last executing test programs:

4m40.794616574s ago: executing program 2 (id=656):
r0 = openat$autofs(0xffffff9c, &(0x7f0000000000), 0x290801, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x4040, 0x64)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0xcb83, 0x2}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x6}}, './file0\x00'})
r4 = socket$isdn_base(0x22, 0x3, 0x0)
sendmsg(r4, &(0x7f0000001880)={&(0x7f0000000100)=@ax25={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x8}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, &(0x7f00000017c0)=[{&(0x7f0000000180)="87637393db8f1e60de4d76fe2002c7358731e7930ca8a39d92e16389fc7606da09255e24db30f2bef490042302fb650f9fea57d9e28313ccc946266a937f1eaf7f6db990161f0b9f3dc850a69b83d92d3f1ae870fec4eea61a9b14301c1b237424815dcf69975943bfccdf1fd681dcdaea3aa2c148596b45f3b47794364cb4a6f3a45345db0a15012e3c78d5714be3453bf7f278f8711fdb0630b8ebb0f7f234d3852e3fc3c5901cf45c83456955dd75707384e68972413c7ac4115d63da4ea00ebab86aeccaaba6a8a353d05c587c8f6f64a74e807d2aeeca5feb784a424efcfe73d6e856fe2b7bab8f0655c483feb45a5c6e4d0ebddc", 0xf7}, {&(0x7f0000000280)="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", 0x1000}, {&(0x7f0000001280)="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", 0xff}, {&(0x7f0000001380)="cfb7ab9b69586d014758c1dbc11d973b9cc82592322adcf6f68839e61dfe85ce7a87651b7079b874e94299a7", 0x2c}, {&(0x7f00000013c0)="08d130bb6efe55473e3893b7aadff0629fbb3019ec5eb4716e52c3d419fab3e9f0a7a515eb9ae0331e456bb719d483067b1711f56358c4c328de4ef140617f76d81d187eeececa5773a8395fa0e698d004fb", 0x52}, {&(0x7f0000001440)="059d63027745130501e71753aba0dbd14234102f11b23e07df9f2d368d156b50a5e5222a9e5fad5aaf87211bdb05a31526b5dbfe60ba1407f72bc142d679303d2d61cd7484b7711192c6a6b7712ce755fd2ac49a62d49fd1808b28f9ed5debf685596a65b2eea98614f2dc3a8e1af9bb44937218410040b5d10b55f2c6a66b72703c940f5a248e17ba75842831cb33ea7d29eb768a6bf2f26ab068886ba18e55ce0c5ee42dc8248dcdc4f5754bcbd35372", 0xb1}, {&(0x7f0000001500)="11b13ee542ebc9542d57df05b7001d033c59a1c584055574aa41c763c9e739bd706e9cbf199a1b9efb8219d5da44269b44f36d55e209c4c196c117f483cd7b88c72d7b3b41a551dbe7f851395d135db66601ef51b5bb4971d8d0c335e086b90c11f588cef1287f52d486e544c07644db91925ce4cfbb5cb0a07c58d1b9d5315112f48837d1087720f344ccdb554fbf7de4943ceba4501ca239600678c64ed1f99e758f0c99f321446bf28a7ee74d3dab1e4cc2caf49658", 0xb7}, {&(0x7f00000015c0)="8ee5e01181a8f9e0643271658a67904077f052977d7ccd50bd250257916cf6b32ddcd52cc5cd32608618ca4f83125869adcb9a6f03c8c990936b85381916c30badedd2c7b204eb1f1c30006c325484e85d86970db03bdbc80cb90764017e3f01d705d1352dcf", 0x66}, {&(0x7f0000001640)="93801a32252b55dd30bb36e88116324a5ddcb0d5b76621144cffb73b1d237dd98a5367d83e48fbdd886d3b4164ca61d4bf9d93ae230ca3674f8fa55196491eacce42185a05a1f2bd21e951f40ccfe50f8382da", 0x53}, {&(0x7f00000016c0)="e9718024f495894649ac3067d63673c195dfb0967dfd10a00335e9b648e0953872329aa5acc267b744342283755417bd25110c162950493eb27a91f3b047cce546c3cdb3f87c4f5d5c53a26a22cce6b2e0b733cb033b2008a63b13ba9381666d33559ea52d96de36e258b550c49967e626f15a3ea2a14985a37219df7107f43e40bfabf55e0a669d686114f7ad310673ae0233463d2d64f395a63023dca6c16f7ea4a2190926f23c1c7ddec45c56c724ab744742654588f480de0d09044264f05e405b5aa7ad73ec0824b50d45394159f476e2585e9b68e5470aa64e49dc23091c4f4f4827f35316084616aa67e8db7beba81e4faca88d", 0xf7}], 0xa, &(0x7f0000001840)=[{0x30, 0x1, 0xfffffffe, "0e657a6ca4281d9e7815a911bf4cc44b8fda7cb39e8e392b98cd35d989637d1105c53d"}], 0x30}, 0x800)
ioctl$IMSETDEVNAME(r2, 0x80184947, &(0x7f00000018c0)={0x9b2e, 'syz0\x00'})
ioctl$VIDIOC_G_ENC_INDEX(r2, 0x8818564c, &(0x7f0000001900))
mount$9p_unix(&(0x7f0000002140)='./file0\x00', &(0x7f0000002180)='./file0\x00', &(0x7f00000021c0), 0x400, &(0x7f0000002200)={'trans=unix,', {[{@version_9p2000}], [{@measure}, {@seclabel}, {@fsuuid={'fsuuid', 0x3d, {[0x36, 0x32, 0x61, 0x39, 0x63, 0x39, 0x37, 0x39], 0x2d, [0x64, 0x32, 0x4d906b7446b833a9, 0x63], 0x2d, [0x61, 0x38, 0x33, 0x62], 0x2d, [0x38, 0x33, 0x33, 0x66], 0x2d, [0x64, 0x39, 0x36, 0x34, 0x37, 0x59, 0x39, 0x39]}}}, {@appraise}]}})
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000002280)={0x8, 0xec, 0x2})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
syz_io_uring_setup(0x7916, &(0x7f00000022c0)={0x0, 0x4e9b, 0x1000, 0x2, 0xfc, 0x0, r1}, &(0x7f0000002340), &(0x7f0000002380))
connect$bt_sco(r1, &(0x7f00000023c0)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_GET_SREGS(r5, 0x8138ae83, &(0x7f0000002400))
ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f0000002540)={0x0, @llc={0x1a, 0x206, 0x9, 0xb4, 0x4, 0xc, @random="2986d86f561c"}, @generic={0x23, "b00abbf183eb9eeb980285abd173"}, @qipcrtr={0x2a, 0xffffffffffffffff, 0x4000}, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x9, 0x7ff, 0x4})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002600), r3)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000002640)={<r8=>0x0, @broadcast, @multicast2}, &(0x7f0000002680)=0xc)
sendmsg$ETHTOOL_MSG_EEE_SET(r6, &(0x7f0000002780)={&(0x7f00000025c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002740)={&(0x7f00000026c0)={0x6c, r7, 0x10, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_EEE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000890}, 0x44)
bind$bt_sco(r2, &(0x7f00000027c0), 0x8)
sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000002900)={&(0x7f0000002800)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000028c0)={&(0x7f0000002840)={0x60, 0x0, 0x400, 0x70bd2b, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4040041}, 0x4)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r2, 0x942e, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000002a40)={&(0x7f0000002940)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000002980)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000029c0)=[0x0, 0x0], &(0x7f0000002a00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x4, 0x2, 0x6})
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000002a80)={@hyper})
openat$hwrng(0xffffff9c, &(0x7f0000002ac0), 0x8800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000002b00)={{0x1, 0x1, 0x18, r2, {0x5}}, './file0\x00'})
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000002b80), r2)
sendmsg$IPVS_CMD_GET_DEST(r6, &(0x7f0000002cc0)={&(0x7f0000002b40)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002c80)={&(0x7f0000002bc0)={0x88, r9, 0x8, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0x40, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x15}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0x24}}]}, @IPVS_CMD_ATTR_SERVICE={0x34, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x9}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x3}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}]}]}, 0x88}, 0x1, 0x0, 0x0, 0xc080000}, 0x4000040)
syz_genetlink_get_family_id$net_dm(&(0x7f0000002d00), 0xffffffffffffffff)

4m40.729498418s ago: executing program 2 (id=657):
syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x2000, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x300, 0x0, 0x0, 0x0, 0x100000000000000}, 0x0, &(0x7f0000000100)={0x8}, 0x0, 0x0)

4m40.685884734s ago: executing program 2 (id=658):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
socket(0x1e, 0x4, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
fsetxattr$trusted_overlay_origin(r1, &(0x7f0000000100), &(0x7f0000000280), 0x2, 0x3)
syz_init_net_socket$ax25(0x3, 0x7, 0xcc)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=@newsa={0x13c, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@local, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in=@dev={0xac, 0x14, 0x14, 0x12}, 0x4d4, 0x3c}, @in6=@dev={0xfe, 0x80, '\x00', 0x39}, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x22, 0xfffffffffffffffe}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3501, 0x2, 0x1, 0x45, 0x20}, [@algo_auth_trunc={0x4c, 0x14, {{'sha384-ce\x00'}, 0x0, 0x200}}]}, 0x13c}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r5, 0x0, 0x481, &(0x7f0000000040), &(0x7f00000000c0)=0xc)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0xc00, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000240)=0x7)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000180)=0xe0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x3c1, 0x3, 0x4d0, 0x0, 0x111, 0x4b4, 0xec, 0xd4feffff, 0x408, 0x202, 0x225, 0x408, 0x278, 0x3, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0xfc}, @empty, [], [], 'veth1_vlan\x00', 'team_slave_0\x00'}, 0x0, 0xa4, 0xec}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x81, 'syz0\x00'}}}, {{@ipv6={@empty, @private0={0xfc, 0x0, '\x00', 0x1}, [0x0, 0x0, 0x0, 0xffffffff], [0x0, 0xffffffff], 'veth1_to_hsr\x00', 'erspan0\x00', {}, {}, 0x0, 0x40}, 0x0, 0x2d4, 0x31c, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x9, 0x0, [{0x1, 0x1, 0x9, 0x33ffb42f}, {0x401, 0xd2, 0x33, 0x1}, {0x9, 0x13, 0x27, 0x9}, {0x7, 0xf1, 0x2, 0xe3}, {0x3, 0x5, 0x6, 0x1}, {0x66e, 0xc, 0xb, 0x3}, {0x400, 0x9, 0xeb, 0x9}, {0x9, 0x1, 0x6, 0x2}, {0x2, 0x5, 0x0, 0x401}, {0x0, 0x1, 0x6, 0x6}, {0xcc, 0x4, 0x1, 0x1}, {0x1, 0x53, 0x3, 0x6a9}, {0x9, 0x3, 0x4}, {0x101, 0x3, 0xf, 0x5}, {0xd45, 0x1, 0x3, 0x100}, {0x3, 0x8, 0x7, 0x8}, {0x9, 0xc0, 0x6, 0xfffffffe}, {0x9, 0x80, 0x9, 0x7}, {0x3, 0x6, 0x6, 0x4}, {0x3, 0x6, 0x7, 0x4}, {0x3, 0x8, 0x3d, 0x5}, {0x4522, 0x1, 0x4, 0xab}, {0x200, 0x3, 0x7, 0x1}, {0xca7, 0x9, 0x9, 0x3}, {0x2, 0x8, 0x1, 0x78}, {0x3, 0x6, 0x9, 0x4b62}, {0x5, 0x5, 0x0, 0xc26}, {0x800, 0x7f, 0x1, 0xfd}, {0x81, 0x8, 0x62, 0xfffffffa}, {0x91, 0x8, 0xd, 0x5}, {0x8000, 0x9, 0xd4, 0x5}, {0xd28a, 0x40, 0x5, 0x2}, {0x4, 0x3, 0x7b}, {0x1, 0x7, 0x5, 0x1000}, {0x400, 0xa3, 0xe2, 0x1}, {0xfff5, 0xe, 0x2, 0x2}, {0x7fff, 0x64, 0x2, 0x3}, {0x8000, 0x77, 0x4, 0x5a}, {0x5, 0x6, 0xf6, 0x4}, {0xdbba, 0x9c, 0x8, 0x9b}, {0x54a, 0xd, 0x1a, 0x4}, {0xb334, 0x3, 0xea, 0x7}, {0x101, 0xd, 0xe, 0x2}, {0x8, 0x10, 0x4, 0x7}, {0x1, 0x8, 0x3, 0x1}, {0xf618, 0x6, 0x1, 0x5}, {0x8, 0x4, 0xc0, 0x200}, {0xf, 0x2, 0x0, 0xffff}, {0x9, 0x8, 0x0, 0xffffffff}, {0x3, 0x7, 0x7, 0x9}, {0x200, 0x0, 0xfe, 0xfffff001}, {0x101, 0x3, 0x4, 0x35}, {0x9, 0x6, 0xff, 0xd}, {0x13dd, 0x9, 0x4, 0xfff}, {0x8a, 0x10, 0x6, 0x49ea}, {0x1ff, 0x9, 0x3, 0x9}, {0xe54d, 0xd, 0x4, 0x1}, {0x1, 0x5, 0x2, 0x6}, {0x1, 0x9, 0x10, 0x9}, {0x9, 0x8b, 0x5, 0x7}, {0x3, 0x81, 0x1}, {0xfc, 0xff, 0x1, 0xffffffff}, {0x9, 0xb, 0x7, 0x4}, {0x46, 0x7, 0x8, 0x9}], {0xa6d}}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xa, 'syz1\x00', {0x7f}}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x52c)

4m38.320726509s ago: executing program 2 (id=660):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x90)
mount$9p_virtio(&(0x7f0000000300), &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0xc0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r0, &(0x7f00000003c0)={0xa, 0x4e21, 0x400d, @remote, 0xb5}, 0x1c)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="180000003e00079f8ec24b000000df25047c000004000000"], 0x18}}, 0x0)
recvmsg(r1, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x2020)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x25, 0x301, 0x270bd24, 0x25dfdbfd, {0x1}}, 0x14}}, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000640)='attr/current\x00')
pwritev(r3, &(0x7f0000000500)=[{&(0x7f00000001c0)="9f", 0x1}], 0x1, 0x8, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 'id1\x00'})
socket$packet(0x11, 0x2, 0x300)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
syz_io_uring_setup(0x10d4, &(0x7f0000000000)={0x0, 0x7f36, 0x0, 0x0, 0x34f}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
io_uring_enter(r3, 0x6c5f, 0x0, 0x8, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

4m37.281082579s ago: executing program 2 (id=666):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x200f000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000}, 0x50)

4m36.535985893s ago: executing program 2 (id=668):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x3000003, 0x40010, 0xffffffffffffffff, 0x8000000)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x11c, &(0x7f0000000280)=0x2c, 0x0, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x2000)=nil)
r5 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QUERYBUF(r5, 0xc044560f, &(0x7f0000000080)=@mmap={0x0, 0x2, 0x4, 0x0, 0x7, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "10110401"}})
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000140)={'full'}, 0xfffffdef)
socket$alg(0x26, 0x5, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4m36.460429751s ago: executing program 32 (id=668):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x3000003, 0x40010, 0xffffffffffffffff, 0x8000000)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x11c, &(0x7f0000000280)=0x2c, 0x0, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x2000)=nil)
r5 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QUERYBUF(r5, 0xc044560f, &(0x7f0000000080)=@mmap={0x0, 0x2, 0x4, 0x0, 0x7, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "10110401"}})
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000140)={'full'}, 0xfffffdef)
socket$alg(0x26, 0x5, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1m0.514884845s ago: executing program 1 (id=2126):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x200f000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff000}, 0x50)

1m0.484122548s ago: executing program 1 (id=2127):
ioctl$sock_netdev_private(0xffffffffffffffff, 0x89fb, &(0x7f0000000180)="6a920d2045e07b9998b2523aeb2eae5caeeabfb2e56da91eb91f7a8dc8298399106cf5eca01b61d59613d20db9380dc5a4deb8c9368e55a202f05aeb2ad384")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000003e70000000200000008000300", @ANYRES32=r2, @ANYBLOB="0c00990000000000000000000800a102ffff0000080026008d03000008009f"], 0x40}}, 0x0)

1m0.195344329s ago: executing program 1 (id=2128):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x3a, 0x1, 0x0, 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
rt_sigaction(0x19, &(0x7f00000000c0)={&(0x7f0000000080)="366465f029144d00000081f30fc27f5e06ae0d0fd82e2e460f01d626f00994aff7000000c4c1796f960600000040cd00c4e2f1453c99f340a56544ca0c00", 0x84000004, 0x0}, 0x0, 0x8, &(0x7f0000000000))
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), 0xffffffffffffffff)
ftruncate(r1, 0x3292e291)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000b00))
dup(r3)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84242, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x10183, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000000000073000040000000008000000000000000d540fe4da9ac4f"])
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
mq_open(&(0x7f0000000000)='eth0\x00', 0x42, 0x0, 0x0)
r8 = syz_io_uring_setup(0xce, &(0x7f0000000200)={0x0, 0x1dd3, 0x800, 0x0, 0x336}, &(0x7f0000000080)=<r9=>0x0, &(0x7f00000001c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r8, 0x47ba, 0x98f1, 0x20, 0x0, 0x0)
sendmmsg(r7, &(0x7f00000054c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000)
r10 = mq_open(&(0x7f0000001600)='eth0\x00#~\x02\x00\x00\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfd\x05\x00\x00\x00\x00\x00\x80\x00\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94uu_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18A\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x05\x00\x00\x000\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xce\x00\x00\x00\xe8\vq+\xbb\xc7\xaf\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedsend(r10, 0x0, 0x0, 0x6, 0x0)
mq_timedreceive(r10, &(0x7f000001d600)=""/102389, 0x18ff5, 0x0, 0x0)

59.345087116s ago: executing program 1 (id=2133):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000140)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca900000000000035090100013800002c00000000000000b7020000000000007b9af8ff00000000b5090000c0ff0000dbaaf8fff1000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffc70200000800000018220000", @ANYRES32=r0, @ANYBLOB="b994000000000000b7050000080000004608f0ff76000000bf98000000000000790800000000fbff8500000007000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x50}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb101e, 0x0)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r0, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_STOP_AP(r4, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f00000028c0)={0x0, 0x28}}, 0x0)
getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@newlink={0x48, 0x10, 0x401, 0x0, 0x101, {0x0, 0x0, 0x0, 0x0, 0x9}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r5}]}}}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x48}}, 0x40800)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000600)={'tunl0\x00', &(0x7f0000000540)={'sit0\x00', <r9=>0x0, 0x87b0, 0x1, 0x4, 0xfffffffd, {{0xd, 0x4, 0x0, 0x3, 0x34, 0x67, 0x0, 0xff, 0x4, 0x0, @multicast2, @empty, {[@rr={0x7, 0xf, 0xa0, [@empty, @rand_addr=0x64010100, @local]}, @lsrr={0x83, 0xf, 0x94, [@rand_addr=0x64010101, @multicast1, @multicast2]}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000740)={'gre0\x00', &(0x7f0000000640)={'tunl0\x00', <r10=>0x0, 0x48, 0x57, 0xfffffff7, 0x4, {{0x36, 0x4, 0x1, 0x8, 0xd8, 0x68, 0x0, 0x9, 0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x28}, @empty, {[@ra={0x94, 0x4}, @lsrr={0x83, 0x27, 0x79, [@rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x1b}, @broadcast, @broadcast, @private=0xa010101, @loopback, @multicast2, @broadcast, @rand_addr=0x64010101]}, @timestamp_prespec={0x44, 0x1c, 0x9a, 0x3, 0x3, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7f}, {@rand_addr=0x64010100, 0xff}, {@dev={0xac, 0x14, 0x14, 0xa}, 0xfffffffb}]}, @timestamp_prespec={0x44, 0x14, 0xc8, 0x3, 0x3, [{@loopback, 0x8}, {@empty, 0xc}]}, @rr={0x7, 0x17, 0x1e, [@multicast2, @remote, @local, @local, @private=0xa010100]}, @generic={0xb6b40aee37860e6, 0xa, "be3ba3fc9f2a3c54"}, @cipso={0x86, 0x45, 0xffffffffffffffff, [{0x2, 0xf, "89f3e5343fd506f4b617e151fe"}, {0x5, 0xb, "c84a35da1bcd83520d"}, {0x2, 0x3, "1a"}, {0x7, 0x11, "ca034146cecc530f13f8dc8d1cac6d"}, {0x0, 0x3, "ab"}, {0x6, 0xe, "7cbbad2f6793e758892b9aa9"}]}]}}}}})
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x50, r2, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40800}, 0x20000000)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
syz_clone(0x126400, 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
r11 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r11, &(0x7f0000000000)={0xa, 0x0, 0x10000, @empty}, 0x1c)
fcntl$getown(r11, 0x9)
recvmsg$inet_nvme(r11, &(0x7f0000000380)={&(0x7f0000000140)=@can, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)=""/204, 0xcc}], 0x1, &(0x7f00000002c0)=""/138, 0x8a}, 0x1)

