last executing test programs:

5.492718332s ago: executing program 1 (id=10):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff2}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r4, {0xfff9, 0x7}, {}, {0x1, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x2c, 0x2, [@TCA_FLOWER_KEY_IPV6_DST={0x14, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @TCA_FLOWER_KEY_IPV6_DST_MASK={0x14, 0x11, [0xffffff, 0xffffff00, 0xffffffff, 0xff]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x800)

4.182254691s ago: executing program 1 (id=16):
socket$packet(0x11, 0xa, 0x300)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000040)={@val={0x0, 0x86dd}, @val={0x0, 0x4, 0x11, 0x4}, @mpls={[], @ipv6=@gre_packet={0xe, 0x6, "ec00be", 0x44, 0x2f, 0xff, @local, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x88be, 0x0, 0x3}, {0x0, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x1}, {0xa888, 0x88be, 0x1, {{0x6, 0x1, 0x9, 0x2, 0x1, 0x0, 0x0, 0x5}, 0x1, {0x10}}}, {0x8, 0x22eb, 0x20000, {{0x0, 0x2, 0xc, 0x0, 0x0, 0x2, 0x7, 0x8}, 0x2, {0x2, 0x4, 0x0, 0x5, 0x1, 0x1, 0x1}}}, {0x8, 0x6558, 0x2}}}}}}, 0x7a)
r2 = socket$pppoe(0x18, 0x1, 0x0)
sendmmsg(r2, &(0x7f00000006c0), 0x0, 0x40884)
recvmmsg(r2, 0x0, 0x0, 0x40018003, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x80000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000180100002020692100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r4}, 0xc)

3.370673925s ago: executing program 2 (id=20):
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040e041f0204"], 0x7)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

3.262586942s ago: executing program 2 (id=21):
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000240)=[@in={0x2, 0x4e22, @empty}, @in6={0xa, 0x0, 0x0, @loopback}], 0x2c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x8000000)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl(r3, 0x7ffffe, &(0x7f0000000540))
socket$netlink(0x10, 0x3, 0xa)
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r4, &(0x7f0000000140)={{0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x1}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @bcast, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000100)={'nr0\x00', 0x2})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

3.251053828s ago: executing program 2 (id=22):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
read$nci(r0, &(0x7f0000000800)=""/179, 0xb3)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0)

2.349392311s ago: executing program 2 (id=23):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x22102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = eventfd(0x3)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000280)={r2, 0x2, 0x2, r2})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000040)={r2, 0x2, 0x3, r2})

2.252799468s ago: executing program 3 (id=25):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000003c0)='highspeed\x00', 0xa)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r0, &(0x7f0000000200), 0xfffffd9d)

2.085188288s ago: executing program 2 (id=26):
syz_usb_connect(0x3, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x19, 0x4e, 0xd7, 0x10, 0x1de1, 0xc102, 0x8433, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xec, 0x0, 0x0, 0x11, 0x4a, 0xfe}}]}}]}}, 0x0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)
r0 = syz_usb_connect$cdc_ncm(0x2, 0x0, 0x0, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0x427}}]})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}]}], {0x14}}, 0xa0}, 0x1, 0x0, 0x0, 0x58fe7ab67a988db6}, 0x0)
arch_prctl$ARCH_GET_GS(0x1004, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000180)=@raw={'raw\x00', 0x8, 0x3, 0x480, 0x0, 0xffffffff, 0xffffffff, 0x150, 0xffffffff, 0x3d8, 0xffffffff, 0xffffffff, 0x3d8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4e0)

2.048568307s ago: executing program 3 (id=27):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x24, &(0x7f0000000000)=0x10, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500e1fd08001400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001"], 0xfdef)

1.906133513s ago: executing program 3 (id=28):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioperm(0x0, 0xd, 0x4000000000000020)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x2}, 0xe)
listen(r1, 0x0)
accept4$bt_l2cap(r1, 0x0, 0x0, 0x80800)
timer_settime(0x0, 0x0, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

1.863253564s ago: executing program 1 (id=29):
syz_open_dev$video(&(0x7f0000000040), 0x7, 0x80040)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x1)
ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000480)={{0x0, 0x3, 0x0, 0x3}, 'syz0\x00', 0x10})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x10000)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r2, 0xc058534f, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
lsetxattr$security_ima(&(0x7f0000000480)='./file0\x00', &(0x7f0000000100), &(0x7f0000000180)=ANY=[@ANYRES16=r3], 0xb, 0x1)
sendmsg$IPSET_CMD_DEL(r3, 0x0, 0x80044)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003840)=[{{&(0x7f00000006c0)={0xa, 0x4e24, 0x0, @remote, 0xa}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000280)="8000102ebf77", 0x6}], 0x1, &(0x7f0000003500)=ANY=[], 0x4f}}], 0x1, 0x240080c4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x1b}], {0x95, 0x0, 0x700}}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x185)
write$cgroup_int(r6, &(0x7f00000000c0)=0x1c3, 0x12)
sendmsg$key(0xffffffffffffffff, 0x0, 0x8000)
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xee)
ioctl$UI_DEV_CREATE(r1, 0x5501)
close_range(r0, 0xffffffffffffffff, 0x0)

