last executing test programs:

6.52262276s ago: executing program 0 (id=538):
syz_open_dev$swradio(&(0x7f00000001c0), 0x0, 0x2)
mknod$loop(&(0x7f0000000400)='./file0\x00', 0x10, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, 0x80, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB], 0x10}, 0x8000)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket(0x2b, 0x80801, 0x1)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000140)={'broute\x00', 0x0, 0x0, 0x0, [0x4, 0x401, 0x80000001, 0x2, 0x3, 0x100000001]}, &(0x7f0000000080)=0x78)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x4000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40186f40, &(0x7f0000000440)=0x1f)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x2c, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
kexec_load(0x0, 0x0, &(0x7f0000000000), 0x320000)
r6 = socket$inet6(0xa, 0x80002, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x8, 0x3, 0x214, 0xf0, 0x11, 0x148, 0xf0, 0x0, 0x180, 0x2a8, 0x2a8, 0x180, 0x2a8, 0x3, 0x0, {[{{@ip={@broadcast, @multicast2, 0x8800, 0xff000000, 'wg1\x00', 'dvmrp0\x00', {}, {}, 0x67, 0x3, 0x2}, 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@ttl={{0x24}, {0x0, 0x9}}, @common=@unspec=@limit={{0x3c}, {0x10001, 0x2, 0xa, 0x8, 0x5, 0x4}}]}, @unspec=@TRACE={0x20}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, 0xffffffff, 'macvtap0\x00', 'netdevsim0\x00'}, 0x0, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x270)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x80882, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

5.629793045s ago: executing program 0 (id=543):
sched_setaffinity(0x0, 0xff43, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = getpgrp(0xffffffffffffffff)
r3 = gettid()
rt_tgsigqueueinfo(r2, r3, 0xc, &(0x7f0000002380)={0x2a, 0x1, 0x4})
r4 = gettid()
r5 = socket$netlink(0x10, 0x3, 0xa)
sendmsg$netlink(r5, &(0x7f0000001e80)={0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000000280)={0x10, 0x42, 0x800, 0x70bd29, 0x25dfdbfd}, 0x10}], 0x1, &(0x7f0000001d80)=[@cred={{0x18, 0x1, 0x2, {r4}}}], 0x18, 0x40088d0}, 0x4004000)
r6 = openat$apparmor_task_exec(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
kcmp(r2, r4, 0x1, r6, r1)
sendto$inet6(r1, &(0x7f0000000400)="2ae0e710", 0x4, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
recvmmsg(r1, &(0x7f0000000d80), 0x4000000000001e9, 0x10162, 0x0)
r7 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0xa0602, 0x0)
writev(r7, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0xff2b}], 0x2)

4.185991116s ago: executing program 0 (id=553):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x9, 0x3, &(0x7f0000000640)=ANY=[@ANYRESDEC, @ANYRESHEX, @ANYRESDEC], &(0x7f0000000100)='syzkaller\x00', 0x6, 0xb7, &(0x7f0000000140)=""/183, 0x41100, 0x3e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x19}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1, 0x8c}, 0x0)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r0, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r0, 0x89eb, &(0x7f0000000000)={0x3d, 0x101, 0x100, 0x1, 0x4, 0x18, 0x36, "e75867a0aa45de1500", "39e8799918f836f17fc65c8b001f00"})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f0000000340), 0x802, 0x28000)
close(0xffffffffffffffff)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c000000020603000000000000000000000000001400078008001240000000000500150002000000050001000600000005000500020000000500040000000000090002"], 0x4c}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000080900010073797a30000000005c000000030a03000000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000032800048008000240000000120800014000000000140004"], 0xa4}}, 0x0)

4.059760499s ago: executing program 2 (id=555):
sched_setaffinity(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
rt_sigprocmask(0x3, &(0x7f00000019c0)={[0x3, 0xf]}, 0x0, 0x8)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x14, &(0x7f0000000000)={0x2, [0x1, 0x0]}, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x24c4436d5a174b6d, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4004000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
rt_sigsuspend(0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x15)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
fsopen(&(0x7f00000005c0)='cramfs\x00', 0x0)
r5 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r6, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x2, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000300000000000575fe0208108500000068a6b3e207000000954a3b466727b804309da818cb72d03c02a8d332491931830965912196ac2680beca6607f00be3cc71f67743bd445e949e6ba6de1a3adb731e0ef79d6d48a484d047e6ef"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
write$P9_RVERSION(r5, &(0x7f0000000c40)=ANY=[], 0x13)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r7, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)=[0x5, 0x7], &(0x7f0000000180)=[0x2, 0x4], 0x0, 0x2, 0x1}}, 0x40)

3.000404424s ago: executing program 2 (id=557):
unshare(0x8020000)
r0 = semget$private(0x0, 0x1, 0x186)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000800), 0x8000, 0x0)
r2 = dup(r1)
ioctl$GIO_UNISCRNMAP(r2, 0x40043d14, 0x0)
semctl$GETALL(r0, 0x0, 0xd, &(0x7f00000002c0)=""/203)

3.000214691s ago: executing program 2 (id=558):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001400)=ANY=[@ANYBLOB="3c00000010003b15000800"/20, @ANYRES32=0x0, @ANYBLOB="340e000000b401001400128009000100626f6e64000000000400028008000a00", @ANYRES32=r3], 0x3c}}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="2e00000011008b88040f80ee59acbc04130800480f000a005e2900421803001825800000000000000280000c0012", 0x2e}], 0x1}, 0x0)

2.919890967s ago: executing program 2 (id=560):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_attach_bpf(r1, 0x29, 0x4b, 0x0, 0x4)
r2 = getpgid(0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
memfd_create(0x0, 0x4)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r7=>0x0})
setsockopt$inet6_mreq(r6, 0x29, 0x1b, &(0x7f0000000000)={@remote, r7}, 0x14)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=@gettaction={0xe8, 0x32, 0x20, 0x70bd29, 0x25dfdbfd, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1, 0x1}}, @action_gd=@TCA_ACT_TAB={0x4c, 0x1, [{0xc, 0xd, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0xc, 0xc, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x2}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc}, @action_gd=@TCA_ACT_TAB={0x60, 0x1, [{0xc, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0xc, 0x1e, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}, {0xc, 0x1b, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xaa}}, {0x14, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6a7}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x1}]}, 0xe8}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x4840)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffb000/0x3000)=nil)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4008, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@local, 0x0, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {{@in6=@rand_addr=' \x01\x00', 0x4d6, 0x33}, 0x0, @in=@remote, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe4)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)

2.56026742s ago: executing program 0 (id=566):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000500000085000000d000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x24040084)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000000c0)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r6, @ANYBLOB="01002abd7000fedbdf253b00000008000300", @ANYRES32=r7, @ANYBLOB="6e0033008000e100ffffffffffff0802110000005050505050500000030000000000000001000100010003010e"], 0x8c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000080)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000000000)={'xfrm0\x00', {0x2, 0x4e24, @empty}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r9 = syz_open_dev$evdev(0x0, 0x2fdff7ef, 0x84000)
ioctl$EVIOCSCLOCKID(r9, 0x400445a0, 0x0)
r10 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), r10)
socket$rxrpc(0x21, 0x2, 0xa)
socket$rxrpc(0x21, 0x2, 0xa)

2.559632285s ago: executing program 1 (id=567):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000600)=@raw={'raw\x00', 0x8, 0x3, 0x24c, 0x0, 0x11, 0x148, 0x0, 0x0, 0x1b8, 0x2a8, 0x2a8, 0x1b8, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0x128, 0x0, {}, [@common=@unspec=@devgroup={{0x34}, {0xc, 0x8, 0x4b, 0x4, 0x3}}, @common=@ttl={{0x24}, {0x1, 0x9}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x2, 0x4, 0x2, 0x3, 0x2], 0x1, 0x4}, {0xfffd, [0x4, 0x0, 0x0, 0x7, 0x1, 0x2], 0x4, 0x7}}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010101, 0xff, 0xffffffff, 'gre0\x00', 'netdevsim0\x00', {}, {}, 0x6}, 0x0, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x2a8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="063142db63fd81d3812888cef91adefdf99d3d40000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x4, &(0x7f00000009c0)={0x7, 0x0, 0x0, &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
geteuid()
mount$tmpfs(0x0, &(0x7f0000000040)='./cgroup/file0\x00', &(0x7f0000000080), 0x4c0, &(0x7f0000000180)=ANY=[@ANYBLOB="f5"])
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
io_setup(0x4, &(0x7f00000014c0)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f00000003c0)={<r3=>0x0, 0x8b, "beab89d4a84deb1821709f0eb00270244e6f4e07e3f7361f99e5385be4211d1e564d65dc7ba168d54bcce6fe24c66036c07cfe1eac866a9206fd82b4e198817d8e60d7e70c83473fbad57c1340ffe0c737f42e4a6f518d27518d330d328e2e23fe8fcc8b6fbd26fec1675f66b11835db08d36219b7cdb7ced7406cdfde54b6ced9f5cfd7199c8a09d3d48a"}, &(0x7f0000000480)=0x93)
getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000500)={r3, 0x7, 0xb235, 0xf}, &(0x7f0000000580)=0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
setsockopt$bt_rfcomm_RFCOMM_LM(r5, 0x12, 0x3, &(0x7f0000000340)=0x35, 0x4)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000009000000ff7f0000f900000000000000", @ANYRES32=0x1, @ANYBLOB="02cb020000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\b\x00'/28], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="16000000ff071000fe1f00008800000012000400", @ANYRES32=r1, @ANYBLOB="02cb0000000b000000000008009e4c7eb66a2b15", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000800100"/25], 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3fb, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0xfffffffe, 0x13100, 0x0, 0x1d3}, &(0x7f0000000100), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_EVENTFD(r7, 0x4, &(0x7f0000000140), 0x1)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)

1.92029163s ago: executing program 2 (id=568):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f071, 0x1})
socket(0x9, 0x1, 0x21)
r1 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000100))
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
dup3(r2, r1, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$kvm(0xffffffffffffff9c, 0x0, 0x68c81, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
r6 = openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0)
dup(r6)
socket(0x1e, 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xc, &(0x7f0000000140)={0x7, 0x5}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x1000002)
sched_setscheduler(r7, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r7, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r8, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)

1.700110594s ago: executing program 0 (id=573):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sched_kthread_stop_ret\x00', r0, 0x0, 0xfffffffffffffffb}, 0x18) (async)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sched_kthread_stop_ret\x00', r0, 0x0, 0xfffffffffffffffb}, 0x18)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$sock_int(r2, 0x1, 0x2c, 0x0, &(0x7f0000000280))
r3 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={r3, r1, 0x0, 0xffffffffffffff39, 0x0}, 0x29)
unshare(0x6e060000)

1.456118818s ago: executing program 1 (id=576):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
timer_create(0x2, 0x0, &(0x7f0000000100)=<r6=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000380)={{}, {0x0, 0x9}}, 0x0)
timer_settime(r6, 0x1, &(0x7f0000000140)={{}, {0x77359400}}, &(0x7f0000000040))
r7 = io_uring_setup(0x8a9, &(0x7f0000000300)={0x0, 0xe4ac, 0x80, 0x1, 0x390})
io_uring_register$IORING_UNREGISTER_NAPI(r7, 0x1c, &(0x7f0000000380), 0x1)
r8 = socket(0x10, 0x803, 0x0)
r9 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4048810}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x74, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r10, {0x9, 0xfff1}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_flow={{0x9}, {0x44, 0x2, [@TCA_FLOW_EMATCHES={0x40, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x34, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0x1c, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x0, 0x7, 0x2}}}, @TCA_EM_META_LVALUE={0x4}]}}]}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x51}, 0x20040054)
recvmmsg(r4, &(0x7f0000001e00)=[{{0x0, 0x0, 0x0}, 0xa}], 0x1, 0x0, 0x0)
setsockopt$inet_int(r4, 0x0, 0x14, &(0x7f0000000000)=0x6, 0x4)
sendto$inet(r4, &(0x7f0000000040)='\f\x00', 0xffeb, 0x0, &(0x7f0000000340), 0x10)

1.389578332s ago: executing program 0 (id=577):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000006c0)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES16], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x20, 0x6a3, 0xccd, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x6, 0x180, 0x4, [{{0x9, 0x4, 0x0, 0xfc, 0x2, 0x3, 0x1, 0x3, 0x9, {0x9, 0x21, 0x3, 0x2, 0x1, {0x22, 0x933}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x4, 0x7, 0x8}}, [{{0x9, 0x5, 0x2, 0x3, 0x20, 0x5, 0x9}}]}}}]}}]}}, &(0x7f0000000100)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x200, 0xf, 0xff, 0x5, 0xff, 0x1}, 0x40, &(0x7f0000000080)={0x5, 0xf, 0x40, 0x5, [@wireless={0xb, 0x10, 0x1, 0xc, 0x10, 0x5, 0x6, 0x1, 0x3}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x9, 0x0, 0xfffa}, @ssp_cap={0x1c, 0x10, 0xa, 0xff, 0x4, 0x9, 0xf00, 0x800, [0xf0, 0x3f00, 0xffc00f, 0xf]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x7, 0x1a, 0x8, 0x7}, @ptm_cap={0x3}]}, 0x1, [{0x4, &(0x7f00000000c0)=@lang_id={0x4, 0x3, 0x41d}}]})
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x203, 0x402)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="60000000020605000000000000000000000900353d00078008001140000000000500150002010001000000000000000005000500020900020073797a310000000011000300f132ffffee4ad2d62c6e657400000000"], 0x60}}, 0x0)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x1c, 0x6, 0x0, 0x5, 0x0})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x2ac, 0x30, 0x1, 0x0, 0x0, {}, [{0x298, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x8, 0x395, 0x5, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ctinfo={0x124, 0x5, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0xe}]}, {0xed, 0x6, "ba69c8d721c636bb36f481ea22c7e7a1fe2b2101d68390dd95e144d0af90ce1fa7d3bb4871faeb9e73091fa051b0063374b7a336174326daffcaa170c511dcdccf0f76986451d5fbac9a7759a1b9b9f2f16fc2e6769ba3b257efe10ce9bb78424e200803bdaadb27717a8b7ec71f3d97fd9f3c40853afb0e09c5c83628e559316cba36a755524f17c1c615be5af180276e07d0a0a862a537a7c745e006bc1f06ee8accfe1f610b92012cdee7e042533b7af0ffd069ffa4ec66895632d708ef1e4abd02516bd2921f81653281e355d97607532b80c969ca7285476f6fc1de1a62862ec9fa774eb944f4"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_ctinfo={0xf0, 0x20, 0x0, 0x0, {{0xb}, {0x6c, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_DSCP_MASK={0x8}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x9}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x5}, @TCA_CTINFO_ACT={0x18, 0x3, {0xb8, 0x9, 0x0, 0x2, 0xa}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x9}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x5}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x4}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x9b}, @TCA_CTINFO_ACT={0x18, 0x3, {0xa3, 0x4, 0x7, 0x7, 0x3}}]}, {0x5a, 0x6, "8f996bde78280c689269503c64836baf47ef3185eeb2fe33c5f17f5d71a5a5b3adbde840e9571e4ed763530f3de04cdcffb0bb941c1f9ffe2cb8c45343d4412209112006ca35a1277c7febc311ab219a4d8d9ceeed31"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_xt={0x3c, 0x20, 0x0, 0x0, {{0x7}, {0x14, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8, 0x2, 0x1}, @TCA_IPT_INDEX={0x8, 0x3, 0x100}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x2ac}, 0x1, 0x0, 0x0, 0x804}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, &(0x7f0000000300))
mmap(&(0x7f0000b5f000/0x4000)=nil, 0x4000, 0x100000d, 0x2012, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r5 = io_uring_setup(0x332, &(0x7f0000000080)={0x0, 0x21e, 0x10})
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

1.389187223s ago: executing program 3 (id=578):
ioperm(0x0, 0xf, 0x94f)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0xa13ca8e5839881a8, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0, 0x2000}}], 0x1, 0x0)