59.077702122s ago: executing program 1 (id=2135):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x80)
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0xffffffff80000400, 0x0, &(0x7f0000000100))
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x8000)
prlimit64(0x0, 0xe, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newsa={0x144, 0x10, 0x1, 0xbffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@local, 0x1, 0x794, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x9, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0x1ff}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @mark={0xc, 0x15, {0x35075a, 0x3}}]}, 0x144}, 0x1, 0x0, 0x0, 0x8801}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r3)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r4, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f0000001f80)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001f40)={&(0x7f0000001f00)={0x1c, r4, 0x200, 0x70bd2d, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4040041)
sendmsg$nl_generic(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x98, 0x43, 0x107, 0xfffffffe, 0x25dfdbfc, {0x1, 0x7c}, [@nested={0x4, 0x145}, @nested={0x80, 0x1, 0x0, 0x1, [@nested={0x79, 0x109, 0x0, 0x1, [@generic="d1f3a19ef44398e7f5887e86c3dc3669f7f9a9c32d4bed1e8db414981fda5b0380fd0847db9c532654d35594002e8d1f06e742722d396d7d4bff056674353ff1b21db88b3fb081e8776d6a6dbba58e5f345ed92d5d5b394c09a58d989c45544443f0d25ce3d9ebb10ccb3bb6819b676ac973a7d2b4"]}]}]}, 0x98}, 0x1, 0x0, 0x0, 0xc004}, 0xc000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = syz_io_uring_setup(0xbde, &(0x7f0000000540)={0x0, 0x525b, 0x800, 0xfffffff7, 0x1e3}, &(0x7f00000006c0)=<r8=>0x0, &(0x7f0000000340)=<r9=>0x0)
r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
statx(r6, &(0x7f0000000140)='./file0\x00', 0x0, 0x400, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, <r11=>0x0})
sendmsg$netlink(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000040)={0x18, 0x27, 0x20, 0x70bd2c, 0x25dfdbfe, "", [@typed={0x8, 0x140, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}]}, 0x18}, {&(0x7f0000000480)={0x30, 0x1c, 0x400, 0x70bd2d, 0x25dfdbff, "", [@typed={0x8, 0x135, 0x0, 0x0, @uid=r11}, @typed={0x8, 0x10, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x6, 0x0, 0x0, @u32=0x401}, @typed={0x8, 0x10c, 0x0, 0x0, @u32=0x81}]}, 0x30}, {&(0x7f00000005c0)={0x84, 0x14, 0x400, 0x70bd2c, 0x25dfdbfc, "", [@typed={0x8, 0x137, 0x0, 0x0, @fd=r5}, @nested={0x6a, 0xc8, 0x0, 0x1, [@generic="bacbfdade0e71a245a3466872a3c0bbd87e498ba86039f3066ede2846d4f93b99163bff145557596aa88", @nested={0x4, 0xe0}, @typed={0x14, 0xa, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x19}}, @nested={0x4, 0x13f}, @nested={0x4, 0x141}, @generic="440149074e29a03003420d46fef74a1ff852a45fee91a715ed003f58"]}]}, 0x84}, {&(0x7f0000000700)={0x112c, 0x24, 0x1, 0x70bd2d, 0x25dfdbfc, "", [@nested={0x1004, 0x4c, 0x0, 0x1, [@generic="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"]}, @typed={0x14, 0xb1, 0x0, 0x0, @ipv6=@local}, @generic="e7254fd0a8003759ad5fef550a10e4efa028142f4cd31c3f889f4be14c119aceabde8704eafdea84cd", @nested={0x8e, 0xa2, 0x0, 0x1, [@generic="895e4964c9199f00612204644e636a9218f5", @typed={0x8, 0xa6, 0x0, 0x0, @fd=r5}, @typed={0x4, 0x71}, @nested={0x4, 0x80}, @typed={0x4c, 0x6e, 0x0, 0x0, @binary="41509e5bbdc5cd58827f4ebafcb92cb9177cda432ae9421c1f9bc62b7acc4856e0c431d73ef8b6fe0a29f7c96c6fa5bcfb32fc3f9b590d23b28d344e0f8785a0f1325ed95d863266"}, @typed={0x14, 0x145, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @nested={0x4, 0x8f}, @nested={0x4, 0x105}]}, @typed={0x3d, 0x11c, 0x0, 0x0, @binary="6b4db5517095a1e2d561a591c74b1e1e923f208e16f84aa07eb1015ed854ff8986db894075e012105491151a99f5f61f7640b0479cc72f7b60"}, @typed={0x8, 0x10a, 0x0, 0x0, @ipv4=@broadcast}]}, 0x112c}, {&(0x7f0000001840)={0x2d4, 0x33, 0x1, 0x70bd2a, 0x25dfdbfb, "", [@typed={0x8, 0x112, 0x0, 0x0, @u32=0x3}, @nested={0x12e, 0xcf, 0x0, 0x1, [@generic="5e726385c6166eafe25db2e126cb65bed54ff77e78da704e982d60b97e2ec1ab18f897ef1248ac5007b8edd6728e878b6cb3db77bb29584ab8cd996ddbb2", @typed={0x8, 0x150, 0x0, 0x0, @ipv4=@multicast2}, @nested={0x4, 0x37}, @generic="a8e55f5502a04e5666bee2bcb9286cbe56ed9e642600e634992da261afc833a2ad76bb645dc22b84923169246b2481992840e9bf2fdfec62637c9f6f2017bb555fd9e67ff20f1429453880c6af2f39c7588f06c037ba241f52587bb4cd44701a5b7ceb81609460f4b07a07df8fe8a2476e7bf664b80efd49970920fe4701858e912ca46f7c6f0690aaa7b11df892a6417aabd282", @typed={0x4a, 0x53, 0x0, 0x0, @binary="d929105086c46a3d73dd4f91cc9ec569948ac83c5bae88d37d50e8d1acea8f300eaf437fb645752ecf51ed4455e48bbc7946474b2b1325a81c63e7eb2846be0b71c6d9703d79"}]}, @nested={0x183, 0x7b, 0x0, 0x1, [@generic="60f9886b5ddb145cc619596de681ce5e342edbdd8dfb5ecb510eefc061fcdb3045cb389982de7e83e4a33807adcd6395fd3edfeb9738cb587834a3486a72ee619d5e8592b6e3f658b933091ec9311b1d083c7394cabadd506d957b9a1562ffade752c4bd3b76c3c24c994a411f45c25de10f4cc797b39f3b698f419b957770b1ab690a044e3a5bc0247af52497b562b16d606ddf38ecf660ec924cd9b04a37ae9cfe1d89f44830cef9f07e967a35585df10db34d920c0e257460731e0770fd051b8410a57f0d2c046718e09dae379fc543984330c74f2f168f", @typed={0x8, 0xc5, 0x0, 0x0, @uid=r11}, @generic="a231023cb545248b9a784eeb9cc2962a3e17d1499c890a8c331872ec734751ef86013d61", @nested={0x4, 0x78}, @nested={0x4, 0x116}, @generic="676f0c3db857fad532dc30fc3b6d72a68041bea3360e56e4419dd0c4ea7ea80d0d1c42f226bf303d47c3c6435509bbf75f08c1480e9c3a6c138111600cc846d953958fbbef0a88d191650f348aac5e9c15a7ae875b9412efadc28d2f4d51c697309b", @typed={0x8, 0xa, 0x0, 0x0, @uid=r11}, @nested={0x4, 0xd0}, @nested={0x4, 0xbd}]}, @typed={0x8, 0xed, 0x0, 0x0, @u32=0x1}]}, 0x2d4}, {&(0x7f0000001fc0)={0x37c, 0x36, 0x200, 0x70bd27, 0x25dfdbfe, "", [@nested={0x1a3, 0x2d, 0x0, 0x1, [@typed={0xc, 0x7, 0x0, 0x0, @u64=0x4}, @generic="abc6b11e5d449785b7ca6be83fba0ff600e8d212a3fd75c19f5dd69baa6b35d73a611f7c138f67129e0543196900230040b23651da9c1354a72a455c739061c2b21f64cb5fb34bdc6d672974ed7d10658ea45bf87aa297dc0789bfdd249987847ecbcc7e44f9530368545e984d22ced9f8bf678242e3d62a51677a397dfb701483c5071ec1909dd31e11f6c45d0e306c673a472683c3e8f7c6d707e9f0429f77762f8b49cf7a5b991c205409e5bf12006704a5ab7ec88ce421e902bc82b46d53d8ecb73756e98d4e898330a3705c5f996e8dc8f142a5f3e6b7cd9710df524418549f20", @nested={0x4, 0x12b}, @generic="c0947b1914e12cdb55e1e57bd5a315dc37bcec2db3f04811a1bda418133d79ac228f2b419759fa8a226766d3e22d141b92c16191c037e22bda054455b979c63512c6ba2d6341b9724671aa7f9a948a4063c40dfeafa3a8fbe86012173261dbe28745a824a0ffaf35e89a1a349160ef20300361a777de4d316d77aca353742812996253c00d3727d19b93ccbdd68dd3be236052a7a04a2824151472d355d479d05196c768469957da518a4cd8"]}, @nested={0x1c5, 0xf6, 0x0, 0x1, [@generic="0c8c4f3644f10ed4ceb7342b06bba3d4c417a0064937e25307bea12c8d39c53b7e887376072e0560cf884a50ffea8df0bd612d3ad4f3dd6394145af40b9e4f09ed4fd0f6ebde4c5e74b68f0977859579f672b5a806f0fdd8d5f64a7f7be0f9d772ee5fda62510a2577fab8ad50ea8be3ecc021dc62cb4943f122cff24e208f814c3dac16adf7ab82f66b88607f33d3e175f538612dd31bea0f475542c5b50eb7f6144facb686f5813227eb5291c36936568c688bf61f1ec8aedef9400e847ceeaabb932292e8f8003788ccde0570e9e29b73de66fd8bacea3525f88c60bb80b6f221dc92cdd3", @nested={0x4, 0x5b}, @generic="feffafb3bc648326b4563d1e6f", @generic="7d77badff3e4d3cc1038ad4ac4384f6a9eec2fa6b081d9c7e7f2b165694691a47540fa0a949951e98dbec040c9835c2db54cdefe2f22bae6ebc4b6f048bb75bdd201bd7869cd61ad77c207ebba0cd45519cf8a130f9313d3a1fc3d60e5dfb170b7fcf0e5aae89947f43d7f56ad0d98ca0f3a8c6b44f30e471462889026052a22ff630bfb7943fc6c05a3c8b9c7a8b03d7870aacbe7c1cb3bac5ca03b0ae9e3", @nested={0x4, 0xba}, @typed={0x8, 0xa2, 0x0, 0x0, @uid=r11}, @generic="de303121dc1739d6e369e4388e92a76cbe08564a5c7bd8", @typed={0x6, 0xe3, 0x0, 0x0, @str=')\x00'}]}, @generic]}, 0x37c}], 0x6, 0x0, 0x0, 0x1}, 0x8000)
madvise(&(0x7f0000001000/0x4000)=nil, 0x4000, 0xe)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f0000000200)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r7, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$BLKTRACESETUP(r6, 0xc0401273, &(0x7f0000000500)={'\x00', 0x49a, 0x3, 0x4, 0x3, 0x3, <r12=>0x0})
rt_sigqueueinfo(r12, 0x9, &(0x7f0000001e80)={0x2b, 0x3, 0x3})

58.904879934s ago: executing program 1 (id=2136):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80040, 0x0)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee1, 0x0, 0x4, 0xbfdffffc}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000380)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, {0x8081}})
io_uring_enter(r4, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)
splice(r1, 0x0, r3, 0x0, 0x8000f28, 0x0)
splice(r1, 0x0, r2, 0x0, 0x83, 0x1d)
write(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0xffffe000)
r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r7, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r7, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000540)=""/66, 0x0, 0x3000})
openat$hwrng(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r7, 0x4008af03, &(0x7f0000000340)={0x1, 0x0, [{0x80a0000, 0x76, &(0x7f0000000280)=""/118}]})
r8 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r7, 0x4008af22, &(0x7f00000001c0)={0x0, r8})
ioctl$VHOST_SET_VRING_ADDR(r7, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001ac0)=""/191, 0x0, 0xffff1000})
ioctl$VHOST_SET_VRING_KICK(r7, 0x4008af20, &(0x7f0000000000)={0x0, r8})
ioctl$VHOST_VSOCK_SET_RUNNING(r7, 0x4004af61, &(0x7f00000000c0)=0x1)
openat$rtc(0xffffff9c, 0x0, 0x8103, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @raw_data="66ae3ea4bb0071e5af1693314cdeb35ad087616ccf6d8db97692f3c9cd5f541db9520728fb6240717aa47ce11593873af7de0bf429e8f5845ab00e24cb20610c9a93e811023d4ab53bd4825242af04c8e571b8a7408bf4ee60455293632a286903eedb260730a91b10153f2228f1a062579f072d1d54642ebf1c00130ed594fa915c4b26ba658b59523e786febe7c4f78631b1e2f77835bd338311d1c31ef1b87355b6b242200dd793a06d07c23ac2bd6c8595d605ff3b90e410effd2fb188b243956d8c05bbd932"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r9, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$kcm(0x10, 0x2, 0x4)

58.886617059s ago: executing program 33 (id=2136):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80040, 0x0)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee1, 0x0, 0x4, 0xbfdffffc}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000380)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, {0x8081}})
io_uring_enter(r4, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)
splice(r1, 0x0, r3, 0x0, 0x8000f28, 0x0)
splice(r1, 0x0, r2, 0x0, 0x83, 0x1d)
write(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0xffffe000)
r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r7, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r7, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000540)=""/66, 0x0, 0x3000})
openat$hwrng(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r7, 0x4008af03, &(0x7f0000000340)={0x1, 0x0, [{0x80a0000, 0x76, &(0x7f0000000280)=""/118}]})
r8 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r7, 0x4008af22, &(0x7f00000001c0)={0x0, r8})
ioctl$VHOST_SET_VRING_ADDR(r7, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001ac0)=""/191, 0x0, 0xffff1000})
ioctl$VHOST_SET_VRING_KICK(r7, 0x4008af20, &(0x7f0000000000)={0x0, r8})
ioctl$VHOST_VSOCK_SET_RUNNING(r7, 0x4004af61, &(0x7f00000000c0)=0x1)
openat$rtc(0xffffff9c, 0x0, 0x8103, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @raw_data="66ae3ea4bb0071e5af1693314cdeb35ad087616ccf6d8db97692f3c9cd5f541db9520728fb6240717aa47ce11593873af7de0bf429e8f5845ab00e24cb20610c9a93e811023d4ab53bd4825242af04c8e571b8a7408bf4ee60455293632a286903eedb260730a91b10153f2228f1a062579f072d1d54642ebf1c00130ed594fa915c4b26ba658b59523e786febe7c4f78631b1e2f77835bd338311d1c31ef1b87355b6b242200dd793a06d07c23ac2bd6c8595d605ff3b90e410effd2fb188b243956d8c05bbd932"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r9, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$kcm(0x10, 0x2, 0x4)

57.572834669s ago: executing program 0 (id=2145):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000))
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x6)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x80000000, 0x3)
write(r1, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, &(0x7f0000000280))
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0x20}, @l2cap_cid_signaling={{0x1c}, [@l2cap_move_chan_cfm_rsp={{0x11, 0x7, 0x2}, {0x1}}, @l2cap_disconn_rsp={{0x7, 0x9, 0x4}, {0xb92, 0x1}}, @l2cap_conn_req={{0x2, 0x3, 0x4}, {0x4, 0x62d}}, @l2cap_info_req={{0xa, 0x5, 0x2}, {0x7}}]}}, 0x25)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x38, 0x10, 0x1, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2180}, [@IFLA_IFNAME={0x14, 0x3, 'dummy0\x00'}, @IFLA_VFINFO_LIST={0x4}]}, 0x38}}, 0x0)
mount(0x0, 0x0, &(0x7f0000000100)='ext2\x00', 0x1408009, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)={0x34, r7, 0x1, 0x70bd2f, 0xfffffffc, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x4b}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x41}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000008)
fsetxattr$system_posix_acl(r4, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000640)={{}, {0x1, 0x2}, [], {0x4, 0x5}, [], {0x10, 0x3}, {0x20, 0x6}}, 0x24, 0x1)

57.492448485s ago: executing program 0 (id=2147):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000100)={0x6, 'geneve0\x00', {}, 0x5})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, 0x0)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x70bd26, 0x0, {0x2, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2900}}, 0x1c}, 0x1, 0x0, 0x3000000}, 0x8c0)

57.400086245s ago: executing program 0 (id=2148):
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r1, 0x0, 0xd0, &(0x7f0000000600), 0x4)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB, @ANYRES32=r0, @ANYRESDEC=0x0])
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
read$eventfd(r3, &(0x7f0000000080), 0x8)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x0, 0x1, @buffer={0x300, 0x0, 0x0}, &(0x7f0000000380), 0x0, 0xffffffff, 0x30, 0x0, 0x0})
mkdir(&(0x7f00000003c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
mount(0x0, &(0x7f0000000300)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000340)='smb3\x00', 0x10000, &(0x7f0000000380)='nocase')
r4 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x5, &(0x7f0000000180), 0x43)
sendmsg$inet(r4, &(0x7f0000000380)={&(0x7f0000000100)={0x2, 0x4e22, @multicast2}, 0x10, 0x0}, 0x884)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00', 0xfffffffe})
ioctl(r2, 0x8b22, &(0x7f0000000040))
read$FUSE(r0, 0x0, 0x0)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
fcntl$getown(r5, 0x9)
personality(0x8)

57.249507053s ago: executing program 0 (id=2151):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @empty}, 0x1c)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001080)=@newtaction={0x6c, 0x30, 0x9, 0x0, 0x0, {}, [{0x58, 0x1, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x20000000, 0x0, 0xfffffffc}, 0x3}}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0xffff}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x100, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r3, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @loopback, 0x3}, 0x7e)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0xfc00, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x2, @loopback, 0xfffffffd}}, 0x0, 0x0, 0x500, 0x0, 0x54, 0xa}, 0x9c)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26})
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x2208004, 0x0)

56.114439645s ago: executing program 0 (id=2154):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$dlm_plock(0xffffff9c, &(0x7f0000000140), 0x111080, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3, {0x1}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r5=>r1, {0x8}}, './file0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="2600000008000000000000000100000085100000f9ffffff9500000000000058"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xae, &(0x7f0000000080)=""/174, 0x41100, 0x0, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000180)={0x5, 0x10, 0x4635, 0x6}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000200)=[0xffffffffffffffff, r1, r5], &(0x7f0000000280)=[{0x1, 0x2, 0x8, 0x7}, {0x4, 0x2, 0x2, 0x6}, {0x2, 0x5, 0xc, 0xc}], 0x10, 0x3}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(0x0, 0x14927e, 0x0)
syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x3f73, 0x100, 0x0, 0x19}, &(0x7f0000000340), &(0x7f0000000600))

55.036629791s ago: executing program 0 (id=2155):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x6}, 0x50)
socket$can_bcm(0x1d, 0x2, 0x2)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f00000001c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940))
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
socket$inet6(0xa, 0x3, 0x3c)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400ffffe00000000000000000", @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0)

39.975727275s ago: executing program 34 (id=2155):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x6}, 0x50)
socket$can_bcm(0x1d, 0x2, 0x2)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f00000001c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940))
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
socket$inet6(0xa, 0x3, 0x3c)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400ffffe00000000000000000", @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0)

5.448608536s ago: executing program 6 (id=2345):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="12000000ba2f050000000000000000000700000114000480080001400000cfa8b671a0f509e1225804b3"], 0x30}, 0x1, 0x0, 0x0, 0x11}, 0x90)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
unshare(0x28040600)
syz_open_procfs(0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89f6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet(0x2, 0x3, 0x2)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
preadv(r4, &(0x7f00000002c0)=[{&(0x7f0000000040)=""/216, 0xd8}, {0x0}, {&(0x7f0000000200)=""/129, 0x81}], 0x3, 0x6, 0xfffeeffa)