1.010234119s ago: executing program 3 (id=33):
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000180), 0x3ffffffffffffffd, 0x0)
r7 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000004c0)={0x0, &(0x7f00000000c0)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r7, 0xc06864a1, &(0x7f00000005c0)={0x0, 0x0, r8, <r9=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r6, 0xc06864ce, &(0x7f0000000440)={r9, 0x0, 0x0, 0x0, 0x0, [<r10=>0x0], [0x7, 0x0, 0x0, 0x7fffffff], [0x0, 0x0, 0x0, 0xfffffffc], [0x6, 0x4, 0x4]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r6, 0xc00c642d, &(0x7f0000000200)={r10, 0x80000, <r11=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r5, 0xc00c642e, &(0x7f0000000000)={0x0, 0x0, r11})
close_range(r5, 0xffffffffffffffff, 0x0)
r12 = epoll_create(0x1)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r12, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x80044940, 0x0)
fchdir(r0)
r13 = socket$nl_generic(0x11, 0x3, 0x10)
sendmsg(r13, &(0x7f0000000040)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f86dd", 0xe}], 0x1, 0x0, 0x0, 0x11000000}, 0x1)
open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x130)

663.410856ms ago: executing program 2 (id=34):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
listen(r0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000200)=0x2, 0x43)
ioctl$int_in(r0, 0x5452, &(0x7f00000000c0)=0x1)
shutdown(r0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

543.446624ms ago: executing program 1 (id=35):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000200), 0xffffffc1)
mmap(&(0x7f00007a6000/0x3000)=nil, 0x3000, 0x100000c, 0x22051, r0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

300.856995ms ago: executing program 0 (id=39):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='cgroup.max.depth\x00', 0x2, 0x0)
sendfile(r1, r1, 0x0, 0x3)

153.921887ms ago: executing program 0 (id=40):
openat$nci(0xffffffffffffff9c, &(0x7f00000021c0), 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040e0b080510"], 0xe)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, 0x0)

153.276236ms ago: executing program 0 (id=41):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000003500), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000003a00)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f0000003b00)={0x0, 0x0, &(0x7f0000003ac0)={&(0x7f0000003a40)={0x20, r1, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)

131.205081ms ago: executing program 1 (id=42):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0xfffffffb}, 0x1c)
listen(r0, 0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0x10)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x42, &(0x7f00000002c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x65, 0x0, 0xf, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0xffff, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x10009, 0x52}]}}}}}}}, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x11, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0x0, 0x0, 0x2, {[@timestamp={0x8, 0xa, 0x3, 0x2000000c}]}}}}}}}, 0x0)

99.191843ms ago: executing program 0 (id=43):
r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x9, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000000)={0xf0f044, 0x6c})
ppoll(&(0x7f0000000280)=[{r0, 0x640}], 0x1, 0x0, 0x0, 0x0)

96.774247ms ago: executing program 1 (id=44):
r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x2002)
r1 = dup(r0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r1, 0xab00, r2)
ioctl$NBD_SET_FLAGS(r0, 0xab0a, 0xbdf)
ioctl$NBD_SET_SOCK(r0, 0xab00, r2)
ioctl$NBD_DO_IT(r0, 0xab03)

66.806807ms ago: executing program 3 (id=45):
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c830160012000100050806000900f200080002d40400"], 0x1b)

2.642865ms ago: executing program 0 (id=46):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r2, 0x1, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20040840}, 0xc4)

2.412877ms ago: executing program 3 (id=47):
syz_80211_inject_frame(&(0x7f0000000240)=@device_b, 0x0, 0xb5)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a00)={0x28, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
ioctl(r3, 0x8b1a, &(0x7f0000000040))