1.32008233s ago: executing program 3 (id=579):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12}, 0x50)
syz_emit_ethernet(0x66, &(0x7f0000000680)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x9}, @remote, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "2e5cea", 0x30, 0x3c, 0x0, @rand_addr=' \x01\x00', @mcast2, {[@hopopts={0x0, 0x2, '\x00', [@jumbo={0xc2, 0x4, 0xb}, @calipso={0x7, 0x8, {0x3, 0x0, 0x2, 0x5}}]}], {0x0, 0x0, 0x18, 0x0, @wg=@data={0x4, 0x6}}}}}}}, 0x0)
r2 = getpgid(0x0)
r3 = syz_pidfd_open(r2, 0x0)
r4 = pidfd_getfd(r3, r3, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file7/file0/file0\x00', &(0x7f0000000500)=@OVL_FILEID_V1={0x18, 0xf8, {'\x00', {0x0, 0xfb, 0x15, 0x2, 0x0, "3e6ae85f03eb6b3c5f389545a9049e71"}}}, 0x0, 0x1000)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x7fffffff, 0x0, r4, 0x8, '\x00', 0x0, r4, 0x5, 0x2, 0x4}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @printk={@lli, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xffffff84}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r4}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
write$binfmt_register(0xffffffffffffffff, &(0x7f0000000340)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x80000001, 0x3a, '\xbb\xbb\xbb\xbb\xbb\xbb', 0x3a, '/dev/kvm\x00', 0x3a, './cgroup.cpu/cpuset.cpus'}, 0x47)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="6c0000001000010400"/20, @ANYBLOB="5d580000000000001c001a8018000a801400070000000000000000000000000000000001140003006970766c616e310000000000000000001c0012800b0001006970766c616e00000c"], 0x6c}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r8=>0x0})
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000240)={'netdevsim0\x00', <r10=>0x0})
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ENCRYPT={0x5, 0xf, 0x2}]}}}, @IFLA_LINK={0x8, 0x5, r10}]}, 0x44}}, 0x0)
sendto$packet(r7, &(0x7f00000002c0)="05031c08d3fc1408202b4788031c09102c28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14, 0x10, 0x1, 0x700, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0xfffffffd}, @NFTA_MATCH_NAME={0xc, 0x1, 'physdev\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x20, 0x0, 0x0, {0xa}}}, 0x80}, 0x1, 0x0, 0x0, 0x4008011}, 0x4000800)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x3, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_le_credits={{0x16, 0x8, 0x4}, {0x1, 0x3ff}}}}, 0x11)

1.293241125s ago: executing program 3 (id=580):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000500000085000000d000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x24040084)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x3000000)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r6 = syz_open_dev$evdev(0x0, 0x2fdff7ef, 0x84000)
ioctl$EVIOCSCLOCKID(r6, 0x400445a0, 0x0)
r7 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r7)
socket$rxrpc(0x21, 0x2, 0xa)
r8 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r8, &(0x7f0000000180)=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x24)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11fe", @ANYRES32], 0x3c}}, 0x0)

510.170497ms ago: executing program 1 (id=581):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000000)={0x0, 0x3f, 0x18, 0x13, 0x200, &(0x7f0000000d80)="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"})

460.139988ms ago: executing program 1 (id=582):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000380)='\a\x00\x00\x00\x00e', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AOz\xf9\xde\xc6\x80R55\x96\x9b\xe9\xa6\x1a\x96\xael\x11\xa6\x06\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14\xdfk,\xd9\x1a`\x12\xe8V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\x94\xc1\xa8\xbf\xff\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&t&A0\xa7\xef\x9cL\x8e1K\x00\x00\x00\x00\x00\x00', 0x0) (async)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) (async)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9) (async)
r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000700)='source', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AO\x06)\xb03\xfcI\x95w\x96\x9b\xe9\xa6\x1a\x96\xael\x11\xa6\x06\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14ZM\xcb\xad\x92>\xe5\x01V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\x94\xc1\xae\x9c\xba\x1c\xfa\xbc\xa8\xbf\xff\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&t&A0\xa7\xef\x9cL\x8e1K', 0x0)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
socket(0x2, 0x80805, 0x0) (async)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @sliced={0x5, [0x4, 0x7, 0x6, 0x1929, 0x8, 0xd, 0x6, 0xa083, 0x6, 0x8, 0x1ff, 0x0, 0x73, 0x0, 0x8, 0x0, 0x0, 0x7fff, 0x0, 0x100, 0x5, 0x3, 0x200, 0x5, 0x40, 0xffff, 0x523c, 0x0, 0x3, 0x3a2, 0x9, 0xef, 0x4, 0x5d39, 0x7, 0xd5, 0x2, 0x4, 0xcd, 0xfe00, 0x6, 0x7, 0x7, 0x2, 0x7fff, 0x5, 0x77, 0x4], 0xeeb8c0a}}) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRES64], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0)
read$msr(r2, &(0x7f0000019540)=""/102392, 0x18ff8) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[], 0x38}}, 0x4040) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe160, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
writev(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = getegid()
fchown(r2, 0x0, r4) (async)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d) (async)
syz_open_dev$usbfs(&(0x7f0000000480), 0xd, 0x141341) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'bridge0\x00'}) (async)
r5 = socket(0x10, 0x80002, 0x3)
connect$inet6(r5, 0x0, 0x0) (async)
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[], 0x44}, 0x1, 0x0, 0x0, 0x4041}, 0x8000) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

388.078459ms ago: executing program 1 (id=583):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={{0x14, 0x10, 0x1, 0x0, 0xfffffff4, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0x30, 0x18, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x58}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000e00)={&(0x7f0000000c40)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x3, 0x0, 0x0, [{}]}]}}, 0x0, 0x32, 0x0, 0x1}, 0x28)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x8080)

387.743007ms ago: executing program 3 (id=584):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
socket$netlink(0x10, 0x3, 0x7)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
setsockopt$CAN_RAW_FD_FRAMES(r2, 0x65, 0x5, &(0x7f0000000040), 0x4)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{0x0}], 0x1)
r3 = socket$kcm(0x2b, 0x1, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000100)={0x20000014})
bind$inet(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r5}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r6 = syz_io_uring_setup(0x371d, &(0x7f0000000440)={0x0, 0x6ef2, 0x400, 0xa, 0xffffff}, &(0x7f0000000380), &(0x7f0000000b00))
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
syz_create_resource$binfmt(0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
write$dsp(0xffffffffffffffff, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), 0xffffffffffffffff)
r8 = open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x89103)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYBLOB="0700000000000000a0010000000000000400000000000000c403000000000000080000000000000076020000000000000100000000000000e60b0000000000000300000000000000b5030000000000000e0000000000000425020082e771fb2a1cbc975c7600000000000600000000000000530800"/130])
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_FLUSH(r9, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB="c4000000", @ANYRES16=r7, @ANYBLOB="01000000000000000000011500002c000280060002004e2000000800090010000000060002004e210000080007000101000006000f000700000008000400ff7fffff1400028008000600020000000800090008000000080004000200000060000180080009005600000007000600666f00000c0007002000000002000000080008000100000008000b00736970000600010002000000080005"], 0xc4}}, 0x4008800)

337.229194ms ago: executing program 1 (id=585):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000600)=@raw={'raw\x00', 0x8, 0x3, 0x24c, 0x0, 0x11, 0x148, 0x0, 0x0, 0x1b8, 0x2a8, 0x2a8, 0x1b8, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0x128, 0x0, {}, [@common=@unspec=@devgroup={{0x34}, {0xc, 0x8, 0x4b, 0x4, 0x3}}, @common=@ttl={{0x24}, {0x1, 0x9}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x2, 0x4, 0x2, 0x3, 0x2], 0x1, 0x4}, {0xfffd, [0x4, 0x0, 0x0, 0x7, 0x1, 0x2], 0x4, 0x7}}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010101, 0xff, 0xffffffff, 'gre0\x00', 'netdevsim0\x00', {}, {}, 0x6}, 0x0, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x2a8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="063142db63fd81d3812888cef91adefdf99d3d40000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x4, &(0x7f00000009c0)={0x7, 0x0, 0x0, &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
geteuid()
mount$tmpfs(0x0, &(0x7f0000000040)='./cgroup/file0\x00', &(0x7f0000000080), 0x4c0, &(0x7f0000000180)=ANY=[@ANYBLOB="f5"])
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
io_setup(0x4, &(0x7f00000014c0)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f00000003c0)={<r3=>0x0, 0x8b, "beab89d4a84deb1821709f0eb00270244e6f4e07e3f7361f99e5385be4211d1e564d65dc7ba168d54bcce6fe24c66036c07cfe1eac866a9206fd82b4e198817d8e60d7e70c83473fbad57c1340ffe0c737f42e4a6f518d27518d330d328e2e23fe8fcc8b6fbd26fec1675f66b11835db08d36219b7cdb7ced7406cdfde54b6ced9f5cfd7199c8a09d3d48a"}, &(0x7f0000000480)=0x93)
getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000500)={r3, 0x7, 0xb235, 0xf}, &(0x7f0000000580)=0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
setsockopt$bt_rfcomm_RFCOMM_LM(r5, 0x12, 0x3, &(0x7f0000000340)=0x35, 0x4)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000009000000ff7f0000f900000000000000", @ANYRES32=0x1, @ANYBLOB="02cb020000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\b\x00'/28], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="16000000ff071000fe1f00008800000012000400", @ANYRES32=r1, @ANYBLOB="02cb0000000b000000000008009e4c7eb66a2b15", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000800100"/27], 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3fb, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0xfffffffe, 0x13100, 0x0, 0x1d3}, &(0x7f0000000100), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_EVENTFD(r7, 0x4, &(0x7f0000000140), 0x1)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)

278.207912ms ago: executing program 2 (id=586):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0xf)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
setxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0/file0\x00', 0x0, &(0x7f0000000080), 0x2, 0x0)
gettid()
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
connect$tipc(r2, &(0x7f0000000040)=@id, 0x10)
r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
readv(r3, &(0x7f0000001400)=[{&(0x7f0000001440)=""/4096, 0x1000}, {0x0, 0xe0ff}], 0x2)
sendmmsg$unix(r2, &(0x7f0000004400), 0x400000000000203, 0x101d0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r4=>0xffffffffffffffff})
getsockopt(r4, 0xd, 0x9, 0x0, 0x0)

248.708719ms ago: executing program 3 (id=587):
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a000000050000000300000004"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
syz_open_procfs(0x0, &(0x7f0000001100)='net/wireless\x00')
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x4001af84, &(0x7f0000000500))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1e, 0xd1117e5, &(0x7f0000000240)=ANY=[@ANYRESDEC=r0], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
gettid()
fcntl$addseals(r1, 0x409, 0x9)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[], 0x50)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
mount(&(0x7f00000006c0)=@sr0, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='iso9660\x00', 0x204001, 0x0)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180), 0x1e3003, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r5, &(0x7f0000000300))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[], 0x50)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r6, &(0x7f0000002080)={0xfc, {"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", 0x1000}}, 0x1006)
socket$netlink(0x10, 0x3, 0x5)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, &(0x7f0000000040)={0x0, 0x46, 0x2})

