ? __pfx_kthread+0x10/0x10
[  368.992737][   T56]  ret_from_fork+0x45/0x80
[  368.993987][   T56]  ? __pfx_kthread+0x10/0x10
[  368.995269][   T56]  ret_from_fork_asm+0x1a/0x30
[  368.996596][   T56]  </TASK>
[  368.997466][   T56] 
[  368.998116][   T56] Allocated by task 12706:
[  368.999314][   T56]  kasan_save_stack+0x33/0x60
[  369.000631][   T56]  kasan_save_track+0x14/0x30
[  369.002061][   T56]  __kasan_kmalloc+0xaa/0xb0
[  369.003340][   T56]  binder_thread_write+0xe19/0x4c60
[  369.004756][   T56]  binder_ioctl+0x268b/0x7050
[  369.006042][   T56]  compat_ptr_ioctl+0x6b/0xa0
[  369.007294][   T56]  __do_compat_sys_ioctl+0x259/0x2b0
[  369.008685][   T56]  __do_fast_syscall_32+0x73/0x120
[  369.010065][   T56]  do_fast_syscall_32+0x32/0x80
[  369.011343][   T56]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  369.013014][   T56] 
[  369.013650][   T56] Freed by task 56:
[  369.014665][   T56]  kasan_save_stack+0x33/0x60
[  369.015929][   T56]  kasan_save_track+0x14/0x30
[  369.017177][   T56]  kasan_save_free_info+0x3b/0x60
[  369.018498][   T56]  __kasan_slab_free+0x51/0x70
[  369.019755][   T56]  kfree+0x14f/0x4b0
[  369.020817][   T56]  binder_deferred_func+0xdd7/0x12e0
[  369.022239][   T56]  process_one_work+0x958/0x1b30
[  369.023564][   T56]  worker_thread+0x6c8/0xf00
[  369.024787][   T56]  kthread+0x2c1/0x3a0
[  369.025883][   T56]  ret_from_fork+0x45/0x80
[  369.027074][   T56]  ret_from_fork_asm+0x1a/0x30
[  369.028337][   T56] 
[  369.029044][   T56] The buggy address belongs to the object at ffff8880733b5d80
[  369.029044][   T56]  which belongs to the cache kmalloc-64 of size 64
[  369.032612][   T56] The buggy address is located 8 bytes inside of
[  369.032612][   T56]  freed 64-byte region [ffff8880733b5d80, ffff8880733b5dc0)
[  369.036141][   T56] 
[  369.036775][   T56] The buggy address belongs to the physical page:
[  369.038448][   T56] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x733b5
[  369.040716][   T56] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  369.042597][   T56] page_type: f5(slab)
[  369.043647][   T56] raw: 04fff00000000000 ffff88801ac428c0 dead000000000122 0000000000000000
[  369.045880][   T56] raw: 0000000000000000 0000000080200020 00000001f5000000 0000000000000000
[  369.048124][   T56] page dumped because: kasan: bad access detected
[  369.049835][   T56] page_owner tracks the page as allocated
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  369.051341][   T56] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 12618, tgid 12618 (syz-executor), ts 368920630966, free_ts 368920611249
[  369.056709][   T56]  post_alloc_hook+0x2d1/0x350
[  369.058005][   T56]  get_page_from_freelist+0x101e/0x3070
[  369.059446][   T56]  __alloc_pages_noprof+0x223/0x25c0
[  369.060844][   T56]  alloc_pages_mpol_noprof+0x2c9/0x610
[  369.062266][   T56]  new_slab+0x2ba/0x3f0
[  369.063352][   T56]  ___slab_alloc+0xd1d/0x16f0
[  369.064578][   T56]  __slab_alloc.constprop.0+0x56/0xb0
[  369.065978][   T56]  __kmalloc_cache_node_noprof+0xf1/0x360
[  369.067432][   T56]  __get_vm_area_node+0xe1/0x2d0
[  369.068749][   T56]  __vmalloc_node_range_noprof+0x26a/0x15a0
[  369.070311][   T56]  vmalloc_noprof+0x6b/0x90
[  369.071540][   T56]  xt_compat_init_offsets+0xe1/0x1f0
[  369.072962][   T56]  compat_table_info+0xb7/0x5f0
[  369.074205][   T56]  compat_get_entries+0x212/0x850
[  369.075516][   T56]  do_ip6t_get_ctl+0x596/0xaf0
[  369.076817][   T56]  nf_getsockopt+0x79/0xe0