0s ago: executing program 0 (id=48):
syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300ea2d01020301090212"], 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close(r0)
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000040)=ANY=[], 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x40095505, &(0x7f0000000140)={'syzkaller0\x00', @random="371692e7f7ef"})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:7419' (ED25519) to the list of known hosts.
[   45.551423][   T40] audit: type=1400 audit(1749918937.253:62): avc:  denied  { name_bind } for  pid=5891 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   45.568030][   T40] audit: type=1400 audit(1749918937.273:63): avc:  denied  { write } for  pid=5892 comm="sh" path="pipe:[5071]" dev="pipefs" ino=5071 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   45.580054][   T40] audit: type=1400 audit(1749918937.283:64): avc:  denied  { execute } for  pid=5892 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   45.588406][   T40] audit: type=1400 audit(1749918937.283:65): avc:  denied  { execute_no_trans } for  pid=5892 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   47.798242][   T40] audit: type=1400 audit(1749918939.503:66): avc:  denied  { mounton } for  pid=5892 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   47.800713][ T5892] cgroup: Unknown subsys name 'net'
[   47.988421][ T5892] cgroup: Unknown subsys name 'cpuset'
[   47.992417][ T5892] cgroup: Unknown subsys name 'rlimit'
[   48.188639][ T5928] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   48.985609][ T5892] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   52.324647][   T40] kauditd_printk_skb: 13 callbacks suppressed
[   52.324659][   T40] audit: type=1400 audit(1749918944.023:80): avc:  denied  { execmem } for  pid=5937 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   52.515157][   T40] audit: type=1400 audit(1749918944.213:81): avc:  denied  { create } for  pid=5939 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   52.526702][   T40] audit: type=1400 audit(1749918944.213:82): avc:  denied  { read write } for  pid=5939 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1292 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   52.533794][   T40] audit: type=1400 audit(1749918944.223:83): avc:  denied  { open } for  pid=5939 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1292 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   52.540949][   T40] audit: type=1400 audit(1749918944.223:84): avc:  denied  { ioctl } for  pid=5939 comm="syz-executor" path="socket:[5806]" dev="sockfs" ino=5806 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   52.570394][ T5954] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   52.572440][ T5947] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   52.573490][ T5954] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   52.577073][ T5947] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   52.577139][ T5948] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   52.578231][ T5948] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   52.578280][ T5954] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   52.580137][ T5952] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   52.581375][ T5947] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   52.581784][ T5952] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   52.582119][ T5952] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   52.583537][ T5950] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   52.584093][ T5952] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   52.584824][ T5952] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   52.585374][ T5952] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   52.587420][ T5947] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   52.595826][ T5952] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   52.597542][   T40] audit: type=1400 audit(1749918944.293:85): avc:  denied  { read } for  pid=5942 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   52.598213][ T5947] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   52.601207][ T5952] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   52.602351][   T40] audit: type=1400 audit(1749918944.293:86): avc:  denied  { open } for  pid=5942 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   52.605728][ T5947] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   52.607518][   T40] audit: type=1400 audit(1749918944.293:87): avc:  denied  { mounton } for  pid=5942 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   52.857783][   T40] audit: type=1400 audit(1749918944.563:88): avc:  denied  { module_request } for  pid=5949 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   52.930820][ T5939] chnl_net:caif_netlink_parms(): no params data found
[   52.956068][ T5949] chnl_net:caif_netlink_parms(): no params data found
[   53.077256][ T5945] chnl_net:caif_netlink_parms(): no params data found
[   53.083957][ T5942] chnl_net:caif_netlink_parms(): no params data found
[   53.150520][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.153057][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.157404][ T5939] bridge_slave_0: entered allmulticast mode
[   53.160268][ T5939] bridge_slave_0: entered promiscuous mode
[   53.201492][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.203663][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.206555][ T5939] bridge_slave_1: entered allmulticast mode
[   53.209146][ T5939] bridge_slave_1: entered promiscuous mode
[   53.279353][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.281900][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.284578][ T5949] bridge_slave_0: entered allmulticast mode
[   53.288462][ T5949] bridge_slave_0: entered promiscuous mode
[   53.312362][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.315075][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.318544][ T5949] bridge_slave_1: entered allmulticast mode
[   53.321387][ T5949] bridge_slave_1: entered promiscuous mode
[   53.326806][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.380730][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.423537][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.425884][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.428190][ T5942] bridge_slave_0: entered allmulticast mode