0s ago: executing program 3 (id=588):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000001100)='net/wireless\x00')
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0xf)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
gettid()
fcntl$addseals(r2, 0x409, 0x9)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[], 0x50)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
renameat2(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', r1, &(0x7f0000000180)='./file5\x00', 0x3)
getdents(r0, &(0x7f0000000140)=""/31, 0x1f)
mount(&(0x7f00000006c0)=@sr0, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='iso9660\x00', 0x204001, 0x0)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x1e3003, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r5, &(0x7f0000000300))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004140)=ANY=[@ANYBLOB="02000000040000", @ANYBLOB="000000000000000018004a28e495d6e91be6fb1d9a20ff730e5fe4621b8768", @ANYBLOB="1f15c2663936d0145be26d7ea8653335edd2c09ae5d13b36b3b2bc2aa842eff83a79fdd5ee1df58091818dbb6626a40810775e9d28a17419d6bd9352db10ad75b1f266d7981e716ed50c327f3f47b39900b4cbf7c9c986326f64e1ae288183b5f805cb2d8ad8c4a5500ecccf633d269f00c8cdfe3e0f667b511e50e4298f7884adc92b88f6a77285de48a88e0a92f57d1868982854595982fa60f18770cf39291bcf95ef86b88afee986d75ae1aebb530030166ea2a20e1133989ff904bd411675d89d9827261ed3044e5d1f0b114a6a434a92dd433ac0e84d55ff09fe13469fbfe12bb093f01635f55d4943abe6e949539a7dc64167b725e4c1b4cd8fcb52b989174ffb58e85ab2af3d46538d616af5adc3f936c5b86b2a0afec1039716c381200e26603dd9844570ab737cfc65bb147eab3863834ee8f971f1d23fde1d8586681f97b9fc715b9b81211ba0a3638565a6e389c01608080909f0b3a7ca675f52922e19cf40b1ef127bc79b0ea80671e74c326fe22e0115d3f3dff88f7ed2c313648d28c6fc8e218b528b56b1af9d2b4a898abf8f5638aedc49b9ccab69fc1d179f22d0b58093e67cddf2af12c8bc3016217ec8de0c2a191bdee789111014395b73a35000de9a4d44e974067e22773d569be4e0731f9347536dcb7a6ac924958cd9b299c67b09b9e0fb8673c596b53ff6b9714d5a86b833176b9b4c57b907a807e2505c73977a16a6f30fb3f821ed46256832c57df3b42e7cbbcf3de0fc09d6eb78d0e1d0afd002940fa0d4aa1e7e11e01b410d9a6f9dbee760f81329772033b1045649907c80d89e86adbd860a5ce55b9ca9a5fbef774be0b084746640a8ada57a684ac3f6e61d64eb766f5c0dfd9c4c2553c8fea17be7a2c438f2445198feab6149085e002482a655809b5fb523dad38bc22a506871a7f749e6dd32c25d12dd3cef6257aec8a684e87c380cf21d961dcc6a19997f07c655e0bfa1d7944b71281becac52b6d1cf6929abb6ed4f36b33a2340a18f1044159e623a592f0d9bfbea1fc66dd71a9118259b155984fdbea2aef572daed20d58cb441ed0ee395cfde5ac54e60d41210b71c9d42f52e05755aa937f8bfff15a68c493e9208b7b66203bcfd06cbeca3128832cb19ee48f246731a350aad250a70b950e90fa9d2bd641dd1c247f1a18a85d2b444a93bbe10616a864b811c8bf733a6bc603a7b4d515c156e73eba4fee34a2afa1df7d802c8ab9d5b68749f0f7c61112862ad790772d07ebd5a4cb305d826c0584e38b5eea90cac7c5799ad8bade81df39827c0797d3baa42f2227c27c2c40c29196586819547c2b9c0c6b07860b7d1af749c240273526f294be6395a4b6e19411d7cce4ade0533bd5b8bcfda54cca4c248223a35bf124a18c74c079e1d31d06729b9eb08cd39e58574de56c40fc96d62df67c0c2811ad641d1c6285b8107516aa6f0ffd69fc5e600d98d2d6dfe2c2b9603275406423fd0ce4c88f99e9962eb75be45102b2ff3b89fa0de79ea80eb65f5fd4583b86d88d34dcdced1282fc451b4d75cd43f88fd5bd74210a2785abd9d3e4f9101f5c6b8684cd7a8f4b4050dd999cc13339c3a98817da0396997b311c7e6c95ad8d40c9f96162b4a444fe07ef620c83757978584b19afe68e623a2960d215062622c0fddbdb0d2a029290b8587a4a155adcbd5629746eb981d6c9f0da4bcad8dcbc72942ec3c220b89a65f7d1bbd25e4f83100109e957c14e5dad53311de7a10c11fe2dcb1940763e9cffed673f943e382f05999e6d5dbf29d6f0fc529194d07ebae66e0172274d736058cb64d56de1774b3df1738a3acea60a763475c322a48c8932111ee01ec85e0e43ecd955541ba14a33cf67af40eee1709e2ae014eb017741ec62bddd8660eb5947c9911000b57ca81760f36c9bfa7bcf2fdbb7992a1e53f690f66582026a3e4b58812d93a8145c0066a20619f4597a70a5a9157182cd4cae9ff3e547f836b260ca93b4493ffb8a3ca1a7fb9cc21d8704fbf99cfdf2f710915fca25673e2f00a71a9754a51cb8c20738d79640932ef2c215cb142e7df1ca2ff27ead10b318f9700b7ca07c2b4858f9472c79d55b1c11a050870a67d6a9fec6b017fcdf9e1301abd00968b5f172ffe6b2c8f58092eb4ef96b71cca0c20045cff2b03dbd9f8571a5f331bee427ed38980f52899d8e8254f96bc5e65c2f2021ae7054f418489e645ab167c897aaef892a69955ce498cbc6035b0e38fdd777bf0d3b6860e4240168c343bb3152a079c204158acb052b7bcd2c55deafbf068cc194b9c4d51078fe7033df94e262082a0bbdf2ff56731ae5311e2e1b4a8dd62d54b02463befae273e35406d4607155d3cfffaddb8ddf55dfc56a6f80e3042d882711052edcd869af2019f13104ea63c04b19112577a98848468642e46b49ae3cc81e72bf5c63cb126a3312f364b0efa12b9dd97a96871459a274a127eb0d11d8c599b3309dec99ff510fb84ff916eb4c23671efb21acb61c853bc540db8dcc17a5b0e48e9402baa58ddfa1c3fc06b61cecf3162c349c77215c3b96dd8d89bd04a9bb2c3e265bbe372ccae14d81b8ba6ea331bf7a4e4bd986ec01adf275b048a6f1874834ae9d6ad768b5f0b24ddd3c1f96b496c9c5ce935de869cf964cd6331f34a86226fcf2529eec25f7baa40da08dd7ff963d4f0fdf2ef8f6685568150684b34ddf01df753b78e3750b07709e998767887f8c02ffd9d3f4817ef6e94b72cd25bc625bb9143031290d23f090f3c99a204e82089b78c2e56e5fe5b8da2ef8b7c6ec1f86b78a03c683af177088135dfa3d3ec078d950bd35930fec3864e77e2c5fcb91beb28ecdd6ba7d0855612af8ac057741becd5ffa10f44d09453dec0e0bed733144526fcbc6c39fc329f5f8368e2ede988adf2721bd67a3aac5e269f8804cdf61c33cf7b5709167b84749b8c215fdf0d7a6137167dfd78d41eba56862b9256359ac59dc6eeb22cc1b16a87733389db4404db53188a9c0d437bd530fed71df9974c487554404f3ebab7e8a64c37bb743fafbb47b74a79847ebde16c32dc22c48549a45879e4379ba5e30fd12f49faf1cd32bf67830f18c3e8334054816588492f0e070370142a7383cb05989c534d14b372d50d4900d5d7eebc3bf97808b3eea035729046743294de4d81ad2590475b9db75f9d26f34e4b1ba61fe6e30a2ba61927f63cbd4a089a9d44ca9cabb4e2bfd971f9e085e933129fdfb698ea32fbd1a962e97370f2a2ae58e0e2fa1bc59250ea8a8edeaa8125d16742e6394350eac919df4ee9a498bf08a970f76d20b241e1659f85a414167e5329fa3445b8197bfb1217582ad60c8ef8fcd4af290b48610445e8b491fe8e416f80cf6a4749ee8f98232e4407fd70689629823c4191cca64f5b5b960fe86a0409ab928f847796d26e372115772b2a16279957d96c131d103dbc292e62f1e8a5527acd3f135b9f616f74181c9514f99b77cf0c1113157ad1d2b6cb6af0384f9ac66de79868ca8f9dd4362342fa3737c2355398fd15015588ac51752670833603991a35ced11671c5254bbbaeb355b52b9efb92af097e5983b29fda57f4d9fc9220890cd982c97d0fa8e595033de3987a0652a9eef2318d36e3f2321976a2c7d7a10ae583d2859733544955032e1b13bb164870c41c19e723d7d1a6745abcfdc9becb30bf6e4fe5affbfd50c8718280bd4ed9800ce3d07870ef17ffed58cbe5505e8d50b27009c91f95188b0eb14d6bc73ea2202feeb02cdb7920d021b623d4eaa34388a8dbc9969a9d6c8e2b1166f1817f8d1f2e1ca5d675e0e898582bf429a2eb4653ad5f97a67346d881c6f450a4146604e555b247e57aa673506c3520b006dff3a53c0fea3373691ffe41bf31888d557e568ee49f8503dd83f16bf945b1bb41f234052ff2241a0df6f5ce9f54bbd2a97c2906fe1a106292580b2332c36d7813d23be7306f07a3b3c1a6ddc809047015eb8ea575d61691c31bbba34c3db97068c38da267fae47bd61964c360ead45cb6ee8b93a963cdf3d10ba9f22922695ed6bc6756a727448e3dffc8e331a4c497670296cc6a2331a5896df6314d5ab6925d2e8f18f615cb4a1a5200735d4a6e94a93f704ace359c1a0920a76ab932723c2f80895a733e9bf6f4586fbac54fe2dc94133bf5c98e0b78ff3df1323f28e545aa79c265e63521d288f741c32f3882229fbff67db8a7f9aab82e8d13c582911395366e2d9ea1d67d9ed4b75869a5894730612fe6cedc9182cec5b50e2929369138e70dda057b71f33bff986997245bd85498cba0184c0262d7372457bf88f90d4d77bc3c619e7c80d7ab75a0372b5ee54820e34efdab41d9597f2c971617a3cadefd84f7700574eac7e75db6da8300efc300c0a2a4bd8291cc4b3fd44797ee6d76ebbd5da91a28f33f8cba5d47de4d0859696c71d400abf72d1857bdbd2e36e52173dc1996e832da8a1e703315e5d4bce4061d824a844caf3c4c6b761525210f9f8fc343d06569f0645f23d586cced89849f44a5735a6272c79bccc977c319a0a7c4d3aa45af3d0675500562b5c0e5341e2a86a6355fa510e987e5998f1589e1b0f071678682c68fc3443d3e60304acfb6b5665cddcb7c4f9e6ff56e7b3e902c8bb80a0bb064762eef5df0c7751baab61f57152a80dcf151dcd458c45dc0c7461fa8462b38bebf483a58fd18a8639d601232cc6f83471822f32817aac1e8323dd8ed5cf339301faaf858c0ebc89ea5f948348b6997f509526eb95257fb8b3f42e2f705ef94c9d79087c219df28026998ea9ff1bb78ba7dbb4b4aafec20b55760da94509de0dba45eb8d4f51fc6c19f4cd1b01852efad7af6f546c1bc71cf553d7f72a9847c2fff23c9a110cb61e981d8fe2b236da79d593afc0e524cf7ef2bc446ecf5ecccb7e8a071907ffe6e3c5b80a33e913dcd7754c7736c8253bd6b524362ae437cbb01a9c063e9fb42e4fda93221203a409d239dd0af6aaff671d36c79503f0fd99b78c171a80d29bbbe5d1a2440c6add499bbdc766ce09030ef5a615430e1bdfc60a1ae7a491e9787fce0e266051525fed232697877c76cc39b3a77329780606b105ac5b7f7ab81814f4a2f629f07d42bcfcab3ee6fae67ea15ff30dde0560e91e509e944510722e97b566494daad981e3c972baec7ab1ad9672210b60fa7db5359f53a5567c0ebe7187f9a9f81bee34e4821b5fedde56b0c376a8c7d4955a88857639842dd53fc9c3f71be193e40144d41ffc1cc6f087558634f57f7c3bb89cc87d09098c7b66b992b44f8842db25ecaed77af16b8c84e3c2da5217cf47f5728260051dfe5e4a09739922737497f308e0108b1e60dce601068060d49c1e4640ba506140130d23f35c35f5cf11895e58334fdeb890d74d7a07ed7fec2e91370f283d7c252c7724345f0d58e7f7fb688f35b05b298022eb7269c85c29256777dac8199c12cbdb406ccf4e50a2de8fddd3d378daa6326ed1afcbfe077ba1aaa12848f46f9a24b6076dd06bfb54f35f6818e6dd75ac618a9cb80aa429c843c21d8d0dcfbe06507c5c4c23c048222e9dc165f9b72182e7d7e6aadcf4abd728dddb11c7e67ccad569dd034aadc63d5b2d5bf3f7e60b506fb30aaf7287eb3a0104430a9161990498e89e79e5acce74296b5770187058cdce277a38c4f82a5d3197e4f3ea691d668ebaee814fdccf1f22d0cd246d5a0f64725a7a012668fcfa7a9f303adbd002b7a871d9ac1fae9de0c74e5510ba9fe41100f821f3725ee23a2dd0e82b13b1d9d5c198c7345", @ANYRESDEC=r1, @ANYBLOB="000000000200"/28], 0x50)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r6, &(0x7f0000002080)={0xfc, {"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", 0x1000}}, 0x1006)
socket$netlink(0x10, 0x3, 0x5)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, &(0x7f0000000040)={0x0, 0x46, 0x2})
io_submit(0x0, 0x0, 0x0)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
connect$unix(r4, &(0x7f00000003c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:1363' (ED25519) to the list of known hosts.
[   47.751202][ T5915] cgroup: Unknown subsys name 'net'
[   47.890451][ T5915] cgroup: Unknown subsys name 'cpuset'
[   47.894662][ T5915] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   49.012535][ T5915] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   53.161424][ T5948] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   53.165976][ T5948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   53.168970][ T5944] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   53.169520][ T5948] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   53.173417][ T5944] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   53.175447][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   53.176887][ T5951] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   53.178110][ T5944] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   53.178430][ T5951] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   53.178865][ T5951] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   53.179841][ T5951] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   53.180641][ T5951] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   53.180922][ T5948] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   53.181181][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   53.184252][ T5944] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   53.205386][ T5944] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   53.207313][ T5955] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   53.219284][ T5955] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   53.223373][ T5955] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   53.226929][ T5955] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   53.578622][ T5943] chnl_net:caif_netlink_parms(): no params data found
[   53.583518][ T5939] chnl_net:caif_netlink_parms(): no params data found
[   53.701573][ T5940] chnl_net:caif_netlink_parms(): no params data found
[   53.808321][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.811397][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.814662][ T5943] bridge_slave_0: entered allmulticast mode
[   53.822988][ T5943] bridge_slave_0: entered promiscuous mode
[   53.921003][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.924121][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.927117][ T5943] bridge_slave_1: entered allmulticast mode
[   53.931116][ T5943] bridge_slave_1: entered promiscuous mode
[   53.950231][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.953307][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.956364][ T5939] bridge_slave_0: entered allmulticast mode
[   53.960314][ T5939] bridge_slave_0: entered promiscuous mode
[   54.025550][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.028674][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.031622][ T5939] bridge_slave_1: entered allmulticast mode
[   54.035330][ T5939] bridge_slave_1: entered promiscuous mode
[   54.068894][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.153367][ T5952] chnl_net:caif_netlink_parms(): no params data found
[   54.162690][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.166638][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.169855][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.172596][ T5940] bridge_slave_0: entered allmulticast mode
[   54.175164][ T5940] bridge_slave_0: entered promiscuous mode
[   54.182556][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.191624][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.224805][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.227784][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.231070][ T5940] bridge_slave_1: entered allmulticast mode
[   54.234488][ T5940] bridge_slave_1: entered promiscuous mode
[   54.295686][ T5943] team0: Port device team_slave_0 added
[   54.352222][ T5939] team0: Port device team_slave_0 added
[   54.362767][ T5943] team0: Port device team_slave_1 added
[   54.397630][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.403444][ T5939] team0: Port device team_slave_1 added
[   54.471507][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.554967][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.557901][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.566213][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.643388][ T5952] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.645846][ T5952] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.648506][ T5952] bridge_slave_0: entered allmulticast mode
[   54.651396][ T5952] bridge_slave_0: entered promiscuous mode
[   54.664205][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.666604][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.675799][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.682813][ T5940] team0: Port device team_slave_0 added
[   54.686068][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.689150][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.700067][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.709503][ T5952] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.712587][ T5952] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.715672][ T5952] bridge_slave_1: entered allmulticast mode
[   54.719340][ T5952] bridge_slave_1: entered promiscuous mode
[   54.728346][ T5940] team0: Port device team_slave_1 added
[   54.731904][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.734828][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.745525][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.779616][ T5952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.802397][ T5952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.914011][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.916947][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.928008][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.953651][ T5943] hsr_slave_0: entered promiscuous mode
[   54.956096][ T5943] hsr_slave_1: entered promiscuous mode
[   54.984988][ T5939] hsr_slave_0: entered promiscuous mode
[   54.988112][ T5939] hsr_slave_1: entered promiscuous mode
[   54.990893][ T5939] debugfs: 'hsr0' already exists in 'hsr'
[   54.993155][ T5939] Cannot create hsr debugfs directory
[   54.997050][ T5952] team0: Port device team_slave_0 added
[   55.000812][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.003681][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.014193][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.027778][ T5952] team0: Port device team_slave_1 added
[   55.083317][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.086124][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.096642][ T5952] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.160481][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.162693][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.171714][ T5952] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.208914][ T5953] Bluetooth: hci2: command tx timeout
[   55.208921][ T5955] Bluetooth: hci0: command tx timeout
[   55.278281][ T5953] Bluetooth: hci3: command tx timeout
[   55.278319][ T5955] Bluetooth: hci1: command tx timeout
[   55.286830][ T5940] hsr_slave_0: entered promiscuous mode
[   55.289234][ T5940] hsr_slave_1: entered promiscuous mode
[   55.291479][ T5940] debugfs: 'hsr0' already exists in 'hsr'
[   55.293111][ T5940] Cannot create hsr debugfs directory
[   55.453466][ T5952] hsr_slave_0: entered promiscuous mode
[   55.457040][ T5952] hsr_slave_1: entered promiscuous mode
[   55.464380][ T5952] debugfs: 'hsr0' already exists in 'hsr'
[   55.466770][ T5952] Cannot create hsr debugfs directory
[   55.721046][ T5943] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   55.732541][ T5943] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   55.747114][ T5943] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   55.755877][ T5943] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   55.803452][ T5939] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   55.811494][ T5939] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   55.817807][ T5939] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.841138][ T5939] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.900353][ T5940] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   55.909199][ T5940] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   55.915674][ T5940] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   55.921191][ T5940] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   55.999469][ T5952] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   56.006645][ T5952] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   56.013914][ T5952] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.019684][ T5952] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.035133][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.064662][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[   56.083400][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.086555][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.099694][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.105262][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.108380][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.146636][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.171434][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[   56.180162][ T5940] 8021q: adding VLAN 0 to HW filter on device team0
[   56.196865][  T222] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.199313][  T222] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.204016][  T222] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.206309][  T222] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.222417][  T222] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.225474][  T222] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.230184][  T222] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.233349][  T222] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.255578][ T5952] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.281826][ T5952] 8021q: adding VLAN 0 to HW filter on device team0
[   56.294077][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.296550][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.302836][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.305092][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.354362][ T5952] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.392903][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.434314][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.447842][ T5943] veth0_vlan: entered promiscuous mode
[   56.470800][ T5943] veth1_vlan: entered promiscuous mode
[   56.485152][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.493884][ T5939] veth0_vlan: entered promiscuous mode
[   56.505553][ T5952] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.517449][ T5943] veth0_macvtap: entered promiscuous mode
[   56.521562][ T5939] veth1_vlan: entered promiscuous mode
[   56.535206][ T5943] veth1_macvtap: entered promiscuous mode
[   56.550374][ T5940] veth0_vlan: entered promiscuous mode
[   56.567636][ T5940] veth1_vlan: entered promiscuous mode
[   56.574968][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.582070][ T5939] veth0_macvtap: entered promiscuous mode
[   56.590557][ T5939] veth1_macvtap: entered promiscuous mode
[   56.599647][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.606432][ T5952] veth0_vlan: entered promiscuous mode
[   56.614777][  T103] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.624639][  T103] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.629026][  T103] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.641761][  T103] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.651776][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.657077][ T5952] veth1_vlan: entered promiscuous mode
[   56.660466][ T5940] veth0_macvtap: entered promiscuous mode
[   56.663946][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.669924][  T103] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.677015][ T5940] veth1_macvtap: entered promiscuous mode
[   56.688906][  T103] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.692560][  T103] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.700623][  T103] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.738693][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.756364][  T222] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.761629][  T222] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.765827][ T5952] veth0_macvtap: entered promiscuous mode
[   56.776591][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.780011][ T5952] veth1_macvtap: entered promiscuous mode