[  369.078014][   T56] page last free pid 12618 tgid 12618 stack trace:
[  369.079705][   T56]  free_unref_page+0x5f4/0xdc0
[  369.081004][   T56]  vfree+0x17a/0x890
[  369.082058][   T56]  xt_compat_flush_offsets+0x8f/0x160
[  369.083473][   T56]  get_info+0x2f7/0x750
[  369.084589][   T56]  do_ip6t_get_ctl+0x16a/0xaf0
[  369.085872][   T56]  nf_getsockopt+0x79/0xe0
[  369.087143][   T56]  ipv6_getsockopt+0x1f7/0x280
[  369.088422][   T56]  tcp_getsockopt+0x9e/0x100
[  369.089680][   T56]  do_sock_getsockopt+0x3fe/0x870
[  369.090999][   T56]  __sys_getsockopt+0x1a1/0x270
[  369.092278][   T56]  __do_compat_sys_socketcall+0x42b/0x700
[  369.093779][   T56]  __do_fast_syscall_32+0x73/0x120
[  369.095127][   T56]  do_fast_syscall_32+0x32/0x80
[  369.096409][   T56]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  369.098083][   T56] 
[  369.098716][   T56] Memory state around the buggy address:
[  369.100187][   T56]  ffff8880733b5c80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  369.102279][   T56]  ffff8880733b5d00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  369.104359][   T56] >ffff8880733b5d80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  369.106442][   T56]                       ^
[  369.107555][   T56]  ffff8880733b5e00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  369.109639][   T56]  ffff8880733b5e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  369.111723][   T56] ==================================================================
[  369.114253][   T56] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  369.116141][   T56] CPU: 3 UID: 0 PID: 56 Comm: kworker/3:1 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  369.118813][   T56] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.121611][   T56] Workqueue: events binder_deferred_func
[  369.123091][   T56] Call Trace:
[  369.123968][   T56]  <TASK>
[  369.124746][   T56]  dump_stack_lvl+0x3d/0x1f0
[  369.125982][   T56]  panic+0x71d/0x800
[  369.127019][   T56]  ? mark_held_locks+0x9f/0xe0
[  369.128279][   T56]  ? __pfx_panic+0x10/0x10
[  369.129463][   T56]  ? irqentry_exit+0x3b/0x90
[  369.130683][   T56]  ? lockdep_hardirqs_on+0x7c/0x110
[  369.132048][   T56]  ? check_panic_on_warn+0x1f/0xb0
[  369.133406][   T56]  check_panic_on_warn+0xab/0xb0
[  369.134711][   T56]  end_report+0x117/0x180
[  369.135838][   T56]  kasan_report+0xe9/0x110
[  369.137010][   T56]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  369.138683][   T56]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  369.140357][   T56]  __list_del_entry_valid_or_report+0x14c/0x1c0
[  369.141999][   T56]  binder_release_work+0x9b/0x490
[  369.143319][   T56]  binder_deferred_func+0xe6e/0x12e0
[  369.144700][   T56]  process_one_work+0x958/0x1b30
[  369.146015][   T56]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  369.147482][   T56]  ? __pfx_process_one_work+0x10/0x10
[  369.148898][   T56]  ? assign_work+0x1a0/0x250
[  369.150112][   T56]  worker_thread+0x6c8/0xf00
[  369.151324][   T56]  ? __pfx_worker_thread+0x10/0x10
[  369.152659][   T56]  kthread+0x2c1/0x3a0
[  369.153742][   T56]  ? _raw_spin_unlock_irq+0x23/0x50
[  369.155105][   T56]  ? __pfx_kthread+0x10/0x10
[  369.156300][   T56]  ret_from_fork+0x45/0x80
[  369.157488][   T56]  ? __pfx_kthread+0x10/0x10
[  369.158699][   T56]  ret_from_fork_asm+0x1a/0x30
[  369.159960][   T56]  </TASK>
[  369.161242][   T56] Kernel Offset: disabled
[  369.162366][   T56] Rebooting in 86400 seconds..

