last executing test programs:

4.69396272s ago: executing program 2 (id=263):
syz_emit_ethernet(0x7e, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x0) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYRES16=0x0, @ANYRESDEC=0x0, @ANYRESHEX, @ANYRES16=0x0], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000340)='mmap_lock_acquire_returned\x00', r0, 0x0, 0x3}, 0x18) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async, rerun: 32)
r1 = getpid() (async, rerun: 32)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1d, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) (async, rerun: 32)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2) (async, rerun: 32)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xc, 0x0, 0x7ffc1ffb}]}) (async)
r7 = timerfd_create(0x0, 0x0)
timerfd_gettime(r7, &(0x7f00000001c0)) (async)
socket$inet6(0xa, 0x80002, 0x88)
socket$inet6_udplite(0xa, 0x2, 0x88)

4.529108522s ago: executing program 2 (id=264):
r0 = syz_open_dev$hiddev(&(0x7f0000000040), 0x2, 0x80400)
ioctl$HIDIOCGREPORT(r0, 0x400c4807, &(0x7f0000000080)={0x1, 0x3, 0x8})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x0, 0x0, 0x5})
sendmsg$NBD_CMD_RECONFIGURE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010026bd7000fddbdf2503"], 0x30}, 0x1, 0x0, 0x0, 0x4008800}, 0x24000054)
sendmsg$inet(r3, &(0x7f0000000300)={&(0x7f0000000080)={0x2, 0x4e22, @remote}, 0x10, &(0x7f00000002c0)=[{&(0x7f00000000c0)="10ddbfb2", 0x4}], 0x1}, 0x40080c4)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000280)={'wpan3\x00'})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="40000000b8035bd201f302a4b4bdd0da669479b4662f79e307091aad5245aa4a79561514b587acc1a57777754c9d6475bb200d0e884750e9e52ca241c6a5388e035fd1da122a0d82bc0406586ebe410e02031e4b9103b148cac189941f891329c67525c8f8d9651a3e4368a719dea407f93e8d56d520c063af3486283a9a7e3b3270b80c51fbacaef1a4f3a9d5f9aef17082e0aa8591d4cdf4a552e9b69481e121305e5eb7d9cd2d2de2f12a", @ANYRES16=r2, @ANYBLOB="0100fffffffffcdbdf254f00000008000300", @ANYRES32=r6, @ANYBLOB="24007a800c0003004ef8cb0000c94def140001001b4dc62c03e2e9ff182f9b05d6dddea6"], 0x40}}, 0x4000840)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, 0x50, 0xffffffffffffffff, 0xdbdf9000)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000060a0b0400000000000000000200fffe540004802800018007000100637400001c0002800800014000000002080002400000001605000300000000002800018007000100637400001c0002800800024000000011400000000c05000300010000000900010073797a30000000000900020073797a3200000000140000001100010000000000000000000500000a"], 0xa8}, 0x1, 0x0, 0x0, 0x200108c0}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
userfaultfd(0x80001)
syz_open_dev$MSR(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r8 = syz_open_dev$MSR(0x0, 0xeaf, 0x0)
read$msr(r8, &(0x7f0000044040)=""/102392, 0x18ff8)
write(0xffffffffffffffff, &(0x7f0000000600), 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x0)
lseek(r9, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000005c0), &(0x7f0000000600))

4.291433482s ago: executing program 2 (id=265):
socket$packet(0x11, 0x2, 0x300)
ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, &(0x7f00000000c0)={0x2})
ioctl$EVIOCGABS2F(0xffffffffffffffff, 0x8018456f, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x10000, @empty}, 0x1c)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r3, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_io_uring_setup(0x495, &(0x7f0000000400)={0x0, 0x2a39, 0x2000, 0xa, 0x34e, 0x0, r1}, &(0x7f00000001c0)=<r5=>0x0, &(0x7f0000000180)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x4, 0x0})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
fstatat64(0xffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x3100)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_io_uring_setup(0x16e, &(0x7f0000000b00)={0x0, 0xfffffffd, 0x10100, 0x0, 0x4}, &(0x7f0000001240)=<r9=>0x0, &(0x7f0000001340)=<r10=>0x0)
r11 = syz_open_dev$video4linux(&(0x7f0000000000), 0x7, 0x101080)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r11, 0xc0845657, &(0x7f00000000c0)={0x0, @reserved})
r12 = syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r12, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x2})
ioctl$vim2m_VIDIOC_STREAMOFF(r12, 0x40045612, &(0x7f0000000240)=0x1)
ioctl$vim2m_VIDIOC_ENUM_FMT(r12, 0xc0405602, &(0x7f0000000000)={0x2, 0x1, 0x1, "4a37f6c000190000000000000020000000000000000000000100", 0x31435641})
syz_io_uring_submit(r9, r10, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x102, 0x1})
io_uring_enter(r8, 0x567, 0x1e, 0x0, 0x0, 0x0)
r13 = syz_open_procfs(0x0, &(0x7f00000004c0)='task\x00')
fchdir(r13)

3.973153892s ago: executing program 3 (id=266):
socket$kcm(0x10, 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000500)=ANY=[], 0xfdef)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0x3}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x14, 0x34, 0x9, 0x0, 0x4000, {0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x4841}, 0x4000010)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff})
ioctl$CEC_TRANSMIT(r3, 0xc0386105, &(0x7f0000000240)={0x4, 0x8, 0x0, 0x8, 0x6, 0x81, "5e8f09766d78d63622ab1735595ffd42", 0xf7, 0xb, 0xfa, 0x3, 0x8, 0x5, 0x8})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5ca6bc000206010100000000000000000000000005000100280000000900020173797a30000000"], 0x5c}}, 0x20000000)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a1281)
ioctl$USBDEVFS_CLAIM_PORT(r4, 0x8008550e, &(0x7f0000000040))
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x8d0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000002}, 0x0, 0x0, 0x0, 0x1}}, 0xb8}}, 0x0)

3.84928855s ago: executing program 1 (id=267):
r0 = socket(0xa, 0x3, 0x3a)
semget(0x2, 0x3, 0x10)
sendmsg$OSF_MSG_REMOVE(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x268}, 0x1, 0x0, 0x0, 0x2000489d}, 0x8040)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000540)=0x280000000000000, 0x12)
ioctl$PPPIOCSMRU1(r2, 0x40047452, &(0x7f0000000340)=0x7)
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x10001, @mcast1}, 0x0, {[0x693]}}, 0x5c)
r3 = syz_io_uring_setup(0x20cd, &(0x7f0000000140)={0x0, 0x5186, 0x2000, 0x3, 0x352}, &(0x7f00000001c0), &(0x7f0000000200))
clock_gettime(0x0, &(0x7f0000000280)={<r4=>0x0, <r5=>0x0})
ppoll(&(0x7f0000000240)=[{r0, 0x1000}, {r0, 0xa1}, {r3, 0x1}], 0x3, &(0x7f00000002c0)={r4, r5+60000000}, &(0x7f0000000300)={[0x6, 0x10001]}, 0x8)

3.698469638s ago: executing program 3 (id=268):
openat$ppp(0xffffffffffffff9c, 0x0, 0x161042, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000280)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000080)={0x1d, r1, 0x0, {0x0, 0xf0, 0x2}, 0x1}, 0x18)
r2 = fcntl$dupfd(r0, 0x406, r0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x106, 0x3}}, 0x20)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7279, 0x0, 0x4, 0x18e}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r7=>0x0})
sendmsg$can_j1939(r6, &(0x7f0000000180)={&(0x7f00000000c0)={0x1d, r7, 0x2, {0x0, 0xfd2c7aa9401e9f74}, 0x2}, 0x18, &(0x7f0000000140)={&(0x7f00000003c0)="35651d69cc46f469aa3d23b5c9e6fa037a6161b906d50711c5c19d88cdeac2d5b0fc93e89485297c1a597283376f1c60b90f891c174a440c4084696388b9b67bd6020aa27beec3bae92c9db8443757969bb7fefd8f57ce95a0963631057642c5bf9dd7e338a73088e21ff3e885a5afcf800416dac34d9e999aafce4310a186dd8c9d1d4ef263d43a2eeda39240b807468f38a903f7b6f3adfaa4b64ff1fc81241cf06634474d78da6561136497fb8ef68292e0ab5136e72dbfe3296c1ca035f8593932500f9685b09f3ab1a1383bb8cbc0e55ce9535327c082658a9b571df7e3a265c78d3e08c8375fa54c74ae0409", 0xef}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
getpeername$packet(r2, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000300)=0x14)
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0)

2.998108633s ago: executing program 2 (id=270):
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000840), 0x20042, 0x0)
write$UHID_INPUT(r0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x8, 0x0, r1, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
io_uring_enter(r1, 0x47f6, 0x0, 0x2, 0x0, 0x0)
syz_io_uring_setup(0x3b, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000240), &(0x7f0000000100))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x48004, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r8, 0x405c5503, &(0x7f0000000280)={{0x5}, 'syz1\x00', 0x10})
ioctl$UI_DEV_CREATE(r8, 0x5501)
syz_open_dev$evdev(&(0x7f0000000340), 0xaa54, 0x0)
ioctl$UI_DEV_DESTROY(r8, 0x5502)
lseek(0xffffffffffffffff, 0x9, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1d00000004000000020000000000000001020000", @ANYRES32, @ANYBLOB='\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0100000002000000000000000000008cab29cdeb08f39fbc88464b578116b6ae6aa7296f304fd0b58c3cb7fdb02ee11dec9a40813eabe80b9dac64448974878f4d5c22765b8300"/83], 0x50)

2.817363982s ago: executing program 1 (id=271):
socket$packet(0x11, 0x2, 0x300)
ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, &(0x7f00000000c0)={0x2})
ioctl$EVIOCGABS2F(0xffffffffffffffff, 0x8018456f, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x10000, @empty}, 0x1c)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r3, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_io_uring_setup(0x495, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x7, 0x288}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x4, 0x0})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
fstatat64(0xffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x3100)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_io_uring_setup(0x16e, &(0x7f0000000b00)={0x0, 0xfffffffd, 0x10100, 0x0, 0x4}, &(0x7f0000001240)=<r9=>0x0, &(0x7f0000001340)=<r10=>0x0)
r11 = syz_open_dev$video4linux(&(0x7f0000000000), 0x7, 0x101080)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r11, 0xc0845657, &(0x7f00000000c0)={0x0, @reserved})
r12 = syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r12, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x2})
ioctl$vim2m_VIDIOC_STREAMOFF(r12, 0x40045612, &(0x7f0000000240)=0x1)
ioctl$vim2m_VIDIOC_ENUM_FMT(r12, 0xc0405602, &(0x7f0000000000)={0x2, 0x1, 0x1, "4a37f6c000190000000000000020000000000000000000000100", 0x31435641})
syz_io_uring_submit(r9, r10, &(0x7f0000000300)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x102, 0x1})
io_uring_enter(r8, 0x567, 0x1e, 0x0, 0x0, 0x0)
r13 = syz_open_procfs(0x0, &(0x7f00000004c0)='task\x00')
fchdir(r13)