[   56.794048][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.798411][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.813630][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.816428][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.821320][  T222] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.825748][  T222] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.842092][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.845342][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.853906][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.877417][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.902093][ T5943] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   56.904012][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.910610][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.914241][   T52] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.917839][   T52] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.930894][   T52] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.933825][   T52] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.945711][ T1143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.954743][ T1143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.019253][ T6033] Cannot find add_set index 0 as target
[   57.084327][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.087401][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.091315][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.094967][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.248155][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.283315][ T5955] Bluetooth: hci0: command tx timeout
[   57.286553][ T5955] Bluetooth: hci2: command tx timeout
[   57.303385][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.326831][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.348636][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.363185][ T5953] Bluetooth: hci1: command tx timeout
[   57.365747][ T5953] Bluetooth: hci3: command tx timeout
[   57.448496][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.450879][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.498909][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.553514][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.668207][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.728133][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.765441][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.769493][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.302314][ T6066] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[   58.565930][ T6071] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[   58.568216][ T6071] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   58.658796][ T6071] vhci_hcd vhci_hcd.0: Device attached
[   58.718653][ T6071] process 'syz.0.9' launched '/dev/fd/13' with NULL argv: empty string added
[   58.902383][ T6076] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   58.919127][  T844] usb 38-1: SetAddress Request (2) to port 0
[   58.921905][  T844] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[   59.155724][ T6079] Invalid logical block size (16646144)
[   59.247220][ T6081] input: syz1 as /devices/virtual/input/input5
[   59.255481][ T6081] netlink: 60 bytes leftover after parsing attributes in process `syz.1.12'.
[   59.259280][ T6082] netlink: 60 bytes leftover after parsing attributes in process `syz.1.12'.
[   59.269884][ T6084] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   59.309792][ T6082] team0: Port device team_slave_1 removed
[   59.358206][ T5955] Bluetooth: hci2: command tx timeout
[   59.360589][ T5955] Bluetooth: hci0: command tx timeout
[   59.440634][ T5953] Bluetooth: hci3: command tx timeout
[   59.442591][ T5953] Bluetooth: hci1: command tx timeout
[   59.461015][ T6093] Cannot find add_set index 0 as target
[   59.466611][ T6087] netlink: 32 bytes leftover after parsing attributes in process `syz.3.14'.
[   60.339258][ T6011] IPVS: starting estimator thread 0...
[   60.402920][ T6072] vhci_hcd: connection reset by peer
[   60.405899][   T13] vhci_hcd: stop threads
[   60.407846][   T13] vhci_hcd: release socket
[   60.410113][   T13] vhci_hcd: disconnect device
[   60.438414][ T6097] IPVS: using max 44 ests per chain, 105600 per kthread
[   60.441831][ T6100] tipc: Started in network mode
[   60.443490][ T6100] tipc: Node identity 3a6412e21b37, cluster identity 4711
[   60.445846][ T6100] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.448542][ T6100] syzkaller0: entered promiscuous mode
[   60.450665][ T6100] syzkaller0: entered allmulticast mode
[   60.500377][ T6100] tipc: Resetting bearer <eth:syzkaller0>
[   60.504927][ T6099] tipc: Resetting bearer <eth:syzkaller0>
[   60.511302][ T6099] tipc: Disabling bearer <eth:syzkaller0>
[   60.626743][   T40] audit: type=1326 audit(1761529856.089:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.635270][   T40] audit: type=1326 audit(1761529856.089:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.645349][   T40] audit: type=1326 audit(1761529856.089:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.654851][   T40] audit: type=1326 audit(1761529856.099:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.662890][   T40] audit: type=1326 audit(1761529856.099:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.670370][   T40] audit: type=1326 audit(1761529856.099:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.679210][   T40] audit: type=1326 audit(1761529856.099:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.687229][   T40] audit: type=1326 audit(1761529856.099:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.694427][   T40] audit: type=1326 audit(1761529856.099:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.700846][   T40] audit: type=1326 audit(1761529856.099:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.3.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   60.730317][ T6115] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.733210][ T6115] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.789951][ T6115] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   60.796025][ T6115] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   60.855391][ T6124] Cannot find add_set index 0 as target
[   60.883526][   T13] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   60.887116][   T13] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   60.891218][   T13] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   60.894994][   T13] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   60.973690][ T6128] netlink: 'syz.3.26': attribute type 2 has an invalid length.
[   61.261356][ T6147] netlink: 164 bytes leftover after parsing attributes in process `syz.1.32'.
[   61.378691][ T6149] netlink: 4 bytes leftover after parsing attributes in process `syz.1.33'.
[   61.421411][ T6150] netlink: 8 bytes leftover after parsing attributes in process `syz.3.28'.
[   61.438122][ T5953] Bluetooth: hci2: command tx timeout
[   61.438173][ T5955] Bluetooth: hci0: command tx timeout
[   61.489546][ T6153] netlink: 'syz.1.34': attribute type 3 has an invalid length.
[   61.550117][ T6150] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.556339][ T6150] 8021q: adding VLAN 0 to HW filter on device team0
[   61.583634][ T5955] Bluetooth: hci1: command tx timeout
[   61.583642][ T5953] Bluetooth: hci3: command tx timeout
[   61.608262][ T6150] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   61.716652][ T6158] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[   61.835526][ T6162] Cannot find add_set index 0 as target
[   61.836012][ T6163] Cannot find add_set index 0 as target
[   62.782043][ T6177] loop6: detected capacity change from 0 to 524287999
[   62.884941][ T5950] Buffer I/O error on dev loop6, logical block 65535998, async page read
[   62.897825][ T5958] Buffer I/O error on dev loop6, logical block 65535998, async page read
[   63.421210][ T6180] infiniband syz2: set down
[   63.422805][ T6180] infiniband syz2: added ipvlan0
[   63.802951][ T6180] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[   63.805611][ T6180] infiniband syz2: Couldn't open port 1
[   63.826478][ T6180] RDS/IB: syz2: added
[   63.828402][ T6180] smc: adding ib device syz2 with port count 1
[   63.830830][ T6180] smc:    ib device syz2 port 1 has no pnetid
[   63.999215][  T844] usb 38-1: device descriptor read/8, error -110
[   64.212749][ T5958] Buffer I/O error on dev loop6, logical block 32767999, async page read
[   64.845454][  T844] usb usb38-port1: attempt power cycle
[   65.268187][ T6223] Cannot find add_set index 0 as target
[   65.358977][ T6226] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'.
[   65.500278][  T844] usb usb38-port1: unable to enumerate USB device
[   65.557367][ T6231] FAULT_INJECTION: forcing a failure.
[   65.557367][ T6231] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   65.562867][ T6231] CPU: 1 UID: 0 PID: 6231 Comm: syz.1.52 Not tainted syzkaller #0 PREEMPT(full) 
[   65.562889][ T6231] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.562899][ T6231] Call Trace:
[   65.562905][ T6231]  <TASK>
[   65.562912][ T6231]  dump_stack_lvl+0x16c/0x1f0
[   65.562951][ T6231]  should_fail_ex+0x512/0x640
[   65.562979][ T6231]  _copy_to_user+0x32/0xd0
[   65.563006][ T6231]  simple_read_from_buffer+0xcb/0x170
[   65.563033][ T6231]  proc_fail_nth_read+0x197/0x240
[   65.563052][ T6231]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   65.563071][ T6231]  ? rw_verify_area+0xcf/0x6c0
[   65.563087][ T6231]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   65.563104][ T6231]  vfs_read+0x1e4/0xcf0
[   65.563125][ T6231]  ? __pfx_vfs_read+0x10/0x10
[   65.563140][ T6231]  ? find_held_lock+0x2b/0x80
[   65.563164][ T6231]  ? __fget_files+0x20e/0x3c0
[   65.563187][ T6231]  ksys_read+0x12a/0x250
[   65.563218][ T6231]  ? __pfx_ksys_read+0x10/0x10
[   65.563238][ T6231]  ? rcu_is_watching+0x12/0xc0
[   65.563259][ T6231]  __do_fast_syscall_32+0x7c/0x300
[   65.563280][ T6231]  do_fast_syscall_32+0x32/0x80
[   65.563299][ T6231]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   65.563319][ T6231] RIP: 0023:0xf700d579
[   65.563331][ T6231] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   65.563346][ T6231] RSP: 002b:00000000f53dc590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   65.563362][ T6231] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000f53dc620
[   65.563372][ T6231] RDX: 000000000000000f RSI: 00000000f73a5ff4 RDI: 0000000000000000
[   65.563382][ T6231] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   65.563391][ T6231] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   65.563400][ T6231] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   65.563423][ T6231]  </TASK>
[   65.639306][    C1] vkms_vblank_simulate: vblank timer overrun
[   66.533544][ T6241] tipc: Started in network mode
[   66.535769][ T6241] tipc: Node identity aaaaaaaaaa32, cluster identity 4711
[   66.539470][ T6241] tipc: Enabled bearer <eth:vlan0>, priority 10
[   66.654992][ T6244] syz.1.55 uses obsolete (PF_INET,SOCK_PACKET)
[   66.715899][ T6248] netlink: 'syz.0.56': attribute type 2 has an invalid length.
[   66.718432][ T6248] netlink: 'syz.0.56': attribute type 1 has an invalid length.
[   66.720874][ T6248] netlink: 224 bytes leftover after parsing attributes in process `syz.0.56'.
[   66.889848][ T6254] netlink: 12 bytes leftover after parsing attributes in process `syz.1.58'.
[   67.022369][  T843] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   67.207564][ T6257] netlink: 24 bytes leftover after parsing attributes in process `syz.0.56'.
[   67.297431][  T843] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   67.300371][  T843] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   67.335777][  T843] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[   67.347352][  T843] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   67.368371][  T843] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   67.376049][  T843] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   67.380343][  T843] usb 8-1: Product: syz
[   67.384938][  T843] usb 8-1: Manufacturer: syz
[   67.459963][  T843] cdc_wdm 8-1:1.0: skipping garbage
[   67.461873][  T843] cdc_wdm 8-1:1.0: skipping garbage
[   67.464697][  T843] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22
[   67.663777][ T6250] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.689677][ T6250] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.712469][    T9] tipc: Node number set to 10005162
[   67.788859][ T6250] netlink: 48 bytes leftover after parsing attributes in process `syz.3.57'.
[   68.079425][   T57] usb 8-1: USB disconnect, device number 2
[   68.565333][ T6273] infiniband syz1: set active
[   68.567081][ T6273] infiniband syz1: added syz_tun
[   68.651642][ T6273] RDS/IB: syz1: added
[   68.653692][ T6273] smc: adding ib device syz1 with port count 1
[   68.655973][ T6273] smc:    ib device syz1 port 1 has no pnetid
[   68.960606][ T6283] netlink: 'syz.0.64': attribute type 3 has an invalid length.
[   69.177097][ T6284] netlink: 60 bytes leftover after parsing attributes in process `syz.2.62'.
[   69.376709][ T6287] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[   69.503888][ T6289] Cannot find add_set index 0 as target
[   70.941279][ T6312] fuse: Bad value for 'fd'
[   71.392526][ T6317] netlink: 'syz.1.73': attribute type 2 has an invalid length.
[   71.394945][ T6317] netlink: 'syz.1.73': attribute type 1 has an invalid length.
[   71.397335][ T6317] netlink: 224 bytes leftover after parsing attributes in process `syz.1.73'.
[   71.772787][ T6328] netlink: 24 bytes leftover after parsing attributes in process `syz.1.73'.
[   71.777264][ T6327] netlink: 20 bytes leftover after parsing attributes in process `syz.3.75'.
[   71.879189][ T6336] netlink: 40 bytes leftover after parsing attributes in process `syz.0.78'.
[   72.078183][   T57] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   72.248561][   T57] usb 7-1: Using ep0 maxpacket: 16
[   72.259242][   T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   72.266702][   T57] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   72.271460][   T57] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.274300][   T57] usb 7-1: Product: syz
[   72.275650][   T57] usb 7-1: Manufacturer: syz
[   72.277204][   T57] usb 7-1: SerialNumber: syz
[   72.280053][   T57] usb 7-1: config 0 descriptor??
[   72.285380][   T57] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[   72.285996][ T6339] netlink: 24 bytes leftover after parsing attributes in process `syz.1.80'.
[   72.293775][   T57] em28xx 7-1:0.0: DVB interface 0 found: bulk
[   72.892367][   T57] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[   72.899851][ T6342] kvm: requested 75428 ns i8254 timer period limited to 200000 ns
[   72.908164][ T6342] kvm: requested 30171 ns i8254 timer period limited to 200000 ns
[   72.922357][ T6342] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[   72.945851][ T6342] kvm: requested 31847 ns i8254 timer period limited to 200000 ns
[   73.001037][ T6342] kvm: requested 41904 ns i8254 timer period limited to 200000 ns
[   73.056420][ T6342] kvm: requested 79619 ns i8254 timer period limited to 200000 ns
[   73.063895][ T6342] kvm: requested 29333 ns i8254 timer period limited to 200000 ns
[   73.076226][ T6342] kvm: requested 137447 ns i8254 timer period limited to 200000 ns
[   73.083887][ T6342] kvm: requested 63695 ns i8254 timer period limited to 200000 ns
[   73.091922][ T6342] kvm: requested 74590 ns i8254 timer period limited to 200000 ns
[   73.098386][ T6335] tc_dump_action: action bad kind
[   73.367001][ T6357] rdma_rxe: rxe_newlink: failed to add ipvlan0
[   73.714178][ T6335] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   73.717846][ T6335] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   73.804191][   T57] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[   73.806848][   T57] em28xx 7-1:0.0: board has no eeprom
[   73.868103][   T57] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[   73.871341][   T57] em28xx 7-1:0.0: dvb set to bulk mode.
[   73.875209][ T4166] em28xx 7-1:0.0: Binding DVB extension
[   73.882265][   T57] usb 7-1: USB disconnect, device number 2
[   73.885730][   T57] em28xx 7-1:0.0: Disconnecting em28xx
[   74.084723][ T4166] em28xx 7-1:0.0: Registering input extension
[   74.088138][   T57] em28xx 7-1:0.0: Closing input extension
[   74.113931][   T57] em28xx 7-1:0.0: Freeing device
[   74.192470][ T6365] netlink: 40 bytes leftover after parsing attributes in process `syz.0.86'.
[   74.196830][ T6365] netlink: 48 bytes leftover after parsing attributes in process `syz.0.86'.
[   74.954978][ T6398] netlink: 4 bytes leftover after parsing attributes in process `syz.1.97'.
[   74.998034][ T5954] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   75.158012][ T5954] usb 7-1: Using ep0 maxpacket: 32
[   75.162594][ T5954] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   75.170633][ T5954] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   75.174683][ T5954] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[   75.178177][ T5954] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.184674][ T5954] usb 7-1: config 0 descriptor??
[   75.362045][ T6412] overlayfs: failed to clone lowerpath
[   75.367289][ T6412] warning: `syz.3.101' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   75.383430][ T6412] netlink: 'syz.3.101': attribute type 10 has an invalid length.
[   75.601855][ T6425] tipc: Can't bind to reserved service type 2
[   75.604478][ T6425] netlink: 4 bytes leftover after parsing attributes in process `syz.3.104'.
[   75.610738][ T6425] netlink: 277 bytes leftover after parsing attributes in process `syz.3.104'.
[   75.748106][   T73] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   75.918215][   T73] usb 6-1: Using ep0 maxpacket: 16
[   75.923476][   T73] usb 6-1: config 0 has an invalid interface number: 132 but max is 0
[   75.926442][   T73] usb 6-1: config 0 has no interface number 0
[   75.937486][   T73] usb 6-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[   75.940794][   T73] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   75.943908][   T73] usb 6-1: Product: syz
[   75.945347][   T73] usb 6-1: Manufacturer: syz
[   75.947011][   T73] usb 6-1: SerialNumber: syz
[   75.952582][   T73] usb 6-1: config 0 descriptor??
[   75.958203][   T73] hub 6-1:0.132: bad descriptor, ignoring hub
[   75.960263][   T73] hub 6-1:0.132: probe with driver hub failed with error -5
[   75.968257][   T73] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.132/input/input7
[   76.083536][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[   76.085865][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[   76.390661][ T6429] batadv_slave_1: entered promiscuous mode
[   76.411181][ T6429] veth0: entered promiscuous mode
[   76.550767][ T6438] __nla_validate_parse: 1 callbacks suppressed
[   76.550783][ T6438] netlink: 830 bytes leftover after parsing attributes in process `syz.3.109'.
[   76.556274][ T6439] netlink: 830 bytes leftover after parsing attributes in process `syz.3.109'.
[   76.984116][ T6441] fuse: Unknown parameter 'údÓz%ƒrx�Ÿ]³JÁÿ�70ù¦w1ÚWFì—�;EyBƒ6–;ÎD~Ûºe€ìíÒ@êU¥`Éòêà°|}³|â<ñÉ_ÿd�¾`7©ƒQÚº8¡¤‚œÿCXŒAlfÊn
)s.ý•GjÀ:W`�pЇO¤x÷Ö{;`­ô»ÄpY’�¨ÍÊ¢²þ““œÆæÌ'Rø8š®E�«4Åð² iHþÒŠ¼KeKLÓçÍ0x0000000000000006'
[   77.089515][ T6445] fuse: Bad value for 'fd'
[   77.092441][   T40] kauditd_printk_skb: 10 callbacks suppressed
[   77.092451][   T40] audit: type=1326 audit(1761529872.559:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.102063][   T40] audit: type=1326 audit(1761529872.559:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.110874][   T40] audit: type=1326 audit(1761529872.559:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.117554][   T40] audit: type=1326 audit(1761529872.579:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.125442][   T40] audit: type=1326 audit(1761529872.579:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.132136][   T40] audit: type=1326 audit(1761529872.589:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=383 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.139309][   T40] audit: type=1326 audit(1761529872.589:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.146317][   T40] audit: type=1326 audit(1761529872.589:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.153260][   T40] audit: type=1326 audit(1761529872.589:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.159816][   T40] audit: type=1326 audit(1761529872.589:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   77.472206][   T24] usb 7-1: USB disconnect, device number 3
[   77.939779][   T24] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   78.099868][   T24] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   78.103492][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   78.106982][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   78.110169][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   78.114552][   T24] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   78.117489][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.121237][   T24] usb 7-1: config 0 descriptor??
[   78.363619][ T6469] Cannot find set identified by id 1 to match
[   78.529895][ T6463] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.533391][ T6463] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.537893][ T6463] netlink: 12 bytes leftover after parsing attributes in process `syz.2.119'.
[   78.542349][ T6429] veth0: left promiscuous mode
[   78.544855][ T6429] batadv_slave_1: left promiscuous mode
[   78.708185][ T5954] usb 6-1: USB disconnect, device number 2
[   78.974421][ T6489] FAULT_INJECTION: forcing a failure.
[   78.974421][ T6489] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.978601][ T6489] CPU: 3 UID: 0 PID: 6489 Comm: syz.0.128 Not tainted syzkaller #0 PREEMPT(full) 
[   78.978616][ T6489] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.978622][ T6489] Call Trace:
[   78.978626][ T6489]  <TASK>
[   78.978630][ T6489]  dump_stack_lvl+0x16c/0x1f0
[   78.978646][ T6489]  should_fail_ex+0x512/0x640
[   78.978665][ T6489]  _copy_from_user+0x2e/0xd0