[   53.431083][ T5942] bridge_slave_0: entered promiscuous mode
[   53.452588][ T5949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.479367][ T5945] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.482221][ T5945] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.484494][ T5945] bridge_slave_0: entered allmulticast mode
[   53.487760][ T5945] bridge_slave_0: entered promiscuous mode
[   53.490667][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.493683][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.497010][ T5942] bridge_slave_1: entered allmulticast mode
[   53.500874][ T5942] bridge_slave_1: entered promiscuous mode
[   53.505243][ T5949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.510029][ T5939] team0: Port device team_slave_0 added
[   53.512104][ T5945] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.514249][ T5945] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.516558][ T5945] bridge_slave_1: entered allmulticast mode
[   53.519107][ T5945] bridge_slave_1: entered promiscuous mode
[   53.575363][ T5939] team0: Port device team_slave_1 added
[   53.665423][ T5945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.671628][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.678337][ T5949] team0: Port device team_slave_0 added
[   53.700496][ T5945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.706583][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.712509][ T5949] team0: Port device team_slave_1 added
[   53.717297][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.719510][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.727486][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.793664][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.796328][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.804220][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.876670][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.879550][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.890028][ T5949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.898006][ T5945] team0: Port device team_slave_0 added
[   53.903412][ T5942] team0: Port device team_slave_0 added
[   53.908742][ T5942] team0: Port device team_slave_1 added
[   53.962423][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.965288][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.975741][ T5949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.981494][ T5945] team0: Port device team_slave_1 added
[   54.002009][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.004922][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.015694][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.023659][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.026105][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.033839][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.120386][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.122583][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.130393][ T5945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.134921][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.137135][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.145000][ T5945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.153220][ T5939] hsr_slave_0: entered promiscuous mode
[   54.159129][ T5939] hsr_slave_1: entered promiscuous mode
[   54.251148][ T5942] hsr_slave_0: entered promiscuous mode
[   54.253371][ T5942] hsr_slave_1: entered promiscuous mode
[   54.255624][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   54.258122][ T5942] Cannot create hsr debugfs directory
[   54.262310][ T5949] hsr_slave_0: entered promiscuous mode
[   54.265677][ T5949] hsr_slave_1: entered promiscuous mode
[   54.268156][ T5949] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   54.270636][ T5949] Cannot create hsr debugfs directory
[   54.381694][ T5945] hsr_slave_0: entered promiscuous mode
[   54.384707][ T5945] hsr_slave_1: entered promiscuous mode
[   54.387067][ T5945] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   54.389467][ T5945] Cannot create hsr debugfs directory
[   54.635974][ T5947] Bluetooth: hci0: command tx timeout
[   54.635982][ T5943] Bluetooth: hci2: command tx timeout
[   54.636059][   T63] Bluetooth: hci1: command tx timeout
[   54.636208][   T63] Bluetooth: hci3: command tx timeout
[   54.664422][ T5939] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   54.674671][ T5939] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   54.681073][ T5939] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   54.685309][ T5939] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   54.725705][ T5942] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   54.730585][ T5942] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   54.734852][ T5942] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   54.746873][ T5942] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   54.807841][ T5949] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   54.813812][ T5949] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   54.819106][ T5949] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   54.822927][ T5949] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   54.897313][ T5945] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   54.913812][ T5945] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   54.923142][ T5945] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   54.930340][ T5945] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   54.945686][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.980994][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[   54.997281][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.999826][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.017950][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.023384][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.025984][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.034995][ T5949] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.063204][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[   55.077437][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.080449][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.095103][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.098258][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.103793][ T5949] 8021q: adding VLAN 0 to HW filter on device team0