4.945720096s ago: executing program 4 (id=2346):
socket$nl_generic(0x10, 0x3, 0x10)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$vcsn(0x0, 0x8000000000000000, 0x1)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x4)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
syz_open_procfs$userns(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x82001, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$TCSETSW(r3, 0x5453, 0x0)

4.740304092s ago: executing program 3 (id=2347):
r0 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x201, 0xa401)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"})
ioctl$USBDEVFS_CLAIMINTERFACE(r0, 0x8004550f, &(0x7f0000000140)=0x8)

4.607559766s ago: executing program 3 (id=2348):
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
listen(0xffffffffffffffff, 0x3)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x80c1)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x1}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000005400)=[{{&(0x7f0000000040)={0xa, 0x4e27, 0xfff, @remote, 0x2}, 0x1c, 0x0}}], 0x40000000000016d, 0x1000)
r2 = syz_clone(0x23802400, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r2, 0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r2, 0xffffffffffffffff, 0x0)

4.326723887s ago: executing program 6 (id=2349):
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpriority(0x2, 0x0)

4.123980443s ago: executing program 5 (id=2350):
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000009, 0x6031, 0xffffffffffffffff, 0x6f96f000)
mremap(&(0x7f0000ceb000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
munlock(&(0x7f00002a4000/0x2000)=nil, 0x2000)
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x21026000, 0x0, 0x0, 0x0, 0x0, 0x0)
munlock(&(0x7f0000fed000/0x13000)=nil, 0x13000)
mremap(&(0x7f0000e1b000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000f2b000/0x4000)=nil)

3.095716406s ago: executing program 5 (id=2351):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="b40800000000000073113200000000008510000002000000b7000000000000009500c200000000009500001200000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x70)

2.913486166s ago: executing program 5 (id=2352):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f0000003000)={0x2, 0x3, 0x0, 0x9, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x6c, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_x_nat_t_port={0x1, 0x16, 0x4e20}, @sadb_x_nat_t_type={0x1, 0x14, 0x3}]}, 0x60}}, 0x0)

2.809382879s ago: executing program 5 (id=2353):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"/4545], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000a40)={@fallback=r0, r0, 0x2f}, 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000580)={@cgroup=r0, r1, 0x2f, 0x18, 0x4, @void, @value=r0}, 0x20)

2.593691783s ago: executing program 5 (id=2354):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x10003, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r1 = timerfd_create(0x0, 0x80000)
read(r1, &(0x7f0000000380)=""/149, 0x95)

1.584430765s ago: executing program 4 (id=2355):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = fanotify_init(0x20, 0x2)
fanotify_mark(r1, 0x1, 0x800003e, r0, 0x0)
syz_usb_connect(0x0, 0x54, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x2409c8c1, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1f, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r3)
syz_open_dev$sndpcmc(&(0x7f0000000040), 0xe, 0x189c40)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffd}, 0x39)

1.564277542s ago: executing program 6 (id=2356):
syz_open_procfs(0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, r0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0xf, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b80a000500000000", &(0x7f0000000300)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

1.051377626s ago: executing program 5 (id=2357):
r0 = syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000022546940fa0ae803d0990102030109023600010000000009047500038cbb2a0009050a001000010000090588"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000140)={0x44, &(0x7f0000000100)=ANY=[@ANYBLOB="400c0100000006"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x101301)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000080)={0x44, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
socket(0x10, 0x3, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))

1.026692486s ago: executing program 6 (id=2358):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
pipe(0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000540)={@map, 0xa, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000002000000000000000900000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = io_uring_setup(0x76a3, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x80})
close(r4)
clock_nanosleep(0x2, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000080)={{{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in=@remote, 0x10, 0x0, 0x4e24, 0x0, 0x2}, {0x0, 0xfffffffffffffffb, 0x6, 0xd, 0x4000000000000000, 0x80000000000}, {0xfffffffffffffffc, 0x0, 0x0, 0x8}, 0x40000, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@empty, 0x4d6, 0x3c}, 0x2, @in=@dev={0xac, 0x14, 0x14, 0x3d}, 0x3504, 0x4, 0x0, 0x0, 0x7, 0xfffbfffc, 0x1002}}, 0xe8)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)

681.337121ms ago: executing program 3 (id=2359):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x3ed, 0xf04, 0x70bd29, 0x25dfdbfc}, 0x10}, 0x1, 0x0, 0x0, 0x1}, 0x840)

599.950301ms ago: executing program 3 (id=2360):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0xffffd000)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000003880)=@nat={'nat\x00', 0x62, 0x5, 0x328, 0x0, 0x1218, 0xffffffff, 0x10c8, 0x10c8, 0x12c0, 0x12c0, 0xffffffff, 0x12c0, 0x12c0, 0x5, 0x0, {[{{@ip={@multicast2, @dev={0xac, 0x14, 0x14, 0x29}, 0x0, 0x0, 'veth0_to_bond\x00', 'wg1\x00', {0xff}}, 0x0, 0x70, 0x98, 0x0, {0x22e}}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x3, 0x6}}}, {{@uncond, 0x0, 0x70, 0xa8}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x3dc, {0xc, @rand_addr=0x64010102, @remote, @port=0x4e21, @gre_key}}}}, {{@ip={@rand_addr=0x64010101, @rand_addr=0x64010100, 0x0, 0x0, 'veth1_to_team\x00', 'syzkaller1\x00'}, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @private, @multicast2, @gre_key, @icmp_id}}}}, {{@ip={@remote, @dev, 0x0, 0x0, 'pimreg1\x00', 'netdevsim0\x00'}, 0x0, 0x70, 0xa8}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x0, @remote, @broadcast, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x388)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r1, 0x0, 0x60040010)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
sendmsg$NL80211_CMD_DEL_MPATH(r1, 0x0, 0x10)
syz_emit_vhci(0x0, 0x0)

598.565199ms ago: executing program 4 (id=2361):
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e0c200310"], 0xf)

532.322401ms ago: executing program 3 (id=2362):
sendmsg$unix(0xffffffffffffffff, 0x0, 0x20000000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffc0002}]})
rseq(&(0x7f0000000300)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
syz_open_dev$usbfs(0x0, 0xfffffffffffffffc, 0x102)
socket$nl_netfilter(0x10, 0x3, 0xc)
fcntl$getflags(0xffffffffffffffff, 0xb9c2871d1f8396e)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$incfs(0xffffffffffffffff, 0x0, 0x408000, 0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
bpf$BPF_PROG_QUERY(0x9, &(0x7f0000000580)={@map, 0x1d, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_MAKE_EQUIV(r1, 0x0, 0x4000)
r2 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x10)
read$char_usb(r2, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)

532.0581ms ago: executing program 4 (id=2363):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffc0002}]})
memfd_create(&(0x7f0000000100)='+\x88\xc7s\x00\x00\x942nodev\x00\x00\x8cZ_Pv\x03\xa7\xc1\b\xec\x90Q\x85\x83\xcd\x16\xdcw\'\x8a\xe5N\x8c\x17\xfd\xc5\xad\xd5y\x15\x1fx\x17\f\xbc\xd1.\x8cA\x17\x86\xb7-j!Y\x92\xd9\xc4\r8\xd0\xc9X\xa7\x11\xa3\xf0\x8a*\xbc\x87\xcd\x1fl\xfc\xf3]\xb8\xbd\x02\v<\fl\xa6]\xa5\xfb\x05\xcb\x9c\xe2\xc8\x05\xa5\xa5\xeb\xa9\xef\xe3\xf1b\x81\xec\xac\xb6\x80\xd5\xf5S\x85\x06O\x05\xb8\xa1\x15\xcc\x17\xe8s\x95\x95B\xee_\x98\x91)\xe7\xa8+\x8c\xee\x83@q\x16\xcf3\x0f\x81\xa8\xa9`i\x01m:\xcc\x1c\xed<\xcfA3n\xfd\n>\x03\xae\f \xdbH\'\x05\x82\xdbLE\x14\xcdq\x1abcf\xdb8\xe9a\xa8\x00'/201, 0x2)
rseq(&(0x7f0000000300)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
io_setup(0x2, 0x0)
eventfd2(0x0, 0x0)
io_cancel(0x0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x22, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

516.758398ms ago: executing program 4 (id=2364):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000000000000000000feffffff8500000007000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000100850000001700000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xd}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

411.571251ms ago: executing program 4 (id=2365):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$UHID_CREATE2(r0, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r0, 0x0)
syz_usb_connect(0x3, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010002a2b8d240bb2170200b87010203010902240001a00800040904c81e010103f70909050803ff030406090221072501"], 0x0)

80.893968ms ago: executing program 6 (id=2366):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="300000001c00010429bd7000ffdbdb2507000000", @ANYRES32=r1, @ANYBLOB="400048070a000200"], 0x30}, 0x1, 0x0, 0x0, 0x44801}, 0x840)

18.033537ms ago: executing program 6 (id=2367):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000041c0), 0x80040)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x80045300, &(0x7f0000004200))

0s ago: executing program 3 (id=2368):
r0 = socket$netlink(0x10, 0x3, 0x0)
pipe2$9p(&(0x7f0000000240), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
openat$random(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
timer_create(0x5, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000080)={0x1, 0x5, 0xffffffff}, 0x10)
write(r2, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r2, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2400000076000907000000250702000000040000", @ANYRES32=0x0], 0x24}, 0x1, 0x5502000000000000, 0x0, 0x15}, 0x23f58e5b666a3f02)

0s ago: executing program 6 (id=2369):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f00000010c0)={0x40, r2, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x628}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x7}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x80c1}, 0x40000)

kernel console output (not intermixed with test programs):