[   78.978683][ T6489]  get_compat_msghdr+0xa7/0x170
[   78.978701][ T6489]  ? __pfx_get_compat_msghdr+0x10/0x10
[   78.978723][ T6489]  ___sys_sendmsg+0x1ae/0x1d0
[   78.978735][ T6489]  ? __pfx____sys_sendmsg+0x10/0x10
[   78.978751][ T6489]  ? find_held_lock+0x2b/0x80
[   78.978772][ T6489]  __sys_sendmsg+0x16d/0x220
[   78.978782][ T6489]  ? __pfx___sys_sendmsg+0x10/0x10
[   78.978798][ T6489]  ? rcu_is_watching+0x12/0xc0
[   78.978812][ T6489]  __do_fast_syscall_32+0x7c/0x300
[   78.978826][ T6489]  do_fast_syscall_32+0x32/0x80
[   78.978839][ T6489]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   78.978853][ T6489] RIP: 0023:0xf701d579
[   78.978861][ T6489] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   78.978871][ T6489] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   78.978882][ T6489] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[   78.978889][ T6489] RDX: 0000000004004000 RSI: 0000000000000000 RDI: 0000000000000000
[   78.978895][ T6489] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   78.978901][ T6489] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   78.978907][ T6489] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   78.978920][ T6489]  </TASK>
[   79.048437][ T6493] overlay: Unknown parameter 'func'
[   79.050784][ T6494] Cannot find del_set index 65533 as target
[   79.581003][ T6503] Illegal XDP return value 4294967274 on prog  (id 20) dev N/A, expect packet loss!
[   79.902286][   T24] usbhid 7-1:0.0: can't add hid device: -71
[   79.904888][   T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[   79.920686][   T24] usb 7-1: USB disconnect, device number 4
[   80.333306][ T6526] 8021q: adding VLAN 0 to HW filter on device bond1
[   80.337227][ T6526] bond0: (slave bond1): Enslaving as an active interface with an up link
[   80.346430][ T6526] netlink: 14 bytes leftover after parsing attributes in process `syz.0.139'.
[   80.374533][ T6530] netlink: 20 bytes leftover after parsing attributes in process `syz.2.140'.
[   80.463346][ T6539] netlink: 'syz.0.143': attribute type 5 has an invalid length.
[   80.466255][ T6538] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[   80.468448][ T6538] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   80.471445][ T6538] vhci_hcd vhci_hcd.0: Device attached
[   80.512617][ T6543] FAULT_INJECTION: forcing a failure.
[   80.512617][ T6543] name failslab, interval 1, probability 0, space 0, times 0
[   80.517509][ T6543] CPU: 3 UID: 0 PID: 6543 Comm: syz.0.144 Not tainted syzkaller #0 PREEMPT(full) 
[   80.517528][ T6543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.517536][ T6543] Call Trace:
[   80.517541][ T6543]  <TASK>
[   80.517547][ T6543]  dump_stack_lvl+0x16c/0x1f0
[   80.517573][ T6543]  should_fail_ex+0x512/0x640
[   80.517593][ T6543]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[   80.517613][ T6543]  should_failslab+0xc2/0x120
[   80.517631][ T6543]  __kvmalloc_node_noprof+0x141/0x9c0
[   80.517649][ T6543]  ? bucket_table_alloc.isra.0+0x88/0x460
[   80.517673][ T6543]  ? bucket_table_alloc.isra.0+0x88/0x460
[   80.517690][ T6543]  bucket_table_alloc.isra.0+0x88/0x460
[   80.517711][ T6543]  rhashtable_init_noprof+0x41a/0x7e0
[   80.517732][ T6543]  nft_rhash_init+0x148/0x410
[   80.517746][ T6543]  ? __pfx_nft_rhash_init+0x10/0x10
[   80.517760][ T6543]  ? __pfx_nft_rhash_key+0x10/0x10
[   80.517779][ T6543]  ? __pfx_nft_rhash_obj+0x10/0x10
[   80.517798][ T6543]  ? __pfx_nft_rhash_cmp+0x10/0x10
[   80.517819][ T6543]  ? __asan_memcpy+0x3c/0x60
[   80.517836][ T6543]  nf_tables_newset+0x321b/0x4320
[   80.517866][ T6543]  ? __pfx_nf_tables_newset+0x10/0x10
[   80.517893][ T6543]  ? __nla_validate_parse+0x600/0x2880
[   80.517938][ T6543]  ? __nla_parse+0x40/0x60
[   80.517970][ T6543]  nfnetlink_rcv_batch+0x190d/0x2350
[   80.518000][ T6543]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[   80.518022][ T6543]  ? __local_bh_enable_ip+0xa4/0x120
[   80.518037][ T6543]  ? __dev_queue_xmit+0xaf1/0x4490
[   80.518056][ T6543]  ? __dev_queue_xmit+0xb12/0x4490
[   80.518082][ T6543]  ? __pfx___dev_queue_xmit+0x10/0x10
[   80.518120][ T6543]  ? __nla_parse+0x40/0x60
[   80.518138][ T6543]  nfnetlink_rcv+0x3c1/0x430
[   80.518156][ T6543]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   80.518179][ T6543]  netlink_unicast+0x5aa/0x870
[   80.518197][ T6543]  ? __pfx_netlink_unicast+0x10/0x10
[   80.518219][ T6543]  netlink_sendmsg+0x8c8/0xdd0
[   80.518236][ T6543]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.518253][ T6543]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[   80.518277][ T6543]  ____sys_sendmsg+0xa98/0xc70
[   80.518296][ T6543]  ? __pfx_____sys_sendmsg+0x10/0x10
[   80.518313][ T6543]  ? get_compat_msghdr+0x11a/0x170
[   80.518344][ T6543]  ___sys_sendmsg+0x134/0x1d0
[   80.518358][ T6543]  ? __pfx____sys_sendmsg+0x10/0x10
[   80.518380][ T6543]  ? find_held_lock+0x2b/0x80
[   80.518408][ T6543]  __sys_sendmsg+0x16d/0x220
[   80.518421][ T6543]  ? __pfx___sys_sendmsg+0x10/0x10
[   80.518443][ T6543]  ? rcu_is_watching+0x12/0xc0
[   80.518461][ T6543]  __do_fast_syscall_32+0x7c/0x300
[   80.518479][ T6543]  do_fast_syscall_32+0x32/0x80
[   80.518495][ T6543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.518513][ T6543] RIP: 0023:0xf701d579
[   80.518525][ T6543] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.518537][ T6543] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   80.518556][ T6543] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[   80.518565][ T6543] RDX: 0000000020050800 RSI: 0000000000000000 RDI: 0000000000000000
[   80.518573][ T6543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   80.518580][ T6543] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.518588][ T6543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.518608][ T6543]  </TASK>
[   80.584456][ T6544] netlink: 28 bytes leftover after parsing attributes in process `syz.1.138'.
[   80.631509][ T6544] netem: change failed
[   80.768023][  T844] usb 40-1: SetAddress Request (2) to port 0
[   80.770061][  T844] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[   80.836775][ T6554] netlink: 'syz.0.147': attribute type 16 has an invalid length.
[   80.840030][ T6554] netlink: 'syz.0.147': attribute type 17 has an invalid length.
[   80.864612][ T6554] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.867111][ T6554] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.921262][ T6554] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.929169][ T6554] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.003464][  T222] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.007081][  T222] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.011260][  T222] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.015538][  T222] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.070863][ T6540] vhci_hcd: connection reset by peer
[   81.073484][  T103] vhci_hcd: stop threads
[   81.075895][  T103] vhci_hcd: release socket
[   81.077881][  T103] vhci_hcd: disconnect device
[   81.214338][ T6573] FAULT_INJECTION: forcing a failure.
[   81.214338][ T6573] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.219012][ T6573] CPU: 3 UID: 0 PID: 6573 Comm: syz.2.152 Not tainted syzkaller #0 PREEMPT(full) 
[   81.219026][ T6573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.219032][ T6573] Call Trace:
[   81.219036][ T6573]  <TASK>
[   81.219040][ T6573]  dump_stack_lvl+0x16c/0x1f0
[   81.219055][ T6573]  should_fail_ex+0x512/0x640
[   81.219075][ T6573]  _copy_from_user+0x2e/0xd0
[   81.219093][ T6573]  ucma_write+0x128/0x330
[   81.219110][ T6573]  ? __pfx_ucma_write+0x10/0x10
[   81.219126][ T6573]  ? bpf_lsm_file_permission+0x9/0x10
[   81.219140][ T6573]  ? security_file_permission+0x71/0x210
[   81.219152][ T6573]  ? rw_verify_area+0xcf/0x6c0
[   81.219163][ T6573]  ? __pfx_ucma_write+0x10/0x10
[   81.219178][ T6573]  vfs_write+0x2a0/0x11d0
[   81.219193][ T6573]  ? __pfx_vfs_write+0x10/0x10
[   81.219203][ T6573]  ? find_held_lock+0x2b/0x80
[   81.219216][ T6573]  ? __fget_files+0x204/0x3c0
[   81.219228][ T6573]  ? __fget_files+0x20e/0x3c0
[   81.219238][ T6573]  ? handle_mm_fault+0x200/0xd10
[   81.219259][ T6573]  ksys_write+0x1f8/0x250
[   81.219270][ T6573]  ? __pfx_ksys_write+0x10/0x10
[   81.219283][ T6573]  ? rcu_is_watching+0x12/0xc0
[   81.219297][ T6573]  __do_fast_syscall_32+0x7c/0x300
[   81.219312][ T6573]  do_fast_syscall_32+0x32/0x80
[   81.219325][ T6573]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   81.219338][ T6573] RIP: 0023:0xf7fc7579
[   81.219347][ T6573] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   81.219357][ T6573] RSP: 002b:00000000f54b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   81.219368][ T6573] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000440
[   81.219374][ T6573] RDX: 0000000000000128 RSI: 0000000000000000 RDI: 0000000000000000
[   81.219380][ T6573] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   81.219404][ T6573] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   81.219410][ T6573] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   81.219424][ T6573]  </TASK>
[   81.299139][ T6574] *****************************************************
[   81.302011][ T6574] ORANGEFS Device Error:  You cannot open the device file 
[   81.302019][ T6574] 
[   81.302019][ T6574] /dev/pvfs2-req more than once.  Please make sure that
[   81.302019][ T6574] there are no 
[   81.304443][ T6574] instances of a program using this device
[   81.304443][ T6574] currently running. (You must verify this!)
[   81.312555][ T6574] For example, you can use the lsof program as follows:
[   81.314801][ T6574] 'lsof | grep pvfs2-req' (run this as root)
[   81.316701][ T6574]   open_access_count = 1
[   81.318299][ T6574] *****************************************************
[   81.435604][ T6580] netlink: 28 bytes leftover after parsing attributes in process `syz.0.154'.
[   81.696404][ T6590] FAULT_INJECTION: forcing a failure.
[   81.696404][ T6590] name failslab, interval 1, probability 0, space 0, times 0
[   81.701922][ T6590] CPU: 1 UID: 0 PID: 6590 Comm: syz.2.157 Not tainted syzkaller #0 PREEMPT(full) 
[   81.701944][ T6590] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.701954][ T6590] Call Trace:
[   81.701960][ T6590]  <TASK>
[   81.701967][ T6590]  dump_stack_lvl+0x16c/0x1f0
[   81.702003][ T6590]  should_fail_ex+0x512/0x640
[   81.702028][ T6590]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   81.702051][ T6590]  should_failslab+0xc2/0x120
[   81.702075][ T6590]  kmem_cache_alloc_noprof+0x75/0x6e0
[   81.702091][ T6590]  ? make_vfsuid+0xec/0x140
[   81.702114][ T6590]  ? alloc_empty_file+0x55/0x1e0
[   81.702144][ T6590]  ? alloc_empty_file+0x55/0x1e0
[   81.702167][ T6590]  alloc_empty_file+0x55/0x1e0
[   81.702191][ T6590]  dentry_open+0x46/0xd0
[   81.702215][ T6590]  ovl_path_open+0x198/0x1f0
[   81.702240][ T6590]  ovl_iterate_real+0xa1a/0x17f0
[   81.702260][ T6590]  ? kernel_text_address+0x8d/0x100
[   81.702292][ T6590]  ? arch_stack_walk+0xa6/0x100
[   81.702313][ T6590]  ? __pfx_ovl_iterate_real+0x10/0x10
[   81.702339][ T6590]  ? __pfx_ovl_fill_real+0x10/0x10
[   81.702367][ T6590]  ? __pfx_ovl_fill_plain+0x10/0x10
[   81.702421][ T6590]  ? __pfx___might_resched+0x10/0x10
[   81.702439][ T6590]  ? __pfx___might_resched+0x10/0x10
[   81.702462][ T6590]  ovl_iterate+0x6f7/0x1000
[   81.702484][ T6590]  ? __pfx_down_write+0x10/0x10
[   81.702507][ T6590]  ? __pfx_down_read_killable+0x10/0x10
[   81.702532][ T6590]  ? __pfx_ovl_iterate+0x10/0x10
[   81.702554][ T6590]  wrap_directory_iterator+0xa2/0xe0
[   81.702588][ T6590]  iterate_dir+0x296/0xaf0
[   81.702617][ T6590]  __ia32_compat_sys_getdents+0x13b/0x2b0
[   81.702645][ T6590]  ? __pfx___ia32_compat_sys_getdents+0x10/0x10
[   81.702674][ T6590]  ? __pfx_compat_filldir+0x10/0x10
[   81.702704][ T6590]  ? rcu_is_watching+0x12/0xc0
[   81.702729][ T6590]  __do_fast_syscall_32+0x7c/0x300
[   81.702753][ T6590]  do_fast_syscall_32+0x32/0x80
[   81.702773][ T6590]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   81.702796][ T6590] RIP: 0023:0xf7fc7579
[   81.702810][ T6590] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   81.702825][ T6590] RSP: 002b:00000000f54b655c EFLAGS: 00000296 ORIG_RAX: 000000000000008d
[   81.702841][ T6590] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080001fc0
[   81.702853][ T6590] RDX: 00000000000000b8 RSI: 0000000000000000 RDI: 0000000000000000
[   81.702864][ T6590] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   81.702874][ T6590] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   81.702884][ T6590] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   81.702908][ T6590]  </TASK>
[   81.827128][ T6596] vxcan0: tx address claim with dlc 0
[   81.842398][ T6596] block device autoloading is deprecated and will be removed.
[   81.987020][ T6609] netlink: 28 bytes leftover after parsing attributes in process `syz.1.163'.
[   82.029070][ T6612] netlink: 'syz.2.166': attribute type 10 has an invalid length.
[   82.036717][ T6612] team0: Port device dummy0 added
[   82.045107][ T6612] netlink: 'syz.2.166': attribute type 10 has an invalid length.
[   82.052594][ T6612] team0: Port device dummy0 removed
[   82.059198][ T6612] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   82.876316][ T6626] fuse: Bad value for 'fd'
[   83.157869][ T6638] pimreg: entered allmulticast mode
[   83.201028][ T6640] tc_dump_action: action bad kind
[   83.208757][ T6642] netlink: 12 bytes leftover after parsing attributes in process `syz.2.179'.
[   83.211334][ T6644] netlink: 12 bytes leftover after parsing attributes in process `syz.3.178'.
[   83.290436][ T6649] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   83.297537][ T6649] syzkaller0: entered promiscuous mode
[   83.299635][ T6649] syzkaller0: entered allmulticast mode
[   83.305602][ T6649] tipc: Resetting bearer <eth:syzkaller0>
[   83.312679][ T6647] tipc: Resetting bearer <eth:syzkaller0>
[   83.321712][ T6647] tipc: Disabling bearer <eth:syzkaller0>
[   83.446263][   T40] kauditd_printk_skb: 10 callbacks suppressed
[   83.446278][   T40] audit: type=1326 audit(1761529878.909:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.460795][   T40] audit: type=1326 audit(1761529878.919:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.469483][   T40] audit: type=1326 audit(1761529878.919:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.476459][   T40] audit: type=1326 audit(1761529878.919:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.483329][   T40] audit: type=1326 audit(1761529878.919:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.490768][   T40] audit: type=1326 audit(1761529878.919:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.499454][   T40] audit: type=1326 audit(1761529878.919:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.509082][   T40] audit: type=1326 audit(1761529878.919:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.518206][   T40] audit: type=1326 audit(1761529878.919:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.528220][   T40] audit: type=1326 audit(1761529878.919:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6657 comm="syz.3.183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   83.579439][ T6661] Cannot find add_set index 0 as target
[   84.159075][ T6668] netlink: 'syz.3.186': attribute type 16 has an invalid length.
[   84.161963][ T6668] netlink: 'syz.3.186': attribute type 17 has an invalid length.
[   84.671761][ T6029] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   84.829650][ T6029] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   84.834193][ T6029] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   84.838233][ T6029] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   84.843483][ T6029] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   84.848818][ T6029] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.854220][ T6029] usb 7-1: config 0 descriptor??
[   84.975476][ T6684] Cannot find del_set index 65533 as target
[   85.218059][ T6121] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   85.385494][ T6121] usb 6-1: Using ep0 maxpacket: 16
[   85.414504][ T6121] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   85.422987][ T6121] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   85.426023][ T6121] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   85.438032][ T6121] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   85.440945][ T6121] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.453836][ T6121] usb 6-1: config 0 descriptor??
[   85.575840][ T6673] Context (ID=0x1) not attached to queue pair (handle=0x1:0x81)
[   85.594078][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.596633][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.599175][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.602018][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.605659][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.608114][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.611130][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.613568][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.615964][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.618403][ T6029] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   85.630513][ T6029] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   85.742755][ T6703] Zero length message leads to an empty skb
[   85.838152][  T844] usb 40-1: device descriptor read/8, error -110
[   85.890942][ T6121] microsoft 0003:045E:07DA.0003: unbalanced collection at end of report description
[   85.895397][ T6121] microsoft 0003:045E:07DA.0003: parse failed
[   85.908120][ T6121] microsoft 0003:045E:07DA.0003: probe with driver microsoft failed with error -22
[   86.146512][ T6679] netlink: 16 bytes leftover after parsing attributes in process `syz.1.191'.
[   86.255272][  T844] usb usb40-port1: attempt power cycle
[   86.460464][   T54] cfg80211: failed to load regulatory.db
[   87.085292][  T844] usb usb40-port1: unable to enumerate USB device
[   87.349730][ T6720] netlink: 12 bytes leftover after parsing attributes in process `syz.0.205'.
[   87.439577][   T73] usb 7-1: USB disconnect, device number 5
[   87.629315][ T6737] rdma_rxe: rxe_newlink: failed to add syz_tun
[   87.739277][  T844] usb 6-1: USB disconnect, device number 3
[   88.008351][ T6744] netlink: 48 bytes leftover after parsing attributes in process `syz.1.214'.
[   88.013257][ T6747] rdma_rxe: rxe_newlink: failed to add syz_tun
[   88.016229][ T5955] Bluetooth: hci2: unexpected event 0x01 length: 10 > 1
[   88.111335][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.117580][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.390894][ T6760] netlink: 'syz.3.220': attribute type 1 has an invalid length.
[   88.427018][ T6760] 8021q: adding VLAN 0 to HW filter on device bond1
[   88.499164][ T6765] Cannot find add_set index 0 as target
[   88.627596][ T6767] netlink: 52 bytes leftover after parsing attributes in process `syz.0.223'.
[   89.537655][ T6792] netlink: 4 bytes leftover after parsing attributes in process `syz.3.231'.
[   90.062457][ T6816] netlink: 'syz.1.240': attribute type 10 has an invalid length.
[   90.063818][ T6817] netlink: 'syz.1.240': attribute type 10 has an invalid length.
[   90.086681][ T6816] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   90.479143][  T222] wlan1: Trigger new scan to find an IBSS to join
[   90.703598][ T6814] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   92.200926][ T6853] syz1: rxe_newlink: already configured on syz_tun
[   93.383639][ T6882] netlink: 'syz.3.260': attribute type 1 has an invalid length.
[   93.398459][ T6882] 8021q: adding VLAN 0 to HW filter on device bond2
[   93.822186][ T6898] netlink: 8 bytes leftover after parsing attributes in process `syz.0.267'.
[   94.323516][   T40] kauditd_printk_skb: 77 callbacks suppressed
[   94.323530][   T40] audit: type=1326 audit(1761529889.789:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.326841][ T6904] =======================================================
[   94.326841][ T6904] WARNING: The mand mount option has been deprecated and
[   94.326841][ T6904]          and is ignored by this kernel. Remove the mand
[   94.326841][ T6904]          option from the mount to silence this warning.
[   94.326841][ T6904] =======================================================
[   94.335330][   T40] audit: type=1326 audit(1761529889.789:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.348589][ T6904] new mount options do not match the existing superblock, will be ignored
[   94.355763][   T40] audit: type=1326 audit(1761529889.789:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.366327][   T40] audit: type=1326 audit(1761529889.789:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.373005][   T40] audit: type=1326 audit(1761529889.789:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.379501][   T40] audit: type=1326 audit(1761529889.789:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=241 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.385911][   T40] audit: type=1326 audit(1761529889.789:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.393332][   T40] audit: type=1326 audit(1761529889.789:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.408042][   T40] audit: type=1326 audit(1761529889.789:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=284 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   94.415194][   T40] audit: type=1326 audit(1761529889.789:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6902 comm="syz.3.263" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[   95.309012][ T6923] netlink: 8 bytes leftover after parsing attributes in process `syz.3.271'.
[   95.358400][ T1143] wlan1: Trigger new scan to find an IBSS to join
[   95.992086][ T6934] netlink: zone id is out of range
[   95.993835][ T6934] netlink: zone id is out of range
[   95.995468][ T6934] netlink: zone id is out of range
[   95.997186][ T6934] netlink: zone id is out of range
[   95.999708][ T6934] netlink: zone id is out of range
[   96.001502][ T6934] netlink: zone id is out of range
[   96.003347][ T6934] netlink: zone id is out of range
[   96.005527][ T6934] netlink: zone id is out of range
[   96.007473][ T6934] netlink: zone id is out of range