2.343206672s ago: executing program 3 (id=274):
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffff9})
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000000000007110a400000000001f010000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x6, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffcf2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), r1)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000300)={&(0x7f0000000c00)=ANY=[@ANYRESDEC, @ANYRES16=r2, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x200088c4}, 0x24040010)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r4=>0x0})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001000)=ANY=[@ANYBLOB="b7020000910c0000bfa30000000000000703000000feffff7a0af0ff0d00000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001010404000009000000b7030000010000006a0a00fe000000008500000032000000b700000001000000950000000000000075cdc4b57b0c65752a3ad50000007ddd0000cb4500639100002000000000000000ff7f0000b52f17cee19d0001000000000000000000cb04fcbb0b9bafe3ba431351a58a885ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e84cef4a2ab938f65aac33c4d620de2c9b7dc10d7d313f9f57606b83b994fb484510bef2e4872f5c2fe6faaf75e5cc4051ade12f41deff6df6a936b4ec3827c739bb39aad16cc75fe369258673b5df11cc2afb53611cc32a790bc0b80e80eae8f5e64be2c9d2d29db3d36dd015c7bd3f15aa6aadbeab2a01685108e61aa00000000690e000000000000008b798b4f7458d1863cc67c4c6a06fa28e5216f601b19db1af1b5d356d0f062137d866d11be4ba3f0151fdbbd4e97d62ecc645e143a60f1c6edc7a65d073909826151e2b42bf0ed0c8cef3ba2a730a00c87c493db845b10e9468bda6f82881eb8c9cfa72b08eecc952a3fd2c46f3c1cde71a19d1a2982492a210e00d2bfea3b8d188df2eff8d56aaae7d32a2e183722537395019f02ec4b85f6aad7faca088de9b26797a8446b16c28d85f225992dbdd5bb01ba51508951c7a7d6ca0916c3a12912715649c2b1c7192a4251b59d378d0616a48c7957e122665c8b7e89eddfc3783f6c9129a7c5f8ee5f50579e2f838f7eb12f63be72a3d817b324d6e417b1c2cbfdcada0a16e31790e26cf19588a7e0496ee2782224cf30f810da86cf1a3204f4c9404f5d7321a4fefc4d1c9139ca4b65b99909950000006b42077ca60fdecb2717e21f8f187b1866108b32176066599783568628f0309c3a01716d3706e1fa89917e131f4034a8383e99c3568fd04201b37cd92ca6ebf94a2d8310f7032775cfd75652f87b039d5430b3c6643e9146d247714358d8b170c3b5cad11f72cd9d88e56b95fe9f3de5cfcfa5c1da8ba181580d9db035efe38834de171b64f4b4c1b242786dcc5679e3d0613cdf05b02d7ad4f3b8af27a696e9b8809c2d68fddfcbd451e81d37c11f95094b91fff61ab9e69780b133d1dbca5a78695131c34c855dd793f90ca3973a4bd5606151b3600373d2bbfb7b3638e713e7275af06107949ff5dffe24d3c448ae6e4646b346fe0a21eef1e55d0659eac930d00000000000ff52b98317c45417b900a47c1ae1103c09fc173c1cf28bf7ef7a61523c6b2dbb35f5ae29877bb8e1b3e257056c0d205d391ed7b2089a72a93885b9fc8430ff"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x14)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0x1f2f, 0xf, 0x3253, &(0x7f00000007c0)="9f44948721919580684010a486dd", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23)
r6 = syz_open_procfs(0x0, &(0x7f0000000180)='net/ip_mr_cache\x00')
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r7 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000700)={0xffffffffffffffff, 0xfffff78f, 0x8}, 0xc)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r6, 0x89f2, &(0x7f0000000600)={'erspan0\x00', &(0x7f0000000800)={'erspan0\x00', <r8=>0x0, 0x7, 0x700, 0x8, 0x4, {{0x5, 0x4, 0x3, 0x1, 0x14, 0x66, 0x0, 0x9, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}}}})
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000ac0)={r6, 0x20, &(0x7f0000000a80)={&(0x7f0000000940)=""/101, 0x65, <r9=>0x0, &(0x7f00000009c0)=""/155, 0x9b}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x13, 0x20, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000002000000000000001d00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000004000055090100000000009500000000000000048af80959ffffff8520000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffe2b7020000080000295f66478af0d61168a1391c15fc99eb00b70300000000000085000000060000000ca10001", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4096, 0x41000, 0x4c, '\x00', r8, @fallback=0x6, r6, 0x8, 0x0, 0x0, 0x10, &(0x7f00000006c0)={0x1, 0x4, 0x0, 0x8}, 0x10, r9, r6, 0x0, &(0x7f0000000b00)=[r1, r6, r6, r7, r7, r6, r7, r5], 0x0, 0x10, 0x800, @void, @value}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r10=>r0, {0x7}}, './file0\x00'})
r11 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r11, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r11, &(0x7f0000006380)={0x2020, 0x0, <r12=>0x0}, 0x2020)
write$FUSE_INIT(r11, &(0x7f0000000100)={0x50, 0x0, r12, {0x7, 0x1f, 0x0, 0x8000}}, 0x50)
syz_fuse_handle_req(r11, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r13 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r14=>0x0)
io_submit(r14, 0x12, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r13, &(0x7f00000000c0)='!', 0xb7f40, 0x0, 0x0, 0x2000000}])
dup3(r13, r11, 0x0)
r15 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x149282, 0x10)
write$cgroup_int(r15, &(0x7f0000000040)=0x902, 0x12)
r16 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x7fff, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x13, 0x12, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8}, {}, {}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x1}, @call={0x85, 0x0, 0x0, 0x54}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000100)='syzkaller\x00', 0xffffffff, 0xa4, &(0x7f0000000240)=""/164, 0x40f00, 0x24, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x1, 0xe, 0xbb, 0x579}, 0x10, r9, r0, 0x7, &(0x7f0000000480)=[r10, r13, 0x1, r15, r16], &(0x7f00000004c0)=[{0x4, 0x5, 0xa, 0x6}, {0x4, 0x5, 0x9, 0x9}, {0x0, 0x2, 0x2, 0x9}, {0x0, 0x5, 0x6, 0x5}, {0x4, 0x2, 0x6, 0x3}, {0x3, 0x3, 0x8, 0xc}, {0x4, 0x5, 0x7}], 0x10, 0x200, @void, @value}, 0x94)

2.029169136s ago: executing program 3 (id=276):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@nat={'nat\x00', 0x2, 0x5, 0x5c8, 0x348, 0x258, 0xffffffff, 0x438, 0x348, 0x550, 0x550, 0xffffffff, 0x550, 0x550, 0x5, 0x0, {[{{@ipv6={@mcast2, @dev, [], [], 'pimreg0\x00', 'veth0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @dev, @remote, @mcast2, @private2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2, @local, @private1, @dev, @private1, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2]}}]}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0x0, @ipv6=@loopback, @ipv6=@private0}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @broadcast}, @dev, [], [], 'pim6reg1\x00', 'lo\x00'}, 0x0, 0xa8, 0xf0}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @private}, @ipv4=@local, @port, @icmp_id}}}, {{@ipv6={@dev, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, [], [], 'pim6reg\x00', 'erspan0\x00'}, 0x0, 0xa8, 0xf0}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0x0, @ipv6=@private0, @ipv4=@dev, @icmp_id}}}, {{@ipv6={@dev, @empty, [], [], 'pimreg1\x00', 'veth0_to_hsr\x00'}, 0x0, 0xa8, 0xf0}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x0, @ipv6=@loopback, @ipv4=@loopback, @icmp_id, @gre_key}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x628)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x4e20, 0x1, @private0, 0x5}]}, &(0x7f0000000240)=0xc)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000100)={0xfff, 0x0, 0x1, 0x60cc, r1}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000060a0b0400000000000000000200000054000480500001800a000100696e6e657200000040000280080002"], 0xa8}}, 0x0)
iopl(0x3)
map_shadow_stack(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x4, 0xf}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_TARGET={0x8, 0x1, 0xa000}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x404c810}, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYRESDEC=r3], 0x270}, 0x1, 0x0, 0x0, 0x48095}, 0x4)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/diskstats\x00', 0x0, 0x0)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r7, r6, 0x0, 0x3fffff)
r8 = socket(0x2b, 0x80801, 0x1)
setsockopt$EBT_SO_SET_COUNTERS(r8, 0x0, 0x81, &(0x7f0000000240)={'filter\x00', 0x0, 0x0, 0x0, [0x3, 0x6, 0x101, 0x8, 0x7, 0x1ff], 0x1, 0x0, 0x0, [{}]}, 0x60)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x12, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x6}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r9 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r9, 0x1, 0x19, &(0x7f0000000040)='bridge_slave_0\x00', 0x10)
connect$inet(r9, &(0x7f0000000540)={0x2, 0x2, @multicast2}, 0x10)
sendmmsg$inet(r9, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

2.02886437s ago: executing program 0 (id=277):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000006c0), 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000700)={{0x0, 0x4}, {0xf}, 0xbf, 0x4, 0x1})

1.808030221s ago: executing program 0 (id=278):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r1 = gettid()
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000000280)=0x3, 0x4)
mprotect(&(0x7f00000df000/0x3000)=nil, 0x3000, 0x380000c)
sendto$inet(r2, &(0x7f0000000040)="0400", 0xffec, 0x0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r3, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r4, 0x4020}], 0x1, 0xffffffffffbffff8)
dup2(r3, r4)
fcntl$setown(r4, 0x8, r1)
tkill(r1, 0x13)
syz_emit_ethernet(0x76, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd609fbbb000006c00fc0100eba2dd23000000000000000000fe8000000000000000000000000000aa"], 0x0)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080))
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x7})
ptrace(0x11, r5)
keyctl$get_persistent(0x16, 0xffffffffffffffff, r0)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000006c0), 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r6, 0xc0505350, &(0x7f0000000700)={{0x0, 0x4}, {0xf}, 0x0, 0x4, 0x1})
r7 = accept4$rose(0xffffffffffffffff, &(0x7f00000002c0)=@short={0xb, @dev, @remote, 0x1, @default}, &(0x7f0000000080)=0x1c, 0x0)
bind$rose(r7, &(0x7f00000000c0)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, 0x1, @null}, 0x1c)
bind$rose(r7, &(0x7f00000001c0)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast]}, 0x40)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)

1.581017653s ago: executing program 1 (id=279):
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2dec, 0x0, 0x0, 0x0, 0x0)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa05, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x1a103e43)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r0, 0x0, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0)=0x6)
read$dsp(r1, &(0x7f00000011c0)=""/4117, 0x200021d5)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000000)=ANY=[@ANYRESHEX=0x0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)

1.535457034s ago: executing program 0 (id=280):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r2, @ANYBLOB="0a001800030303030303000010005a"], 0x38}}, 0x0)

1.482050135s ago: executing program 0 (id=281):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010"], 0x68}}, 0x40000)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0xfe, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000100001002abd700001dcdf2500000000", @ANYRES32=0x0, @ANYBLOB="a009000000000000140003006e657464657673696d3000000000000004001400200016801c00018018000c"], 0x58}, 0x1, 0x0, 0x0, 0x24040854}, 0x40000)