eclaimable:6793 slab_unreclaimable:60227
[  280.302658][T11173]  mapped:26526 shmem:5224 pagetables:1130
[  280.302658][T11173]  sec_pagetables:314 bounce:0
[  280.302658][T11173]  kernel_misc_reclaimable:0
[  280.302658][T11173]  free:61470 free_pcp:15586 free_cma:0
[  280.314311][T11178] netlink: 'syz.3.1522': attribute type 63 has an invalid length.
[  280.314789][T11173] Node 0 active_anon:32kB inactive_anon:20kB active_file:420kB inactive_file:140kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:112kB dirty:0kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9136kB pagetables:1224kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  280.418030][T11173] Node 1 active_anon:22240kB inactive_anon:25252kB active_file:2464kB inactive_file:85376kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:106016kB dirty:2980kB writeback:0kB shmem:17368kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:6496kB pagetables:3312kB sec_pagetables:100kB all_unreclaimable? no Balloon:0kB
[  280.430375][T11173] Node 0 DMA free:2496kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  280.442298][T11173] lowmem_reserve[]: 0 294 294 294 294
[  280.444603][T11173] Node 0 DMA32 free:27564kB boost:10240kB min:23688kB low:27048kB high:30408kB reserved_highatomic:2048KB free_highatomic:616KB active_anon:32kB inactive_anon:20kB active_file:420kB inactive_file:140kB unevictable:3536kB writepending:0kB zspages:0kB present:1032196kB managed:301144kB mlocked:0kB bounce:0kB free_pcp:11120kB local_pcp:4060kB free_cma:0kB
[  280.458437][T11173] lowmem_reserve[]: 0 0 0 0 0
[  280.461189][T11173] Node 1 DMA32 free:215820kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:1692KB active_anon:22224kB inactive_anon:25252kB active_file:2464kB inactive_file:85376kB unevictable:3536kB writepending:2984kB zspages:1268kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:51120kB local_pcp:12380kB free_cma:0kB
[  280.473928][T11173] lowmem_reserve[]: 0 0 0 0 0
[  280.475727][T11173] Node 0 DMA: 48*4kB (U) 18*8kB (U) 11*16kB (U) 8*32kB (U) 1*64kB (U) 1*128kB (U) 0*256kB 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 2496kB
[  280.481697][T11173] Node 0 DMA32: 309*4kB (UH) 159*8kB (UMEH) 42*16kB (UEH) 152*32kB (UEH) 69*64kB (UEH) 20*128kB (UME) 7*256kB (UME) 9*512kB (UM) 2*1024kB (U) 2*2048kB (U) 0*4096kB = 27564kB
[  280.487752][T11173] Node 1 DMA32: 772*4kB (UMEH) 203*8kB (UMEH) 285*16kB (UMEH) 519*32kB (UMEH) 263*64kB (UMEH) 211*128kB (UMEH) 129*256kB (UME) 69*512kB (UME) 26*1024kB (UM) 15*2048kB (UM) 5*4096kB (UM) = 215896kB
[  280.494219][T11173] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  280.498634][T11173] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  280.502421][T11173] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  280.505806][T11173] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  280.508854][T11173] 27495 total pagecache pages
[  280.510592][T11173] 161 pages in swap cache
[  280.512012][T11173] Free swap  = 123276kB
[  280.513375][T11173] Total swap = 124996kB
[  280.514702][T11173] 524155 pages RAM
[  280.515996][T11173] 0 pages HighMem/MovableOnly
[  280.517746][T11173] 207974 pages reserved
[  280.519097][T11173] 0 pages cma reserved
[  280.521067][T11173] ntfs3(nullb0): Primary boot signature is not NTFS.
[  280.523326][T11173] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  281.098838][T11202] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1527'.
[  281.122532][T11202] Cannot find map_set index 256 as target
[  281.310572][T11216] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  281.312684][T11216] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  281.317416][T11216] vhci_hcd vhci_hcd.0: Device attached
[  281.586405][ T6024] usb 40-1: SetAddress Request (6) to port 0
[  281.589518][ T6024] usb 40-1: new SuperSpeed USB device number 6 using vhci_hcd
[  281.661951][T11232] __nla_validate_parse: 2 callbacks suppressed
[  281.661966][T11232] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1532'.
[  281.750494][T11232] hsr_slave_1 (unregistering): left promiscuous mode
[  282.405245][T11217] vhci_hcd: connection reset by peer
[  282.407424][ T8133] vhci_hcd: stop threads
[  282.408816][ T8133] vhci_hcd: release socket
[  282.410402][ T8133] vhci_hcd: disconnect device
[  283.055149][T11245] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1536'.
[  283.096662][T11245] raw_sendmsg: syz.4.1536 forgot to set AF_INET. Fix it!
[  283.106937][T11245] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  283.109448][T11245] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  283.112884][T11245] vhci_hcd vhci_hcd.0: Device attached
[  283.116791][T11245] netlink: 'syz.4.1536': attribute type 63 has an invalid length.
[  283.126092][T11246] vhci_hcd: connection closed
[  283.128127][ T8133] vhci_hcd: stop threads
[  283.131671][ T8133] vhci_hcd: release socket
[  283.133644][ T8133] vhci_hcd: disconnect device
[  283.448329][ T5302] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  283.559722][T11255] netlink: 'syz.1.1539': attribute type 21 has an invalid length.
[  283.563059][T11255] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1539'.
[  283.566778][T11255] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1539'.
[  284.482027][T11295] bridge0: port 3(syz_tun) entered blocking state
[  284.485742][T11295] bridge0: port 3(syz_tun) entered disabled state
[  284.488934][T11295] syz_tun: entered allmulticast mode
[  284.496222][T11295] syz_tun: entered promiscuous mode
[  284.568181][T11302] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1552'.
[  284.577851][T11302] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  284.580659][T11302] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  284.586418][T11302] vhci_hcd vhci_hcd.0: Device attached
[  284.591697][T11302] netlink: 'syz.1.1552': attribute type 63 has an invalid length.
[  284.613797][T11303] vhci_hcd: connection closed
[  284.614370][ T8128] vhci_hcd: stop threads
[  284.617758][ T8128] vhci_hcd: release socket
[  284.619880][ T8128] vhci_hcd: disconnect device
[  284.702195][T11310] netlink: 'syz.3.1556': attribute type 3 has an invalid length.
[  285.475404][T11329] Invalid source name
[  285.804142][T11341] overlayfs: failed to clone upperpath
[  285.815966][T11341] netlink: 'syz.0.1565': attribute type 1 has an invalid length.
[  285.818764][T11341] netlink: 'syz.0.1565': attribute type 4 has an invalid length.
[  285.823031][T11341] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.1565'.
[  285.835321][T11341] netlink: 'syz.0.1565': attribute type 1 has an invalid length.
[  285.838863][T11341] netlink: 'syz.0.1565': attribute type 4 has an invalid length.
[  285.841812][T11341] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.1565'.
[  286.823064][ T6024] usb 40-1: device descriptor read/8, error -110
[  287.212289][ T6024] usb usb40-port1: attempt power cycle
[  287.386155][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  287.386167][   T40] audit: type=1800 audit(1762546133.154:911): pid=11380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1577" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  287.658163][T11389] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1581'.
[  287.667092][T11389] netlink: 'syz.0.1581': attribute type 63 has an invalid length.
[  287.804707][ T6024] usb usb40-port1: unable to enumerate USB device
[  288.498563][T11403] xt_CT: You must specify a L4 protocol and not use inversions on it
[  288.579355][T11406] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1587'.
[  288.584638][T11406] xfrm0: entered promiscuous mode
[  288.586161][T11406] xfrm0: entered allmulticast mode
[  288.703083][T11409] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  290.084799][T11423] netlink: 'syz.4.1591': attribute type 2 has an invalid length.
[  290.090906][T11423] netlink: 'syz.4.1591': attribute type 26 has an invalid length.
[  290.093987][T11423] netlink: 220 bytes leftover after parsing attributes in process `syz.4.1591'.
[  290.146610][T11425] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1594'.
[  290.187786][T11425] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  290.190122][T11425] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  290.193289][T11425] vhci_hcd vhci_hcd.0: Device attached
[  290.196712][ T5302] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  290.201022][T11425] netlink: 'syz.4.1594': attribute type 63 has an invalid length.
[  290.205182][T11426] vhci_hcd: connection closed
[  290.205464][ T8124] vhci_hcd: stop threads
[  290.210729][ T8124] vhci_hcd: release socket
[  290.212473][ T8124] vhci_hcd: disconnect device
[  290.929111][T11435] netlink: 4376 bytes leftover after parsing attributes in process `syz.4.1595'.
[  291.080508][T11437] 9pnet_fd: Insufficient options for proto=fd
[  292.665829][T11452] netlink: 'syz.0.1600': attribute type 3 has an invalid length.
[  292.881136][T11459] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1603'.
[  292.938367][T11461] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1602'.
[  293.320553][T11485] rdma_rxe: rxe_newlink: failed to add syz_tun
[  293.341553][T11487] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1610'.
[  293.403052][T11487] overlay: ./file0 is not a directory
[  297.745066][T11555] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  297.750325][T11555] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1625'.
[  297.907050][T11557] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1626'.
[  297.927742][T11559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1627'.
[  297.933876][T11559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1627'.
[  297.942096][T11559] tipc: Started in network mode
[  297.944228][T11559] tipc: Node identity aaaaaaaaaa1a, cluster identity 3865
[  297.947337][T11559] tipc: Enabled bearer <eth:team0>, priority 0
[  297.950905][T11559] net_ratelimit: 12 callbacks suppressed
[  297.950925][T11559] netlink: zone id is out of range
[  297.955711][T11559] netlink: zone id is out of range
[  297.957508][T11559] netlink: zone id is out of range
[  297.959261][T11559] netlink: zone id is out of range
[  297.961296][T11559] netlink: zone id is out of range
[  297.963796][T11559] netlink: zone id is out of range
[  297.965853][T11559] netlink: zone id is out of range
[  297.967499][T11559] netlink: zone id is out of range
[  297.969273][T11559] netlink: zone id is out of range
[  297.971298][T11559] netlink: zone id is out of range
[  298.652548][T11578] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  298.882122][T11584] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1632'.
[  298.910087][T11584] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1632'.
[  299.062561][   T10] tipc: Node number set to 11578026
[  299.329972][T11589] tipc: Bearer <eth:syzk>: already 2 bearers with priority 0
[  299.332780][T11589] tipc: Enabling of bearer <eth:syzk> rejected, cannot adjust to lower
[  299.363873][T11589] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1635'.
[  299.545176][T11591] delete_channel: no stack
[  299.563377][ T7251] delete_channel: no stack
[  299.588451][T11596] overlayfs: failed to clone upperpath
[  299.692129][T11596] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1637'.
[  299.704024][T11582] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1634'.
[  299.797211][T11607] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1643'.
[  299.804171][T11607] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1643'.
[  299.808524][T11607] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  300.139914][T11620] netlink: 'syz.0.1645': attribute type 3 has an invalid length.
[  301.739496][T11646] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  302.964693][T11669] __nla_validate_parse: 3 callbacks suppressed
[  302.964746][T11669] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1654'.
[  303.027478][T11667] ceph: No mds server is up or the cluster is laggy
[  303.030262][ T7251] libceph: connect (1)[c::]:6789 error -101
[  303.032227][ T7251] libceph: mon0 (1)[c::]:6789 connect error
[  303.050190][T11673] bridge0: port 3(syz_tun) entered blocking state
[  303.052271][T11673] bridge0: port 3(syz_tun) entered forwarding state
[  303.061367][T11673] 8021q: adding VLAN 0 to HW filter on device bond0
[  303.066918][T11673] 8021q: adding VLAN 0 to HW filter on device team0
[  303.069970][T11673] tipc: Resetting bearer <eth:team0>
[  303.072012][T11673] tipc: Resetting bearer <eth:team0>
[  303.080267][T11673] net_ratelimit: 23 callbacks suppressed
[  303.080274][T11673] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  303.105349][T11668] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1656'.
[  303.798448][T11678] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  303.806654][T11678] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1661'.
[  303.943790][T11685] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1664'.
[  303.958774][T11685] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1664'.
[  303.965309][T11685] tipc: Enabled bearer <eth:team0>, priority 0
[  303.970456][T11685] netlink: zone id is out of range
[  303.972660][T11685] netlink: zone id is out of range
[  303.974712][T11685] netlink: zone id is out of range
[  303.976333][T11685] netlink: zone id is out of range
[  303.978283][T11685] netlink: zone id is out of range
[  303.980083][T11685] netlink: zone id is out of range
[  303.981874][T11685] netlink: zone id is out of range
[  303.983532][T11685] netlink: zone id is out of range
[  303.985148][T11685] netlink: zone id is out of range
[  304.197375][T11689] netlink: 4376 bytes leftover after parsing attributes in process `syz.4.1664'.
[  304.741088][T11698] usb usb8: usbfs: process 11698 (syz.1.1668) did not claim interface 0 before use
[  304.770402][T11700] loop6: detected capacity change from 0 to 524287999
[  304.908782][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.911597][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  304.957861][ T5295] tipc: Node number set to 854787248
[  305.066154][T11708] tipc: Bearer <eth:syzkall>: already 2 bearers with priority 0
[  305.069526][T11708] tipc: Enabling of bearer <eth:syzkall> rejected, cannot adjust to lower
[  305.077377][T11708] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1672'.
[  305.407376][T11719] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1674'.
[  305.834806][T11721] overlayfs: failed to resolve './bus': -2
[  305.958954][T11723] IPVS: length: 528 != 8
[  307.044574][T11749] netlink: 'syz.0.1685': attribute type 1 has an invalid length.
[  308.094379][T11793] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1701'.
[  308.396477][T11804] loop4: detected capacity change from 0 to 7
[  308.400983][T11804] Dev loop4: unable to read RDB block 7
[  308.402752][T11804]  loop4: unable to read partition table
[  308.404576][T11804] loop4: partition table beyond EOD, truncated
[  308.406512][T11804] loop_reread_partitions: partition scan of loop4 (þ被xü—ŸÑà– ) failed (rc=-5)
[  308.502291][T11804] "syz.4.1704" (11804) uses obsolete ecb(arc4) skcipher
[  308.823484][T11815] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  308.835361][T11814] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1703'.
[  308.951420][ T5295] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  309.113588][ T5295] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  309.117129][ T5295] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  309.121339][ T5295] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  309.124940][ T5295] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  309.128667][ T5295] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  309.134897][ T5295] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  309.138698][ T5295] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  309.141950][ T5295] usb 9-1: Product: syz
[  309.143862][ T5295] usb 9-1: Manufacturer: syz
[  309.153846][ T5295] cdc_wdm 9-1:1.0: skipping garbage
[  309.158930][ T5295] cdc_wdm 9-1:1.0: skipping garbage
[  309.165802][ T5295] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  309.168299][ T5295] cdc_wdm 9-1:1.0: Unknown control protocol
[  309.273324][T11818] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1706'.
[  309.372936][   T10] usb 9-1: USB disconnect, device number 7
[  310.286110][T11841] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  310.320266][T11845] bridge0: port 2(bridge_slave_1) entered disabled state
[  310.323423][T11845] bridge0: port 1(bridge_slave_0) entered disabled state
[  310.333358][T11845] tipc: Resetting bearer <eth:team0>
[  310.387564][T11845] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  310.395681][T11845] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  310.493197][ T1142] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  310.497324][ T1142] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  310.503404][ T1142] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  310.507142][ T1142] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  310.622250][   T40] audit: type=1326 audit(1762546156.363:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.631320][   T40] audit: type=1326 audit(1762546156.363:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.640099][   T40] audit: type=1326 audit(1762546156.363:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.649718][   T40] audit: type=1326 audit(1762546156.363:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.658364][   T40] audit: type=1326 audit(1762546156.363:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.667325][   T40] audit: type=1326 audit(1762546156.363:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.676469][   T40] audit: type=1326 audit(1762546156.363:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.685226][   T40] audit: type=1326 audit(1762546156.363:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.693195][   T40] audit: type=1326 audit(1762546156.363:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  310.717713][   T40] audit: type=1326 audit(1762546156.363:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11850 comm="syz.1.1716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  311.126162][T11875] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1720'.
[  311.130057][T11875] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1720'.
[  311.193770][T11874] net_ratelimit: 2 callbacks suppressed
[  311.193788][T11874] openvswitch: netlink: Missing valid actions attribute.
[  311.199603][T11874] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  311.383773][T11881] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1724'.
[  311.704191][T11884] dvmrp8: entered allmulticast mode
[  311.908803][T11888] netlink: 'syz.1.1729': attribute type 1 has an invalid length.
[  311.922376][T11888] bond3: entered promiscuous mode
[  311.924328][T11888] bond3: entered allmulticast mode
[  311.929678][T11888] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1729'.
[  311.933271][T11888] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1729'.
[  311.934730][T11892] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  311.940622][T11892] bridge_slave_1: left allmulticast mode
[  311.943005][T11892] bridge_slave_1: left promiscuous mode
[  311.945882][T11892] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.968869][T11892] bridge_slave_0: left allmulticast mode
[  311.971588][T11892] bridge_slave_0: left promiscuous mode
[  311.974439][T11892] bridge0: port 1(bridge_slave_0) entered disabled state
[  312.120303][T11906] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1732'.
[  312.160718][T11908] netlink: 'syz.0.1735': attribute type 3 has an invalid length.
[  312.295850][   T10] libceph: connect (1)[c::]:6789 error -101
[  312.298193][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  312.395369][T11914] ceph: No mds server is up or the cluster is laggy
[  312.491923][T11921] /dev/nullb0: Can't lookup blockdev
[  312.583006][T11929] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  314.339314][T11975] overlayfs: failed to clone upperpath
[  314.411228][T11975] __nla_validate_parse: 2 callbacks suppressed
[  314.411318][T11975] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1756'.
[  314.578104][T11982] ptrace attach of "/syz-executor exec"[11991] was attempted by "/syz-executor exec"[11982]
[  315.392466][T12023] bridge1: entered allmulticast mode
[  316.160726][T12050] overlayfs: failed to clone upperpath
[  316.264912][T12048] infiniband syz0: set down
[  316.267075][T12048] infiniband syz0: added bond_slave_0
[  316.285095][T12048] RDS/IB: syz0: added
[  316.286818][T12048] smc: adding ib device syz0 with port count 1
[  316.289154][T12048] smc:    ib device syz0 port 1 has no pnetid
[  316.691930][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  317.251224][T12057] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1780'.
[  317.256540][T12057] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1780'.
[  317.262755][T12057] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  317.265844][T12057] netlink: zone id is out of range
[  317.267543][T12057] netlink: zone id is out of range
[  317.269290][T12057] netlink: zone id is out of range
[  317.271389][T12057] netlink: zone id is out of range
[  317.273497][T12057] netlink: zone id is out of range
[  317.275585][T12057] netlink: zone id is out of range
[  317.277668][T12057] netlink: zone id is out of range
[  317.280177][T12057] netlink: zone id is out of range
[  317.282227][T12057] netlink: zone id is out of range
[  317.284270][T12057] netlink: zone id is out of range
[  317.447163][T12059] netlink: 4376 bytes leftover after parsing attributes in process `syz.1.1780'.
[  317.547937][T12055] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  317.580508][T12064] netlink: 'syz.0.1782': attribute type 3 has an invalid length.
[  318.232644][T12091] netlink: 'syz.0.1783': attribute type 1 has an invalid length.
[  320.096283][T12109] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1793'.
[  320.227842][T12118] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  320.234532][T12118] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  320.240463][T12118] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  320.244655][T12118] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  320.857653][T12131] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1797'.
[  320.896570][T12131] batadv1: entered allmulticast mode
[  321.654737][ T5948] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  321.661001][ T5948] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  321.665770][ T5948] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  321.671131][ T5948] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  321.677243][ T5948] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  322.047020][T12139] chnl_net:caif_netlink_parms(): no params data found
[  322.221377][T12139] bridge0: port 1(bridge_slave_0) entered blocking state
[  322.225158][T12139] bridge0: port 1(bridge_slave_0) entered disabled state
[  322.228591][T12139] bridge_slave_0: entered allmulticast mode
[  322.232543][T12139] bridge_slave_0: entered promiscuous mode
[  322.246219][T12139] bridge0: port 2(bridge_slave_1) entered blocking state
[  322.249481][T12139] bridge0: port 2(bridge_slave_1) entered disabled state
[  322.252838][T12139] bridge_slave_1: entered allmulticast mode
[  322.258196][T12139] bridge_slave_1: entered promiscuous mode
[  322.359022][T12139] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  322.371014][T12139] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  322.564856][ T8129] batman_adv: batadv0: Removing interface: gretap1
[  322.616419][ T8129] bond1 (unregistering): (slave geneve2): Releasing active interface
[  322.918169][ T8129] bond0 (unregistering): Released all slaves
[  322.928223][ T8129] bond1 (unregistering): Released all slaves
[  322.938000][ T8129] bond2 (unregistering): Released all slaves
[  322.947543][ T8129] bond3 (unregistering): Released all slaves
[  322.957102][ T8129] bond4 (unregistering): Released all slaves
[  322.974256][T12139] team0: Port device team_slave_0 added
[  322.989853][T12156] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1804'.
[  322.998580][T12139] team0: Port device team_slave_1 added
[  323.065318][T12139] batman_adv: batadv0: Adding interface: batadv_slave_0
[  323.067528][T12139] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  323.078951][T12139] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  323.083399][T12139] batman_adv: batadv0: Adding interface: batadv_slave_1
[  323.085555][T12139] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  323.095499][T12139] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  323.171887][ T8129] tipc: Disabling bearer <eth:syzkaller0>
[  323.175383][ T8129] tipc: Disabling bearer <eth:team0>
[  323.178051][ T8129] tipc: Left network mode
[  323.189093][T12139] hsr_slave_0: entered promiscuous mode
[  323.192784][T12139] hsr_slave_1: entered promiscuous mode
[  323.196124][T12139] debugfs: 'hsr0' already exists in 'hsr'
[  323.198721][T12139] Cannot create hsr debugfs directory
[  323.745431][ T5948] Bluetooth: hci2: command tx timeout
[  324.886343][ T8129] dummy0: left promiscuous mode
[  324.936825][ T8129] bond_slave_0: left promiscuous mode
[  325.065296][ T8129] hsr_slave_0: left promiscuous mode
[  325.101567][ T8129] pim6reg (unregistering): left allmulticast mode
[  325.159376][ T8129] pimreg (unregistering): left allmulticast mode
[  325.344711][ T8133] smc: removing ib device syz2
[  325.395044][T12206] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1820'.
[  325.402410][T12206] ksmbd: Unknown IPC event: 3, ignore.
[  325.820680][ T5948] Bluetooth: hci2: command tx timeout
[  326.087069][T12209] net_ratelimit: 1 callbacks suppressed
[  326.087131][T12209] openvswitch: netlink: Missing valid actions attribute.
[  326.091776][T12209] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  326.610926][T12218] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1824'.
[  326.618177][T12218] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1824'.
[  326.681203][T12220] netlink: zone id is out of range
[  326.683503][T12220] netlink: zone id is out of range
[  326.685788][T12220] netlink: zone id is out of range
[  326.688347][T12220] netlink: zone id is out of range
[  326.693266][T12220] netlink: zone id is out of range
[  326.695838][T12220] netlink: zone id is out of range
[  326.699408][T12220] netlink: zone id is out of range
[  326.700496][ T1142] smc: removing ib device syz0
[  326.701759][T12220] netlink: zone id is out of range
[  327.376182][T12218] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  327.898484][ T5948] Bluetooth: hci2: command tx timeout
[  327.971465][T12238] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  327.974536][T12238] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  327.978857][T12238] vhci_hcd vhci_hcd.0: Device attached
[  328.041319][T12139] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  328.080311][T12238] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1828'.
[  328.089123][T12139] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  328.096310][T12139] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  328.105953][T12238] netlink: 'syz.4.1828': attribute type 10 has an invalid length.
[  328.131026][T12238] batman_adv: batadv0: Removing interface: batadv_slave_0
[  328.153975][T12238] batadv_slave_0: entered promiscuous mode
[  328.177633][T12238] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  328.182322][T12139] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  328.310278][T12139] 8021q: adding VLAN 0 to HW filter on device bond0
[  328.326068][T12139] 8021q: adding VLAN 0 to HW filter on device team0
[  328.334863][ T8124] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.338025][ T8124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  328.349780][ T8128] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.352916][ T8128] bridge0: port 2(bridge_slave_1) entered forwarding state
[  328.368495][ T6003] usb 46-1: SetAddress Request (18) to port 0
[  328.371368][ T6003] usb 46-1: new SuperSpeed USB device number 18 using vhci_hcd
[  328.544732][T12139] 8021q: adding VLAN 0 to HW filter on device batadv0
[  328.582338][T12139] veth0_vlan: entered promiscuous mode
[  328.588262][T12139] veth1_vlan: entered promiscuous mode
[  328.612454][T12139] veth0_macvtap: entered promiscuous mode
[  328.617532][T12139] veth1_macvtap: entered promiscuous mode
[  328.654042][T12139] batman_adv: batadv0: Interface activated: batadv_slave_0
[  328.678109][T12139] batman_adv: batadv0: Interface activated: batadv_slave_1
[  328.699122][ T8131] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  328.703254][ T8124] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  328.708165][ T8124] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  328.790938][ T8124] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  328.917469][T12239] vhci_hcd: connection reset by peer
[  328.925926][ T8124] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  328.928532][ T8124] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  328.933266][ T8132] vhci_hcd: stop threads
[  328.935174][ T8132] vhci_hcd: release socket
[  328.937300][ T8132] vhci_hcd: disconnect device
[  328.944766][ T8132] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  328.951121][ T8132] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  329.426311][T12265] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1835'.
[  329.444935][T12265] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1835'.
[  329.464191][T12265] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  329.988571][ T5948] Bluetooth: hci2: command tx timeout
[  331.480110][T12300] syzkaller0: entered promiscuous mode
[  331.488931][T12300] syzkaller0: entered allmulticast mode
[  331.515653][T12303] 
: renamed from bridge_slave_0
[  333.433110][ T6003] usb 46-1: device descriptor read/8, error -110
[  333.486507][T12340] bond4 (unregistering): Released all slaves
[  333.620373][T12343] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  333.622565][T12343] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  333.627908][T12343] vhci_hcd vhci_hcd.0: Device attached