[   96.009372][ T6934] netlink: zone id is out of range
[   96.121717][ T6944] macvtap1: entered promiscuous mode
[   96.123520][ T6944] batadv0: entered promiscuous mode
[   96.126702][ T6944] 8021q: adding VLAN 0 to HW filter on device macvtap1
[   96.298860][  T103] wlan1: Creating new IBSS network, BSSID 3a:1d:0a:57:23:b6
[   96.348037][ T6953] netlink: 8 bytes leftover after parsing attributes in process `syz.1.274'.
[   96.377038][ T6955] Cannot find add_set index 0 as target
[   96.455665][ T6957] ieee802154 phy0 wpan0: encryption failed: -22
[   97.115590][ T6961] netlink: 'syz.3.281': attribute type 2 has an invalid length.
[   97.217472][ T6963] netlink: 'syz.0.282': attribute type 6 has an invalid length.
[   97.265288][ T6966] TCP: TCP_TX_DELAY enabled
[   97.275429][ T6966] netlink: 52 bytes leftover after parsing attributes in process `syz.0.283'.
[   97.368080][ T6972] overlayfs: failed to clone upperpath
[   97.404803][ T6974] Cannot find add_set index 0 as target
[   97.518058][   T73] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   97.668432][   T73] usb 6-1: Using ep0 maxpacket: 8
[   97.672417][   T73] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[   97.675331][   T73] usb 6-1: config 0 has no interface number 0
[   97.679788][   T73] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   97.684296][   T73] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[   97.689120][   T73] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   97.692862][   T73] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[   97.698854][   T73] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[   97.701643][   T73] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.708732][   T73] usb 6-1: config 0 descriptor??
[   97.723837][   T73] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[   98.015989][ T6969] capability: warning: `syz.1.285' uses deprecated v2 capabilities in a way that may be insecure
[   98.073106][ T6991] netlink: 20 bytes leftover after parsing attributes in process `syz.0.290'.
[   98.076099][ T6991] netlink: 28 bytes leftover after parsing attributes in process `syz.0.290'.
[   98.559731][   T54] usb 6-1: USB disconnect, device number 4
[   98.649278][   T54] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[   99.090571][ T7003] Cannot find del_set index 65533 as target
[   99.931866][ T7019] mmap: syz.3.300 (7019) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   99.949820][ T7019] batadv_slave_0: entered promiscuous mode
[   99.952013][ T7019] batadv_slave_0: entered allmulticast mode
[  100.196050][ T7028] netlink: 12 bytes leftover after parsing attributes in process `syz.3.305'.
[  100.725724][ T7048] netlink: 'syz.0.307': attribute type 12 has an invalid length.
[  100.782177][ T7065] Cannot find add_set index 0 as target
[  101.088196][ T7074] netlink: 'syz.3.316': attribute type 2 has an invalid length.
[  101.189895][ T7080] netlink: 24 bytes leftover after parsing attributes in process `syz.1.318'.
[  101.194147][ T6029] IPVS: starting estimator thread 0...
[  101.278761][ T7081] IPVS: using max 44 ests per chain, 105600 per kthread
[  101.308331][ T7090] Cannot find del_set index 65533 as target
[  101.739493][ T6029] usb 5-1: new low-speed USB device number 2 using dummy_hcd
[  101.960328][ T6029] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  101.968120][ T6029] usb 5-1: config 0 has no interface number 0
[  101.970770][ T6029] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  101.974887][ T6029] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  101.979946][ T6029] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  101.983766][ T6029] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.989183][ T6029] usb 5-1: config 0 descriptor??
[  101.995784][ T7101] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  102.002875][ T6029] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  102.421781][ T6011] hid (null): unknown global tag 0xc
[  102.424248][ T6011] hid (null): unknown global tag 0xe
[  102.426229][ T6011] hid (null): unknown global tag 0x6d
[  102.428457][ T6011] hid (null): unknown global tag 0xe
[  102.430135][ T6011] hid (null): unknown global tag 0xe
[  102.431892][ T6011] hid (null): unknown global tag 0x72
[  102.456798][ T6011] hid_parser_main: 9 callbacks suppressed
[  102.456841][ T6011] hid-generic 0008:0008:08BF.0004: unknown main item tag 0x6
[  102.462373][ T6011] hid-generic 0008:0008:08BF.0004: unknown main item tag 0x7
[  102.464777][ T6011] hid-generic 0008:0008:08BF.0004: unknown global tag 0xc
[  102.467022][ T6011] hid-generic 0008:0008:08BF.0004: item 0 4 1 12 parsing failed
[  102.471286][ T6011] hid-generic 0008:0008:08BF.0004: probe with driver hid-generic failed with error -22
[  103.203752][ T7141] netlink: 8 bytes leftover after parsing attributes in process `syz.1.337'.
[  103.573795][ T7147] netlink: 224 bytes leftover after parsing attributes in process `syz.2.339'.
[  103.578033][ T7147] netlink: 8 bytes leftover after parsing attributes in process `syz.2.339'.
[  103.580958][ T7147] netlink: 'syz.2.339': attribute type 5 has an invalid length.
[  103.583494][ T7147] netlink: 20 bytes leftover after parsing attributes in process `syz.2.339'.
[  103.604566][ T7147] geneve2: entered promiscuous mode
[  103.606311][ T7147] geneve2: entered allmulticast mode
[  103.611446][  T103] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  103.614444][  T103] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  103.617314][  T103] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  103.621086][  T103] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  104.059106][ T7145] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  104.513049][ T6029] usb 5-1: USB disconnect, device number 2
[  104.886347][ T7169] fuse: Bad value for 'user_id'
[  104.893982][ T7169] fuse: Bad value for 'user_id'
[  104.918765][ T7165] netlink: 4 bytes leftover after parsing attributes in process `syz.2.345'.
[  105.310609][ T7173] netlink: 8 bytes leftover after parsing attributes in process `syz.3.347'.
[  105.518188][ T5955] Bluetooth: hci0: command 0x0401 tx timeout
[  106.068009][ T4166] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  106.218770][ T4166] usb 7-1: Using ep0 maxpacket: 16
[  106.225416][ T4166] usb 7-1: config 0 has an invalid interface number: 132 but max is 0
[  106.228234][ T4166] usb 7-1: config 0 has no interface number 0
[  106.233233][ T4166] usb 7-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  106.236188][ T4166] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.239957][ T4166] usb 7-1: Product: syz
[  106.241675][ T4166] usb 7-1: Manufacturer: syz
[  106.243259][ T4166] usb 7-1: SerialNumber: syz
[  106.246865][ T4166] usb 7-1: config 0 descriptor??
[  106.256845][ T4166] hub 7-1:0.132: bad descriptor, ignoring hub
[  106.261052][ T4166] hub 7-1:0.132: probe with driver hub failed with error -5
[  106.265225][ T4166] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.132/input/input8
[  106.360725][ T7204] loop0: detected capacity change from 0 to 2560
[  106.370801][ T5958] Buffer I/O error on dev loop0, logical block 0, async page read
[  106.375321][ T5958] Buffer I/O error on dev loop0, logical block 0, async page read
[  106.379443][ T5958] Buffer I/O error on dev loop0, logical block 0, async page read
[  106.382544][ T5958] Buffer I/O error on dev loop0, logical block 0, async page read
[  106.385903][ T5958] Buffer I/O error on dev loop0, logical block 0, async page read
[  106.406681][ T7204] Buffer I/O error on dev loop0, logical block 0, lost async page write
[  106.410999][ T7204] Buffer I/O error on dev loop0, logical block 0, lost async page write
[  106.415399][ T7204] netlink: 48 bytes leftover after parsing attributes in process `syz.1.359'.
[  106.562395][ T7214] netlink: 48 bytes leftover after parsing attributes in process `syz.3.363'.
[  106.655822][ T7219] batadv_slave_1: entered promiscuous mode
[  106.674285][ T7219] veth0: entered promiscuous mode
[  106.739359][ T7222] netlink: 220 bytes leftover after parsing attributes in process `syz.3.367'.
[  106.940481][ T7228] evm: overlay not supported
[  107.323762][   T40] kauditd_printk_skb: 34 callbacks suppressed
[  107.323777][   T40] audit: type=1800 audit(1761529902.789:173): pid=7252 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.373" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  107.397681][ T7255] fuse: Bad value for 'fd'
[  107.515020][ T7265] netlink: 24 bytes leftover after parsing attributes in process `syz.3.382'.
[  107.557669][ T7268] overlayfs: failed to clone upperpath
[  107.604887][ T7272] FAULT_INJECTION: forcing a failure.
[  107.604887][ T7272] name failslab, interval 1, probability 0, space 0, times 0
[  107.609954][ T7272] CPU: 0 UID: 0 PID: 7272 Comm: syz.0.385 Not tainted syzkaller #0 PREEMPT(full) 
[  107.609969][ T7272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.609976][ T7272] Call Trace:
[  107.609980][ T7272]  <TASK>
[  107.609997][ T7272]  dump_stack_lvl+0x16c/0x1f0
[  107.610013][ T7272]  should_fail_ex+0x512/0x640
[  107.610030][ T7272]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  107.610044][ T7272]  should_failslab+0xc2/0x120
[  107.610059][ T7272]  kmem_cache_alloc_noprof+0x75/0x6e0
[  107.610070][ T7272]  ? security_file_alloc+0x34/0x2b0
[  107.610085][ T7272]  ? security_file_alloc+0x34/0x2b0
[  107.610095][ T7272]  security_file_alloc+0x34/0x2b0
[  107.610107][ T7272]  init_file+0x93/0x4c0
[  107.610126][ T7272]  alloc_empty_file+0x73/0x1e0
[  107.610143][ T7272]  dentry_open+0x46/0xd0
[  107.610158][ T7272]  ovl_path_open+0x198/0x1f0
[  107.610173][ T7272]  ovl_iterate_real+0xa1a/0x17f0
[  107.610187][ T7272]  ? _parse_integer_limit+0x17f/0x1d0
[  107.610205][ T7272]  ? __pfx_ovl_iterate_real+0x10/0x10
[  107.610220][ T7272]  ? __lock_acquire+0x622/0x1c90
[  107.610236][ T7272]  ? __pfx_ovl_fill_real+0x10/0x10
[  107.610251][ T7272]  ? __pfx_ovl_fill_plain+0x10/0x10
[  107.610280][ T7272]  ? __pfx___might_resched+0x10/0x10
[  107.610291][ T7272]  ? __pfx___might_resched+0x10/0x10
[  107.610304][ T7272]  ovl_iterate+0x6f7/0x1000
[  107.610318][ T7272]  ? __pfx_down_write+0x10/0x10
[  107.610332][ T7272]  ? __pfx_down_read_killable+0x10/0x10
[  107.610348][ T7272]  ? __pfx_ovl_iterate+0x10/0x10
[  107.610362][ T7272]  wrap_directory_iterator+0xa2/0xe0
[  107.610380][ T7272]  iterate_dir+0x296/0xaf0
[  107.610399][ T7272]  __ia32_compat_sys_getdents+0x13b/0x2b0
[  107.610418][ T7272]  ? __pfx___ia32_compat_sys_getdents+0x10/0x10
[  107.610437][ T7272]  ? __pfx_compat_filldir+0x10/0x10
[  107.610456][ T7272]  ? rcu_is_watching+0x12/0xc0
[  107.610470][ T7272]  __do_fast_syscall_32+0x7c/0x300
[  107.610485][ T7272]  do_fast_syscall_32+0x32/0x80
[  107.610498][ T7272]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  107.610511][ T7272] RIP: 0023:0xf701d579
[  107.610520][ T7272] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  107.610530][ T7272] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 000000000000008d
[  107.610541][ T7272] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080001fc0
[  107.610547][ T7272] RDX: 00000000000000b8 RSI: 0000000000000000 RDI: 0000000000000000
[  107.610553][ T7272] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  107.610559][ T7272] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  107.610565][ T7272] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  107.610579][ T7272]  </TASK>
[  107.893479][ T7277] netlink: 8 bytes leftover after parsing attributes in process `syz.3.384'.
[  108.307394][ T7295] netlink: 8 bytes leftover after parsing attributes in process `syz.1.392'.
[  108.310481][ T7295] netlink: 12 bytes leftover after parsing attributes in process `syz.1.392'.
[  108.354764][ T7297] net_ratelimit: 43 callbacks suppressed
[  108.354775][ T7297] openvswitch: netlink: Flow actions attr not present in new flow.
[  108.859021][ T7219] veth0: left promiscuous mode
[  108.861414][ T7219] batadv_slave_1: left promiscuous mode
[  109.220510][   T54] usb 7-1: USB disconnect, device number 6
[  109.223307][ T7309] capability: warning: `syz.2.396' uses 32-bit capabilities (legacy support in use)
[  109.309632][   T40] audit: type=1326 audit(1761529904.779:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.322708][   T40] audit: type=1326 audit(1761529904.779:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.332886][   T40] audit: type=1326 audit(1761529904.779:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.342127][   T40] audit: type=1326 audit(1761529904.779:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=38 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.351618][   T40] audit: type=1326 audit(1761529904.779:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.361259][   T40] audit: type=1326 audit(1761529904.779:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.373452][ T7317] netlink: 28 bytes leftover after parsing attributes in process `syz.0.398'.
[  109.375794][   T40] audit: type=1326 audit(1761529904.779:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.385480][   T40] audit: type=1326 audit(1761529904.779:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.392162][   T40] audit: type=1326 audit(1761529904.779:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.1.397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  109.965639][ T7330] netlink: 14 bytes leftover after parsing attributes in process `syz.3.403'.
[  109.976858][ T7330] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  109.981009][ T7330] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  109.984296][ T7330] bond0 (unregistering): Released all slaves
[  110.141151][ T7339] Bluetooth: MGMT ver 1.23
[  110.441613][ T7320] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  110.499719][ T7356] rdma_rxe: rxe_newlink: failed to add syz_tun
[  110.941994][ T7359] netlink: 8 bytes leftover after parsing attributes in process `syz.1.412'.
[  111.758006][ T5955] Bluetooth: hci0: command 0x0401 tx timeout
[  111.998203][   T12] af_packet: tpacket_rcv: packet too big, clamped from 24 to 4294967272. macoff=96
[  112.090937][ T7374] 9p: Unknown Cache mode or invalid value fscach
[  112.138818][ T7376] netlink: 12 bytes leftover after parsing attributes in process `syz.2.415'.
[  113.805373][ T7387] Cannot find add_set index 0 as target
[  114.316780][ T7404] ubi31: attaching mtd0
[  114.335849][ T7404] ubi31: scanning is finished
[  114.338678][ T7404] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  114.595226][ T7404] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  115.078062][ T6029] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  115.925915][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  115.925930][   T40] audit: type=1326 audit(1761529911.389:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  115.929436][ T7428] tmpfs: Bad value for 'mpol'
[  115.937668][   T40] audit: type=1326 audit(1761529911.399:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  115.945692][ T7428] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  115.949254][   T40] audit: type=1326 audit(1761529911.399:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d579 code=0x7ffc0000
[  115.950723][ T7428] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  115.952065][ T7428] vhci_hcd vhci_hcd.0: Device attached
[  115.958756][   T40] audit: type=1326 audit(1761529911.399:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  115.970731][   T40] audit: type=1326 audit(1761529911.399:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf700d579 code=0x7ffc0000
[  115.977365][   T40] audit: type=1326 audit(1761529911.399:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  115.984180][   T40] audit: type=1326 audit(1761529911.399:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf700d579 code=0x7ffc0000
[  115.986462][ T6029] usb 7-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  115.993211][   T40] audit: type=1326 audit(1761529911.409:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  115.996058][ T6029] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.005246][   T40] audit: type=1326 audit(1761529911.409:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  116.007320][ T6029] usb 7-1: Product: syz
[  116.016360][   T40] audit: type=1326 audit(1761529911.409:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.1.432" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d579 code=0x7ffc0000
[  116.024611][ T6029] usb 7-1: Manufacturer: syz
[  116.026069][ T6029] usb 7-1: SerialNumber: syz
[  116.138093][   T10] vhci_hcd: vhci_device speed not set
[  116.198249][   T10] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[  116.235581][ T6029] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO
[  116.240539][ T6029] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71
[  116.244594][ T6029] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  116.252393][ T6029] lan78xx 7-1:1.0: probe with driver lan78xx failed with error -71
[  116.259987][ T6029] usb 7-1: USB disconnect, device number 7
[  116.761958][ T7429] vhci_hcd: connection reset by peer
[  116.764315][ T1143] vhci_hcd: stop threads
[  116.765968][ T1143] vhci_hcd: release socket
[  116.767638][ T1143] vhci_hcd: disconnect device
[  116.775498][ T7436] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  116.825617][ T7437] virtio-fs: tag <c:::> not found
[  117.231675][ T7443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.435'.
[  117.235497][ T7443] netlink: 4 bytes leftover after parsing attributes in process `syz.3.435'.
[  117.302165][ T7442] netlink: 8 bytes leftover after parsing attributes in process `syz.3.435'.
[  117.305562][ T7442] netlink: 4 bytes leftover after parsing attributes in process `syz.3.435'.
[  117.363853][ T7445] Cannot find del_set index 65533 as target
[  118.176319][ T7456] ubi31: attaching mtd0
[  118.182765][ T7456] ubi31: scanning is finished
[  118.184433][ T7456] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  118.384746][ T7459] netlink: 6048 bytes leftover after parsing attributes in process `syz.0.439'.
[  118.389143][ T7456] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  118.452430][ T7461] netlink: 64 bytes leftover after parsing attributes in process `syz.0.439'.
[  118.616102][ T7466] netlink: 16 bytes leftover after parsing attributes in process `syz.3.440'.
[  119.342810][ T7478] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  119.345011][ T7478] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  119.348226][ T7478] vhci_hcd vhci_hcd.0: Device attached
[  119.440819][ T7482] vhci_hcd: connection closed
[  119.441398][ T1143] vhci_hcd: stop threads
[  119.444489][ T1143] vhci_hcd: release socket
[  119.445903][ T1143] vhci_hcd: disconnect device
[  119.469385][ T7464] syz.0.439 (7464): drop_caches: 2
[  119.649705][ T7493] netlink: 20 bytes leftover after parsing attributes in process `syz.0.450'.
[  119.653042][ T7493] netlink: 4 bytes leftover after parsing attributes in process `syz.0.450'.
[  120.276384][ T7502] netlink: 2048 bytes leftover after parsing attributes in process `syz.3.452'.
[  120.496509][ T7510] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  120.498843][ T7510] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  120.502541][ T7510] vhci_hcd vhci_hcd.0: Device attached
[  120.788561][  T843] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  120.799724][ T7519] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  120.801943][ T7519] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  120.804839][ T7519] vhci_hcd vhci_hcd.0: Device attached
[  120.913026][ T7521] vhci_hcd: connection closed
[  120.914698][  T103] vhci_hcd: stop threads
[  120.919314][  T103] vhci_hcd: release socket
[  120.920240][ T7526] Cannot find del_set index 65533 as target
[  120.920839][  T103] vhci_hcd: disconnect device
[  121.326649][ T7511] vhci_hcd: connection reset by peer
[  121.329864][  T103] vhci_hcd: stop threads
[  121.331916][  T103] vhci_hcd: release socket
[  121.334190][  T103] vhci_hcd: disconnect device
[  121.358487][   T10] vhci_hcd: vhci_device speed not set
[  121.937826][ T7545] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  123.090085][ T7572] Cannot find add_set index 0 as target
[  124.204662][ T7592] Cannot find del_set index 65533 as target
[  124.621981][ T7598] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  124.872260][ T7602] __nla_validate_parse: 3 callbacks suppressed
[  124.872272][ T7602] netlink: 6048 bytes leftover after parsing attributes in process `syz.3.478'.
[  124.879850][ T7602] netlink: 64 bytes leftover after parsing attributes in process `syz.3.478'.
[  125.772106][   T40] kauditd_printk_skb: 88 callbacks suppressed
[  125.772121][   T40] audit: type=1326 audit(1761529921.239:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.803875][   T40] audit: type=1326 audit(1761529921.239:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.812916][   T40] audit: type=1326 audit(1761529921.239:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.820584][   T40] audit: type=1326 audit(1761529921.239:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.827124][   T40] audit: type=1326 audit(1761529921.239:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.836178][ T5955] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  125.840758][ T5955] CPU: 2 UID: 0 PID: 5955 Comm: kworker/u33:7 Not tainted syzkaller #0 PREEMPT(full) 
[  125.840774][ T5955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.840782][ T5955] Workqueue: hci3 hci_rx_work
[  125.840816][ T5955] Call Trace:
[  125.840821][ T5955]  <TASK>
[  125.840826][ T5955]  dump_stack_lvl+0x16c/0x1f0
[  125.840840][ T5955]  sysfs_warn_dup+0x7f/0xa0
[  125.840856][ T5955]  sysfs_create_dir_ns+0x24b/0x2b0
[  125.840870][ T5955]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  125.840883][ T5955]  ? find_held_lock+0x2b/0x80
[  125.840899][ T5955]  ? do_raw_spin_unlock+0x172/0x230
[  125.840924][ T5955]  kobject_add_internal+0x2c4/0x9b0
[  125.840941][ T5955]  kobject_add+0x16e/0x240
[  125.840956][ T5955]  ? __pfx_kobject_add+0x10/0x10
[  125.840971][ T5955]  ? do_raw_spin_unlock+0x172/0x230
[  125.840990][ T5955]  ? kobject_put+0xab/0x5a0
[  125.841009][ T5955]  device_add+0x288/0x1aa0