VM DIAGNOSIS:
02:33:55  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000ea9719 RBX=0000000000000000 RCX=ffffffff8b12f739 RDX=0000000000000000
RSI=ffffffff8b4cc8e0 RDI=ffffffff8bb12060 RBP=fffffbfff1b52af8 RSP=ffffffff8da07e20
R8 =0000000000000001 R9 =ffffed1005687025 R10=ffff88802b43812b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8da957c0 R14=ffffffff901cc608 R15=0000000000000000
RIP=ffffffff8b130b1f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2f9d22 CR3=000000007660a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000563c915fa990 RCX=00000000000296d0 RDX=ffffffffffffffff
RSI=0000000000041b00 RDI=0000563c916cb000 RBP=0000563c915e48c0 RSP=00007ffd061f5648
R8 =0000000000041b00 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000100 R13=0000563c916b2bd0 R14=0000000000041b00 R15=0000000000000e11
RIP=00007fe0e6d2e92f RFL=00010246 [---Z-P-] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe0e70b5d00 ffffffff 00c00000
GS =0000 0000000000000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000563c916cb000 CR3=000000002ad98000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=9de33a689de33a68 9de33a689de33a68 9de33a689de33a68 9de33a689de33a68 9de33a689de33a68 9de33a689de33a68 9de33a689de33a68 9de33a689de33a68
ZMM22=cc7dc2d4cc7dc2d4 cc7dc2d4cc7dc2d4 cc7dc2d4cc7dc2d4 cc7dc2d4cc7dc2d4 cc7dc2d4cc7dc2d4 cc7dc2d4cc7dc2d4 cc7dc2d4cc7dc2d4 cc7dc2d4cc7dc2d4
ZMM23=7c586f427c586f42 7c586f427c586f42 7c586f427c586f42 7c586f427c586f42 7c586f427c586f42 7c586f427c586f42 7c586f427c586f42 7c586f427c586f42
ZMM24=f296ce51f296ce51 f296ce51f296ce51 f296ce51f296ce51 f296ce51f296ce51 f296ce51f296ce51 f296ce51f296ce51 f296ce51f296ce51 f296ce51f296ce51
ZMM25=3922acc63922acc6 3922acc63922acc6 3922acc63922acc6 3922acc63922acc6 3922acc63922acc6 3922acc63922acc6 3922acc63922acc6 3922acc63922acc6
ZMM26=edcc11b8edcc11b8 edcc11b8edcc11b8 edcc11b8edcc11b8 edcc11b8edcc11b8 edcc11b8edcc11b8 edcc11b8edcc11b8 edcc11b8edcc11b8 edcc11b8edcc11b8
ZMM27=e19491e3e19491e3 e19491e3e19491e3 e19491e3e19491e3 e19491e3e19491e3 e19491e3e19491e3 e19491e3e19491e3 e19491e3e19491e3 e19491e3e19491e3
ZMM28=000000800000007f 0000007e0000007d 0000007c0000007b 0000007a00000079 0000007800000077 0000007600000075 0000007400000073 0000007200000071
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=8715000087150000 8715000087150000 8715000087150000 8715000087150000 8715000087150000 8715000087150000 8715000087150000 8715000087150000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=00000000000000a6 RCX=ffffffff81dcd6db RDX=ffff8880202f8000
RSI=ffffffff81dcd697 RDI=0000000000000005 RBP=ffff88801ac6a7b0 RSP=ffffc90000e7f6c8
R8 =0000000000000005 R9 =0000000000000100 R10=00000000000000a6 R11=0000000000000000
R12=0000000000000000 R13=ffff88801ac69810 R14=dffffc0000000000 R15=0000000000000006
RIP=ffffffff818cafd6 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7416108 CR3=00000000007b2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff85035855 RDI=ffffffff9a63a260 RBP=ffffffff9a63a220 RSP=ffffc9000076f570
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552033203a555043
R12=0000000000000000 R13=0000000000000000 R14=ffffffff9a63a270 R15=0000000000000073
RIP=ffffffff8503587f RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f72118e0 CR3=000000006c402000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000