[  333.894101][ T6003] usb usb46-port1: attempt power cycle
[  333.899962][T12342] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1859'.
[  333.910995][T12342] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1859'.
[  333.964931][   T61] usb 40-1: SetAddress Request (10) to port 0
[  333.970255][   T61] usb 40-1: new SuperSpeed USB device number 10 using vhci_hcd
[  334.042511][T12342] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1859'.
[  334.070016][T12342] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1859'.
[  334.424223][T12344] vhci_hcd: connection reset by peer
[  334.430993][ T8132] vhci_hcd: stop threads
[  334.432749][ T8132] vhci_hcd: release socket
[  334.434685][ T8132] vhci_hcd: disconnect device
[  334.466181][T12360] netlink: 'syz.0.1864': attribute type 1 has an invalid length.
[  334.469857][T12360] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1864'.
[  334.474944][ T6003] usb usb46-port1: unable to enumerate USB device
[  334.966925][T12355] net_ratelimit: 14 callbacks suppressed
[  334.966941][T12355] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  335.304884][ T7251] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  335.489748][ T7251] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  335.502627][ T7251] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  335.512171][ T7251] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  335.518875][ T7251] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.544373][T12372] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  335.548103][T12372] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  335.592956][ T7251] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  335.772239][ T7251] usb 5-1: USB disconnect, device number 3
[  338.326034][T12434] FAULT_INJECTION: forcing a failure.
[  338.326034][T12434] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.331794][T12434] CPU: 0 UID: 0 PID: 12434 Comm: syz.1.1890 Not tainted syzkaller #0 PREEMPT(full) 
[  338.331819][T12434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  338.331828][T12434] Call Trace:
[  338.331887][T12434]  <TASK>
[  338.331893][T12434]  dump_stack_lvl+0x16c/0x1f0
[  338.331970][T12434]  should_fail_ex+0x512/0x640
[  338.332021][T12434]  _copy_from_iter+0x29f/0x1720
[  338.332047][T12434]  ? __alloc_skb+0x200/0x380
[  338.332070][T12434]  ? __pfx__copy_from_iter+0x10/0x10
[  338.332092][T12434]  ? netlink_autobind.isra.0+0x158/0x370
[  338.332116][T12434]  netlink_sendmsg+0x820/0xdd0
[  338.332135][T12434]  ? __pfx_netlink_sendmsg+0x10/0x10
[  338.332153][T12434]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  338.332178][T12434]  ____sys_sendmsg+0xa98/0xc70
[  338.332199][T12434]  ? __pfx_____sys_sendmsg+0x10/0x10
[  338.332217][T12434]  ? get_compat_msghdr+0x11a/0x170
[  338.332250][T12434]  ___sys_sendmsg+0x134/0x1d0
[  338.332267][T12434]  ? __pfx____sys_sendmsg+0x10/0x10
[  338.332292][T12434]  ? find_held_lock+0x2b/0x80
[  338.332322][T12434]  __sys_sendmsg+0x16d/0x220
[  338.332337][T12434]  ? __pfx___sys_sendmsg+0x10/0x10
[  338.332362][T12434]  ? rcu_is_watching+0x12/0xc0
[  338.332381][T12434]  __do_fast_syscall_32+0x7c/0x300
[  338.332403][T12434]  do_fast_syscall_32+0x32/0x80
[  338.332421][T12434]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  338.332439][T12434] RIP: 0023:0xf709d579
[  338.332452][T12434] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  338.332466][T12434] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  338.332481][T12434] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  338.332491][T12434] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  338.332500][T12434] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  338.332508][T12434] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  338.332516][T12434] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  338.332537][T12434]  </TASK>
[  338.339499][T12436] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1889'.
[  338.596564][T12443] fuse: Bad value for 'fd'
[  339.037495][   T61] usb 40-1: device descriptor read/8, error -110
[  339.452843][   T61] usb usb40-port1: attempt power cycle
[  340.024662][   T61] usb usb40-port1: unable to enumerate USB device
[  340.033286][T12470] FAULT_INJECTION: forcing a failure.
[  340.033286][T12470] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  340.038798][T12470] CPU: 3 UID: 0 PID: 12470 Comm: syz.4.1902 Not tainted syzkaller #0 PREEMPT(full) 
[  340.038822][T12470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  340.038832][T12470] Call Trace:
[  340.038838][T12470]  <TASK>
[  340.038844][T12470]  dump_stack_lvl+0x16c/0x1f0
[  340.038868][T12470]  should_fail_ex+0x512/0x640
[  340.038896][T12470]  _copy_from_iter+0x29f/0x1720
[  340.038922][T12470]  ? __alloc_skb+0x200/0x380
[  340.038947][T12470]  ? __pfx__copy_from_iter+0x10/0x10
[  340.038970][T12470]  ? netlink_autobind.isra.0+0x158/0x370
[  340.038998][T12470]  netlink_sendmsg+0x820/0xdd0
[  340.039018][T12470]  ? __pfx_netlink_sendmsg+0x10/0x10
[  340.039037][T12470]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  340.039064][T12470]  ____sys_sendmsg+0xa98/0xc70
[  340.039086][T12470]  ? __pfx_____sys_sendmsg+0x10/0x10
[  340.039103][T12470]  ? get_compat_msghdr+0x11a/0x170
[  340.039139][T12470]  ___sys_sendmsg+0x134/0x1d0
[  340.039155][T12470]  ? __pfx____sys_sendmsg+0x10/0x10
[  340.039183][T12470]  ? find_held_lock+0x2b/0x80
[  340.039217][T12470]  __sys_sendmsg+0x16d/0x220
[  340.039233][T12470]  ? __pfx___sys_sendmsg+0x10/0x10
[  340.039260][T12470]  ? rcu_is_watching+0x12/0xc0
[  340.039282][T12470]  __do_fast_syscall_32+0x7c/0x300
[  340.039306][T12470]  do_fast_syscall_32+0x32/0x80
[  340.039327][T12470]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  340.039347][T12470] RIP: 0023:0xf709d579
[  340.039360][T12470] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  340.039376][T12470] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  340.039394][T12470] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  340.039405][T12470] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  340.039415][T12470] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  340.039425][T12470] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  340.039435][T12470] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  340.039456][T12470]  </TASK>
[  340.122525][T12468] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  340.233151][T12475] netlink: 'syz.1.1903': attribute type 21 has an invalid length.
[  340.236718][T12475] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1903'.
[  340.241109][T12475] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1903'.
[  340.415635][T12478] overlay: Unknown parameter '/'
[  340.748576][T12486] fuse: Bad value for 'fd'
[  340.890351][T12490] netlink: 'syz.1.1908': attribute type 3 has an invalid length.
[  341.759845][ T7251] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  342.650177][T12509] 9pnet_virtio: no channels available for device syz
[  342.838608][ T7251] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  342.843652][ T7251] usb 9-1: config 0 interface 0 has no altsetting 0
[  342.848854][ T7251] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  342.853098][ T7251] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  342.856927][ T7251] usb 9-1: Product: syz
[  342.858843][ T7251] usb 9-1: Manufacturer: syz
[  342.860952][ T7251] usb 9-1: SerialNumber: syz
[  342.865112][ T7251] usb 9-1: config 0 descriptor??
[  342.871662][ T7251] usb 9-1: selecting invalid altsetting 0
[  343.072800][T12498] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  343.077226][T12498] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  343.097664][T12498] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  343.101457][T12498] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  343.578912][T12527] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1916'.
[  343.811030][T12529] fuse: Bad value for 'fd'
[  344.049198][T12531] netlink: 'syz.0.1918': attribute type 3 has an invalid length.
[  344.410421][ T5295] usb 9-1: USB disconnect, device number 8
[  345.244858][T12555] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  345.385916][T12561] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1925'.
[  345.580314][T12566] netlink: 45 bytes leftover after parsing attributes in process `syz.3.1927'.
[  345.621745][T12568] netlink: 'syz.0.1928': attribute type 3 has an invalid length.
[  345.722092][T12572] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  345.782699][T12577] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1929'.
[  345.810203][T12579] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1931'.
[  345.814137][T12579] netlink: 'syz.0.1931': attribute type 5 has an invalid length.
[  345.817472][T12579] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1931'.
[  345.822971][T12579] 9pnet_fd: Insufficient options for proto=fd
[  345.975273][T12581] netlink: 'syz.3.1932': attribute type 3 has an invalid length.
[  346.131755][T12593] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  346.229374][T12596] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1936'.
[  346.370730][T12603] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1938'.
[  346.376500][T12603] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1938'.
[  346.385177][T12603] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  346.389827][T12603] netlink: zone id is out of range
[  346.392208][T12603] netlink: zone id is out of range
[  346.394623][T12603] netlink: zone id is out of range
[  346.397016][T12603] netlink: zone id is out of range
[  346.399386][T12603] netlink: zone id is out of range
[  346.401696][T12603] netlink: zone id is out of range
[  346.404190][T12603] netlink: zone id is out of range
[  346.406195][T12603] netlink: zone id is out of range
[  346.408221][T12603] netlink: zone id is out of range
[  346.410340][T12603] netlink: zone id is out of range
[  346.551165][T12607] netlink: 'syz.3.1939': attribute type 3 has an invalid length.
[  346.837928][T12617] binder: BINDER_SET_CONTEXT_MGR already set
[  346.841264][T12617] binder: 12615:12617 ioctl 4018620d 80000100 returned -16
[  346.847999][T12616] binder_alloc: binder_alloc_mmap_handler: 12615 80ffd000-81000000 already mapped failed -16
[  346.855816][T12617] binder_alloc: 12615: binder_alloc_buf, no vma
[  347.212037][T12620] Bluetooth: MGMT ver 1.23
[  347.668630][T12616] binder: 12615:12616 ioctl c0306201 80000680 returned -14
[  348.025706][T12634] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  348.087497][T12637] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1946'.
[  348.760012][T12657] netlink: 'syz.0.1949': attribute type 3 has an invalid length.
[  349.280790][ T5302] Bluetooth: hci2: command 0x0401 tx timeout
[  349.297147][ T5948] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  349.547846][T12673] overlayfs: failed to clone upperpath
[  349.577977][T12673] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1955'.
[  349.659971][T12675] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  350.221904][T12687] FAULT_INJECTION: forcing a failure.
[  350.221904][T12687] name failslab, interval 1, probability 0, space 0, times 0
[  350.227545][T12687] CPU: 2 UID: 0 PID: 12687 Comm: syz.1.1959 Not tainted syzkaller #0 PREEMPT(full) 
[  350.227568][T12687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  350.227577][T12687] Call Trace:
[  350.227582][T12687]  <TASK>
[  350.227587][T12687]  dump_stack_lvl+0x16c/0x1f0
[  350.227608][T12687]  should_fail_ex+0x512/0x640
[  350.227629][T12687]  ? __kmalloc_node_noprof+0xcd/0x8a0
[  350.227650][T12687]  should_failslab+0xc2/0x120
[  350.227673][T12687]  __kmalloc_node_noprof+0xe0/0x8a0
[  350.227689][T12687]  ? __get_vm_area_node+0x208/0x330
[  350.227715][T12687]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  350.227743][T12687]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  350.227765][T12687]  __vmalloc_node_range_noprof+0x3e5/0x1480
[  350.227788][T12687]  ? bpf_ksym_find+0x124/0x1c0
[  350.227811][T12687]  ? vmalloc_array_noprof+0x43/0x70
[  350.227836][T12687]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  350.227861][T12687]  ? stack_trace_save+0x8e/0xc0
[  350.227882][T12687]  ? vmalloc_array_noprof+0x43/0x70
[  350.227899][T12687]  __vmalloc_node_noprof+0xad/0xf0
[  350.227920][T12687]  ? vmalloc_array_noprof+0x43/0x70
[  350.227940][T12687]  vmalloc_array_noprof+0x43/0x70
[  350.227958][T12687]  translate_table+0xe48/0x1ef0
[  350.227983][T12687]  ? do_ebt_set_ctl+0x2f5/0x3c0
[  350.228004][T12687]  ? nf_setsockopt+0x8d/0xf0
[  350.228023][T12687]  ? do_sock_setsockopt+0xf3/0x1d0
[  350.228039][T12687]  ? __ia32_sys_setsockopt+0xbc/0x160
[  350.228058][T12687]  ? __do_fast_syscall_32+0x7c/0x300
[  350.228074][T12687]  ? do_fast_syscall_32+0x32/0x80
[  350.228089][T12687]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  350.228108][T12687]  ? __pfx_translate_table+0x10/0x10
[  350.228139][T12687]  do_replace_finish+0x9b7/0x22c0
[  350.228167][T12687]  ? __pfx_do_replace_finish+0x10/0x10
[  350.228188][T12687]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  350.228206][T12687]  ? vfree+0x184/0xb50
[  350.228225][T12687]  ? __vmalloc_node_noprof+0xad/0xf0
[  350.228246][T12687]  compat_do_replace+0x51b/0x7c0
[  350.228264][T12687]  ? __lock_acquire+0xb8a/0x1c90
[  350.228283][T12687]  ? __pfx_compat_do_replace+0x10/0x10
[  350.228302][T12687]  ? __pfx___mutex_trylock_common+0x10/0x10
[  350.228330][T12687]  ? bpf_lsm_capable+0x9/0x10
[  350.228347][T12687]  ? security_capable+0x7e/0x260
[  350.228368][T12687]  do_ebt_set_ctl+0x2f5/0x3c0
[  350.228388][T12687]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  350.228409][T12687]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  350.228431][T12687]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  350.228449][T12687]  nf_setsockopt+0x8d/0xf0
[  350.228467][T12687]  ip_setsockopt+0xcb/0xf0
[  350.228487][T12687]  raw_setsockopt+0xb7/0x2a0
[  350.228507][T12687]  ? __pfx_raw_setsockopt+0x10/0x10
[  350.228527][T12687]  ? sock_common_setsockopt+0x2e/0xf0
[  350.228542][T12687]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  350.228558][T12687]  do_sock_setsockopt+0xf3/0x1d0
[  350.228576][T12687]  __sys_setsockopt+0x120/0x1a0
[  350.228599][T12687]  __ia32_sys_setsockopt+0xbc/0x160
[  350.228618][T12687]  ? lockdep_hardirqs_on+0x7c/0x110
[  350.228633][T12687]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  350.228652][T12687]  __do_fast_syscall_32+0x7c/0x300
[  350.228680][T12687]  do_fast_syscall_32+0x32/0x80
[  350.228699][T12687]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  350.228718][T12687] RIP: 0023:0xf709d579
[  350.228730][T12687] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  350.228743][T12687] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  350.228760][T12687] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  350.228772][T12687] RDX: 0000000000000080 RSI: 00000000800001c0 RDI: 00000000000000e0
[  350.228781][T12687] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  350.228790][T12687] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  350.228798][T12687] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  350.228819][T12687]  </TASK>
[  350.228828][T12687] syz.1.1959: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  350.406422][T12687] CPU: 3 UID: 0 PID: 12687 Comm: syz.1.1959 Not tainted syzkaller #0 PREEMPT(full) 
[  350.406446][T12687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  350.406455][T12687] Call Trace:
[  350.406463][T12687]  <TASK>
[  350.406470][T12687]  dump_stack_lvl+0x16c/0x1f0
[  350.406495][T12687]  warn_alloc+0x248/0x3a0
[  350.406529][T12687]  ? __pfx_warn_alloc+0x10/0x10
[  350.406544][T12687]  ? lockdep_hardirqs_on+0x7c/0x110
[  350.406563][T12687]  ? dump_stack_lvl+0x1a1/0x1f0
[  350.406581][T12687]  ? should_fail_ex+0x354/0x640
[  350.406606][T12687]  ? rcu_is_watching+0x12/0xc0
[  350.406623][T12687]  ? trace_kmalloc+0x2b/0xd0
[  350.406639][T12687]  ? __kmalloc_node_noprof+0x364/0x8a0
[  350.406654][T12687]  ? __get_vm_area_node+0x208/0x330
[  350.406672][T12687]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  350.406702][T12687]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  350.406722][T12687]  ? bpf_ksym_find+0x124/0x1c0
[  350.406744][T12687]  ? vmalloc_array_noprof+0x43/0x70
[  350.406766][T12687]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  350.406790][T12687]  ? stack_trace_save+0x8e/0xc0
[  350.406808][T12687]  ? vmalloc_array_noprof+0x43/0x70
[  350.406840][T12687]  __vmalloc_node_noprof+0xad/0xf0
[  350.406861][T12687]  ? vmalloc_array_noprof+0x43/0x70
[  350.406880][T12687]  vmalloc_array_noprof+0x43/0x70
[  350.406896][T12687]  translate_table+0xe48/0x1ef0
[  350.406919][T12687]  ? do_ebt_set_ctl+0x2f5/0x3c0
[  350.406937][T12687]  ? nf_setsockopt+0x8d/0xf0
[  350.406954][T12687]  ? do_sock_setsockopt+0xf3/0x1d0
[  350.406970][T12687]  ? __ia32_sys_setsockopt+0xbc/0x160
[  350.406990][T12687]  ? __do_fast_syscall_32+0x7c/0x300
[  350.407007][T12687]  ? do_fast_syscall_32+0x32/0x80
[  350.407023][T12687]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  350.407045][T12687]  ? __pfx_translate_table+0x10/0x10
[  350.407082][T12687]  do_replace_finish+0x9b7/0x22c0
[  350.407115][T12687]  ? __pfx_do_replace_finish+0x10/0x10
[  350.407138][T12687]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  350.407156][T12687]  ? vfree+0x184/0xb50
[  350.407178][T12687]  ? __vmalloc_node_noprof+0xad/0xf0
[  350.407202][T12687]  compat_do_replace+0x51b/0x7c0
[  350.407221][T12687]  ? __lock_acquire+0xb8a/0x1c90
[  350.407243][T12687]  ? __pfx_compat_do_replace+0x10/0x10
[  350.407265][T12687]  ? __pfx___mutex_trylock_common+0x10/0x10
[  350.407298][T12687]  ? bpf_lsm_capable+0x9/0x10
[  350.407316][T12687]  ? security_capable+0x7e/0x260
[  350.407340][T12687]  do_ebt_set_ctl+0x2f5/0x3c0
[  350.407363][T12687]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  350.407386][T12687]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  350.407412][T12687]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  350.407433][T12687]  nf_setsockopt+0x8d/0xf0
[  350.407452][T12687]  ip_setsockopt+0xcb/0xf0
[  350.407475][T12687]  raw_setsockopt+0xb7/0x2a0
[  350.407498][T12687]  ? __pfx_raw_setsockopt+0x10/0x10
[  350.407521][T12687]  ? sock_common_setsockopt+0x2e/0xf0
[  350.407538][T12687]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  350.407557][T12687]  do_sock_setsockopt+0xf3/0x1d0
[  350.407578][T12687]  __sys_setsockopt+0x120/0x1a0
[  350.407605][T12687]  __ia32_sys_setsockopt+0xbc/0x160
[  350.407626][T12687]  ? lockdep_hardirqs_on+0x7c/0x110
[  350.407642][T12687]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  350.407661][T12687]  __do_fast_syscall_32+0x7c/0x300
[  350.407682][T12687]  do_fast_syscall_32+0x32/0x80
[  350.407709][T12687]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  350.407728][T12687] RIP: 0023:0xf709d579
[  350.407740][T12687] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  350.407755][T12687] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  350.407770][T12687] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  350.407779][T12687] RDX: 0000000000000080 RSI: 00000000800001c0 RDI: 00000000000000e0
[  350.407788][T12687] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  350.407796][T12687] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  350.407805][T12687] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  350.407826][T12687]  </TASK>
[  350.571789][T12687] Mem-Info:
[  350.573130][T12687] active_anon:7481 inactive_anon:5997 isolated_anon:0
[  350.573130][T12687]  active_file:816 inactive_file:21176 isolated_file:0
[  350.573130][T12687]  unevictable:1769 dirty:512 writeback:0
[  350.573130][T12687]  slab_reclaimable:6847 slab_unreclaimable:62046
[  350.573130][T12687]  mapped:26283 shmem:4899 pagetables:1191
[  350.573130][T12687]  sec_pagetables:316 bounce:0
[  350.573130][T12687]  kernel_misc_reclaimable:0
[  350.573130][T12687]  free:57636 free_pcp:14279 free_cma:0
[  350.589919][T12687] Node 0 active_anon:32kB inactive_anon:20kB active_file:420kB inactive_file:140kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:112kB dirty:0kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9232kB pagetables:1224kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  350.601665][T12687] Node 1 active_anon:31156kB inactive_anon:23968kB active_file:2844kB inactive_file:84564kB unevictable:3540kB isolated(anon):0kB isolated(file):0kB mapped:106272kB dirty:2048kB writeback:0kB shmem:17324kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6360kB pagetables:3532kB sec_pagetables:108kB all_unreclaimable? no Balloon:0kB
[  350.613222][T12687] Node 0 DMA free:2496kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  350.624030][T12687] lowmem_reserve[]: 0 294 294 294 294
[  350.656890][T12687] Node 0 DMA32 free:27488kB boost:10240kB min:23688kB low:27048kB high:30408kB reserved_highatomic:2048KB free_highatomic:616KB active_anon:32kB inactive_anon:20kB active_file:420kB inactive_file:140kB unevictable:3536kB writepending:0kB zspages:0kB present:1032196kB managed:301144kB mlocked:0kB bounce:0kB free_pcp:12156kB local_pcp:2788kB free_cma:0kB
[  350.670656][T12687] lowmem_reserve[]: 0 0 0 0 0
[  350.672592][T12687] Node 1 DMA32 free:200660kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:1832KB active_anon:31156kB inactive_anon:23968kB active_file:2844kB inactive_file:84564kB unevictable:3540kB writepending:2048kB zspages:1248kB present:1048432kB managed:948220kB mlocked:4kB bounce:0kB free_pcp:43776kB local_pcp:5224kB free_cma:0kB
[  350.685295][T12687] lowmem_reserve[]: 0 0 0 0 0
[  350.687413][T12687] Node 0 DMA: 48*4kB (U) 18*8kB (U) 11*16kB (U) 8*32kB (U) 1*64kB (U) 1*128kB (U) 0*256kB 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 2496kB
[  350.692846][T12687] Node 0 DMA32: 394*4kB (UH) 61*8kB (UEH) 37*16kB (UEH) 134*32kB (UMEH) 69*64kB (UEH) 24*128kB (UME) 7*256kB (UE) 10*512kB (UM) 2*1024kB (U) 2*2048kB (M) 0*4096kB = 27488kB
[  350.698922][T12687] Node 1 DMA32: 273*4kB (UEH) 326*8kB (UMEH) 87*16kB (UMEH) 312*32kB (UMEH) 241*64kB (UMEH) 120*128kB (UMEH) 113*256kB (UME) 80*512kB (UME) 39*1024kB (UM) 16*2048kB (UM) 3*4096kB (UM) = 200740kB
[  350.706292][T12687] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  350.709796][T12687] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  350.712776][T12687] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  350.715889][T12687] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  350.718949][T12687] 27369 total pagecache pages
[  350.720581][T12687] 165 pages in swap cache
[  350.722053][T12687] Free swap  = 122820kB
[  350.723604][T12687] Total swap = 124996kB
[  350.725034][T12687] 524155 pages RAM
[  350.726358][T12687] 0 pages HighMem/MovableOnly
[  350.728245][T12687] 207974 pages reserved
[  350.729677][T12687] 0 pages cma reserved
[  350.908104][ T7253] e1000 0000:00:06.0 eth0: Reset adapter
[  351.202124][T12713] netlink: 'syz.3.1965': attribute type 12 has an invalid length.
[  351.244324][T12716] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  351.256573][T12716] __nla_validate_parse: 1 callbacks suppressed
[  351.256590][T12716] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1966'.
[  353.120227][ T7253] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  359.896628][   T29] libceph: connect (1)[c::]:6789 error -101
[  359.902378][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  359.933228][T12753] ceph: No mds server is up or the cluster is laggy
[  360.172061][T12756] 8021q: adding VLAN 0 to HW filter on device bond0
[  360.179023][T12756] 8021q: adding VLAN 0 to HW filter on device team0
[  360.183373][T12756] tipc: Resetting bearer <eth:team0>
[  360.242006][T12756] net_ratelimit: 2 callbacks suppressed
[  360.242014][T12756] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  360.329457][T12758] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  360.653083][T12768] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  360.694918][T12768] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1976'.
[  362.129161][T12794] overlay: Bad value for 'verity'
[  362.276199][T12804] IPVS: length: 149 != 8
[  362.577728][T12813] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1990'.
[  363.649019][T12839] openvswitch: netlink: Message has 592 unknown bytes.
[  363.652498][T12839] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  364.050183][T12856] /dev/nullb0: Can't open blockdev
[  364.592380][T12867] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2006'.
[  364.595867][T12867] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2006'.
[  365.101493][T12875] misc userio: Can't change port type on an already running userio instance
[  365.170742][T12878] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2011'.
[  365.211980][T12880] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2009'.
[  365.494653][T12885] openvswitch: netlink: Missing valid actions attribute.
[  365.497616][T12885] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  365.915347][T12899] bond4: ARP target 9.0.0.0 is already present
[  365.938929][T12899] bond4: option arp_ip_target: invalid value (9)
[  365.945595][T12899] bond4 (unregistering): Released all slaves
[  366.625960][T12910] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2021'.
[  366.632923][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  366.632940][   T40] audit: type=1800 audit(1762546212.336:944): pid=12910 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2021" name="memory.events" dev="tmpfs" ino=2313 res=0 errno=0
[  366.694008][   T40] audit: type=1804 audit(1762546212.336:945): pid=12910 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2021" name="/newroot/425/memory.events" dev="tmpfs" ino=2313 res=1 errno=0
[  366.781744][T12913] ip6_vti0: entered allmulticast mode
[  366.812446][T12916] ip6_vti0: left allmulticast mode
[  366.913358][T12921] openvswitch: netlink: Missing valid actions attribute.
[  366.916163][T12921] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  367.364413][ T8118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  367.372583][ T8118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  367.980218][T12925] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2026'.
[  368.180403][T12935] openvswitch: netlink: Missing valid actions attribute.
[  368.183051][T12935] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  368.569162][   T29] libceph: connect (1)[c::]:6789 error -101
[  368.573200][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  368.611775][T12947] ceph: No mds server is up or the cluster is laggy
[  368.742350][T12947] 8021q: adding VLAN 0 to HW filter on device bond0
[  368.750632][T12947] 8021q: adding VLAN 0 to HW filter on device team0
[  368.754556][T12947] tipc: Resetting bearer <eth:team0>
[  368.757281][T12947] tipc: Resetting bearer <eth:team0>
[  368.766533][T12947] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  369.095933][T12956] fuse: Bad value for 'fd'
[  369.458757][T12975] openvswitch: netlink: Missing valid actions attribute.
[  369.461869][T12975] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  372.084153][T13010] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  372.086426][T13010] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  372.104747][T13010] vhci_hcd vhci_hcd.0: Device attached
[  372.374832][   T34] usb 38-1: SetAddress Request (6) to port 0
[  372.377974][   T34] usb 38-1: new SuperSpeed USB device number 6 using vhci_hcd
[  372.726710][T13012] vhci_hcd: connection reset by peer
[  372.729397][ T8132] vhci_hcd: stop threads
[  372.731698][ T8132] vhci_hcd: release socket
[  372.733742][ T8132] vhci_hcd: disconnect device
[  373.105356][T13031] syz_tun: entered allmulticast mode
[  374.571836][T13041] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  374.939009][T13068] tipc: Started in network mode
[  374.941167][T13068] tipc: Node identity ba28684f328b, cluster identity 4711
[  374.944405][T13068] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  374.953968][T13068] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2065'.
[  374.960665][T13068] tipc: Resetting bearer <eth:syzkaller0>
[  374.971478][T13067] tipc: Disabling bearer <eth:syzkaller0>
[  375.083918][T13074] netlink: 'syz.0.2067': attribute type 1 has an invalid length.
[  375.088456][T13076] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2067'.
[  375.114484][T13076] 8021q: adding VLAN 0 to HW filter on device bond1
[  375.188019][T13079] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2063'.
[  375.316206][T13082] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.320224][T13082] bridge0: port 1(bridge_slave_0) entered disabled state
[  375.425649][T13082] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  375.438278][T13082] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  375.507239][T13062] orangefs_mount: mount request failed with -4
[  375.582720][   T10] syz1: Port: 1 Link DOWN
[  375.582770][ T8132] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  375.588717][ T8132] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  375.591887][ T8132] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  375.595745][ T8132] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  375.884666][T13093] 9pnet_fd: Insufficient options for proto=fd
[  375.996967][T13102] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2073'.
[  376.005551][T13102] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  376.008223][T13102] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  376.011511][T13102] vhci_hcd vhci_hcd.0: Device attached
[  376.015216][T13103] vhci_hcd: connection closed
[  376.015484][ T8118] vhci_hcd: stop threads
[  376.019403][ T8118] vhci_hcd: release socket
[  376.021175][ T8118] vhci_hcd: disconnect device
[  376.124743][T13109] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  376.191133][T13109] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2075'.