[  125.841026][ T5955]  ? __pfx_dev_set_name+0x10/0x10
[  125.841038][ T5955]  ? __pfx_device_add+0x10/0x10
[  125.841055][ T5955]  ? mgmt_send_event_skb+0x2fb/0x460
[  125.841070][ T5955]  hci_conn_add_sysfs+0x17e/0x230
[  125.841084][ T5955]  le_conn_complete_evt+0x1260/0x2150
[  125.841099][ T5955]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  125.841109][ T5955]  ? hci_event_packet+0x459/0x11c0
[  125.841124][ T5955]  hci_le_conn_complete_evt+0x23c/0x370
[  125.841138][ T5955]  hci_le_meta_evt+0x357/0x5e0
[  125.841151][ T5955]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  125.841166][ T5955]  hci_event_packet+0x685/0x11c0
[  125.841177][ T5955]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  125.841189][ T5955]  ? __pfx_hci_event_packet+0x10/0x10
[  125.841202][ T5955]  ? kcov_remote_start+0x3c9/0x6d0
[  125.841212][ T5955]  ? lockdep_hardirqs_on+0x7c/0x110
[  125.841228][ T5955]  hci_rx_work+0x2c5/0x16b0
[  125.841240][ T5955]  ? rcu_is_watching+0x12/0xc0
[  125.841254][ T5955]  process_one_work+0x9cf/0x1b70
[  125.841277][ T5955]  ? __pfx_process_one_work+0x10/0x10
[  125.841299][ T5955]  ? assign_work+0x1a0/0x250
[  125.841316][ T5955]  worker_thread+0x6c8/0xf10
[  125.841339][ T5955]  ? __pfx_worker_thread+0x10/0x10
[  125.841356][ T5955]  kthread+0x3c5/0x780
[  125.841372][ T5955]  ? __pfx_kthread+0x10/0x10
[  125.841388][ T5955]  ? rcu_is_watching+0x12/0xc0
[  125.841401][ T5955]  ? __pfx_kthread+0x10/0x10
[  125.841417][ T5955]  ret_from_fork+0x675/0x7d0
[  125.841433][ T5955]  ? __pfx_kthread+0x10/0x10
[  125.841449][ T5955]  ret_from_fork_asm+0x1a/0x30
[  125.841472][ T5955]  </TASK>
[  125.841505][ T5955] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  125.843190][   T40] audit: type=1326 audit(1761529921.239:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.844856][ T5955] Bluetooth: hci3: failed to register connection device
[  125.853432][   T40] audit: type=1326 audit(1761529921.239:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.908138][  T843] vhci_hcd: vhci_device speed not set
[  125.908605][   T40] audit: type=1326 audit(1761529921.239:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.956100][   T40] audit: type=1326 audit(1761529921.259:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  125.975690][   T40] audit: type=1326 audit(1761529921.259:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz.3.480" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  126.366328][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  126.667583][ T7618] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.670478][ T7618] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.849761][ T7618] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  126.862576][ T7618] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  126.950139][   T24] syz1: Port: 1 Link DOWN
[  126.952526][  T222] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  126.958018][  T222] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  126.960771][  T222] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  126.969898][  T222] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  127.070665][ T7628] netlink: 'syz.1.486': attribute type 4 has an invalid length.
[  127.447405][ T7639] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  127.553170][ T7644] Cannot find add_set index 0 as target
[  128.641166][  T844] libceph: connect (1)[c::]:6789 error -101
[  128.644284][  T844] libceph: mon0 (1)[c::]:6789 connect error
[  128.649858][  T844] libceph: connect (1)[c::]:6789 error -101
[  128.652613][  T844] libceph: mon0 (1)[c::]:6789 connect error
[  128.909433][  T844] libceph: connect (1)[c::]:6789 error -101
[  128.912174][  T844] libceph: mon0 (1)[c::]:6789 connect error
[  128.974368][ T7687] netlink: 36 bytes leftover after parsing attributes in process `syz.0.504'.
[  128.986270][ T7689] netlink: 'syz.3.503': attribute type 12 has an invalid length.
[  129.039330][ T7678] ceph: No mds server is up or the cluster is laggy
[  129.268478][ T7699] FAULT_INJECTION: forcing a failure.
[  129.268478][ T7699] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  129.274331][ T7699] CPU: 0 UID: 0 PID: 7699 Comm: syz.1.509 Not tainted syzkaller #0 PREEMPT(full) 
[  129.274355][ T7699] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.274365][ T7699] Call Trace:
[  129.274371][ T7699]  <TASK>
[  129.274379][ T7699]  dump_stack_lvl+0x16c/0x1f0
[  129.274404][ T7699]  should_fail_ex+0x512/0x640
[  129.274435][ T7699]  _copy_from_user+0x2e/0xd0
[  129.274463][ T7699]  input_event_from_user+0x137/0x290
[  129.274483][ T7699]  ? __pfx_input_event_from_user+0x10/0x10
[  129.274504][ T7699]  ? input_inject_event+0x1c0/0x3b0
[  129.274525][ T7699]  evdev_write+0x26b/0x440
[  129.274547][ T7699]  ? __pfx_evdev_write+0x10/0x10
[  129.274564][ T7699]  ? common_file_perm+0x1a9/0x340
[  129.274580][ T7699]  ? bpf_lsm_file_permission+0x9/0x10
[  129.274599][ T7699]  ? security_file_permission+0x71/0x210
[  129.274617][ T7699]  ? rw_verify_area+0xcf/0x6c0
[  129.274635][ T7699]  ? __pfx_evdev_write+0x10/0x10
[  129.274651][ T7699]  vfs_write+0x2a0/0x11d0
[  129.274676][ T7699]  ? __pfx_vfs_write+0x10/0x10
[  129.274692][ T7699]  ? find_held_lock+0x2b/0x80
[  129.274710][ T7699]  ? __fget_files+0x204/0x3c0
[  129.274730][ T7699]  ? __fget_files+0x20e/0x3c0
[  129.274746][ T7699]  ? handle_mm_fault+0x200/0xd10
[  129.274780][ T7699]  ksys_write+0x1f8/0x250
[  129.274797][ T7699]  ? __pfx_ksys_write+0x10/0x10
[  129.274817][ T7699]  ? rcu_is_watching+0x12/0xc0
[  129.274840][ T7699]  __do_fast_syscall_32+0x7c/0x300
[  129.274872][ T7699]  do_fast_syscall_32+0x32/0x80
[  129.274894][ T7699]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  129.274914][ T7699] RIP: 0023:0xf700d579
[  129.274928][ T7699] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  129.274964][ T7699] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  129.274982][ T7699] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040
[  129.274994][ T7699] RDX: 00000000000012d8 RSI: 0000000000000000 RDI: 0000000000000000
[  129.275004][ T7699] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  129.275014][ T7699] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  129.275025][ T7699] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  129.275050][ T7699]  </TASK>
[  130.574832][ T7728] ubi31: attaching mtd0
[  130.581830][ T7728] ubi31: scanning is finished
[  130.583894][ T7728] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  130.718736][ T7728] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  131.380054][ T5955] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  131.538767][ T7754] netlink: 20 bytes leftover after parsing attributes in process `syz.1.524'.
[  131.542371][ T7754] netlink: 28 bytes leftover after parsing attributes in process `syz.1.524'.
[  132.467084][ T7764] netlink: 40 bytes leftover after parsing attributes in process `syz.2.526'.
[  132.470133][ T7764] netlink: 48 bytes leftover after parsing attributes in process `syz.2.526'.
[  133.060492][ T7788] netlink: 20 bytes leftover after parsing attributes in process `syz.3.536'.
[  133.063264][ T7788] netlink: 28 bytes leftover after parsing attributes in process `syz.3.536'.
[  133.228125][   T58] usb 7-1: new low-speed USB device number 8 using dummy_hcd
[  133.389952][   T58] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  133.393351][   T58] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  133.398591][   T58] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[  133.403220][   T58] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  133.408372][   T58] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.414714][ T7786] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  133.419804][   T58] hub 7-1:1.0: bad descriptor, ignoring hub
[  133.421823][   T58] hub 7-1:1.0: probe with driver hub failed with error -5
[  133.424320][   T58] cdc_wdm 7-1:1.0: skipping garbage
[  133.425967][   T58] cdc_wdm 7-1:1.0: skipping garbage
[  133.430737][   T58] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  133.432742][   T58] cdc_wdm 7-1:1.0: Unknown control protocol
[  133.613731][ T7794] netlink: 4 bytes leftover after parsing attributes in process `syz.1.537'.
[  133.616921][ T7794] netlink: 277 bytes leftover after parsing attributes in process `syz.1.537'.
[  133.620131][ T7794] netlink: 277 bytes leftover after parsing attributes in process `syz.1.537'.
[  133.701195][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.704062][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.706285][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.708298][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.710283][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.712270][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.714313][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.716272][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.718311][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.720254][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.722289][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.724904][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.727097][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.729065][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.731128][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.733150][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.735388][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.737970][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.740174][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  133.742555][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  133.921197][ T7799] ubi31: attaching mtd0
[  133.927416][ T7799] ubi31: scanning is finished
[  133.929365][ T7799] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  133.932238][    T9] usb 7-1: USB disconnect, device number 8
[  134.077874][ T7799] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  134.259303][ T7804] netlink: 4 bytes leftover after parsing attributes in process `syz.3.539'.
[  134.708442][    T9] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  134.838092][    T9] usb 6-1: device descriptor read/64, error -71
[  135.078223][    T9] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  135.208033][    T9] usb 6-1: device descriptor read/64, error -71
[  135.328586][    T9] usb usb6-port1: attempt power cycle
[  135.613090][ T7824] Invalid logical block size (100663296)
[  135.668056][    T9] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  135.690117][    T9] usb 6-1: device descriptor read/8, error -71
[  135.791173][ T7834] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  136.048819][    T9] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  136.068738][    T9] usb 6-1: device descriptor read/8, error -71
[  136.069074][ T7841] overlay: Unknown parameter 'pcr'
[  136.178416][    T9] usb usb6-port1: unable to enumerate USB device
[  137.191100][ T7857] Cannot find add_set index 0 as target
[  137.309248][ T7862] 8021q: adding VLAN 0 to HW filter on device bond1
[  137.313871][ T7862] bond0: (slave bond1): Enslaving as an active interface with an up link
[  137.320901][ T7862] netlink: 14 bytes leftover after parsing attributes in process `syz.2.558'.
[  137.334455][  T222] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  137.523657][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  137.526688][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  137.744034][ T7908] Cannot find del_set index 65533 as target
[  138.813658][ T7954] netlink: 32 bytes leftover after parsing attributes in process `syz.3.575'.
[  139.049382][ T7968] netlink: 28 bytes leftover after parsing attributes in process `syz.3.580'.
[  139.098098][ T6011] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  139.249481][ T6011] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  139.253132][ T6011] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  139.256853][ T6011] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  139.260166][ T6011] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  139.264147][ T6011] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  139.267094][ T6011] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.271012][ T6011] usb 5-1: config 0 descriptor??
[  139.676543][ T7960] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.679532][ T7960] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.733978][ T7970] netlink: 12 bytes leftover after parsing attributes in process `syz.0.577'.
[  139.844888][ T7979] netlink: 'syz.1.583': attribute type 10 has an invalid length.
[  139.856659][ T7979] team0: Port device dummy0 added
[  139.865007][ T7979] netlink: 'syz.1.583': attribute type 10 has an invalid length.
[  139.888471][ T7979] team0: Port device dummy0 removed
[  139.892325][ T7979] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  139.948472][ T7981] netlink: 32 bytes leftover after parsing attributes in process `syz.3.584'.
[  139.959525][ T7985] Cannot find del_set index 65533 as target
[  140.290595][ T7997] siw: device registration error -23
[  140.295111][ T7997] smc: removing ib device syz2
[  140.610753][ T7997] ------------[ cut here ]------------
[  140.612586][ T7997] WARNING: CPU: 0 PID: 7997 at drivers/infiniband/sw/rxe/rxe_pool.c:116 rxe_pool_cleanup+0x41/0x60
[  140.615934][ T7997] Modules linked in:
[  140.617751][ T7997] CPU: 0 UID: 0 PID: 7997 Comm: syz.3.588 Not tainted syzkaller #0 PREEMPT(full) 
[  140.622135][ T7997] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.625485][ T7997] RIP: 0010:rxe_pool_cleanup+0x41/0x60
[  140.627208][ T7997] Code: 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1f 48 83 bb 80 00 00 00 00 75 06 5b e9 65 95 3a f9 e8 60 95 3a f9 90 <0f> 0b 90 5b e9 56 95 3a f9 e8 81 2c a2 f9 eb da 66 66 2e 0f 1f 84
[  140.633159][ T7997] RSP: 0018:ffffc9000d8071a8 EFLAGS: 00010246
[  140.635021][ T7997] RAX: 0000000000080000 RBX: ffff8880120a1358 RCX: ffffc9000c001000
[  140.637457][ T7997] RDX: 0000000000080000 RSI: ffffffff8881d5e0 RDI: ffff8880120a13d8
[  140.639979][ T7997] RBP: ffffffff88803a80 R08: 0000000000000005 R09: 0000000000000001
[  140.642451][ T7997] R10: 0000000000000002 R11: 0000000000000000 R12: ffff8880120a0698
[  140.644931][ T7997] R13: ffff88801209ffe0 R14: ffff88801209ffe0 R15: ffff8880120a10b8
[  140.647397][ T7997] FS:  0000000000000000(0000) GS:ffff888097810000(0063) knlGS:00000000f5426b40
[  140.650573][ T7997] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  140.652746][ T7997] CR2: 0000000000000000 CR3: 000000004bf38000 CR4: 0000000000352ef0
[  140.655227][ T7997] Call Trace:
[  140.656397][ T7997]  <TASK>
[  140.657334][ T7997]  rxe_dealloc+0x25/0xc0
[  140.658739][ T7997]  ib_dealloc_device+0x49/0x230
[  140.660482][ T7997]  __ib_unregister_device+0x396/0x480
[  140.662524][ T7997]  ? __pfx_ib_device_get_by_index+0x10/0x10
[  140.664921][ T7997]  ib_unregister_device_and_put+0x5a/0x80
[  140.666804][ T7997]  nldev_dellink+0x21f/0x320
[  140.668350][ T7997]  ? __pfx_nldev_dellink+0x10/0x10
[  140.670049][ T7997]  ? aa_get_newest_label+0xd2/0x250
[  140.672189][ T7997]  ? apparmor_capable+0x114/0x1d0
[  140.674231][ T7997]  ? bpf_lsm_capable+0x9/0x10
[  140.676164][ T7997]  ? security_capable+0x7e/0x260
[  140.678216][ T7997]  ? ns_capable+0xd7/0x110
[  140.680058][ T7997]  ? __pfx_nldev_dellink+0x10/0x10
[  140.681833][ T7997]  rdma_nl_rcv_msg+0x38a/0x6e0
[  140.683546][ T7997]  ? __pfx_rdma_nl_rcv_msg+0x10/0x10
[  140.685458][ T7997]  ? __lock_acquire+0x622/0x1c90
[  140.687090][ T7997]  rdma_nl_rcv_skb.constprop.0.isra.0+0x2d0/0x430
[  140.689481][ T7997]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[  140.691803][ T7997]  ? netlink_deliver_tap+0x1ae/0xd30
[  140.693707][ T7997]  netlink_unicast+0x5aa/0x870
[  140.695486][ T7997]  ? __pfx_netlink_unicast+0x10/0x10
[  140.697180][ T7997]  ? __pfx___might_resched+0x10/0x10
[  140.698913][ T7997]  netlink_sendmsg+0x8c8/0xdd0
[  140.700426][ T7997]  ? __pfx_netlink_sendmsg+0x10/0x10
[  140.702271][ T7997]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  140.704186][ T7997]  ____sys_sendmsg+0xa98/0xc70
[  140.705687][ T7997]  ? __pfx_____sys_sendmsg+0x10/0x10
[  140.707387][ T7997]  ? get_compat_msghdr+0x11a/0x170
[  140.709219][ T7997]  ? __pfx_futex_wake_mark+0x10/0x10
[  140.710892][ T7997]  ___sys_sendmsg+0x134/0x1d0
[  140.712553][ T7997]  ? __pfx____sys_sendmsg+0x10/0x10
[  140.714647][ T7997]  ? find_held_lock+0x2b/0x80
[  140.716569][ T7997]  __sys_sendmsg+0x16d/0x220
[  140.718319][ T7997]  ? __pfx___sys_sendmsg+0x10/0x10
[  140.720406][ T7997]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  140.722595][ T7997]  ? rcu_is_watching+0x12/0xc0
[  140.724449][ T7997]  __do_fast_syscall_32+0x7c/0x300
[  140.726172][ T7997]  do_fast_syscall_32+0x32/0x80
[  140.727729][ T7997]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  140.729885][ T7997] RIP: 0023:0xf7f34579
[  140.731220][ T7997] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  140.737116][ T7997] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  140.739796][ T7997] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800002c0
[  140.742258][ T7997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  140.744746][ T7997] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  140.747212][ T7997] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  140.749749][ T7997] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  140.752236][ T7997]  </TASK>
[  140.753226][ T7997] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  140.755501][ T7997] CPU: 0 UID: 0 PID: 7997 Comm: syz.3.588 Not tainted syzkaller #0 PREEMPT(full) 
[  140.758338][ T7997] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.761662][ T7997] Call Trace:
[  140.762724][ T7997]  <TASK>
[  140.763692][ T7997]  dump_stack_lvl+0x3d/0x1f0
[  140.765136][ T7997]  vpanic+0x640/0x6f0
[  140.766377][ T7997]  ? rxe_pool_cleanup+0x41/0x60
[  140.767923][ T7997]  panic+0xca/0xd0
[  140.769120][ T7997]  ? __pfx_panic+0x10/0x10
[  140.770524][ T7997]  check_panic_on_warn+0xab/0xb0
[  140.772105][ T7997]  __warn+0xf6/0x3c0
[  140.773354][ T7997]  ? rxe_pool_cleanup+0x41/0x60
[  140.774906][ T7997]  report_bug+0x3c3/0x580
[  140.776269][ T7997]  ? rxe_pool_cleanup+0x41/0x60
[  140.777804][ T7997]  handle_bug+0x184/0x210
[  140.779205][ T7997]  exc_invalid_op+0x17/0x50
[  140.780640][ T7997]  asm_exc_invalid_op+0x1a/0x20
[  140.782173][ T7997] RIP: 0010:rxe_pool_cleanup+0x41/0x60
[  140.783899][ T7997] Code: 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1f 48 83 bb 80 00 00 00 00 75 06 5b e9 65 95 3a f9 e8 60 95 3a f9 90 <0f> 0b 90 5b e9 56 95 3a f9 e8 81 2c a2 f9 eb da 66 66 2e 0f 1f 84
[  140.789814][ T7997] RSP: 0018:ffffc9000d8071a8 EFLAGS: 00010246
[  140.791735][ T7997] RAX: 0000000000080000 RBX: ffff8880120a1358 RCX: ffffc9000c001000
[  140.794184][ T7997] RDX: 0000000000080000 RSI: ffffffff8881d5e0 RDI: ffff8880120a13d8
[  140.796656][ T7997] RBP: ffffffff88803a80 R08: 0000000000000005 R09: 0000000000000001
[  140.799009][ T7997] R10: 0000000000000002 R11: 0000000000000000 R12: ffff8880120a0698
[  140.801452][ T7997] R13: ffff88801209ffe0 R14: ffff88801209ffe0 R15: ffff8880120a10b8
[  140.803912][ T7997]  ? __pfx_rxe_dealloc+0x10/0x10
[  140.805464][ T7997]  ? rxe_pool_cleanup+0x40/0x60
[  140.807007][ T7997]  ? rxe_pool_cleanup+0x40/0x60
[  140.808534][ T7997]  rxe_dealloc+0x25/0xc0
[  140.809893][ T7997]  ib_dealloc_device+0x49/0x230
[  140.811437][ T7997]  __ib_unregister_device+0x396/0x480
[  140.813114][ T7997]  ? __pfx_ib_device_get_by_index+0x10/0x10
[  140.814965][ T7997]  ib_unregister_device_and_put+0x5a/0x80
[  140.816744][ T7997]  nldev_dellink+0x21f/0x320
[  140.818203][ T7997]  ? __pfx_nldev_dellink+0x10/0x10
[  140.819807][ T7997]  ? aa_get_newest_label+0xd2/0x250
[  140.821461][ T7997]  ? apparmor_capable+0x114/0x1d0
[  140.823004][ T7997]  ? bpf_lsm_capable+0x9/0x10
[  140.824497][ T7997]  ? security_capable+0x7e/0x260
[  140.826065][ T7997]  ? ns_capable+0xd7/0x110
[  140.827487][ T7997]  ? __pfx_nldev_dellink+0x10/0x10
[  140.829126][ T7997]  rdma_nl_rcv_msg+0x38a/0x6e0
[  140.830637][ T7997]  ? __pfx_rdma_nl_rcv_msg+0x10/0x10
[  140.832311][ T7997]  ? __lock_acquire+0x622/0x1c90
[  140.833867][ T7997]  rdma_nl_rcv_skb.constprop.0.isra.0+0x2d0/0x430
[  140.835868][ T7997]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[  140.838011][ T7997]  ? netlink_deliver_tap+0x1ae/0xd30
[  140.839691][ T7997]  netlink_unicast+0x5aa/0x870
[  140.841196][ T7997]  ? __pfx_netlink_unicast+0x10/0x10
[  140.842870][ T7997]  ? __pfx___might_resched+0x10/0x10
[  140.844533][ T7997]  netlink_sendmsg+0x8c8/0xdd0
[  140.846043][ T7997]  ? __pfx_netlink_sendmsg+0x10/0x10
[  140.847700][ T7997]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  140.849615][ T7997]  ____sys_sendmsg+0xa98/0xc70
[  140.851133][ T7997]  ? __pfx_____sys_sendmsg+0x10/0x10
[  140.852794][ T7997]  ? get_compat_msghdr+0x11a/0x170
[  140.854398][ T7997]  ? __pfx_futex_wake_mark+0x10/0x10
[  140.856070][ T7997]  ___sys_sendmsg+0x134/0x1d0
[  140.857546][ T7997]  ? __pfx____sys_sendmsg+0x10/0x10
[  140.859186][ T7997]  ? find_held_lock+0x2b/0x80
[  140.860670][ T7997]  __sys_sendmsg+0x16d/0x220
[  140.862126][ T7997]  ? __pfx___sys_sendmsg+0x10/0x10
[  140.863748][ T7997]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  140.865505][ T7997]  ? rcu_is_watching+0x12/0xc0
[  140.867015][ T7997]  __do_fast_syscall_32+0x7c/0x300
[  140.868635][ T7997]  do_fast_syscall_32+0x32/0x80
[  140.870168][ T7997]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  140.872145][ T7997] RIP: 0023:0xf7f34579
[  140.873428][ T7997] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  140.879374][ T7997] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  140.881960][ T7997] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800002c0
[  140.884458][ T7997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  140.886886][ T7997] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  140.889350][ T7997] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  140.891814][ T7997] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  140.894246][ T7997]  </TASK>
[  140.895772][ T7997] Kernel Offset: disabled
[  140.897123][ T7997] Rebooting in 86400 seconds..