[   55.114297][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.117327][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.146635][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.148851][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.162460][ T5945] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.181511][ T5945] 8021q: adding VLAN 0 to HW filter on device team0
[   55.182296][   T40] audit: type=1400 audit(1749918946.883:89): avc:  denied  { sys_module } for  pid=5939 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   55.187114][ T5942] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.216288][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.219205][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.235699][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.238356][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.281699][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.328405][ T5939] veth0_vlan: entered promiscuous mode
[   55.334764][ T5939] veth1_vlan: entered promiscuous mode
[   55.340082][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.370263][ T5939] veth0_macvtap: entered promiscuous mode
[   55.377265][ T5939] veth1_macvtap: entered promiscuous mode
[   55.384487][ T5942] veth0_vlan: entered promiscuous mode
[   55.398899][ T5942] veth1_vlan: entered promiscuous mode
[   55.403596][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.419000][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.426425][ T5939] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.429199][ T5939] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.431900][ T5939] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.434489][ T5939] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.440232][ T5949] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.449947][ T5945] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.480465][ T5942] veth0_macvtap: entered promiscuous mode
[   55.497968][ T5942] veth1_macvtap: entered promiscuous mode
[   55.505754][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.508479][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.538240][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.538481][ T5949] veth0_vlan: entered promiscuous mode
[   55.540572][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.544551][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.555964][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.564631][ T5942] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.568606][ T5942] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.571909][ T5942] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.575284][ T5942] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.582534][ T5949] veth1_vlan: entered promiscuous mode
[   55.589910][ T5939] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   55.600793][ T5945] veth0_vlan: entered promiscuous mode
[   55.639573][ T5945] veth1_vlan: entered promiscuous mode
[   55.658886][ T5949] veth0_macvtap: entered promiscuous mode
[   55.663408][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.666721][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.671398][ T5949] veth1_macvtap: entered promiscuous mode
[   55.694092][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.710369][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.713965][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.714055][ T5945] veth0_macvtap: entered promiscuous mode
[   55.721903][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.728342][ T5945] veth1_macvtap: entered promiscuous mode
[   55.736598][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.748805][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.755127][ T5949] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.758029][ T5949] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.760987][ T5949] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.764052][ T5949] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.772157][ T5945] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.775811][ T5945] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.779072][ T5945] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.782319][ T5945] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.862616][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   55.865133][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.866435][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   55.868598][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.875861][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   55.889557][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.895437][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.958414][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.961391][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.027027][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.029868][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.595541][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   56.716530][ T5943] Bluetooth: hci0: command tx timeout
[   56.716701][ T5947] Bluetooth: hci3: command tx timeout
[   56.719194][ T5943] Bluetooth: hci2: command tx timeout
[   56.720274][ T5952] Bluetooth: hci1: command tx timeout
[   56.897548][ T6053] Zero length message leads to an empty skb
[   57.011509][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.926446][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.074451][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.108509][   T40] kauditd_printk_skb: 53 callbacks suppressed
[   58.108523][   T40] audit: type=1400 audit(1749918949.813:143): avc:  denied  { name_bind } for  pid=6068 comm="syz.0.13" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   58.119602][   T40] audit: type=1400 audit(1749918949.813:144): avc:  denied  { node_bind } for  pid=6068 comm="syz.0.13" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   58.158826][ T6071] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   58.164567][   T40] audit: type=1400 audit(1749918949.863:145): avc:  denied  { ioctl } for  pid=6070 comm="syz.0.14" path="socket:[9528]" dev="sockfs" ino=9528 ioctlcmd=0x8955 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   58.176839][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.216158][   T40] audit: type=1400 audit(1749918949.913:146): avc:  denied  { read } for  pid=6072 comm="syz.0.15" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   58.228148][   T40] audit: type=1400 audit(1749918949.923:147): avc:  denied  { open } for  pid=6072 comm="syz.0.15" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   58.279285][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.290962][   T40] audit: type=1400 audit(1749918949.993:148): avc:  denied  { create } for  pid=6075 comm="syz.1.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   58.313272][   T40] audit: type=1400 audit(1749918949.993:149): avc:  denied  { create } for  pid=6072 comm="syz.0.15" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   58.320770][ T6076] syz.1.16 uses obsolete (PF_INET,SOCK_PACKET)