[  376.446756][   T40] audit: type=1326 audit(1762546222.138:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.458652][   T40] audit: type=1326 audit(1762546222.138:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.463103][T13118] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2076'.
[  376.467259][   T40] audit: type=1326 audit(1762546222.148:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=136 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.467304][   T40] audit: type=1326 audit(1762546222.148:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.489190][   T40] audit: type=1326 audit(1762546222.148:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.498319][   T40] audit: type=1326 audit(1762546222.148:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.507320][   T40] audit: type=1326 audit(1762546222.148:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.517576][   T40] audit: type=1326 audit(1762546222.148:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.528225][   T40] audit: type=1326 audit(1762546222.148:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.539318][   T40] audit: type=1326 audit(1762546222.148:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.3.2076" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  376.900507][T13125] openvswitch: netlink: Missing valid actions attribute.
[  376.903634][T13125] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  377.486752][   T34] usb 38-1: device descriptor read/8, error -110
[  377.726958][T13140] xt_hashlimit: size too large, truncated to 1048576
[  377.910101][   T34] usb usb38-port1: attempt power cycle
[  377.966055][T13140] ipt_rpfilter: unknown options
[  378.037658][T13145] binder: 13144:13145 ioctl c0306201 80000140 returned -22
[  378.182479][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  378.371217][T13152] overlayfs: failed to clone lowerpath
[  378.516310][   T34] usb usb38-port1: unable to enumerate USB device
[  378.856851][T13159] overlayfs: failed to clone lowerpath
[  379.727187][T13181] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2094'.
[  380.005361][T13189] 9pnet_fd: Insufficient options for proto=fd
[  381.001929][T13198] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  381.008870][T13198] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2098'.
[  381.026178][T13198] tipc: Resetting bearer <eth:syzkaller0>
[  381.029234][T13202] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2099'.
[  381.044792][T13196] tipc: Disabling bearer <eth:syzkaller0>
[  381.127002][T13204] netlink: 'syz.1.2101': attribute type 3 has an invalid length.
[  381.172902][T13208] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2102'.
[  381.178301][T13208] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2102'.
[  381.184090][T13208] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  381.188199][T13208] netlink: zone id is out of range
[  381.190450][T13208] netlink: zone id is out of range
[  381.194639][T13208] netlink: zone id is out of range
[  381.196979][T13208] netlink: zone id is out of range
[  381.199349][T13208] netlink: zone id is out of range
[  381.201289][T13208] netlink: zone id is out of range
[  381.203426][T13208] netlink: zone id is out of range
[  381.205742][T13208] netlink: zone id is out of range
[  381.280202][T13210] netlink: 4376 bytes leftover after parsing attributes in process `syz.4.2102'.
[  381.617592][T13211] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  382.230276][T13226] /dev/nullb0: Can't open blockdev
[  383.091113][T13235] misc userio: No port type given on /dev/userio
[  383.110921][T13237] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  383.173682][T13242] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2110'.
[  383.311363][T13247] netlink: 'syz.4.2112': attribute type 1 has an invalid length.
[  383.339853][T13247] 8021q: adding VLAN 0 to HW filter on device bond4
[  383.381629][T13247] bond4: (slave gretap2): making interface the new active one
[  383.386983][T13247] bond4: (slave gretap2): Enslaving as an active interface with an up link
[  383.443834][T13253] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2114'.
[  383.449005][T13253] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2114'.
[  383.455164][T13253] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  383.459465][T13253] net_ratelimit: 3 callbacks suppressed
[  383.459480][T13253] netlink: zone id is out of range
[  383.465565][T13253] netlink: zone id is out of range
[  383.468309][T13253] netlink: zone id is out of range
[  383.471113][T13253] netlink: zone id is out of range
[  383.474808][T13253] netlink: zone id is out of range
[  383.477476][T13253] netlink: zone id is out of range
[  383.480219][T13253] netlink: zone id is out of range
[  383.483827][T13253] netlink: zone id is out of range
[  383.486949][T13253] netlink: zone id is out of range
[  383.489747][T13253] netlink: zone id is out of range
[  384.345320][T13266] netlink: 'syz.1.2117': attribute type 12 has an invalid length.
[  384.414239][T13256] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  384.757887][ T8132] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  384.761690][ T8132] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  385.551803][T13285] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2123'.
[  385.557453][T13285] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2123'.
[  385.562373][T13285] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  386.486145][T13295] __nla_validate_parse: 1 callbacks suppressed
[  386.486237][T13295] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2124'.
[  386.520566][T13295] batadv0: entered allmulticast mode
[  387.640237][T13325] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  387.644510][T13325] batman_adv: batadv0: Adding interface: ip6gretap1
[  387.646628][T13325] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  387.655477][T13325] batman_adv: batadv0: Interface activated: ip6gretap1
[  388.298067][ T5302] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  388.303846][ T5302] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  388.312046][ T5302] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  388.315995][ T5302] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  388.321443][ T5302] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  388.512765][T13340] chnl_net:caif_netlink_parms(): no params data found
[  388.687376][T13340] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.690049][T13340] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.692858][T13340] bridge_slave_0: entered allmulticast mode
[  388.696142][T13340] bridge_slave_0: entered promiscuous mode
[  388.701628][T13340] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.704759][T13340] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.708076][T13340] bridge_slave_1: entered allmulticast mode
[  388.711933][T13340] bridge_slave_1: entered promiscuous mode
[  388.770268][T13340] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  388.777178][T13340] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  388.833813][T13340] team0: Port device team_slave_0 added
[  388.838878][T13340] team0: Port device team_slave_1 added
[  388.891753][T13340] batman_adv: batadv0: Adding interface: batadv_slave_0
[  388.894577][T13340] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  388.905167][T13340] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  388.911627][T13340] batman_adv: batadv0: Adding interface: batadv_slave_1
[  388.914648][T13340] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  388.925798][T13340] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  389.016409][T13340] hsr_slave_0: entered promiscuous mode
[  389.019731][T13340] hsr_slave_1: entered promiscuous mode
[  389.246438][T13340] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  389.350558][T13340] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  389.362538][T13340] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  389.376266][T13340] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  389.430733][T13374] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2146'.
[  389.435562][ T5302] Bluetooth: Unknown BR/EDR signaling command 0x11
[  389.439824][ T5302] Bluetooth: Wrong link type (-22)
[  389.440143][T13340] 8021q: adding VLAN 0 to HW filter on device bond0
[  389.443372][ T5302] Bluetooth: hci2: link tx timeout
[  389.447512][ T5302] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  389.461636][T13340] 8021q: adding VLAN 0 to HW filter on device team0
[  389.491053][ T8128] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.493878][ T8128] bridge0: port 1(bridge_slave_0) entered forwarding state
[  389.500085][ T8128] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.502895][ T8128] bridge0: port 2(bridge_slave_1) entered forwarding state
[  389.509297][T13374] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2146'.
[  389.604834][T13383] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  389.614695][T13383] CIFS mount error: No usable UNC path provided in device string!
[  389.614695][T13383] 
[  389.621562][T13380] net_ratelimit: 14 callbacks suppressed
[  389.621572][T13380] openvswitch: netlink: Missing valid actions attribute.
[  389.626427][T13380] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  389.641875][T13383] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  389.658013][   T40] kauditd_printk_skb: 32 callbacks suppressed
[  389.658029][   T40] audit: type=1326 audit(1762546235.338:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.678977][   T40] audit: type=1326 audit(1762546235.338:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.687813][   T40] audit: type=1326 audit(1762546235.338:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.697484][   T40] audit: type=1326 audit(1762546235.338:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.709454][   T40] audit: type=1326 audit(1762546235.338:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.733961][   T40] audit: type=1326 audit(1762546235.338:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.743816][   T40] audit: type=1326 audit(1762546235.338:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.754102][   T40] audit: type=1326 audit(1762546235.338:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=136 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.763225][   T40] audit: type=1326 audit(1762546235.338:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.772690][   T40] audit: type=1326 audit(1762546235.338:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13382 comm="syz.0.2148" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  389.797564][T13340] 8021q: adding VLAN 0 to HW filter on device batadv0
[  390.057980][T13340] veth0_vlan: entered promiscuous mode
[  390.066770][T13340] veth1_vlan: entered promiscuous mode
[  390.094416][T13340] veth0_macvtap: entered promiscuous mode
[  390.100493][T13340] veth1_macvtap: entered promiscuous mode
[  390.116302][T13340] batman_adv: batadv0: Interface activated: batadv_slave_0
[  390.126770][T13340] batman_adv: batadv0: Interface activated: batadv_slave_1
[  390.142921][ T8130] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  390.150483][ T8130] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  390.158232][ T8130] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  390.164591][ T8130] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  390.307413][ T8130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  390.315797][ T8130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  390.336511][ T8128] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  390.341678][ T8128] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  390.349383][ T5948] Bluetooth: hci3: command tx timeout
[  391.065859][ T5954] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  391.079328][ T5954] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  391.083336][ T5954] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  391.087357][ T5954] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  391.092068][ T5954] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  391.190175][T10648] bridge0: port 3(syz_tun) entered disabled state
[  391.201796][T10648] syz_tun (unregistering): left allmulticast mode
[  391.204445][T10648] syz_tun (unregistering): left promiscuous mode
[  391.206546][T10648] bridge0: port 3(syz_tun) entered disabled state
[  391.365404][T13416] chnl_net:caif_netlink_parms(): no params data found
[  391.479458][ T5954] Bluetooth: hci2: command 0x0401 tx timeout
[  391.496185][T13416] bridge0: port 1(bridge_slave_0) entered blocking state
[  391.499497][T13416] bridge0: port 1(bridge_slave_0) entered disabled state
[  391.502648][T13416] bridge_slave_0: entered allmulticast mode
[  391.506657][T13416] bridge_slave_0: entered promiscuous mode
[  391.512851][T13416] bridge0: port 2(bridge_slave_1) entered blocking state
[  391.516001][T13416] bridge0: port 2(bridge_slave_1) entered disabled state
[  391.519578][T13416] bridge_slave_1: entered allmulticast mode
[  391.523641][T13416] bridge_slave_1: entered promiscuous mode
[  391.593746][T13416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  391.602337][T13416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  391.653397][T13416] team0: Port device team_slave_0 added
[  391.657857][T13416] team0: Port device team_slave_1 added
[  391.703999][T13416] batman_adv: batadv0: Adding interface: batadv_slave_0
[  391.706747][T13416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  391.717650][T13416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  391.723364][T13416] batman_adv: batadv0: Adding interface: batadv_slave_1
[  391.725824][T13416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  391.738345][T13416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  391.819416][T13416] hsr_slave_0: entered promiscuous mode
[  391.823796][T13416] hsr_slave_1: entered promiscuous mode
[  391.829854][T13416] debugfs: 'hsr0' already exists in 'hsr'
[  391.832306][T13416] Cannot create hsr debugfs directory
[  392.324111][T13435] openvswitch: netlink: Missing valid actions attribute.
[  392.327804][T13435] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  392.431530][ T5302] Bluetooth: hci3: command tx timeout
[  392.437500][T13416] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  392.453007][T13416] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  392.458974][T13416] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  392.466637][T13416] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  392.522119][T13416] 8021q: adding VLAN 0 to HW filter on device bond0
[  392.541715][T13416] 8021q: adding VLAN 0 to HW filter on device team0
[  392.612548][ T8128] bridge0: port 1(bridge_slave_0) entered blocking state
[  392.615545][ T8128] bridge0: port 1(bridge_slave_0) entered forwarding state
[  392.636444][ T8132] bridge0: port 2(bridge_slave_1) entered blocking state
[  392.638892][ T8132] bridge0: port 2(bridge_slave_1) entered forwarding state
[  392.839123][T13416] 8021q: adding VLAN 0 to HW filter on device batadv0
[  392.939276][T13416] veth0_vlan: entered promiscuous mode
[  392.950586][T13416] veth1_vlan: entered promiscuous mode
[  392.986235][T13416] veth0_macvtap: entered promiscuous mode
[  392.991279][T13416] veth1_macvtap: entered promiscuous mode
[  393.001352][T13416] batman_adv: batadv0: Interface activated: batadv_slave_0
[  393.036109][T13416] batman_adv: batadv0: Interface activated: batadv_slave_1
[  393.050912][ T8128] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  393.054656][ T8128] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  393.060222][ T8128] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  393.065382][ T8128] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  393.115649][ T8128] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  393.118602][ T8128] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  393.138057][ T8132] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  393.142959][ T8132] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  393.150839][ T5302] Bluetooth: hci4: command tx timeout
[  393.668707][T13459] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2162'.
[  393.674100][T13459] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2162'.
[  393.679643][T13459] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  393.745775][T13462] netlink: 4376 bytes leftover after parsing attributes in process `syz.4.2162'.
[  393.761486][ T5295] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  393.924975][ T5295] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  393.928728][ T5295] usb 8-1: config 0 interface 0 has no altsetting 0
[  393.934109][ T5295] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  393.938105][ T5295] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  393.941546][ T5295] usb 8-1: Product: syz
[  393.943199][ T5295] usb 8-1: Manufacturer: syz
[  393.945167][ T5295] usb 8-1: SerialNumber: syz
[  393.949509][ T5295] usb 8-1: config 0 descriptor??
[  393.956012][ T5295] usb 8-1: selecting invalid altsetting 0
[  394.160734][T13457] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  394.164766][T13457] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  394.192319][T13457] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  394.196084][T13457] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  394.421829][   T10] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  394.514383][ T5302] Bluetooth: hci3: command tx timeout
[  394.603959][   T10] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  394.608192][   T10] usb 10-1: config 0 interface 0 has no altsetting 0
[  394.615738][   T10] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  394.619807][   T10] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  394.623436][   T10] usb 10-1: Product: syz
[  394.625299][   T10] usb 10-1: Manufacturer: syz
[  394.627329][   T10] usb 10-1: SerialNumber: syz
[  394.631208][   T10] usb 10-1: config 0 descriptor??
[  394.640018][   T10] usb 10-1: selecting invalid altsetting 0
[  394.839189][T13467] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  394.842826][T13467] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  394.857945][T13467] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  394.862101][T13467] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  395.129381][T13478] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2167'.
[  395.242295][ T5302] Bluetooth: hci4: command tx timeout
[  396.438963][ T5295] usb 8-1: USB disconnect, device number 10
[  396.593374][ T5302] Bluetooth: hci3: command tx timeout
[  396.898025][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  396.898047][   T40] audit: type=1804 audit(1762546242.572:999): pid=13500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2170" name="/newroot/289/bus" dev="tmpfs" ino=1573 res=1 errno=0
[  396.969494][ T7253] usb 10-1: USB disconnect, device number 2
[  397.170153][T13505] ntfs3(nullb0): Primary boot signature is not NTFS.
[  397.174263][T13505] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  397.224033][T13509] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2174'.
[  397.229841][T13509] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2174'.
[  397.239074][T13509] tipc: Started in network mode
[  397.241225][T13509] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  397.245863][T13509] tipc: Enabled bearer <eth:team0>, priority 0
[  397.314480][ T5302] Bluetooth: hci4: command tx timeout
[  397.326234][T13512] netlink: 4376 bytes leftover after parsing attributes in process `syz.5.2174'.
[  398.270808][T13537] openvswitch: netlink: Missing valid actions attribute.
[  398.275385][T13537] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  398.375880][ T5295] tipc: Node number set to 11578026
[  398.675011][ T5295] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  398.837640][ T5295] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  398.841913][ T5295] usb 9-1: config 0 interface 0 has no altsetting 0
[  398.847181][ T5295] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  398.851027][ T5295] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  398.854422][ T5295] usb 9-1: Product: syz
[  398.856532][ T5295] usb 9-1: Manufacturer: syz
[  398.858563][ T5295] usb 9-1: SerialNumber: syz
[  398.862661][ T5295] usb 9-1: config 0 descriptor??
[  398.868882][ T5295] usb 9-1: selecting invalid altsetting 0
[  399.070276][T13540] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  399.073733][T13540] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  399.095281][T13540] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  399.100014][T13540] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  399.395538][ T5302] Bluetooth: hci4: command tx timeout
[  399.720810][T13544] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  399.723686][T13544] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  399.728794][T13544] vhci_hcd vhci_hcd.0: Device attached
[  399.907620][T13545] vhci_hcd: connection closed
[  399.909233][ T1142] vhci_hcd: stop threads
[  399.927517][ T1142] vhci_hcd: release socket
[  399.929633][ T1142] vhci_hcd: disconnect device
[  400.366403][   T10] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  400.518270][   T10] usb 8-1: Using ep0 maxpacket: 16
[  400.553370][   T10] usb 8-1: config 0 has an invalid interface number: 132 but max is 0
[  400.559058][   T10] usb 8-1: config 0 has no interface number 0
[  400.591010][   T10] usb 8-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  400.594739][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.598489][   T10] usb 8-1: Product: syz
[  400.599974][   T10] usb 8-1: Manufacturer: syz
[  400.601709][   T10] usb 8-1: SerialNumber: syz
[  400.610070][   T10] usb 8-1: config 0 descriptor??
[  400.617992][   T10] hub 8-1:0.132: bad descriptor, ignoring hub
[  400.620316][   T10] hub 8-1:0.132: probe with driver hub failed with error -5
[  400.634337][   T10] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.132/input/input16
[  401.066620][T13560] batadv_slave_1: entered promiscuous mode
[  401.292176][ T4173] usb 9-1: USB disconnect, device number 9
[  401.531595][   T29] libceph: connect (1)[c::]:6789 error -101
[  401.534408][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  401.789153][   T61] libceph: connect (1)[c::]:6789 error -101
[  401.792428][   T61] libceph: mon0 (1)[c::]:6789 connect error
[  401.868810][T13563] ceph: No mds server is up or the cluster is laggy
[  402.080014][T13587] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2189'.
[  403.588025][T13560] batadv_slave_1: left promiscuous mode
[  403.720510][   T29] usb 8-1: USB disconnect, device number 11
[  405.115730][T13611] netlink: 'syz.4.2197': attribute type 3 has an invalid length.
[  405.333015][T13616] openvswitch: netlink: Missing valid actions attribute.
[  405.336095][T13616] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  406.015651][T13623] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  406.365126][T13638] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  406.368030][T13638] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  406.372711][T13638] vhci_hcd vhci_hcd.0: Device attached
[  406.651427][   T61] usb 46-1: SetAddress Request (22) to port 0
[  406.654331][   T61] usb 46-1: new SuperSpeed USB device number 22 using vhci_hcd
[  406.845245][T13639] vhci_hcd: connection reset by peer
[  406.847924][ T8130] vhci_hcd: stop threads
[  406.849964][ T8130] vhci_hcd: release socket
[  406.852574][ T8130] vhci_hcd: disconnect device
[  407.233496][ T5954] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  407.239433][ T5954] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  407.243044][ T5954] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  407.249840][ T5954] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  407.253678][ T5954] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  407.267354][T13654] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  407.508998][T13657] chnl_net:caif_netlink_parms(): no params data found
[  407.822299][T13657] bridge0: port 1(bridge_slave_0) entered blocking state
[  407.825884][T13657] bridge0: port 1(bridge_slave_0) entered disabled state
[  407.829622][T13657] bridge_slave_0: entered allmulticast mode
[  407.838974][T13657] bridge_slave_0: entered promiscuous mode
[  407.849035][T13657] bridge0: port 2(bridge_slave_1) entered blocking state
[  407.852775][T13657] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.856081][T13657] bridge_slave_1: entered allmulticast mode
[  407.860214][T13657] bridge_slave_1: entered promiscuous mode
[  407.861736][   T34] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  407.926442][T13657] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  407.933075][T13657] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  407.989117][T13657] team0: Port device team_slave_0 added
[  407.995398][T13657] team0: Port device team_slave_1 added
[  408.024881][   T34] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  408.029104][   T34] usb 8-1: config 0 interface 0 has no altsetting 0
[  408.036774][   T34] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  408.040825][   T34] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  408.044851][   T34] usb 8-1: Product: syz
[  408.046872][   T34] usb 8-1: Manufacturer: syz
[  408.049118][   T34] usb 8-1: SerialNumber: syz
[  408.065093][   T34] usb 8-1: config 0 descriptor??
[  408.067257][T13657] batman_adv: batadv0: Adding interface: batadv_slave_0
[  408.070508][T13657] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  408.073342][   T34] usb 8-1: selecting invalid altsetting 0
[  408.079551][T13657] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  408.090400][T13657] batman_adv: batadv0: Adding interface: batadv_slave_1
[  408.093559][T13657] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  408.104737][T13657] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  408.182619][T13657] hsr_slave_0: entered promiscuous mode
[  408.186042][T13657] hsr_slave_1: entered promiscuous mode
[  408.189358][T13657] debugfs: 'hsr0' already exists in 'hsr'
[  408.193260][T13657] Cannot create hsr debugfs directory
[  408.307378][T13673] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  408.313058][T13673] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  408.334420][T13673] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  408.339891][T13673] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  408.493126][T13683] FAULT_INJECTION: forcing a failure.
[  408.493126][T13683] name failslab, interval 1, probability 0, space 0, times 0
[  408.499764][T13683] CPU: 1 UID: 0 PID: 13683 Comm: syz.4.2213 Not tainted syzkaller #0 PREEMPT(full) 
[  408.499792][T13683] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  408.499803][T13683] Call Trace:
[  408.499809][T13683]  <TASK>
[  408.499817][T13683]  dump_stack_lvl+0x16c/0x1f0
[  408.499843][T13683]  should_fail_ex+0x512/0x640
[  408.499870][T13683]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  408.499891][T13683]  should_failslab+0xc2/0x120
[  408.499916][T13683]  kmem_cache_alloc_noprof+0x75/0x6e0
[  408.499935][T13683]  ? skb_clone+0x190/0x3f0
[  408.499957][T13683]  ? skb_clone+0x190/0x3f0
[  408.499974][T13683]  skb_clone+0x190/0x3f0
[  408.499992][T13683]  netlink_deliver_tap+0xabd/0xd30
[  408.500016][T13683]  netlink_unicast+0x64c/0x870
[  408.500040][T13683]  ? __pfx_netlink_unicast+0x10/0x10
[  408.500068][T13683]  netlink_sendmsg+0x8c8/0xdd0
[  408.500100][T13683]  ? __pfx_netlink_sendmsg+0x10/0x10
[  408.500121][T13683]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  408.500152][T13683]  ____sys_sendmsg+0xa98/0xc70
[  408.500178][T13683]  ? __pfx_____sys_sendmsg+0x10/0x10
[  408.500199][T13683]  ? get_compat_msghdr+0x11a/0x170
[  408.500240][T13683]  ___sys_sendmsg+0x134/0x1d0
[  408.500260][T13683]  ? __pfx____sys_sendmsg+0x10/0x10
[  408.500292][T13683]  ? find_held_lock+0x2b/0x80
[  408.500352][T13683]  __sys_sendmsg+0x16d/0x220
[  408.500373][T13683]  ? __pfx___sys_sendmsg+0x10/0x10
[  408.500404][T13683]  ? rcu_is_watching+0x12/0xc0
[  408.500429][T13683]  __do_fast_syscall_32+0x7c/0x300
[  408.500455][T13683]  do_fast_syscall_32+0x32/0x80
[  408.500477][T13683]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  408.500500][T13683] RIP: 0023:0xf709d579
[  408.500513][T13683] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  408.500529][T13683] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  408.500547][T13683] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  408.500559][T13683] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  408.500568][T13683] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  408.500579][T13683] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  408.500588][T13683] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  408.500614][T13683]  </TASK>
[  408.506852][T13657] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  408.610048][T13657] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  408.616260][T13657] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  408.620379][T13685] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  408.623421][T13657] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  408.706355][T13657] 8021q: adding VLAN 0 to HW filter on device bond0
[  408.721778][T13657] 8021q: adding VLAN 0 to HW filter on device team0
[  408.730862][ T8124] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.733974][ T8124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  408.742254][ T8128] bridge0: port 2(bridge_slave_1) entered blocking state
[  408.744881][ T8128] bridge0: port 2(bridge_slave_1) entered forwarding state
[  408.906211][T13700] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  408.919403][T13657] 8021q: adding VLAN 0 to HW filter on device batadv0
[  409.130824][T13657] veth0_vlan: entered promiscuous mode
[  409.139193][T13657] veth1_vlan: entered promiscuous mode
[  409.161361][T13657] veth0_macvtap: entered promiscuous mode
[  409.167518][T13657] veth1_macvtap: entered promiscuous mode
[  409.182330][T13657] batman_adv: batadv0: Interface activated: batadv_slave_0
[  409.189165][T13657] batman_adv: batadv0: Interface activated: batadv_slave_1