VM DIAGNOSIS:
01:52:16  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff85266d10 RDI=ffffffff9adc2da0 RBP=ffffffff9adc2d60 RSP=ffffc9000d806b18
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=ffffffff9adc2db0 R14=ffffffff9adc2d60 R15=ffffffff9adc3020
RIP=ffffffff85266d37 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097810000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000004bf38000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004c00000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000564e627b06 RBX=ffff88802b323a00 RCX=00000000000006e0 RDX=0000000000000056
RSI=ffff88802b323a00 RDI=000000000003f2ea RBP=000000000003f2ea RSP=ffffc90000590ec8
R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000019 R15=ffff88802b327c80
RIP=ffffffff8168edd5 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097910000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5405da4 CR3=000000004bf38000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffffff91c901e8 RBX=ffffffff910a8df4 RCX=dffffc0000000000 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff910a8df4 RBP=ffffffff910a8df8 RSP=ffffc90028edf3a8
R8 =ffffffff91c901ee R9 =0000000000000001 R10=0000000000000000 R11=00000000000a5fa7
R12=ffffffff910a8df4 R13=ffffffff8b5fa792 R14=ffffffff910a8df4 R15=0000000000000000
RIP=ffffffff816bbbc6 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097a10000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080003000 CR3=000000006bd21000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004c00000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff88801bf10b30 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8da015af RDI=ffffffff8bf073c0 RBP=ffff88802b43a4d8 RSP=ffffc9000048fb80
R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000001 R11=0000000000000001
R12=ffff88801bf10000 R13=0000000000000001 R14=00000000ffffffff R15=0000000000000000
RIP=ffffffff8b5d2a32 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097b10000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3a1a53 CR3=000000005f0d9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009c00000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000