[   58.332288][   T40] audit: type=1400 audit(1749918950.003:150): avc:  denied  { write } for  pid=6072 comm="syz.0.15" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   58.342632][   T40] audit: type=1400 audit(1749918950.033:151): avc:  denied  { ioctl } for  pid=6075 comm="syz.1.16" path="socket:[6743]" dev="sockfs" ino=6743 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   58.382425][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.514522][   T40] audit: type=1400 audit(1749918950.043:152): avc:  denied  { create } for  pid=6075 comm="syz.1.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   58.795623][ T5943] Bluetooth: hci3: command tx timeout
[   58.795934][ T5947] Bluetooth: hci1: command tx timeout
[   58.797949][ T5943] Bluetooth: hci0: command tx timeout
[   58.799656][ T5947] Bluetooth: hci2: command tx timeout
[   59.042787][ T6085] netlink: 28 bytes leftover after parsing attributes in process `syz.2.19'.
[   60.625726][ T5973] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   60.729907][ T6074] Set syz1 is full, maxelem 65536 reached
[   60.754050][ T6111] block device autoloading is deprecated and will be removed.
[   60.775767][ T5973] usb 7-1: Using ep0 maxpacket: 16
[   60.783332][ T6111] input: syz0 as /devices/virtual/input/input5
[   60.783827][ T5973] usb 7-1: config 0 has an invalid interface number: 236 but max is 0
[   60.798756][ T5973] usb 7-1: config 0 has no interface number 0
[   60.822467][ T5973] usb 7-1: New USB device found, idVendor=1de1, idProduct=c102, bcdDevice=84.33
[   60.841769][ T5973] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   60.850923][ T5973] usb 7-1: Product: syz
[   60.852784][ T5973] usb 7-1: Manufacturer: syz
[   60.854761][ T5973] usb 7-1: SerialNumber: syz
[   60.860521][ T5973] usb 7-1: config 0 descriptor??
[   60.867800][ T5973] usb-storage 7-1:0.236: USB Mass Storage device detected
[   60.876523][   T63] Bluetooth: hci0: command tx timeout
[   60.876570][ T5947] Bluetooth: hci3: command tx timeout
[   60.879023][   T63] Bluetooth: hci2: command tx timeout
[   60.882090][ T5973] usb-storage 7-1:0.236: device ignored
[   61.103323][ T6007] usb 7-1: USB disconnect, device number 2
[   61.978171][ T6135] process 'syz.0.37' launched './file0' with NULL argv: empty string added
[   62.113115][ T6139] netfs: Couldn't get user pages (rc=-14)
[   62.441834][ T6161] warning: `syz.3.47' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   62.449398][ T6160] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   62.520190][ T6157] 
[   62.521233][ T6157] ======================================================
[   62.524032][ T6157] WARNING: possible circular locking dependency detected
[   62.526759][ T6157] 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 Not tainted
[   62.530735][ T6157] ------------------------------------------------------
[   62.534285][ T6157] syz.1.44/6157 is trying to acquire lock:
[   62.536538][ T6157] ffffffff8e72fa68 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470
[   62.540272][ T6157] 
[   62.540272][ T6157] but task is already holding lock:
[   62.543240][ T6157] ffff888027c800a8 (&q->q_usage_counter(io)#50){++++}-{0:0}, at: blk_mq_update_nr_hw_queues+0x275/0xcb0
[   62.547692][ T6157] 
[   62.547692][ T6157] which lock already depends on the new lock.
[   62.547692][ T6157] 
[   62.551632][ T6157] 
[   62.551632][ T6157] the existing dependency chain (in reverse order) is:
[   62.555188][ T6157] 
[   62.555188][ T6157] -> #2 (&q->q_usage_counter(io)#50){++++}-{0:0}:
[   62.558556][ T6157]        blk_alloc_queue+0x619/0x760
[   62.560660][ T6157]        blk_mq_alloc_queue+0x175/0x290
[   62.562843][ T6157]        __blk_mq_alloc_disk+0x29/0x120
[   62.565088][ T6157]        nbd_dev_add+0x4a0/0xbc0
[   62.567095][ T6157]        nbd_init+0x181/0x320
[   62.568991][ T6157]        do_one_initcall+0x120/0x6e0
[   62.571008][ T6157]        kernel_init_freeable+0x5c2/0x900
[   62.573253][ T6157]        kernel_init+0x1c/0x2b0
[   62.575166][ T6157]        ret_from_fork+0x5d7/0x6f0
[   62.577166][ T6157]        ret_from_fork_asm+0x1a/0x30
[   62.579242][ T6157] 
[   62.579242][ T6157] -> #1 (fs_reclaim){+.+.}-{0:0}:
[   62.582038][ T6157]        fs_reclaim_acquire+0x102/0x150
[   62.584240][ T6157]        prepare_alloc_pages+0x162/0x610
[   62.586518][ T6157]        __alloc_frozen_pages_noprof+0x18b/0x23f0
[   62.589103][ T6157]        __alloc_pages_noprof+0xb/0x1b0
[   62.591253][ T6157]        pcpu_populate_chunk+0x110/0xb00
[   62.593444][ T6157]        pcpu_alloc_noprof+0x86a/0x1470
[   62.595659][ T6157]        iommu_dma_init_fq+0x202/0x8a0
[   62.597867][ T6157]        iommu_setup_dma_ops+0x1336/0x1700
[   62.600206][ T6157]        bus_iommu_probe+0x23e/0x530
[   62.602332][ T6157]        iommu_device_register+0x1af/0x280
[   62.604675][ T6157]        intel_iommu_init+0x25e7/0x3780
[   62.606926][ T6157]        pci_iommu_init+0x2e/0x90
[   62.608978][ T6157]        do_one_initcall+0x120/0x6e0
[   62.611096][ T6157]        kernel_init_freeable+0x5c2/0x900
[   62.613382][ T6157]        kernel_init+0x1c/0x2b0
[   62.615350][ T6157]        ret_from_fork+0x5d7/0x6f0
[   62.617431][ T6157]        ret_from_fork_asm+0x1a/0x30
[   62.619578][ T6157] 
[   62.619578][ T6157] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}:
[   62.622657][ T6157]        __lock_acquire+0x126f/0x1c90
[   62.624817][ T6157]        lock_acquire+0x179/0x350
[   62.626865][ T6157]        __mutex_lock+0x199/0xb90
[   62.628880][ T6157]        pcpu_alloc_noprof+0xb4c/0x1470
[   62.631041][ T6157]        sbitmap_init_node+0x2fd/0x770
[   62.633200][ T6157]        sbitmap_queue_init_node+0x41/0x560
[   62.635560][ T6157]        blk_mq_init_tags+0x12d/0x2b0