1.33984433s ago: executing program 2 (id=282):
r0 = open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000040)='./bus\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000010000000000210002000000", @ANYRES32=r0, @ANYBLOB="0400000000000000100002000000000020"], 0x2c, 0x3)
getxattr(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000380)=@known='system.posix_acl_access\x00', 0x0, 0x0) (async)
getxattr(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000380)=@known='system.posix_acl_access\x00', 0x0, 0x0)
r1 = getegid()
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, <r3=>0x0}, &(0x7f0000000280)=0x5)
setuid(r3) (async)
setuid(r3)
lstat(&(0x7f0000000100)='./bus\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
fstat(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
statx(r0, &(0x7f0000000240)='./file0\x00', 0x2000, 0x800, &(0x7f00000003c0)) (async)
statx(r0, &(0x7f0000000240)='./file0\x00', 0x2000, 0x800, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
mount$tmpfs(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080), 0x389030, &(0x7f0000000500)={[{@gid={'gid', 0x3d, r1}}], [{@seclabel}, {@fowner_eq={'fowner', 0x3d, r3}}, {@euid_lt={'euid<', r4}}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@euid_eq={'euid', 0x3d, r5}}, {@obj_type={'obj_type', 0x3d, 'system.posix_acl_access\x00'}}, {@fowner_eq={'fowner', 0x3d, 0xee00}}, {@fowner_gt={'fowner>', r6}}]})

1.339499668s ago: executing program 0 (id=283):
timer_create(0x0, &(0x7f0000000140)={0x0, 0x11}, &(0x7f0000000000))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000907000/0x1000)=nil, 0x1000, 0xb)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r3, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x80fe, @empty}, 0x1c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f00000007c0), 0x2, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@getchain={0x23, 0x66, 0xfcd66a900070b359}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r4, 0xc10c5541, 0x0)

1.175528384s ago: executing program 2 (id=284):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, 0x0, &(0x7f0000000180))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newchain={0x2c, 0x64, 0x400, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xe, 0xf}, {0x8, 0x5}, {0xfff3, 0x5}}, [@TCA_CHAIN={0x8, 0xb, 0xffffff47}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='cgroup\x00', 0x10008, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r8 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
listen(r8, 0x100000)
listen(r8, 0x8)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
recvmsg(r6, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x20)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000001800)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001500010300800000000000000c000000"], 0x14}}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)

1.087896115s ago: executing program 3 (id=285):
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff002, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x10, &(0x7f00000000c0)={0x77359400})
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
setuid(0xee01)
ioctl$KDSETMODE(r0, 0x4b3a, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x58, 0x10, 0xf11, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1b, 0x1f}}, @IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x58}}, 0x0)

875.342093ms ago: executing program 3 (id=286):
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x2}}, './file0\x00'})
syz_io_uring_setup(0xa42, &(0x7f0000000140)={0x0, 0x5ebf, 0x1000, 0x0, 0xdc, 0x0, r0}, &(0x7f00000001c0), &(0x7f0000000200))
socket$nl_route(0x10, 0x3, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socket(0x1d, 0x6, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000100)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
mount$nfs4(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6673633d8f"])
setsockopt$SO_BINDTODEVICE_wg(r4, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r4, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
unshare(0x40020000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
sendmsg$nl_generic(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000002c00010324bd7002f9dbdf"], 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x40)

759.655644ms ago: executing program 1 (id=287):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000002c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x47)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r1, 0xe0, &(0x7f0000000480)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
syz_emit_ethernet(0x7a, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6002173600442b00fc0206000000000000000000000000010420880b0000000000000800000086"], 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x40004010)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r2}, 0x4)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={<r5=>0x0, 0x1c, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @dev, 0x7}]}, &(0x7f0000000380)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000004c0)={r5, @in={{0x2, 0x0, @empty}}, 0x40, 0x2, 0x800, 0x0, 0x414d6714bf78e135, 0x8}, 0x9c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x6, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000700000095000000000000006100000600000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$phonet_pipe(0x23, 0x5, 0x2)

527.714254ms ago: executing program 1 (id=288):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
inotify_init1(0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
pipe2(&(0x7f0000000140)={<r0=>0xffffffffffffffff}, 0x80800)
r1 = syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0xfad6, 0x0, 0x0, 0x80}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r0, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r1, 0x47f5, 0x3d00, 0x0, 0x0, 0x0)

193.500048ms ago: executing program 1 (id=289):
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000200)={0x0, 0x0})
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0x40086602, &(0x7f0000000080)={@desc={0xffff8000, 0x0, @desc2}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
cachestat(r0, &(0x7f00000000c0)={0x9, 0xfffffffffffff000}, &(0x7f0000000280), 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000000)=0x4, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007ed, &(0x7f0000008400)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000002c00)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000008100)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56561, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x8}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_FLOW_MODE={0x8, 0x5, 0x5}]}}]}, 0x3c}}, 0x0)
sendmsg$inet(r3, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000003c0)="a980b2a0cb0809541841ee4e1262808a24fc8f1c27d5e4506f13af5c6d63172360b6baad9d0c3df046f4f5f0adc0308e3ef659787d0489cf1b2965169fccccd319634be2722fd699c8ed", 0x4a}, {&(0x7f0000000440)="b4462ead4cd93f40db60bf447a1a6bdf72e253d86ae256e9910dcbfb8dd7edbb6b8ae117154b30ab1c7fae42a9d398ee41d0f486ad54dc3832847d201f9a55131f9f76f2e00cf1105b10a47921f04087cb12b3d49446bcc2ec3564a6376c10f73cc539fbb8a0dd111d0c0f6ed38796250527a6e59c960b5b1219eb41a8248a4d56a5f4e20f248aa6c383ad528e822413ceeb4a5e5c3e8268662e94b56b9fd93a4175c7d9fdce4609faa21aa9f63caf1130269b9445386e4f473a0e6feb415ccf9919147f8c9f16c8be580a2363a0f66fcfac0e4311c8db2cf1f3987e1d02dfb97b", 0xe1}, {&(0x7f00000011c0)="31e9729688285f4018ce30dc2d881a1cbeec32df88222624f7e69b5fa07a268bb7e9f55d14f43e3025bdfa4272db1829b42ea3bc327fbb265f01ac577f41c9861788f465d48c5d7b5d5a0fdcfaf45f62b3fb982419975bc83040349348d28b7acd1a2409baf372d8e38f8ae7dd5facac8fb12ce4f91a86457b919209c5e72be67b65d9e0199c1ed976fd1bcfc5be7e62cc93b702095f9f8ac8682f7b08656a743268698eb8343e38ffa82991918635925ffe248f48a5d16b668879d8849d0500c01790c9bd0cbdcd930d37ad8da2a7d18ee6eab68e99c13e06df4f0fd1d7b192f705395d09021954d688f8079b8fb0d9fe55294d144ee8a94bec3598fae1a20ea10d11f5c9abd27e36a3e952303f7c521764854547f8c0947c6140e413aca20fb890a3c1a9f0757f3cebd13bd6eb23a63d57b4fd66680c801f74cf5cc3fcff15b9d05579a183efcfd6bc6f0f6fa3a17f41c52600a2c5", 0x156}], 0x3}, 0x88d4)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)