[  409.274283][ T8124] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  409.287833][ T8124] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  409.289636][ T8130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  409.289725][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  409.289740][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  409.298523][ T8124] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  409.301542][ T8130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  409.307099][ T8124] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  409.326009][ T5954] Bluetooth: hci0: command tx timeout
[  409.469795][T13714] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  409.472264][T13714] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  409.481097][T13714] vhci_hcd vhci_hcd.0: Device attached
[  409.743443][   T29] usb 48-1: SetAddress Request (3) to port 0
[  409.746605][   T29] usb 48-1: new SuperSpeed USB device number 3 using vhci_hcd
[  409.959188][T13715] vhci_hcd: connection reset by peer
[  409.961849][ T8130] vhci_hcd: stop threads
[  409.963794][ T8130] vhci_hcd: release socket
[  409.965387][ T8130] vhci_hcd: disconnect device
[  409.974841][T13737] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2219'.
[  410.456091][   T10] usb 8-1: USB disconnect, device number 12
[  410.647532][T13745] netlink: 'syz.5.2222': attribute type 2 has an invalid length.
[  410.651136][T13745] netlink: 244 bytes leftover after parsing attributes in process `syz.5.2222'.
[  410.709466][T13749] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2224'.
[  410.713409][T13749] netlink: 'syz.5.2224': attribute type 30 has an invalid length.
[  410.724054][T13747] netlink: 'syz.3.2223': attribute type 3 has an invalid length.
[  410.729917][ T8132] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  410.734500][ T1142] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  410.738214][ T1142] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  410.741901][ T1142] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  410.755437][T13749] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2224'.
[  410.759718][T13749] netlink: 'syz.5.2224': attribute type 30 has an invalid length.
[  411.405121][ T5954] Bluetooth: hci0: command tx timeout
[  411.419779][T13766] tipc: Started in network mode
[  411.422830][T13766] tipc: Node identity 9274e7e2e42, cluster identity 4711
[  411.434604][T13766] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  411.456523][T13766] netlink: 2 bytes leftover after parsing attributes in process `syz.6.2228'.
[  411.462170][T13766] tipc: Resetting bearer <eth:syzkaller0>
[  411.494724][T13765] tipc: Disabling bearer <eth:syzkaller0>
[  411.823729][   T61] usb 46-1: device descriptor read/8, error -110
[  412.248770][   T61] usb usb46-port1: attempt power cycle
[  413.136389][   T61] usb usb46-port1: unable to enumerate USB device
[  413.486121][ T5954] Bluetooth: hci0: command tx timeout
[  413.489442][T13794] overlayfs: missing 'lowerdir'
[  414.271456][   T61] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  414.458001][   T61] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  414.462028][   T61] usb 9-1: config 0 interface 0 has no altsetting 0
[  414.466656][   T61] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  414.476999][   T61] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  414.482142][   T61] usb 9-1: Product: syz
[  414.487094][   T61] usb 9-1: Manufacturer: syz
[  414.489717][   T61] usb 9-1: SerialNumber: syz
[  414.496147][   T61] usb 9-1: config 0 descriptor??
[  414.502657][   T61] usb 9-1: selecting invalid altsetting 0
[  414.708570][T13797] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  414.712033][T13797] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  414.733984][T13797] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  414.737874][T13797] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  415.007348][   T29] usb 48-1: device descriptor read/8, error -110
[  415.485517][T13819] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  415.493774][T13819] netlink: 2 bytes leftover after parsing attributes in process `syz.6.2237'.
[  415.500205][T13819] tipc: Resetting bearer <eth:syzkaller0>
[  415.513130][T13818] tipc: Disabling bearer <eth:syzkaller0>
[  415.567668][ T5954] Bluetooth: hci0: command tx timeout
[  415.628092][   T29] usb usb48-port1: attempt power cycle
[  416.023950][T13823] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5)
[  416.026678][T13823] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  416.131156][T13823] vhci_hcd vhci_hcd.0: Device attached
[  416.270953][   T29] usb usb48-port1: unable to enumerate USB device
[  416.429374][   T61] usb 50-1: SetAddress Request (2) to port 0
[  416.432370][   T61] usb 50-1: new SuperSpeed USB device number 2 using vhci_hcd
[  416.565110][T13824] vhci_hcd: connection reset by peer
[  416.567605][ T8118] vhci_hcd: stop threads
[  416.569370][ T8118] vhci_hcd: release socket
[  416.571353][ T8118] vhci_hcd: disconnect device
[  416.747525][ T6120] usb 9-1: USB disconnect, device number 10
[  416.833197][T13854] FAULT_INJECTION: forcing a failure.
[  416.833197][T13854] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  416.838542][T13854] CPU: 0 UID: 0 PID: 13854 Comm: syz.5.2244 Not tainted syzkaller #0 PREEMPT(full) 
[  416.838566][T13854] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  416.838575][T13854] Call Trace:
[  416.838580][T13854]  <TASK>
[  416.838587][T13854]  dump_stack_lvl+0x16c/0x1f0
[  416.838610][T13854]  should_fail_ex+0x512/0x640
[  416.838636][T13854]  _copy_from_iter+0x29f/0x1720
[  416.838662][T13854]  ? __alloc_skb+0x200/0x380
[  416.838695][T13854]  ? __pfx__copy_from_iter+0x10/0x10
[  416.838716][T13854]  ? __kernel_text_address+0xd/0x40
[  416.838731][T13854]  ? __pfx___might_resched+0x10/0x10
[  416.838755][T13854]  netlink_sendmsg+0x820/0xdd0
[  416.838777][T13854]  ? __pfx_netlink_sendmsg+0x10/0x10
[  416.838796][T13854]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  416.838821][T13854]  ____sys_sendmsg+0xa98/0xc70
[  416.838842][T13854]  ? __pfx_____sys_sendmsg+0x10/0x10
[  416.838860][T13854]  ? get_compat_msghdr+0x11a/0x170
[  416.838893][T13854]  ___sys_sendmsg+0x134/0x1d0
[  416.838911][T13854]  ? __pfx____sys_sendmsg+0x10/0x10
[  416.838937][T13854]  ? find_held_lock+0x2b/0x80
[  416.838966][T13854]  __sys_sendmsg+0x16d/0x220
[  416.838982][T13854]  ? __pfx___sys_sendmsg+0x10/0x10
[  416.839006][T13854]  ? rcu_is_watching+0x12/0xc0
[  416.839032][T13854]  __do_fast_syscall_32+0x7c/0x300
[  416.839055][T13854]  do_fast_syscall_32+0x32/0x80
[  416.839075][T13854]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  416.839094][T13854] RIP: 0023:0xf705d579
[  416.839106][T13854] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  416.839121][T13854] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  416.839137][T13854] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000200
[  416.839147][T13854] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  416.839156][T13854] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  416.839164][T13854] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  416.839173][T13854] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  416.839193][T13854]  </TASK>
[  416.839909][T13854] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2244'.
[  416.927832][T13859] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2246'.
[  416.946570][T13859] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2246'.
[  416.955782][T13859] netlink: zone id is out of range
[  416.958143][T13859] netlink: zone id is out of range
[  416.960271][T13859] netlink: zone id is out of range
[  416.962233][T13859] netlink: zone id is out of range
[  416.964279][T13859] netlink: zone id is out of range
[  416.966598][T13859] netlink: zone id is out of range
[  416.969104][T13859] netlink: zone id is out of range
[  416.971147][T13859] netlink: zone id is out of range
[  416.973268][T13859] netlink: zone id is out of range
[  416.975425][T13859] netlink: zone id is out of range
[  417.054855][T13862] netlink: 4376 bytes leftover after parsing attributes in process `syz.4.2246'.
[  417.391861][T13872] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2249'.
[  417.670148][ T1111] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  417.673328][ T1111] ata1: failed to read log page 10h (errno=-5)
[  417.677679][ T1111] ata1.00: exception Emask 0x1 SAct 0x1000 SErr 0x0 action 0x0
[  417.681054][ T1111] ata1.00: irq_stat 0x40000000
[  417.683161][ T1111] ata1.00: failed command: WRITE FPDMA QUEUED
[  417.685729][ T1111] ata1.00: cmd 61/18:60:76:13:10/00:00:00:00:00/40 tag 12 ncq dma 12288 out
[  417.685729][ T1111]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  417.693497][ T1111] ata1.00: status: { DRDY }
[  417.695433][ T1111] ata1.00: error: { ABRT }
[  417.702715][ T1111] ata1.00: configured for UDMA/100
[  417.705363][ T1111] ata1: EH complete
[  418.016101][T13880] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2250'.
[  418.200461][T13885] netlink: 'syz.5.2250': attribute type 11 has an invalid length.
[  418.271002][   T34] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  418.421221][   T34] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  418.425187][   T34] usb 9-1: config 0 interface 0 has no altsetting 0
[  418.430492][   T34] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  418.434108][   T34] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  418.437356][   T34] usb 9-1: Product: syz
[  418.439091][   T34] usb 9-1: Manufacturer: syz
[  418.441142][   T34] usb 9-1: SerialNumber: syz
[  418.444956][   T34] usb 9-1: config 0 descriptor??
[  418.452094][   T34] usb 9-1: selecting invalid altsetting 0
[  418.663122][T13878] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  418.667025][T13878] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  418.774364][T13878] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  418.777684][T13878] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  419.272595][T13906] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2260'.
[  419.277565][T13906] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2260'.
[  419.313197][T13903] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  419.345843][T13908] netlink: 4376 bytes leftover after parsing attributes in process `syz.6.2260'.
[  419.408804][T13909] fuse: Bad value for 'user_id'
[  419.411228][T13909] fuse: Bad value for 'user_id'
[  420.491184][ T7251] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  420.663896][ T7251] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  420.676715][ T7251] usb 11-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  420.680202][T13939] netlink: 'syz.3.2267': attribute type 3 has an invalid length.
[  420.681328][ T7251] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  420.687829][ T7251] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.705039][ T7251] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  420.708486][ T7251] usb 11-1: invalid MIDI out EP 0
[  420.763842][ T7251] snd-usb-audio 11-1:27.0: probe with driver snd-usb-audio failed with error -22
[  420.894184][   T34] usb 9-1: USB disconnect, device number 11
[  421.032982][T13953] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  421.035903][T13953] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  421.041458][T13953] vhci_hcd vhci_hcd.0: Device attached
[  421.290986][T13963] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  421.293457][T13963] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  421.298014][T13963] vhci_hcd vhci_hcd.0: Device attached
[  421.321456][ T7251] usb 44-1: SetAddress Request (6) to port 0
[  421.324018][ T7251] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  421.492621][   T61] usb 50-1: device descriptor read/8, error -110
[  421.531710][T13449] usb 47-1: new low-speed USB device number 2 using vhci_hcd
[  421.852923][T13954] vhci_hcd: connection reset by peer
[  421.857901][ T8118] vhci_hcd: stop threads
[  421.859716][ T8118] vhci_hcd: release socket
[  421.861803][ T8118] vhci_hcd: disconnect device
[  421.950253][   T61] usb usb50-port1: attempt power cycle
[  421.954675][T13964] vhci_hcd: connection reset by peer
[  421.959115][ T8118] vhci_hcd: stop threads
[  421.961592][ T8118] vhci_hcd: release socket
[  421.963697][ T8118] vhci_hcd: disconnect device
[  422.559944][   T61] usb usb50-port1: unable to enumerate USB device
[  422.675653][T13976] netlink: 'syz.4.2277': attribute type 3 has an invalid length.
[  422.739723][T13981] wg1: entered promiscuous mode
[  422.742049][T13981] wg1: entered allmulticast mode
[  423.086151][   T34] usb 11-1: USB disconnect, device number 2
[  423.102863][ T6120] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  423.266843][ T6120] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  423.271032][ T6120] usb 10-1: config 0 interface 0 has no altsetting 0
[  423.276599][ T6120] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  423.279889][ T6120] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  423.283499][ T6120] usb 10-1: Product: syz
[  423.285288][ T6120] usb 10-1: Manufacturer: syz
[  423.287296][ T6120] usb 10-1: SerialNumber: syz
[  423.291134][ T6120] usb 10-1: config 0 descriptor??
[  423.297132][ T6120] usb 10-1: selecting invalid altsetting 0
[  423.496589][T13983] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  423.500109][T13983] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  423.515955][T13983] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  423.519094][T13983] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  424.861268][T14010] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2285'.
[  424.866492][T14010] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2285'.
[  424.873020][T14010] net_ratelimit: 14 callbacks suppressed
[  424.873035][T14010] netlink: zone id is out of range
[  424.877802][T14010] netlink: zone id is out of range
[  424.880045][T14010] netlink: zone id is out of range
[  424.882402][T14010] netlink: zone id is out of range
[  424.884703][T14010] netlink: zone id is out of range
[  424.886934][T14010] netlink: zone id is out of range
[  424.889138][T14010] netlink: zone id is out of range
[  424.891350][T14010] netlink: zone id is out of range
[  424.893644][T14010] netlink: zone id is out of range
[  424.897694][T14010] netlink: zone id is out of range
[  424.967809][T14014] netlink: 4376 bytes leftover after parsing attributes in process `syz.3.2285'.
[  425.609684][T14030] bridge0: entered promiscuous mode
[  425.611467][T14030] bridge0: entered allmulticast mode
[  425.620426][T14031] bridge2: entered promiscuous mode
[  425.622277][T14031] bridge2: entered allmulticast mode
[  425.729704][   T61] usb 10-1: USB disconnect, device number 3
[  426.098597][T14042] Bluetooth: MGMT ver 1.23
[  426.375531][ T7251] usb 44-1: device descriptor read/8, error -110
[  426.772713][ T7251] usb usb44-port1: attempt power cycle
[  427.345086][   T34] kernel read not supported for file /vcs (pid: 34 comm: kworker/3:0)
[  427.448510][ T7251] usb usb44-port1: unable to enumerate USB device
[  427.546765][T13449] vhci_hcd: vhci_device speed not set
[  428.298824][ T7251] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  436.245317][T14099] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2305'.
[  436.485126][   T40] audit: type=1326 audit(1762546282.134:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.495225][   T40] audit: type=1326 audit(1762546282.144:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.516560][   T40] audit: type=1326 audit(1762546282.154:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.529967][   T40] audit: type=1326 audit(1762546282.154:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.544363][   T40] audit: type=1326 audit(1762546282.154:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.561785][   T40] audit: type=1326 audit(1762546282.154:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.580496][   T40] audit: type=1326 audit(1762546282.154:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.590723][   T40] audit: type=1326 audit(1762546282.154:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.599317][   T40] audit: type=1326 audit(1762546282.154:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.607850][   T40] audit: type=1326 audit(1762546282.154:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14120 comm="syz.6.2316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  436.769584][T14130] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2317'.
[  439.579121][T14185] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2338'.
[  439.755261][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  441.225635][   T59] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[  441.412348][   T59] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  441.421446][   T59] usb 10-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00
[  441.449400][   T59] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.454820][   T59] usb 10-1: config 0 descriptor??
[  441.809098][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  441.809117][   T40] audit: type=1326 audit(1762546287.460:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.823203][   T40] audit: type=1326 audit(1762546287.460:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.832698][   T40] audit: type=1326 audit(1762546287.480:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.844513][   T40] audit: type=1326 audit(1762546287.480:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.853967][   T40] audit: type=1326 audit(1762546287.480:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.864195][   T40] audit: type=1326 audit(1762546287.490:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.873726][   T40] audit: type=1326 audit(1762546287.490:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.884318][   T40] audit: type=1326 audit(1762546287.490:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.938204][   T59] hid-led 0003:1294:1320.0005: unbalanced collection at end of report description
[  441.942728][   T59] hid-led 0003:1294:1320.0005: probe with driver hid-led failed with error -22
[  441.968954][   T40] audit: type=1326 audit(1762546287.500:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf709d579 code=0x7ffc0000
[  441.996370][   T40] audit: type=1326 audit(1762546287.500:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14204 comm="syz.4.2342" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  442.108394][ T5295] usb 10-1: USB disconnect, device number 4
[  446.239799][   T10] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  446.377814][ T5954] Bluetooth: hci1: unexpected event for opcode 0x1003
[  446.421688][   T10] usb 10-1: config 0 has an invalid interface number: 117 but max is 0
[  446.427657][   T10] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  446.432251][   T10] usb 10-1: config 0 has no interface number 0
[  446.434741][   T10] usb 10-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  446.438829][   T10] usb 10-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  446.447537][   T10] usb 10-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  446.452982][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  446.456714][   T10] usb 10-1: Product: syz
[  446.458571][   T10] usb 10-1: Manufacturer: syz
[  446.461115][   T10] usb 10-1: SerialNumber: syz
[  446.465286][   T10] usb 10-1: config 0 descriptor??
[  446.779286][    T9] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  446.907999][T14260] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2366'.
[  446.931841][    T9] usb 9-1: config 160 has an invalid interface number: 200 but max is 0
[  446.935573][    T9] usb 9-1: config 160 has no interface number 0
[  446.938353][    T9] usb 9-1: config 160 interface 200 has no altsetting 0
[  446.943964][    T9] usb 9-1: New USB device found, idVendor=21bb, idProduct=2070, bcdDevice=87.0b
[  446.947606][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  446.953528][    T9] usb 9-1: Product: syz
[  446.964509][    T9] usb 9-1: Manufacturer: syz
[  446.966799][    T9] usb 9-1: SerialNumber: syz
[  447.020998][T14266] ------------[ cut here ]------------
[  447.023621][T14266] intf 08:02:11:00:00:00 [link=0]: bad STA 08:02:11:00:00:01 bandwidth 20 MHz (0) > channel config 1 MHz (8)
[  447.030848][T14266] WARNING: CPU: 3 PID: 14266 at drivers/net/wireless/virtual/mac80211_hwsim.c:2687 mac80211_hwsim_sta_rc_update+0x60e/0x850
[  447.036726][T14266] Modules linked in:
[  447.039115][T14266] CPU: 3 UID: 0 PID: 14266 Comm: syz.6.2369 Not tainted syzkaller #0 PREEMPT(full) 
[  447.057762][T14266] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  447.064139][T14266] RIP: 0010:mac80211_hwsim_sta_rc_update+0x60e/0x850
[  447.066911][T14266] Code: 8b 44 24 20 89 da 48 c7 c7 80 4f 48 8c 44 8b 89 b8 01 00 00 41 54 48 8d b0 72 05 00 00 41 55 44 8b 44 24 14 e8 a3 20 a3 fa 90 <0f> 0b 90 90 58 5a e9 33 fc ff ff e8 22 a1 e4 fa e8 0d ab 85 04 31
[  447.074705][T14266] RSP: 0018:ffffc9000386f138 EFLAGS: 00010286
[  447.077462][T14266] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc900281f3000
[  447.081337][T14266] RDX: 0000000000080000 RSI: ffffffff817aee65 RDI: 0000000000000001
[  447.085975][T14266] RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000000
[  447.090202][T14266] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000008
[  447.093773][T14266] R13: 0000000000000001 R14: ffff88804d185088 R15: ffff8880599b3100
[  447.097236][T14266] FS:  0000000000000000(0000) GS:ffff888097b0d000(0063) knlGS:00000000f54cdb40
[  447.101270][T14266] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  447.104026][T14266] CR2: 00000000568a74c0 CR3: 0000000022ea9000 CR4: 0000000000352ef0
[  447.107440][T14266] Call Trace:
[  447.108935][T14266]  <TASK>
[  447.110389][T14266]  mac80211_hwsim_sta_add+0xc9/0x2c0
[  447.112756][T14266]  ? __pfx_mac80211_hwsim_sta_add+0x10/0x10
[  447.115212][T14266]  drv_sta_state+0xa08/0x1940
[  447.117282][T14266]  sta_info_insert_rcu+0x121b/0x3070
[  447.119510][T14266]  sta_info_insert+0x16/0xd0
[  447.121520][T14266]  ieee80211_add_station+0x46d/0x6c0
[  447.123971][T14266]  nl80211_new_station+0x1502/0x1c90
[  447.126417][T14266]  ? __pfx_nl80211_new_station+0x10/0x10
[  447.128891][T14266]  ? nl80211_pre_doit+0x1b0/0xb10
[  447.131324][T14266]  genl_family_rcv_msg_doit+0x209/0x2f0
[  447.133770][T14266]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  447.136298][T14266]  ? bpf_lsm_capable+0x9/0x10
[  447.138245][T14266]  ? security_capable+0x7e/0x260
[  447.140187][T14266]  ? ns_capable+0xd7/0x110
[  447.142145][T14266]  genl_rcv_msg+0x55c/0x800
[  447.144153][T14266]  ? __pfx_genl_rcv_msg+0x10/0x10
[  447.146397][T14266]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  447.148867][T14266]  ? __pfx_nl80211_new_station+0x10/0x10
[  447.151389][T14266]  ? __pfx_nl80211_post_doit+0x10/0x10
[  447.153807][T14266]  netlink_rcv_skb+0x158/0x420
[  447.155872][T14266]  ? __pfx_genl_rcv_msg+0x10/0x10
[  447.158088][T14266]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  447.160480][T14266]  ? netlink_deliver_tap+0x1ae/0xd30
[  447.162769][T14266]  genl_rcv+0x28/0x40
[  447.164494][T14266]  netlink_unicast+0x5aa/0x870
[  447.166635][T14266]  ? __pfx_netlink_unicast+0x10/0x10
[  447.168855][T14266]  netlink_sendmsg+0x8c8/0xdd0
[  447.170929][T14266]  ? __pfx_netlink_sendmsg+0x10/0x10
[  447.173264][T14266]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  447.175784][T14266]  ____sys_sendmsg+0xa98/0xc70
[  447.177798][T14266]  ? __pfx_____sys_sendmsg+0x10/0x10
[  447.180383][T14266]  ? get_compat_msghdr+0x11a/0x170
[  447.182602][T14266]  ? __pfx_futex_wake_mark+0x10/0x10
[  447.184840][T14266]  ___sys_sendmsg+0x134/0x1d0
[  447.187360][T14266]  ? __pfx____sys_sendmsg+0x10/0x10
[  447.190040][T14266]  ? find_held_lock+0x2b/0x80
[  447.192087][T14266]  __sys_sendmsg+0x16d/0x220
[  447.194057][T14266]  ? __pfx___sys_sendmsg+0x10/0x10
[  447.196210][T14266]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  447.198551][T14266]  ? rcu_is_watching+0x12/0xc0
[  447.198980][    T9] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  447.200877][T14266]  __do_fast_syscall_32+0x7c/0x300
[  447.205711][T14266]  do_fast_syscall_32+0x32/0x80
[  447.207013][    T9] usb 9-1: MIDIStreaming interface descriptor not found
[  447.207693][T14266]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  447.207723][T14266] RIP: 0023:0xf70dd579
[  447.207741][T14266] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  447.207761][T14266] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  447.207781][T14266] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080001080
[  447.207792][T14266] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[  447.207804][T14266] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  447.207820][T14266] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  447.212286][T14268] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2368'.
[  447.213242][T14266] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  447.213276][T14266]  </TASK>
[  447.213288][T14266] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  447.213303][T14266] CPU: 3 UID: 0 PID: 14266 Comm: syz.6.2369 Not tainted syzkaller #0 PREEMPT(full) 
[  447.213326][T14266] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  447.213342][T14266] Call Trace:
[  447.213349][T14266]  <TASK>
[  447.213357][T14266]  dump_stack_lvl+0x3d/0x1f0
[  447.213387][T14266]  vpanic+0x640/0x6f0
[  447.213418][T14266]  ? mac80211_hwsim_sta_rc_update+0x60e/0x850
[  447.213451][T14266]  panic+0xca/0xd0
[  447.213478][T14266]  ? __pfx_panic+0x10/0x10
[  447.213520][T14266]  check_panic_on_warn+0xab/0xb0
[  447.213551][T14266]  __warn+0xf6/0x3c0
[  447.213578][T14266]  ? mac80211_hwsim_sta_rc_update+0x60e/0x850
[  447.213611][T14266]  report_bug+0x3c3/0x580
[  447.213633][T14266]  ? mac80211_hwsim_sta_rc_update+0x60e/0x850
[  447.213666][T14266]  handle_bug+0x184/0x210
[  447.213692][T14266]  exc_invalid_op+0x17/0x50
[  447.213720][T14266]  asm_exc_invalid_op+0x1a/0x20
[  447.213739][T14266] RIP: 0010:mac80211_hwsim_sta_rc_update+0x60e/0x850
[  447.213771][T14266] Code: 8b 44 24 20 89 da 48 c7 c7 80 4f 48 8c 44 8b 89 b8 01 00 00 41 54 48 8d b0 72 05 00 00 41 55 44 8b 44 24 14 e8 a3 20 a3 fa 90 <0f> 0b 90 90 58 5a e9 33 fc ff ff e8 22 a1 e4 fa e8 0d ab 85 04 31
[  447.213789][T14266] RSP: 0018:ffffc9000386f138 EFLAGS: 00010286
[  447.213807][T14266] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc900281f3000
[  447.213827][T14266] RDX: 0000000000080000 RSI: ffffffff817aee65 RDI: 0000000000000001
[  447.213839][T14266] RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000000
[  447.213851][T14266] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000008
[  447.213863][T14266] R13: 0000000000000001 R14: ffff88804d185088 R15: ffff8880599b3100
[  447.213885][T14266]  ? __warn_printk+0x1a5/0x350
[  447.213916][T14266]  ? mac80211_hwsim_sta_rc_update+0x60d/0x850
[  447.213956][T14266]  mac80211_hwsim_sta_add+0xc9/0x2c0
[  447.213987][T14266]  ? __pfx_mac80211_hwsim_sta_add+0x10/0x10
[  447.214018][T14266]  drv_sta_state+0xa08/0x1940
[  447.214055][T14266]  sta_info_insert_rcu+0x121b/0x3070
[  447.214097][T14266]  sta_info_insert+0x16/0xd0
[  447.214121][T14266]  ieee80211_add_station+0x46d/0x6c0
[  447.214153][T14266]  nl80211_new_station+0x1502/0x1c90
[  447.214189][T14266]  ? __pfx_nl80211_new_station+0x10/0x10
[  447.214241][T14266]  ? nl80211_pre_doit+0x1b0/0xb10
[  447.214266][T14266]  genl_family_rcv_msg_doit+0x209/0x2f0
[  447.214295][T14266]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  447.214329][T14266]  ? bpf_lsm_capable+0x9/0x10
[  447.214356][T14266]  ? security_capable+0x7e/0x260
[  447.214385][T14266]  ? ns_capable+0xd7/0x110
[  447.214408][T14266]  genl_rcv_msg+0x55c/0x800
[  447.214436][T14266]  ? __pfx_genl_rcv_msg+0x10/0x10
[  447.214460][T14266]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  447.214480][T14266]  ? __pfx_nl80211_new_station+0x10/0x10
[  447.214505][T14266]  ? __pfx_nl80211_post_doit+0x10/0x10
[  447.214543][T14266]  netlink_rcv_skb+0x158/0x420
[  447.214565][T14266]  ? __pfx_genl_rcv_msg+0x10/0x10
[  447.214589][T14266]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  447.214622][T14266]  ? netlink_deliver_tap+0x1ae/0xd30
[  447.214647][T14266]  genl_rcv+0x28/0x40
[  447.214667][T14266]  netlink_unicast+0x5aa/0x870
[  447.214693][T14266]  ? __pfx_netlink_unicast+0x10/0x10
[  447.214725][T14266]  netlink_sendmsg+0x8c8/0xdd0
[  447.214751][T14266]  ? __pfx_netlink_sendmsg+0x10/0x10
[  447.214775][T14266]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  447.214809][T14266]  ____sys_sendmsg+0xa98/0xc70
[  447.214846][T14266]  ? __pfx_____sys_sendmsg+0x10/0x10
[  447.214868][T14266]  ? get_compat_msghdr+0x11a/0x170
[  447.214905][T14266]  ? __pfx_futex_wake_mark+0x10/0x10
[  447.214941][T14266]  ___sys_sendmsg+0x134/0x1d0
[  447.214963][T14266]  ? __pfx____sys_sendmsg+0x10/0x10
[  447.214996][T14266]  ? find_held_lock+0x2b/0x80
[  447.215036][T14266]  __sys_sendmsg+0x16d/0x220
[  447.215057][T14266]  ? __pfx___sys_sendmsg+0x10/0x10
[  447.215075][T14266]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  447.215116][T14266]  ? rcu_is_watching+0x12/0xc0
[  447.215142][T14266]  __do_fast_syscall_32+0x7c/0x300
[  447.215169][T14266]  do_fast_syscall_32+0x32/0x80
[  447.408007][T14266]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  447.410616][T14266] RIP: 0023:0xf70dd579
[  447.412324][T14266] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  447.420008][T14266] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  447.423372][T14266] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080001080
[  447.426798][T14266] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[  447.430161][T14266] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  447.433361][T14266] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  447.436605][T14266] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  447.439807][T14266]  </TASK>
[  447.442295][T14266] Kernel Offset: disabled
[  447.443939][T14266] Rebooting in 86400 seconds..