[   62.637730][ T6157]        blk_mq_alloc_map_and_rqs+0x237/0xf60
[   62.640163][ T6157]        __blk_mq_alloc_map_and_rqs+0x128/0x1f0
[   62.642674][ T6157]        blk_mq_update_nr_hw_queues+0x4ab/0xcb0
[   62.645185][ T6157]        nbd_start_device+0x172/0xcd0
[   62.647350][ T6157]        nbd_ioctl+0x219/0xda0
[   62.649300][ T6157]        blkdev_ioctl+0x277/0x6d0
[   62.651334][ T6157]        __x64_sys_ioctl+0x18e/0x210
[   62.653469][ T6157]        do_syscall_64+0xcd/0x4c0
[   62.655499][ T6157]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.658068][ T6157] 
[   62.658068][ T6157] other info that might help us debug this:
[   62.658068][ T6157] 
[   62.662082][ T6157] Chain exists of:
[   62.662082][ T6157]   pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#50
[   62.662082][ T6157] 
[   62.667372][ T6157]  Possible unsafe locking scenario:
[   62.667372][ T6157] 
[   62.670256][ T6157]        CPU0                    CPU1
[   62.672375][ T6157]        ----                    ----
[   62.674514][ T6157]   lock(&q->q_usage_counter(io)#50);
[   62.676580][ T6157]                                lock(fs_reclaim);
[   62.679152][ T6157]                                lock(&q->q_usage_counter(io)#50);
[   62.682221][ T6157]   lock(pcpu_alloc_mutex);
[   62.684038][ T6157] 
[   62.684038][ T6157]  *** DEADLOCK ***
[   62.684038][ T6157] 
[   62.687119][ T6157] 5 locks held by syz.1.44/6157:
[   62.689077][ T6157]  #0: ffff888027c72230 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_ioctl+0x150/0xda0
[   62.692639][ T6157]  #1: ffff888027c72188 (&set->update_nr_hwq_lock){++++}-{4:4}, at: blk_mq_update_nr_hw_queues+0x32/0xcb0
[   62.696999][ T6157]  #2: ffff888027c720d8 (&set->tag_list_lock){+.+.}-{4:4}, at: blk_mq_update_nr_hw_queues+0x45/0xcb0
[   62.701089][ T6157]  #3: ffff888027c800a8 (&q->q_usage_counter(io)#50){++++}-{0:0}, at: blk_mq_update_nr_hw_queues+0x275/0xcb0
[   62.705567][ T6157]  #4: ffff888027c800e0 (&q->q_usage_counter(queue)#2){+.+.}-{0:0}, at: blk_mq_update_nr_hw_queues+0x275/0xcb0
[   62.706086][   T34] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   62.710065][ T6157] 
[   62.710065][ T6157] stack backtrace:
[   62.710079][ T6157] CPU: 2 UID: 0 PID: 6157 Comm: syz.1.44 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[   62.710102][ T6157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.710112][ T6157] Call Trace:
[   62.710119][ T6157]  <TASK>
[   62.710126][ T6157]  dump_stack_lvl+0x116/0x1f0
[   62.710159][ T6157]  print_circular_bug+0x275/0x350
[   62.710188][ T6157]  check_noncircular+0x14c/0x170
[   62.710216][ T6157]  __lock_acquire+0x126f/0x1c90
[   62.710246][ T6157]  lock_acquire+0x179/0x350
[   62.710272][ T6157]  ? pcpu_alloc_noprof+0xb4c/0x1470
[   62.710295][ T6157]  ? __pfx___might_resched+0x10/0x10
[   62.710317][ T6157]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   62.710341][ T6157]  __mutex_lock+0x199/0xb90
[   62.710366][ T6157]  ? pcpu_alloc_noprof+0xb4c/0x1470
[   62.710386][ T6157]  ? pcpu_alloc_noprof+0xb4c/0x1470
[   62.710406][ T6157]  ? __pfx___mutex_lock+0x10/0x10
[   62.710430][ T6157]  ? kasan_save_track+0x14/0x30
[   62.710451][ T6157]  ? __kasan_kmalloc+0xaa/0xb0
[   62.710470][ T6157]  ? blk_mq_init_tags+0x87/0x2b0
[   62.710493][ T6157]  ? blk_mq_update_nr_hw_queues+0x4ab/0xcb0
[   62.710514][ T6157]  ? nbd_start_device+0x172/0xcd0
[   62.710542][ T6157]  ? pcpu_alloc_noprof+0xb4c/0x1470
[   62.710561][ T6157]  pcpu_alloc_noprof+0xb4c/0x1470
[   62.710585][ T6157]  sbitmap_init_node+0x2fd/0x770
[   62.710614][ T6157]  sbitmap_queue_init_node+0x41/0x560
[   62.710632][ T6157]  blk_mq_init_tags+0x12d/0x2b0
[   62.710656][ T6157]  blk_mq_alloc_map_and_rqs+0x237/0xf60
[   62.710677][ T6157]  ? lockdep_hardirqs_on+0x7c/0x110
[   62.710704][ T6157]  __blk_mq_alloc_map_and_rqs+0x128/0x1f0
[   62.710726][ T6157]  blk_mq_update_nr_hw_queues+0x4ab/0xcb0
[   62.710747][ T6157]  ? __pfx___mutex_lock+0x10/0x10
[   62.710775][ T6157]  nbd_start_device+0x172/0xcd0
[   62.710799][ T6157]  ? bpf_lsm_capable+0x9/0x10
[   62.710818][ T6157]  nbd_ioctl+0x219/0xda0
[   62.710841][ T6157]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[   62.710865][ T6157]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[   62.710890][ T6157]  ? __pfx_nbd_ioctl+0x10/0x10
[   62.710911][ T6157]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   62.710940][ T6157]  ? __pfx_nbd_ioctl+0x10/0x10
[   62.710963][ T6157]  blkdev_ioctl+0x277/0x6d0
[   62.710979][ T6157]  ? __pfx_blkdev_ioctl+0x10/0x10
[   62.710996][ T6157]  ? selinux_file_ioctl+0x180/0x270
[   62.711017][ T6157]  ? selinux_file_ioctl+0xb4/0x270
[   62.711041][ T6157]  ? __pfx_blkdev_ioctl+0x10/0x10
[   62.711058][ T6157]  __x64_sys_ioctl+0x18e/0x210
[   62.711078][ T6157]  do_syscall_64+0xcd/0x4c0
[   62.711104][ T6157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.711121][ T6157] RIP: 0033:0x7f79aed8e929
[   62.711133][ T6157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.711155][ T6157] RSP: 002b:00007f79acbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.711171][ T6157] RAX: ffffffffffffffda RBX: 00007f79aefb5fa0 RCX: 00007f79aed8e929
[   62.711181][ T6157] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003
[   62.711192][ T6157] RBP: 00007f79aee10b39 R08: 0000000000000000 R09: 0000000000000000
[   62.711202][ T6157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   62.711212][ T6157] R13: 0000000000000000 R14: 00007f79aefb5fa0 R15: 00007ffd393e1358
[   62.711229][ T6157]  </TASK>
[   62.985539][   T34] usb 5-1: Using ep0 maxpacket: 8
[   62.989255][   T34] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   62.993793][   T34] usb 5-1: config 0 has no interfaces?
[   62.997985][   T34] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[   63.000995][   T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   63.003601][   T34] usb 5-1: Product: syz
[   63.005391][   T34] usb 5-1: Manufacturer: syz
[   63.007432][   T34] usb 5-1: SerialNumber: syz
[   63.011071][   T34] usb 5-1: config 0 descriptor??
[   63.223779][ T6163] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   63.227251][ T6163] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   63.232632][  T835] usb 5-1: USB disconnect, device number 2
[   63.253369][   T63] block nbd1: Receive control failed (result -32)
[   63.254348][ T6157] block nbd1: shutting down sockets