0s ago: executing program 0 (id=290):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x4, 0x0, 0x1, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x6, 0x7]})
ioctl$LOOP_CHANGE_FD(r0, 0x1260, r0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:21703' (ED25519) to the list of known hosts.
syzkaller login: [   89.775079][ T5944] cgroup: Unknown subsys name 'net'
[   89.929973][ T5944] cgroup: Unknown subsys name 'cpuset'
[   89.938412][ T5944] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   92.153742][ T5944] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  103.050167][ T5965] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  103.061707][ T5975] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  103.064712][ T5975] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  103.068215][ T5975] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  103.099275][ T5975] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  103.103084][ T5975] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  103.106276][ T5971] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  103.112577][ T5975] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  103.113450][ T5972] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  103.114814][ T5972] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  103.115254][ T5972] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  103.115941][ T5972] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  103.116360][ T5972] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  103.133058][ T5969] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  103.137681][ T5969] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  103.138249][ T5969] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  103.138531][ T5969] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  103.139335][ T5969] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.161044][ T5969] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  103.205868][ T5969] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  103.911587][ T5959] chnl_net:caif_netlink_parms(): no params data found
[  104.097359][ T5961] chnl_net:caif_netlink_parms(): no params data found
[  104.143515][ T5973] chnl_net:caif_netlink_parms(): no params data found
[  104.353220][ T5959] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.358650][ T5959] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.367226][ T5959] bridge_slave_0: entered allmulticast mode
[  104.378786][ T5959] bridge_slave_0: entered promiscuous mode
[  104.411384][ T5959] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.415664][ T5959] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.419132][ T5959] bridge_slave_1: entered allmulticast mode
[  104.428275][ T5959] bridge_slave_1: entered promiscuous mode
[  104.599662][ T5960] chnl_net:caif_netlink_parms(): no params data found
[  104.807068][ T5959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.816641][ T5959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.920852][ T5961] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.932901][ T5961] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.941007][ T5961] bridge_slave_0: entered allmulticast mode
[  104.948813][ T5961] bridge_slave_0: entered promiscuous mode
[  105.125938][ T5961] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.128582][ T5961] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.132056][ T5961] bridge_slave_1: entered allmulticast mode
[  105.144133][ T5961] bridge_slave_1: entered promiscuous mode
[  105.192952][   T69] Bluetooth: hci1: command tx timeout
[  105.194446][ T5962] Bluetooth: hci0: command tx timeout
[  105.271672][ T5962] Bluetooth: hci2: command tx timeout
[  105.273239][   T69] Bluetooth: hci3: command tx timeout
[  105.385594][ T5959] team0: Port device team_slave_0 added
[  105.463806][ T5960] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.466363][ T5960] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.468889][ T5960] bridge_slave_0: entered allmulticast mode
[  105.477601][ T5960] bridge_slave_0: entered promiscuous mode
[  105.482510][ T5960] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.484985][ T5960] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.496274][ T5960] bridge_slave_1: entered allmulticast mode
[  105.500067][ T5960] bridge_slave_1: entered promiscuous mode
[  105.517414][ T5973] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.520035][ T5973] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.522921][ T5973] bridge_slave_0: entered allmulticast mode
[  105.526688][ T5973] bridge_slave_0: entered promiscuous mode
[  105.532058][ T5973] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.535035][ T5973] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.539118][ T5973] bridge_slave_1: entered allmulticast mode
[  105.559939][ T5973] bridge_slave_1: entered promiscuous mode
[  105.572976][ T5959] team0: Port device team_slave_1 added
[  105.947048][ T5961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.953194][ T5960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.961209][ T5960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.984467][ T5973] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  106.006804][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.009830][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.037801][ T5959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.056774][ T5961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.209865][ T5973] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.214161][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.216505][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.227941][ T5959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.448142][ T5960] team0: Port device team_slave_0 added
[  106.496385][ T5961] team0: Port device team_slave_0 added
[  106.511988][ T5973] team0: Port device team_slave_0 added
[  106.516998][ T5960] team0: Port device team_slave_1 added
[  106.633011][ T5961] team0: Port device team_slave_1 added
[  106.723690][ T5973] team0: Port device team_slave_1 added
[  106.801951][ T5959] hsr_slave_0: entered promiscuous mode
[  106.810480][ T5959] hsr_slave_1: entered promiscuous mode
[  106.964644][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.969177][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.986920][ T5961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.020989][ T5960] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.023487][ T5960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.036277][ T5960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.049220][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.051924][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.063338][ T5961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.156795][ T5973] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.160570][ T5973] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.177401][ T5973] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.190425][ T5960] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.199997][ T5960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.240408][ T5960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.273079][   T69] Bluetooth: hci0: command tx timeout
[  107.282794][   T69] Bluetooth: hci1: command tx timeout
[  107.298161][ T5973] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.303011][ T5973] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.312434][ T5973] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.351675][   T69] Bluetooth: hci2: command tx timeout
[  107.362737][ T5962] Bluetooth: hci3: command tx timeout
[  107.565701][ T5960] hsr_slave_0: entered promiscuous mode
[  107.573019][ T5960] hsr_slave_1: entered promiscuous mode
[  107.576061][ T5960] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  107.580747][ T5960] Cannot create hsr debugfs directory
[  107.619463][ T5961] hsr_slave_0: entered promiscuous mode
[  107.623234][ T5961] hsr_slave_1: entered promiscuous mode
[  107.632163][ T5961] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  107.634874][ T5961] Cannot create hsr debugfs directory
[  107.833263][  T446] cfg80211: failed to load regulatory.db
[  107.838731][ T5973] hsr_slave_0: entered promiscuous mode
[  107.858098][ T5973] hsr_slave_1: entered promiscuous mode
[  107.868324][ T5973] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  107.882921][ T5973] Cannot create hsr debugfs directory
[  108.711570][ T5959] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  108.729946][ T5959] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  108.770916][ T5959] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  108.789019][ T5959] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  108.865003][ T5961] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  108.875846][ T5961] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  108.982911][ T5961] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  108.995057][ T5961] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  109.006114][ T5960] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  109.027364][ T5960] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  109.034450][ T5960] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  109.040749][ T5960] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  109.196733][ T5973] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  109.232139][ T5973] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  109.247903][ T5973] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  109.289364][ T5973] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  109.356099][ T5962] Bluetooth: hci1: command tx timeout
[  109.363055][   T69] Bluetooth: hci0: command tx timeout
[  109.420557][ T5961] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.441516][   T69] Bluetooth: hci2: command tx timeout
[  109.441563][ T5962] Bluetooth: hci3: command tx timeout
[  109.452251][ T5960] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.481099][ T5961] 8021q: adding VLAN 0 to HW filter on device team0
[  109.565313][ T5960] 8021q: adding VLAN 0 to HW filter on device team0
[  109.610181][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.613549][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.630994][ T5959] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.671124][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.679560][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.703657][ T5959] 8021q: adding VLAN 0 to HW filter on device team0
[  109.743914][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.748636][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.766586][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.773297][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.815004][ T5973] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.828258][ T5973] 8021q: adding VLAN 0 to HW filter on device team0
[  109.834792][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.837536][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.844848][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.847530][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.886404][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.889090][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  110.005010][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.013893][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state
[  110.237078][ T5959] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.263623][ T5961] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.361010][ T5961] veth0_vlan: entered promiscuous mode
[  110.410658][ T5959] veth0_vlan: entered promiscuous mode
[  110.422689][ T5961] veth1_vlan: entered promiscuous mode
[  110.439551][ T5959] veth1_vlan: entered promiscuous mode
[  110.497888][ T5973] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.538361][ T5960] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.587792][ T5961] veth0_macvtap: entered promiscuous mode
[  110.607435][ T5959] veth0_macvtap: entered promiscuous mode
[  110.678403][ T5961] veth1_macvtap: entered promiscuous mode
[  110.698394][ T5959] veth1_macvtap: entered promiscuous mode
[  110.722089][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.729257][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.784528][ T5961] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.788621][ T5961] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.794283][ T5961] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.809499][ T5961] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.835739][ T5960] veth0_vlan: entered promiscuous mode
[  110.849393][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  110.885389][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  110.891582][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.977270][ T5973] veth0_vlan: entered promiscuous mode
[  110.987625][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  110.992972][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.003228][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.050849][ T5960] veth1_vlan: entered promiscuous mode
[  111.056395][ T5959] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.060236][ T5959] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.075439][ T5959] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.079679][ T5959] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.088315][ T5973] veth1_vlan: entered promiscuous mode
[  111.203051][ T5973] veth0_macvtap: entered promiscuous mode
[  111.276733][ T5973] veth1_macvtap: entered promiscuous mode
[  111.311730][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.316811][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.355852][ T5960] veth0_macvtap: entered promiscuous mode
[  111.367364][ T5960] veth1_macvtap: entered promiscuous mode
[  111.375282][ T1161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.380329][ T1161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.385205][ T5973] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  111.396615][ T5973] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.401857][ T5973] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  111.416335][ T5973] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.432355][ T5962] Bluetooth: hci1: command tx timeout
[  111.435758][ T5973] batman_adv: batadv0: Interface activated: batadv_slave_0
[  111.441605][ T5962] Bluetooth: hci0: command tx timeout
[  111.481202][ T5960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  111.504066][ T5960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.518695][ T5962] Bluetooth: hci2: command tx timeout
[  111.523290][ T5962] Bluetooth: hci3: command tx timeout
[  111.527276][ T5960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  111.534503][ T5960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.555166][ T5960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  111.560152][ T5960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.579201][ T5960] batman_adv: batadv0: Interface activated: batadv_slave_0
[  111.625046][ T5960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.630336][ T5960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.641225][ T5960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.657957][ T5960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.668118][ T5960] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.675461][ T5973] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.679848][ T5973] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.701192][ T5973] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.709385][ T5973] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.719525][ T5973] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  111.729222][ T5973] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  111.735671][ T5973] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.748236][ T1161] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.752379][ T1161] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.777583][ T5960] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.784698][ T5960] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.790261][ T5960] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.800400][ T5960] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.822431][ T5973] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.840279][ T5973] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.847507][ T5973] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.869423][ T5973] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.905875][ T1059] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.910850][ T1059] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.156083][ T5961] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  112.264210][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.284152][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.288123][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.300616][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.353631][   T85] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.356302][   T85] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.377184][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.379955][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.506477][ T6029] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3'.