VM DIAGNOSIS:
20:07:16  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81b08623 RDX=ffffffff8e097a00
RSI=ffffffff81b0862d RDI=0000000000000007 RBP=0000000000000000 RSP=ffffffff8e007e00
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e097a00 R14=ffffffff908241d0 R15=0000000000000000
RIP=ffffffff81b0862f RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809780d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080001080 CR3=00000000661ab000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c000000000 0000000200000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000002 RBX=ffff88802b33a4c0 RCX=000000002a75ece0 RDX=1ffff11005667609
RSI=ffffffff8bf07540 RDI=ffff88802b33b048 RBP=1ffff92000fddec3 RSP=ffffc90007eef590
R8 =353fc60248bec2f6 R9 =0000000000000001 R10=0000000000000000 R11=0000000000000001
R12=00000001000038e1 R13=ffffc90007eef818 R14=ffff88802b33a4c0 R15=ffff88801bbda400
RIP=ffffffff8b5d774a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809790d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008001a000 CR3=00000000281bb000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c000000000 0000000200000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000008dc033 RBX=0000000000000002 RCX=ffffffff8b5d82a9 RDX=0000000000000000
RSI=ffffffff8da2840b RDI=ffffffff8bf075c0 RBP=ffffed1003b5e920 RSP=ffffc9000047fde8
R8 =0000000000000001 R9 =ffffed1005686655 R10=ffff88802b4332ab R11=0000000000000001
R12=0000000000000002 R13=ffff88801daf4900 R14=ffffffff908241d0 R15=0000000000000000
RIP=ffffffff8b5d6d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a0d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055d36eac5f40 CR3=0000000050a93000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=51de88ee1f64eed4 2e7a640e587d4a37 51de88ee1f64eed4 2e7a640e587d4a37 51de88ee1f64eed4 2e7a640e587d4a37 51de88ee1f64eed4 2e7a640e587d4a37
ZMM18=c852633238380efe b9d176415193b6a9 c852633238380efe b9d176415193b6a9 c852633238380efe b9d176415193b6a9 c852633238380efe b9d176415193b6a9
ZMM19=b117000000000000 0000000000000004 b117000000000000 0000000000000003 b117000000000000 0000000000000002 b117000000000000 0000000000000001
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 08001f8803080484 000aa4030002000a a2030602000aa003 0008000a98030008
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000a900304820400 0a8c031002000a8a 030002000a880328 08000a80030a8002
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1f80031f80022090 030008002088030f ffffffff02208003 1808000608002008
ZMM24=aed356faaed356fa aed356faaed356fa aed356faaed356fa aed356faaed356fa aed356faaed356fa aed356faaed356fa aed356faaed356fa aed356faaed356fa
ZMM25=1f6feafc1f6feafc 1f6feafc1f6feafc 1f6feafc1f6feafc 1f6feafc1f6feafc 1f6feafc1f6feafc 1f6feafc1f6feafc 1f6feafc1f6feafc 1f6feafc1f6feafc
ZMM26=e45f17e8e45f17e8 e45f17e8e45f17e8 e45f17e8e45f17e8 e45f17e8e45f17e8 e45f17e8e45f17e8 e45f17e8e45f17e8 e45f17e8e45f17e8 e45f17e8e45f17e8
ZMM27=e05a2161e05a2161 e05a2161e05a2161 e05a2161e05a2161 e05a2161e05a2161 e05a2161e05a2161 e05a2161e05a2161 e05a2161e05a2161 e05a2161e05a2161
ZMM28=000000c0000000bf 000000be000000bd 000000bc000000bb 000000ba000000b9 000000b8000000b7 000000b6000000b5 000000b4000000b3 000000b2000000b1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=a92f0000a92f0000 a92f0000a92f0000 a92f0000a92f0000 a92f0000a92f0000 a92f0000a92f0000 a92f0000a92f0000 a92f0000a92f0000 a92f0000a92f0000
info registers vcpu 3

CPU#3
RAX=0000000000000034 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85269a35 RDI=ffffffff9adc5de0 RBP=ffffffff9adc5da0 RSP=ffffc9000386eaa0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000034 R14=ffffffff9adc5da0 R15=ffffffff852699d0
RIP=ffffffff85269a5f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097b0d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000568a74c0 CR3=0000000022ea9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c000000000 0000000200000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000