VM DIAGNOSIS:
16:35:54  Registers:
info registers vcpu 0

CPU#0
RAX=00000000000711e4 RBX=0000000000000000 RCX=ffffffff8b800c19 RDX=ffffed100d486646
RSI=ffffffff8c157520 RDI=ffffffff8191fc31 RBP=fffffbfff1c52ef0 RSP=ffffffff8e207e08
R8 =0000000000000000 R9 =ffffed100d486645 R10=ffff88806a43322b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e297780 R14=ffffffff90a81050 R15=0000000000000000
RIP=ffffffff8b7ff77f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6754000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2f400ff8 CR3=0000000056f2f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff812c64b3 ffffffff812c64b3
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff812c64b3
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000091bf 0000000008000095 0000000000010955 00000000000009bf
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9500000000000000 b700000085000000 8553b5e700040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bf00000000080000 9500000000000109 5500000000000009 bf00000083000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000000373e4 RBX=0000000000000001 RCX=ffffffff8b800c19 RDX=ffffed100d4a6646
RSI=ffffffff8c157520 RDI=ffffffff8191fc31 RBP=ffffed1003bd2488 RSP=ffffc90000177df8
R8 =0000000000000000 R9 =ffffed100d4a6645 R10=ffff88806a53322b R11=0000000000000000
R12=0000000000000001 R13=ffff88801de92440 R14=ffffffff90a81050 R15=0000000000000000
RIP=ffffffff8b7ff77f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6854000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c280b46 CR3=0000000023b6f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000010000000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000003000000012 0004000000080024 0000000000280034
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000038 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0006026fa6000800 2086100020100006 006fa60e0000030b 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040002c003000400 02bc0300040002b8 0300040002b40300 040002b003000800
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 02a80300040002a4 0300020002a20300 020002a003018080 0800029803088080
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8080080002900300 0400028c0301cc04 0002880348080002 80030280040d8003
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d80040ea0030008 000e90030fffffff ffffff040e800300 0800208610002010
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 840006e403180400 06e003006c6e7436 706901ffffffffff fffffff10806d003
ZMM25=728fcdcc728fcdcc 728fcdcc728fcdcc 728fcdcc728fcdcc 728fcdcc728fcdcc 728fcdcc728fcdcc 728fcdcc728fcdcc 728fcdcc728fcdcc 728fcdcc728fcdcc
ZMM26=4f56756b4f56756b 4f56756b4f56756b 4f56756b4f56756b 4f56756b4f56756b 4f56756b4f56756b 4f56756b4f56756b 4f56756b4f56756b 4f56756b4f56756b
ZMM27=378f7f4b378f7f4b 378f7f4b378f7f4b 378f7f4b378f7f4b 378f7f4b378f7f4b 378f7f4b378f7f4b 378f7f4b378f7f4b 378f7f4b378f7f4b 378f7f4b378f7f4b
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=7d0100007d010000 7d0100007d010000 7d0100007d010000 7d0100007d010000 7d0100007d010000 7d0100007d010000 7d0100007d010000 7d0100007d010000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855b8d55 RDI=ffffffff9b0883a0 RBP=ffffffff9b088360 RSP=ffffc90004d6f198
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b088360 R15=ffffffff855b8cf0
RIP=ffffffff855b8d7f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f79acbf66c0 ffffffff 00c00000
GS =0000 ffff8880d6954000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b2f216ff8 CR3=0000000056eae000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffc06c2460 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8428c11c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000007c149 RBX=0000000000000003 RCX=ffffffff8b800c19 RDX=0000000000000000
RSI=ffffffff8de1993c RDI=ffffffff8c1575a0 RBP=ffffed1003c55000 RSP=ffffc90000197df8
R8 =0000000000000001 R9 =ffffed100d4e6645 R10=ffff88806a73322b R11=0000000000000001
R12=0000000000000003 R13=ffff88801e2a8000 R14=ffffffff90a81050 R15=0000000000000000
RIP=ffffffff8b7ff77f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a54000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa6479726e0 CR3=0000000052200000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000f981f000 Opmask01=000000000000003f Opmask02=000000003f07ffbf Opmask03=0000000000000000
Opmask04=00000000ffffefff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005611aded2650 00005611aded2650
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005611ade90f60
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe4617f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe4617f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000ff0000 ff00000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe461752c80
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe4616a742d 0000000000302e74 65676461672d7761 723d524556495244
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000042d95c574910 00000000000d1349 585a595c5a104a5c 4f00524556495244
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7361647c2a737369 63637c2a65686361 63627c2a6476787c 2a64767c2a64737c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005611ae0c9090 00005611ae0c9070 00005611ae0c8b70
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 29393030322c3948 43497d249d5db8d3 50642470ca62f104 536e262bfb41ce21
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f7f7f7ffffe7d7f 6f7b7f7effddfff7 7f7f377eff6fff7f 7b7f777ffb77fe3b
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000301e30 0000000000000021 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000c1e30 0000000000000021 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000