[  113.079284][ T6041] kernel profiling enabled (shift: 7)
[  113.401242][ T6044] syz.0.6: vmalloc error: size 1847640064, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  113.412866][ T6044] CPU: 2 UID: 0 PID: 6044 Comm: syz.0.6 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) 
[  113.412887][ T6044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.412896][ T6044] Call Trace:
[  113.412902][ T6044]  <TASK>
[  113.412908][ T6044]  dump_stack_lvl+0x16c/0x1f0
[  113.412933][ T6044]  warn_alloc+0x248/0x3a0
[  113.412957][ T6044]  ? __pfx_warn_alloc+0x10/0x10
[  113.412977][ T6044]  ? stack_depot_save_flags+0x3e6/0xa50
[  113.413001][ T6044]  ? kasan_save_stack+0x42/0x60
[  113.413019][ T6044]  ? kasan_save_stack+0x33/0x60
[  113.413037][ T6044]  ? kasan_save_track+0x14/0x30
[  113.413054][ T6044]  ? __kasan_kmalloc+0xaa/0xb0
[  113.413070][ T6044]  ? vb2_vmalloc_alloc+0xf9/0x3f0
[  113.413085][ T6044]  ? vb2_core_create_bufs+0x559/0xab0
[  113.413099][ T6044]  ? vb2_create_bufs+0x5e8/0x840
[  113.413110][ T6044]  ? vb2_ioctl_create_bufs+0x244/0x3e0
[  113.413127][ T6044]  __vmalloc_node_range_noprof+0x10ea/0x1540
[  113.413151][ T6044]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  113.413171][ T6044]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  113.413193][ T6044]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  113.413209][ T6044]  vmalloc_user_noprof+0x6b/0x90
[  113.413225][ T6044]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  113.413240][ T6044]  vb2_vmalloc_alloc+0x135/0x3f0
[  113.413257][ T6044]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  113.413273][ T6044]  __vb2_queue_alloc+0x8c6/0x1280
[  113.413298][ T6044]  vb2_core_create_bufs+0x559/0xab0
[  113.413316][ T6044]  ? __pfx_vb2_core_create_bufs+0x10/0x10
[  113.413340][ T6044]  vb2_create_bufs+0x5e8/0x840
[  113.413356][ T6044]  ? __pfx_vb2_create_bufs+0x10/0x10
[  113.413372][ T6044]  ? __video_do_ioctl+0x4a4/0xfc0
[  113.413394][ T6044]  vb2_ioctl_create_bufs+0x244/0x3e0
[  113.413407][ T6044]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.413423][ T6044]  vidioc_create_bufs+0x7d/0xf0
[  113.413438][ T6044]  v4l_create_bufs+0x156/0x270
[  113.413458][ T6044]  __video_do_ioctl+0xb3d/0xfc0
[  113.413481][ T6044]  ? __pfx___video_do_ioctl+0x10/0x10
[  113.413500][ T6044]  ? __kmalloc_noprof+0x242/0x510
[  113.413524][ T6044]  video_usercopy+0x4cd/0x1720
[  113.413537][ T6044]  ? __pfx___video_do_ioctl+0x10/0x10
[  113.413556][ T6044]  ? __pfx_video_usercopy+0x10/0x10
[  113.413575][ T6044]  ? hook_file_ioctl_common+0x145/0x410
[  113.413594][ T6044]  v4l2_ioctl+0x1ba/0x250
[  113.413615][ T6044]  v4l2_compat_ioctl32+0x214/0x2c0
[  113.413633][ T6044]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  113.413650][ T6044]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  113.413669][ T6044]  __do_fast_syscall_32+0x73/0x120
[  113.413689][ T6044]  do_fast_syscall_32+0x32/0x80
[  113.413708][ T6044]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.413724][ T6044] RIP: 0023:0xf746e579
[  113.413735][ T6044] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  113.413747][ T6044] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  113.413760][ T6044] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c0f8565c
[  113.413768][ T6044] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  113.413779][ T6044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.413787][ T6044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.413795][ T6044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.413813][ T6044]  </TASK>
[  113.413817][ T6044] Mem-Info:
[  113.652463][ T6044] active_anon:12842 inactive_anon:0 isolated_anon:0
[  113.652463][ T6044]  active_file:1075 inactive_file:38406 isolated_file:0
[  113.652463][ T6044]  unevictable:1768 dirty:131 writeback:0
[  113.652463][ T6044]  slab_reclaimable:9583 slab_unreclaimable:53218
[  113.652463][ T6044]  mapped:31571 shmem:9511 pagetables:756
[  113.652463][ T6044]  sec_pagetables:296 bounce:0
[  113.652463][ T6044]  kernel_misc_reclaimable:0
[  113.652463][ T6044]  free:59117 free_pcp:1245 free_cma:0
[  113.680263][ T6044] Node 0 active_anon:2932kB inactive_anon:0kB active_file:0kB inactive_file:11368kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5360kB dirty:0kB writeback:0kB shmem:4496kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9096kB pagetables:612kB sec_pagetables:1112kB all_unreclaimable? yes Balloon:0kB
[  113.697867][ T6044] Node 1 active_anon:49928kB inactive_anon:0kB active_file:4328kB inactive_file:142256kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:122356kB dirty:568kB writeback:0kB shmem:34976kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2672kB pagetables:2452kB sec_pagetables:72kB all_unreclaimable? no Balloon:0kB
[  113.720260][ T6044] Node 0 DMA free:3808kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  113.740998][ T6044] lowmem_reserve[]: 0 290 290 290 290
[  113.744902][ T6044] Node 0 DMA32 free:25880kB boost:8192kB min:21528kB low:24860kB high:28192kB reserved_highatomic:4096KB active_anon:2932kB inactive_anon:0kB active_file:0kB inactive_file:11368kB unevictable:3536kB writepending:0kB present:1032196kB managed:297488kB mlocked:0kB bounce:0kB free_pcp:820kB local_pcp:92kB free_cma:0kB
[  113.745064][ T6044] lowmem_reserve[]: 0 0 0 0 0
[  113.745099][ T6044] Node 1 DMA32 free:192588kB boost:0kB min:47148kB low:58932kB high:70716kB reserved_highatomic:0KB active_anon:53528kB inactive_anon:0kB active_file:4328kB inactive_file:142256kB unevictable:3536kB writepending:568kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:13268kB local_pcp:448kB free_cma:0kB
[  113.745152][ T6044] lowmem_reserve[]: 0 0 0 0 0
[  113.745186][ T6044] Node 0 DMA: 112*4kB (UE) 34*8kB (UE) 11*16kB (UE) 21*32kB (UE) 7*64kB (UE) 0*128kB 1*256kB (E) 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 3808kB
[  113.745337][ T6044] Node 0 DMA32: 506*4kB (UMEH) 132*8kB (UMH) 87*16kB (UMEH) 167*32kB (UMEH) 83*64kB (UMH) 22*128kB (UEH) 13*256kB (U) 3*512kB (U) 1*1024kB (E) 1*2048kB (U) 0*4096kB = 25880kB
[  113.745473][ T6044] Node 1 DMA32: 1*4kB (E) 3*8kB (UME) 3*16kB (UME) 2*32kB (UM) 0*64kB 0*128kB 1*256kB (M) 1*512kB (U) 1*1024kB (M) 1*2048kB (U) 46*4096kB (M) = 192396kB
[  113.745594][ T6044] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  113.745606][ T6044] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  113.745617][ T6044] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  113.745628][ T6044] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  113.745642][ T6044] 50276 total pagecache pages
[  113.745648][ T6044] 0 pages in swap cache
[  113.745654][ T6044] Free swap  = 124996kB
[  113.745660][ T6044] Total swap = 124996kB
[  113.745666][ T6044] 524155 pages RAM
[  113.745761][ T6044] 0 pages HighMem/MovableOnly
[  113.745768][ T6044] 208872 pages reserved
[  113.745774][ T6044] 0 pages cma reserved
[  114.539012][ T6053] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8'.
[  114.896263][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  115.102222][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!!
[  115.107267][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!!
[  115.203600][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  115.222381][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!!
[  115.226584][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  115.305874][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  117.214582][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  118.061438][ T6071] 9pnet: Could not find request transport: f
[  118.378518][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  118.870228][ T6086] tipc: Started in network mode
[  118.872160][ T6086] tipc: Node identity aaaaaaaaaaaa, cluster identity 4711
[  118.889315][ T6086] tipc: Enabled bearer <eth:syz_tun>, priority 10
[  118.909715][ T6086] netlink: 14 bytes leftover after parsing attributes in process `syz.1.15'.
[  118.915528][ T6086] tipc: Resetting bearer <eth:syz_tun>
[  119.010663][ T6086] tipc: Disabling bearer <eth:syz_tun>
[  119.517742][ T6094] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16'.
[  119.941469][ T6081] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  119.945885][ T6081] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  119.995740][ T6096] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(14)
[  120.001974][ T6096] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  120.032003][  T446] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  120.056842][ T6096] vhci_hcd vhci_hcd.0: Device attached
[  120.056960][ T6109] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  120.134067][ T6081] vhci_hcd vhci_hcd.0: Device attached
[  120.216498][ T6110] vhci_hcd vhci_hcd.0: pdev(0) rhport(3) sockfd(13)
[  120.220439][ T6110] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  120.222330][  T446] usb 8-1: Using ep0 maxpacket: 16
[  120.246552][  T446] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  120.275820][   T10] vhci_hcd: vhci_device speed not set
[  120.279712][  T446] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  120.287057][  T446] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  120.293402][  T446] usb 8-1: SerialNumber: syz
[  120.336237][   T10] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  120.353077][ T6110] vhci_hcd vhci_hcd.0: Device attached
[  120.432930][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[  120.518483][ T6081] vhci_hcd vhci_hcd.0: pdev(0) rhport(4) sockfd(20)
[  120.521026][ T6081] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  120.566297][ T6081] vhci_hcd vhci_hcd.0: Device attached
[  120.604407][ T6096] vhci_hcd vhci_hcd.0: pdev(0) rhport(5) sockfd(23)
[  120.606987][ T6096] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  120.619217][ T6096] vhci_hcd vhci_hcd.0: Device attached
[  120.714366][ T6081] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  120.732067][ T6081] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  120.783601][ T6081] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  120.826432][   T59] usb 8-1: USB disconnect, device number 2
[  120.873145][ T6112] vhci_hcd: connection closed
[  120.873848][ T6107] vhci_hcd: connection closed
[  120.891423][ T6114] vhci_hcd: connection closed
[  120.891483][ T6104] vhci_hcd: connection reset by peer
[  120.893361][ T6116] vhci_hcd: connection closed
[  120.900312][ T1059] vhci_hcd: stop threads
[  120.906347][ T1059] vhci_hcd: release socket
[  120.911664][ T1059] vhci_hcd: disconnect device
[  120.923792][ T1059] vhci_hcd: stop threads
[  120.925771][ T1059] vhci_hcd: release socket
[  120.927708][ T1059] vhci_hcd: disconnect device
[  120.950942][ T1059] vhci_hcd: stop threads
[  120.952727][ T1059] vhci_hcd: release socket
[  120.954535][ T1059] vhci_hcd: disconnect device
[  120.967484][ T1059] vhci_hcd: stop threads
[  120.969096][ T1059] vhci_hcd: release socket
[  120.973169][ T1059] vhci_hcd: disconnect device
[  120.975731][ T1059] vhci_hcd: stop threads
[  120.977944][ T1059] vhci_hcd: release socket
[  120.980176][ T1059] vhci_hcd: disconnect device
[  121.215458][ T6119] sp0: Synchronizing with TNC
[  121.331568][ T6119] [U] è
[  122.113250][ T6139] can0: slcan on ttyprintk.
[  122.601913][ T6144] fuse: Unknown parameter '0x00000000000000030x0000000000000003'
[  123.188396][ T6160] netlink: 24 bytes leftover after parsing attributes in process `syz.3.24'.
[  123.206125][ T6160] syz.3.24 uses obsolete (PF_INET,SOCK_PACKET)
[  123.521501][    C1] vkms_vblank_simulate: vblank timer overrun
[  123.896123][ T6118] can0 (unregistered): slcan off ttyprintk.
[  124.105228][ T6182] netlink: 32 bytes leftover after parsing attributes in process `syz.3.25'.
[  124.718133][    C1] vkms_vblank_simulate: vblank timer overrun
[  124.738947][ T6180] netlink: 'syz.3.25': attribute type 10 has an invalid length.
[  125.005790][ T6207] netlink: 4 bytes leftover after parsing attributes in process `syz.1.26'.
[  125.120443][ T6180] veth0_vlan: left promiscuous mode
[  125.171009][ T6180] veth0_vlan: entered promiscuous mode
[  125.180407][ T6209] block device autoloading is deprecated and will be removed.
[  125.190382][ T6209] syz.2.27: attempt to access beyond end of device
[  125.190382][ T6209] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  125.207014][ T6180] team0: Device veth0_vlan failed to register rx_handler
[  125.421494][   T10] vhci_hcd: vhci_device speed not set
[  125.866291][ T6215] program syz.3.29 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  125.886227][ T6215] ata1.00: invalid service action 20
[  125.981938][    C1] vkms_vblank_simulate: vblank timer overrun
[  126.398221][ T6219] syz.3.29: attempt to access beyond end of device
[  126.398221][ T6219] nbd3: rw=4096, sector=0, nr_sectors = 1 limit=0
[  126.411813][ T6219] XFS (nbd3): SB validate failed with error -5.
[  126.537957][    C1] vkms_vblank_simulate: vblank timer overrun
[  126.919557][    C1] vkms_vblank_simulate: vblank timer overrun
[  127.097700][   T59] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  127.331050][   T59] usb 5-1: Using ep0 maxpacket: 8
[  127.336444][   T59] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 35114, setting to 1024
[  127.340680][   T59] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  127.347045][   T59] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  127.350667][   T59] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  127.414315][   T59] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  127.422386][   T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.572006][  T446] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  127.675656][ T6238] tipc: Started in network mode
[  127.678347][ T6238] tipc: Node identity aaaaaaaaaaaa, cluster identity 4711
[  127.681446][ T6238] tipc: Enabled bearer <eth:syz_tun>, priority 10
[  127.692182][ T6238] netlink: 14 bytes leftover after parsing attributes in process `syz.3.35'.
[  127.695969][ T6238] tipc: Resetting bearer <eth:syz_tun>
[  127.701707][   T59] usb 5-1: usb_control_msg returned -32
[  127.718066][   T59] usbtmc 5-1:16.0: can't read capabilities
[  127.730694][   T59] usb 5-1: USB disconnect, device number 2
[  127.785013][ T6238] tipc: Disabling bearer <eth:syz_tun>
[  128.087849][    C1] vkms_vblank_simulate: vblank timer overrun
[  130.041422][   T60] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  130.211817][   T60] usb 5-1: Using ep0 maxpacket: 16
[  130.223524][   T60] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  130.268991][   T60] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  130.276047][   T60] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  130.291264][   T60] usb 5-1: SerialNumber: syz
[  130.898315][   T59] usb 5-1: USB disconnect, device number 3
[  132.515603][ T6281] netlink: 24 bytes leftover after parsing attributes in process `syz.1.45'.
[  132.531056][ T6281] vxcan3: entered promiscuous mode
[  132.848368][ T6290] netlink: 8 bytes leftover after parsing attributes in process `syz.0.49'.
[  132.852702][ T6290] netlink: 4 bytes leftover after parsing attributes in process `syz.0.49'.
[  132.856424][ T6290] netlink: 'syz.0.49': attribute type 12 has an invalid length.
[  134.746844][ T6302] loop9: detected capacity change from 0 to 8
[  134.755891][    C2] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.762316][    C2] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.767920][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.771969][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.776064][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.780395][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.785151][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.789638][    C3] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.793027][    C3] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.797422][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.802857][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.809001][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.814900][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.835006][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.843448][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.849434][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.864136][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.875086][ T6302] ldm_validate_partition_table(): Disk read failed.
[  134.887498][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  134.894964][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.908459][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  134.917804][ T6302] Dev loop9: unable to read RDB block 0
[  135.014615][ T6300] netlink: 40 bytes leftover after parsing attributes in process `syz.1.50'.
[  135.047142][ T6302]  loop9: unable to read partition table
[  135.049788][ T6302] loop9: partition table beyond EOD, truncated
[  135.056170][ T6302] loop_reread_partitions: partition scan of loop9 (3Ÿ¾‚³˜) failed (rc=-5)
[  135.422399][ T6312] syz.3.53: attempt to access beyond end of device
[  135.422399][ T6312] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  135.877786][ T6319] tipc: Enabling of bearer <eth:syz_tun> rejected, failed to enable media
[  135.882494][ T6319] netlink: 14 bytes leftover after parsing attributes in process `syz.1.55'.
[  137.341717][ T6328] 9pnet_fd: Insufficient options for proto=fd
[  137.383758][  T446] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  137.719917][   T40] audit: type=1326 audit(1743843946.778:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000
[  137.733170][   T40] audit: type=1326 audit(1743843946.778:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000
[  137.747836][   T40] audit: type=1326 audit(1743843946.808:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f88598 code=0x7ffc0000
[  137.760650][   T40] audit: type=1326 audit(1743843946.808:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000
[  137.781410][   T40] audit: type=1326 audit(1743843946.808:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000
[  137.808823][   T40] audit: type=1326 audit(1743843946.808:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000
[  137.831454][   T40] audit: type=1326 audit(1743843946.808:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f88598 code=0x7ffc0000
[  137.847973][   T40] audit: type=1326 audit(1743843946.818:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f88598 code=0x7ffc0000
[  137.868116][   T40] audit: type=1326 audit(1743843946.818:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f88598 code=0x7ffc0000
[  137.877340][   T40] audit: type=1326 audit(1743843946.838:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6334 comm="syz.2.58" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f88598 code=0x7ffc0000
[  137.903886][ T6339] IPv6: sit1: Disabled Multicast RS
[  137.906811][ T6339] sit1: entered allmulticast mode
[  138.579354][ T6347] Zero length message leads to an empty skb
[  138.585535][ T6347] netlink: 12 bytes leftover after parsing attributes in process `syz.1.60'.
[  140.422132][  T837] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  140.591503][  T837] usb 6-1: Using ep0 maxpacket: 16
[  140.595090][  T837] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  140.600006][  T837] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  140.615101][  T837] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  140.617638][  T837] usb 6-1: SerialNumber: syz
[  140.917058][  T837] usb 6-1: USB disconnect, device number 2
[  143.685143][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  143.688001][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  153.508418][ T5950] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  153.661747][ T5950] usb 7-1: Using ep0 maxpacket: 16
[  153.683576][ T5950] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  153.719493][ T5950] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  153.724879][ T5950] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  153.728986][ T5950] usb 7-1: SerialNumber: syz
[  154.107188][   T66] usb 7-1: USB disconnect, device number 2
[  154.300533][ T6469] IPv6: NLM_F_CREATE should be specified when creating new route
[  154.989745][ T6486] =======================================================
[  154.989745][ T6486] WARNING: The mand mount option has been deprecated and
[  154.989745][ T6486]          and is ignored by this kernel. Remove the mand
[  154.989745][ T6486]          option from the mount to silence this warning.
[  154.989745][ T6486] =======================================================
[  159.264226][ T6528] syz.1.84: attempt to access beyond end of device
[  159.264226][ T6528] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  159.281813][ T6528] XFS (nbd1): SB validate failed with error -5.
[  159.352276][ T6551] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.821598][   T60] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  159.991360][   T60] usb 6-1: Using ep0 maxpacket: 16
[  160.026942][   T60] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  160.046262][   T60] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  160.051134][   T60] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  160.063754][   T60] usb 6-1: SerialNumber: syz
[  160.118461][ T6572] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  160.387956][ T6023] usb 6-1: USB disconnect, device number 3
[  160.622855][ T6586] netlink: 4 bytes leftover after parsing attributes in process `syz.0.97'.
[  161.352529][ T6604] ALSA: seq fatal error: cannot create timer (-19)
[  161.955155][ T6616] syz.3.104: attempt to access beyond end of device
[  161.955155][ T6616] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  162.431440][   T59] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  162.604544][   T59] usb 6-1: Using ep0 maxpacket: 16
[  162.608336][   T59] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  162.618539][   T59] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  162.628706][   T59] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  162.631412][   T59] usb 6-1: SerialNumber: syz
[  162.878965][   T10] usb 6-1: USB disconnect, device number 4
[  163.550553][ T6626] netlink: 4 bytes leftover after parsing attributes in process `syz.1.108'.
[  164.156730][ T6640] process 'syz.1.112' launched '/dev/fd/4' with NULL argv: empty string added
[  164.410203][ T6638] syz.2.111: attempt to access beyond end of device
[  164.410203][ T6638] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  164.421821][ T6638] XFS (nbd2): SB validate failed with error -5.
[  164.472314][ T6648] overlay: filesystem on ./bus not supported as upperdir
[  164.488342][ T6648] overlay: filesystem on ./bus not supported as upperdir
[  165.831595][ T6023] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  165.991419][ T6023] usb 6-1: Using ep0 maxpacket: 16
[  165.999451][ T6023] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  166.012494][ T6023] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  166.018188][ T6023] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  166.040522][ T6023] usb 6-1: SerialNumber: syz
[  166.331426][   T59] usb 6-1: USB disconnect, device number 5
[  167.303489][ T6669] tipc: Enabled bearer <udp:syz0>, priority 10
[  167.957897][ T6679] netlink: 9 bytes leftover after parsing attributes in process `syz.1.121'.
[  167.963065][ T6679] 0·: renamed from hsr0 (while UP)
[  168.035584][ T6679] 0·: entered allmulticast mode
[  168.037631][ T6679] hsr_slave_0: entered allmulticast mode
[  168.039758][ T6679] hsr_slave_1: entered allmulticast mode
[  168.055826][ T6679] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  168.212049][ T6683] warning: `syz.1.122' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  168.342676][  T446] tipc: Node number set to 43690
[  168.652158][ T6685] input: syz0 as /devices/virtual/input/input5
[  168.755171][ T6685] fuse: Bad value for 'group_id'
[  168.756991][ T6685] fuse: Bad value for 'group_id'
[  169.005953][ T6688] input: syz1 as /devices/virtual/input/input6
[  169.067219][ T6690] FAULT_INJECTION: forcing a failure.
[  169.067219][ T6690] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  169.074079][ T6690] CPU: 2 UID: 0 PID: 6690 Comm: syz.2.124 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) 
[  169.074101][ T6690] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.074110][ T6690] Call Trace:
[  169.074117][ T6690]  <TASK>
[  169.074124][ T6690]  dump_stack_lvl+0x16c/0x1f0
[  169.074151][ T6690]  should_fail_ex+0x512/0x640
[  169.074172][ T6690]  strncpy_from_user+0x3b/0x2e0
[  169.074191][ T6690]  getname_flags.part.0+0x8b/0x540
[  169.074211][ T6690]  getname_flags+0x93/0xf0
[  169.074231][ T6690]  __ia32_sys_unlinkat+0xe4/0x130
[  169.074254][ T6690]  __do_fast_syscall_32+0x73/0x120
[  169.074277][ T6690]  do_fast_syscall_32+0x32/0x80
[  169.074299][ T6690]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.074317][ T6690] RIP: 0023:0xf7f88579
[  169.074329][ T6690] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.074343][ T6690] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 000000000000012d
[  169.074358][ T6690] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800000c0
[  169.074367][ T6690] RDX: 0000000000000200 RSI: 0000000000000000 RDI: 0000000000000000
[  169.074375][ T6690] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.074383][ T6690] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.074392][ T6690] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.074409][ T6690]  </TASK>
[  169.142874][ T6427] udevd[6427]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  169.273765][ T6692] netlink: 4 bytes leftover after parsing attributes in process `syz.2.125'.
[  169.671451][   T60] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  169.824147][ T6699] netlink: 4 bytes leftover after parsing attributes in process `syz.0.128'.
[  169.841432][   T60] usb 8-1: Using ep0 maxpacket: 16
[  169.932370][   T60] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  169.953686][   T60] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  169.958409][   T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  169.963932][   T60] usb 8-1: SerialNumber: syz
[  169.979993][ T6707] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  170.000165][ T6698] input: syz0 as /devices/virtual/input/input7
[  170.579313][   T60] usb 8-1: USB disconnect, device number 3
[  170.881125][ T6717] netfs: Couldn't get user pages (rc=-14)
[  171.884699][ T6734] syz.2.134: attempt to access beyond end of device
[  171.884699][ T6734] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  172.059126][ T6736] netlink: 4 bytes leftover after parsing attributes in process `syz.3.135'.
[  172.181613][ T6738] tmpfs: Unknown parameter 'sizeppraise_type'
[  172.462709][ T6742] capability: warning: `syz.3.137' uses deprecated v2 capabilities in a way that may be insecure
[  172.752940][    C0] vkms_vblank_simulate: vblank timer overrun
[  173.521441][ T6754] netlink: 4 bytes leftover after parsing attributes in process `syz.0.141'.
[  173.529317][ T6754] netlink: 92 bytes leftover after parsing attributes in process `syz.0.141'.
[  173.680702][ T6023] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  173.841887][ T6023] usb 8-1: Using ep0 maxpacket: 16
[  173.859470][ T6023] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  173.886146][ T6023] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  173.898246][ T6023] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  173.916176][ T6023] usb 8-1: SerialNumber: syz
[  174.067762][ T6773] netlink: 'syz.0.144': attribute type 4 has an invalid length.
[  174.114326][ T6773] block nbd0: shutting down sockets
[  174.217003][  T837] usb 8-1: USB disconnect, device number 4
[  174.310636][ T6778] netlink: 4 bytes leftover after parsing attributes in process `syz.0.145'.
[  174.440784][    C0] vkms_vblank_simulate: vblank timer overrun
[  174.494626][ T6780] netlink: 4 bytes leftover after parsing attributes in process `syz.0.146'.
[  175.246784][ T6795] netlink: 96 bytes leftover after parsing attributes in process `syz.0.149'.
[  175.666549][ T6798] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  175.691417][ T6798] overlayfs: failed to set xattr on upper
[  175.695333][ T6798] overlayfs: ...falling back to redirect_dir=nofollow.
[  175.700402][ T6798] overlayfs: ...falling back to metacopy=off.
[  175.731641][ T6798] overlayfs: ...falling back to index=off.
[  175.741903][ T6798] overlayfs: ...falling back to uuid=null.
[  175.742892][    C0] vkms_vblank_simulate: vblank timer overrun
[  175.745888][ T6798] overlayfs: maximum fs stacking depth exceeded
[  176.329127][    C0] vkms_vblank_simulate: vblank timer overrun
[  176.744209][ T6815] netlink: 4 bytes leftover after parsing attributes in process `syz.0.154'.
[  177.584605][    C0] vkms_vblank_simulate: vblank timer overrun
[  177.997946][ T6830] netlink: 'syz.2.158': attribute type 1 has an invalid length.
[  178.055989][ T6830] netlink: 8 bytes leftover after parsing attributes in process `syz.2.158'.
[  178.110425][ T6830] 8021q: adding VLAN 0 to HW filter on device batadv1
[  178.130879][ T6830] bond1: (slave batadv1): Enslaving as a backup interface with an up link
[  178.224503][ T6834] bond1 (unregistering): (slave batadv1): Releasing backup interface
[  178.264551][ T6834] bond1 (unregistering): Released all slaves
[  179.013395][ T6844] input: syz0 as /devices/virtual/input/input8
[  179.987070][ T6853] netlink: 4 bytes leftover after parsing attributes in process `syz.2.164'.
[  181.331491][   T60] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  181.501555][   T60] usb 7-1: Using ep0 maxpacket: 16
[  181.506864][   T60] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  181.518260][   T60] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  181.525360][   T60] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 152, changing to 11
[  181.531884][   T60] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024
[  181.539907][   T60] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  181.551026][   T60] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  181.599321][   T60] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.602096][   T60] usb 7-1: Product: syz
[  181.618828][   T60] usb 7-1: Manufacturer: syz
[  181.620268][   T60] usb 7-1: SerialNumber: syz
[  181.623511][   T60] usb 7-1: config 0 descriptor??
[  181.871097][   T60] appledisplay 7-1:0.0: Error while getting initial brightness: -71
[  181.935021][   T60] appledisplay 7-1:0.0: probe with driver appledisplay failed with error -71
[  182.000964][   T60] usb 7-1: USB disconnect, device number 3
[  182.515713][ T6869] netlink: 12 bytes leftover after parsing attributes in process `syz.2.169'.
[  183.011650][   T29] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  183.076145][ T6870] netlink: 48 bytes leftover after parsing attributes in process `syz.2.169'.
[  183.080098][ T6870] netlink: 36 bytes leftover after parsing attributes in process `syz.2.169'.
[  183.115935][ T6870] Cannot find add_set index 0 as target
[  183.126811][ T6870] netlink: 9 bytes leftover after parsing attributes in process `syz.2.169'.
[  183.133877][ T6870] 0·: renamed from hsr0 (while UP)
[  183.236732][ T6870] 0·: entered allmulticast mode
[  183.238797][ T6870] hsr_slave_0: entered allmulticast mode
[  183.271494][ T6870] hsr_slave_1: entered allmulticast mode
[  183.274698][ T6870] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  183.295752][ T6873] netlink: 12 bytes leftover after parsing attributes in process `syz.3.170'.
[  184.460950][ T6893] netlink: 28 bytes leftover after parsing attributes in process `syz.1.175'.
[  184.500606][ T6893] netlink: 28 bytes leftover after parsing attributes in process `syz.1.175'.
[  187.317520][   T40] kauditd_printk_skb: 455 callbacks suppressed
[  187.317535][   T40] audit: type=1326 audit(1743843996.378:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.374807][   T40] audit: type=1326 audit(1743843996.408:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.449887][   T40] audit: type=1326 audit(1743843996.408:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.464306][   T40] audit: type=1326 audit(1743843996.408:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=138 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.474406][   T40] audit: type=1326 audit(1743843996.408:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.496405][   T40] audit: type=1326 audit(1743843996.408:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.513013][   T40] audit: type=1326 audit(1743843996.408:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.530397][   T40] audit: type=1326 audit(1743843996.408:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.563546][   T40] audit: type=1326 audit(1743843996.408:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.581622][   T40] audit: type=1326 audit(1743843996.408:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.0.183" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf746e579 code=0x7ffc0000
[  187.931519][ T6023] usb 6-1: new low-speed USB device number 6 using dummy_hcd
[  188.071479][ T6023] usb 6-1: device descriptor read/64, error -71
[  188.311709][ T6023] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[  188.465469][ T6023] usb 6-1: device descriptor read/64, error -71
[  188.572204][ T6023] usb usb6-port1: attempt power cycle
[  188.749373][ T6938] random: crng reseeded on system resumption
[  188.932588][ T6023] usb 6-1: new low-speed USB device number 8 using dummy_hcd
[  188.966366][ T6023] usb 6-1: device descriptor read/8, error -71
[  189.245542][ T6023] usb 6-1: new low-speed USB device number 9 using dummy_hcd
[  189.303525][ T6023] usb 6-1: device descriptor read/8, error -71
[  189.494511][ T6023] usb usb6-port1: unable to enumerate USB device
[  191.230791][ T6951] netlink: 124 bytes leftover after parsing attributes in process `syz.1.191'.
[  191.552490][ T6957] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  191.810868][ T6963] netlink: 4 bytes leftover after parsing attributes in process `syz.0.196'.
[  191.930936][ T6966] random: crng reseeded on system resumption
[  192.751466][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  192.751482][   T40] audit: type=1326 audit(1743844001.798:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6982 comm="syz.3.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc8579 code=0x7ffc0000
[  192.769829][   T40] audit: type=1326 audit(1743844001.798:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6982 comm="syz.3.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc8579 code=0x7ffc0000
[  192.782809][   T40] audit: type=1326 audit(1743844001.808:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6982 comm="syz.3.201" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf7fc8579 code=0x7ffc0000
[  192.793505][   T40] audit: type=1326 audit(1743844001.808:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6982 comm="syz.3.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc8579 code=0x7ffc0000
[  192.806131][   T40] audit: type=1326 audit(1743844001.808:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6982 comm="syz.3.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc8579 code=0x7ffc0000
[  195.304603][ T7003] netlink: 4 bytes leftover after parsing attributes in process `syz.3.206'.
[  195.469571][ T7005] program syz.2.207 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  195.733296][    C1] vkms_vblank_simulate: vblank timer overrun
[  197.259261][    C1] vkms_vblank_simulate: vblank timer overrun
[  197.809277][    C1] vkms_vblank_simulate: vblank timer overrun
[  197.998868][ T7034] netlink: 4 bytes leftover after parsing attributes in process `syz.1.217'.
[  198.172253][ T7036] netlink: 8 bytes leftover after parsing attributes in process `syz.2.214'.
[  198.225669][    C1] vkms_vblank_simulate: vblank timer overrun
[  198.266322][ T7037] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  198.592673][    C1] vkms_vblank_simulate: vblank timer overrun
[  198.870585][ T7050] IPVS: length: 108 != 24
[  199.575969][ T7062] netlink: 4 bytes leftover after parsing attributes in process `syz.2.226'.
[  199.873948][ T7069] FAULT_INJECTION: forcing a failure.
[  199.873948][ T7069] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  199.891856][ T7069] CPU: 1 UID: 0 PID: 7069 Comm: syz.3.229 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) 
[  199.891879][ T7069] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  199.891888][ T7069] Call Trace:
[  199.891894][ T7069]  <TASK>
[  199.891899][ T7069]  dump_stack_lvl+0x16c/0x1f0
[  199.891934][ T7069]  should_fail_ex+0x512/0x640
[  199.891956][ T7069]  _copy_from_user+0x2e/0xd0
[  199.891977][ T7069]  ucma_query+0x91/0x1f0
[  199.891992][ T7069]  ? __pfx_ucma_query+0x10/0x10
[  199.892010][ T7069]  ? __pfx_ucma_query+0x10/0x10
[  199.892024][ T7069]  ucma_write+0x1f8/0x330
[  199.892048][ T7069]  ? __pfx_ucma_write+0x10/0x10
[  199.892070][ T7069]  ? bpf_lsm_file_permission+0x9/0x10
[  199.892089][ T7069]  ? security_file_permission+0x71/0x210
[  199.892110][ T7069]  ? rw_verify_area+0xcf/0x680
[  199.892131][ T7069]  vfs_write+0x25c/0x1180
[  199.892150][ T7069]  ? __pfx_ucma_write+0x10/0x10
[  199.892176][ T7069]  ? __pfx_vfs_write+0x10/0x10
[  199.892194][ T7069]  ? find_held_lock+0x2b/0x80
[  199.892215][ T7069]  ? __fget_files+0x204/0x3c0
[  199.892239][ T7069]  ? __fget_files+0x20e/0x3c0
[  199.892267][ T7069]  ksys_write+0x205/0x240
[  199.892287][ T7069]  ? __pfx_ksys_write+0x10/0x10
[  199.892307][ T7069]  ? rcu_is_watching+0x12/0xc0
[  199.892327][ T7069]  ? rcu_is_watching+0x12/0xc0
[  199.892348][ T7069]  __do_fast_syscall_32+0x73/0x120
[  199.892372][ T7069]  do_fast_syscall_32+0x32/0x80
[  199.892394][ T7069]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.892412][ T7069] RIP: 0023:0xf7fc8579
[  199.892426][ T7069] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  199.892440][ T7069] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  199.892455][ T7069] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000000
[  199.892464][ T7069] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[  199.892473][ T7069] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.892481][ T7069] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  199.892489][ T7069] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.892509][ T7069]  </TASK>
[  200.086626][    C1] vkms_vblank_simulate: vblank timer overrun
[  200.849341][    C1] vkms_vblank_simulate: vblank timer overrun
[  201.080867][ T7097] netlink: 4 bytes leftover after parsing attributes in process `syz.1.236'.
[  201.261610][ T6022] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  201.421525][ T6022] usb 7-1: device descriptor read/64, error -71
[  201.442416][    C1] vkms_vblank_simulate: vblank timer overrun
[  201.562371][    C1] vkms_vblank_simulate: vblank timer overrun
[  201.713371][ T6022] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  201.854112][ T6022] usb 7-1: device descriptor read/64, error -71
[  201.991646][ T6022] usb usb7-port1: attempt power cycle
[  202.098127][ T7105] tipc: Cannot configure node identity twice
[  202.309264][    C1] vkms_vblank_simulate: vblank timer overrun
[  202.341428][ T6022] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  202.365316][ T6022] usb 7-1: device descriptor read/8, error -71
[  202.911509][ T6022] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  202.942061][ T6022] usb 7-1: device descriptor read/8, error -71
[  203.486002][ T6022] usb usb7-port1: unable to enumerate USB device
[  203.778046][ T7125] netlink: 12 bytes leftover after parsing attributes in process `syz.1.247'.
[  204.121606][ T7132] netlink: 20 bytes leftover after parsing attributes in process `syz.3.248'.
[  204.132299][ T7132] netlink: 32 bytes leftover after parsing attributes in process `syz.3.248'.
[  205.120251][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  205.170697][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  205.240785][ T7132] 9pnet_fd: Insufficient options for proto=fd
[  205.554076][ T7149] netlink: 12 bytes leftover after parsing attributes in process `syz.1.254'.
[  205.578264][    C3] vcan0: j1939_tp_rxtimer: 0xffff888022c16c00: rx timeout, send abort
[  205.603965][    C3] vcan0: j1939_xtp_rx_abort_one: 0xffff888022c16c00: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  205.675672][ T7149] dccp_check_seqno: Step 6 failed for RESET packet, (LSWL(134366213577845) <= P.seqno(0) <= S.SWH(134366213577919)) and (P.ackno exists or LAWL(147602884315928) <= P.ackno(147602884315929) <= S.AWH(147602884315929), sending SYNC...
[  205.962776][ T7157] random: crng reseeded on system resumption
[  205.968041][ T7154] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  206.308678][ T7166] random: crng reseeded on system resumption
[  206.445462][ T7160] ptrace attach of "/syz-executor exec"[5961] was attempted by ""[7160]
[  206.621145][ T7170] netlink: 'syz.1.261': attribute type 9 has an invalid length.
[  206.626786][ T7170] netlink: 'syz.1.261': attribute type 7 has an invalid length.
[  206.630193][ T7170] netlink: 'syz.1.261': attribute type 8 has an invalid length.
[  206.979270][ T7181] netlink: 28 bytes leftover after parsing attributes in process `syz.2.264'.
[  207.513834][ T7187] netlink: 4 bytes leftover after parsing attributes in process `syz.3.266'.
[  208.641602][ T7198] nvme_fabrics: missing parameter 'transport=%s'
[  208.644393][ T7198] nvme_fabrics: missing parameter 'nqn=%s'
[  209.023669][ T7203] input: syz1 as /devices/virtual/input/input9
[  209.087483][    C3] vcan0: j1939_tp_rxtimer: 0xffff8880221c4800: rx timeout, send abort
[  209.091002][    C3] vcan0: j1939_xtp_rx_abort_one: 0xffff8880221c4800: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  209.222620][ T7218] block device autoloading is deprecated and will be removed.
[  209.227517][ T7218] syz.3.274: attempt to access beyond end of device
[  209.227517][ T7218] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  209.304720][ T7222] netlink: 24 bytes leftover after parsing attributes in process `syz.0.275'.
[  210.012776][ T7239] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  210.031898][ T7239] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  211.625961][ T7267] 
[  211.627116][ T7267] ======================================================
[  211.629894][ T7267] WARNING: possible circular locking dependency detected
[  211.633841][ T7267] 6.14.0-syzkaller-13408-g9f867ba24d36 #0 Not tainted
[  211.640037][ T7267] ------------------------------------------------------
[  211.644058][ T7267] syz.0.290/7267 is trying to acquire lock:
[  211.647417][ T7267] ffffffff906990a8 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_env+0xb36/0x1870
[  211.666234][ T7267] 
[  211.666234][ T7267] but task is already holding lock:
[  211.668724][ T7267] ffff888043b81de8 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  211.672596][ T7267] 
[  211.672596][ T7267] which lock already depends on the new lock.
[  211.672596][ T7267] 
[  211.688782][ T7267] 
[  211.688782][ T7267] the existing dependency chain (in reverse order) is:
[  211.692261][ T7267] 
[  211.692261][ T7267] -> #2 (&q->q_usage_counter(io)#24){++++}-{0:0}:
[  211.710771][ T7267]        blk_alloc_queue+0x619/0x760
[  211.712933][ T7267]        blk_mq_alloc_queue+0x179/0x290
[  211.715069][ T7267]        __blk_mq_alloc_disk+0x29/0x120
[  211.750067][ T7267]        loop_add+0x496/0xb70
[  211.752370][ T7267]        loop_init+0x164/0x270
[  211.754385][ T7267]        do_one_initcall+0x120/0x6e0
[  211.756867][ T7267]        kernel_init_freeable+0x5c2/0x900
[  211.759467][ T7267]        kernel_init+0x1c/0x2b0
[  211.761754][ T7267]        ret_from_fork+0x45/0x80
[  211.763942][ T7267]        ret_from_fork_asm+0x1a/0x30
[  211.766489][ T7267] 
[  211.766489][ T7267] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  211.769480][ T7267]        fs_reclaim_acquire+0x102/0x150
[  211.771544][ T7267]        kmem_cache_alloc_node_noprof+0x57/0x3b0
[  211.774020][ T7267]        __alloc_skb+0x2b2/0x380
[  211.775774][ T7267]        alloc_uevent_skb+0x7d/0x210
[  211.778587][ T7267]        kobject_uevent_env+0xca4/0x1870
[  211.782340][ T7267]        kobject_synth_uevent+0x7d4/0x8a0
[  211.785342][ T7267]        bus_uevent_store+0x3d/0x90
[  211.787987][ T7267]        bus_attr_store+0x71/0xb0
[  211.790338][ T7267]        sysfs_kf_write+0xef/0x150
[  211.792791][ T7267]        kernfs_fop_write_iter+0x351/0x510
[  211.795738][ T7267]        vfs_write+0x5ba/0x1180
[  211.799010][ T7267]        ksys_write+0x12a/0x240
[  211.801023][ T7267]        do_syscall_64+0xcd/0x260
[  211.803026][ T7267]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.805835][ T7267] 
[  211.805835][ T7267] -> #0 (uevent_sock_mutex){+.+.}-{4:4}:
[  211.810144][ T7267]        __lock_acquire+0x1173/0x1ba0
[  211.816266][ T7267]        lock_acquire+0x179/0x350
[  211.819304][ T7267]        __mutex_lock+0x199/0xb90
[  211.821560][ T7267]        kobject_uevent_env+0xb36/0x1870
[  211.824230][ T7267]        loop_set_status+0x9c7/0xb90
[  211.826587][ T7267]        loop_set_status_compat+0xb9/0x110
[  211.829929][ T7267]        lo_compat_ioctl+0x10f/0x170
[  211.832610][ T7267]        compat_blkdev_ioctl+0x2eb/0x7a0
[  211.835704][ T7267]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  211.838975][ T7267]        __do_fast_syscall_32+0x73/0x120
[  211.842170][ T7267]        do_fast_syscall_32+0x32/0x80
[  211.844293][ T7267]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  211.847900][ T7267] 
[  211.847900][ T7267] other info that might help us debug this:
[  211.847900][ T7267] 
[  211.852742][ T7267] Chain exists of:
[  211.852742][ T7267]   uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#24
[  211.852742][ T7267] 
[  211.859330][ T7267]  Possible unsafe locking scenario:
[  211.859330][ T7267] 
[  211.878226][ T7267]        CPU0                    CPU1
[  211.880493][ T7267]        ----                    ----
[  211.882714][ T7267]   lock(&q->q_usage_counter(io)#24);
[  211.884911][ T7267]                                lock(fs_reclaim);
[  211.887688][ T7267]                                lock(&q->q_usage_counter(io)#24);
[  211.890867][ T7267]   lock(uevent_sock_mutex);
[  211.892830][ T7267] 
[  211.892830][ T7267]  *** DEADLOCK ***
[  211.892830][ T7267] 
[  211.896191][ T7267] 3 locks held by syz.0.290/7267:
[  211.913684][ T7267]  #0: ffff88801e03fb68 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2a/0xb90
[  211.917670][ T7267]  #1: ffff888043b81de8 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  211.922540][ T7267]  #2: ffff888043b81e20 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  211.935097][ T7267] 
[  211.935097][ T7267] stack backtrace:
[  211.937148][ T7267] CPU: 0 UID: 0 PID: 7267 Comm: syz.0.290 Not tainted 6.14.0-syzkaller-13408-g9f867ba24d36 #0 PREEMPT(full) 
[  211.937173][ T7267] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  211.937297][ T7267] Call Trace:
[  211.937305][ T7267]  <TASK>
[  211.937313][ T7267]  dump_stack_lvl+0x116/0x1f0
[  211.937342][ T7267]  print_circular_bug+0x275/0x350
[  211.937368][ T7267]  check_noncircular+0x14c/0x170
[  211.937442][ T7267]  __lock_acquire+0x1173/0x1ba0
[  211.937463][ T7267]  lock_acquire+0x179/0x350
[  211.937476][ T7267]  ? kobject_uevent_env+0xb36/0x1870
[  211.937491][ T7267]  ? __pfx___might_resched+0x10/0x10
[  211.937518][ T7267]  __mutex_lock+0x199/0xb90
[  211.937539][ T7267]  ? kobject_uevent_env+0xb36/0x1870
[  211.937554][ T7267]  ? kfree+0x252/0x4d0
[  211.937573][ T7267]  ? kobject_uevent_env+0xb36/0x1870
[  211.937589][ T7267]  ? __pfx___mutex_lock+0x10/0x10
[  211.937612][ T7267]  ? __asan_memcpy+0x3c/0x60
[  211.937631][ T7267]  ? kobject_get_path+0x8e/0x2a0
[  211.937654][ T7267]  ? kobject_uevent_env+0xb36/0x1870
[  211.937669][ T7267]  kobject_uevent_env+0xb36/0x1870
[  211.937686][ T7267]  ? __asan_memcpy+0x3c/0x60
[  211.937707][ T7267]  loop_set_status+0x9c7/0xb90
[  211.937728][ T7267]  loop_set_status_compat+0xb9/0x110
[  211.937746][ T7267]  ? __pfx_loop_set_status_compat+0x10/0x10
[  211.937765][ T7267]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  211.937792][ T7267]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  211.937808][ T7267]  lo_compat_ioctl+0x10f/0x170
[  211.937826][ T7267]  ? __pfx_lo_compat_ioctl+0x10/0x10
[  211.937842][ T7267]  compat_blkdev_ioctl+0x2eb/0x7a0
[  211.937866][ T7267]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  211.937890][ T7267]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  211.937914][ T7267]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  211.937934][ T7267]  __do_fast_syscall_32+0x73/0x120
[  211.937959][ T7267]  do_fast_syscall_32+0x32/0x80
[  211.937981][ T7267]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  211.938001][ T7267] RIP: 0023:0xf746e579
[  211.938014][ T7267] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  211.938028][ T7267] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  211.938044][ T7267] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004c02
[  211.938054][ T7267] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  211.938065][ T7267] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  211.938075][ T7267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  211.938085][ T7267] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  211.938100][ T7267]  </TASK>

VM DIAGNOSIS:
09:07:01  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854bd545 RDI=ffffffff9ae12bc0 RBP=ffffffff9ae12b80 RSP=ffffc90026a07308
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=732d302e34312e36
R12=0000000000000000 R13=0000000000000038 R14=ffffffff9ae12b80 R15=ffffffff854bd4e0
RIP=ffffffff854bd56f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f50d5da4 CR3=000000004edd2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000022800000000 0000000700000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000000d RBX=ffff888073824358 RCX=ffffc9000cfc3000 RDX=0000000000080000
RSI=000000000000000d RDI=0000000000000000 RBP=dffffc0000000000 RSP=ffffc900078276f8
R8 =0000000000000005 R9 =0000000000000000 R10=000000000000000d R11=000000000000001e
R12=000000000000000d R13=ffff88806d5ab058 R14=000000000000000c R15=ffffffff8ccdc7a0
RIP=ffffffff81bb3ad0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000000c3bb906 CR3=000000004be9a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000022800000000 0000000700000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffc90000015000 RBX=0000000000000500 RCX=0000000000000004 RDX=0000000000000010
RSI=ffffc90000538ac0 RDI=ffff88801c6b4500 RBP=0000000000000000 RSP=ffffc900005389b8
R8 =0000000000000001 R9 =ffffed10038d689f R10=ffff88801c6b44ff R11=ffffffff9adf1d40
R12=ffff888040403900 R13=000000000000004f R14=0000000000000010 R15=0000000000000046
RIP=ffffffff8556b992 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 000fffff 00000000
GS =0063 ffff8880979b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 000fffff 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000057e544c0 CR3=000000004be9a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88802b53b100 RCX=ffffffff81af4d8e RDX=ffff88801d6dc880
RSI=ffffffff81af4d68 RDI=0000000000000005 RBP=ffffc9000044fd10 RSP=ffffc9000044fc40
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c79876
R12=1ffff92000089f8c R13=0000000000000002 R14=0000000000000001 R15=ffffed10056a7621
RIP=ffffffff81af4d74 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ab9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000000c3117aa CR3=000000006e93e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000