last executing test programs:

6m19.717449965s ago: executing program 2 (id=19):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x840, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x18, 0x1, 0x0}, &(0x7f0000000140)=0x40)

6m19.663595989s ago: executing program 2 (id=20):
r0 = openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
write$dsp(r0, &(0x7f00000001c0)='\\', 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x4c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
socket$nl_netfilter(0x10, 0x3, 0xc)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

6m17.463866356s ago: executing program 2 (id=34):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x80, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x44}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x10, 0x6, 0x4d0, 0x320, 0x190, 0x320, 0xc8, 0x190, 0x408, 0x408, 0x408, 0x408, 0x408, 0x6, 0x0, {[{{@ipv6={@local, @ipv4={'\x00', '\xff\xff', @multicast1}, [], [], 'virt_wifi0\x00', 'veth0_to_bond\x00', {}, {}, 0x2c}, 0x0, 0xa4, 0xc8, 0x0, {0x7a00000000000000}}, @HL={0x24}}, {{@ipv6={@loopback, @mcast2, [0x0, 0x0, 0xffffffff], [], 'pimreg\x00', 'veth1_macvtap\x00', {}, {}, 0x0, 0x25, 0x7}, 0x0, 0xa4, 0xc8}, @unspec=@CHECKSUM={0x24}}, {{@ipv6={@mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0x0, 0x0, 0xffffffff, 0xff], [0xffffff00, 0xffffffff, 0xff, 0xff000000], 'veth0_virt_wifi\x00', 'ip6tnl0\x00', {0xff}, {0xff}, 0xff, 0x8, 0x5, 0x22}, 0x0, 0xa4, 0xc8}, @unspec=@CHECKSUM={0x24}}, {{@ipv6={@private2={0xfc, 0x2, '\x00', 0x1}, @private1, [0xffffffff, 0xffffff00, 0xffffffff], [0xff, 0xffffffff, 0x0, 0xff], 'dvmrp1\x00', 'netpci0\x00', {}, {0xff}, 0x0, 0x9, 0x4, 0x13}, 0x0, 0xa4, 0xc8}, @unspec=@CHECKSUM={0x24}}, {{@ipv6={@private1, @loopback, [0xff, 0x0, 0x0, 0xffffff00], [0xffffff00, 0xff000000, 0xffffff00, 0xff], 'bond_slave_0\x00', 'erspan0\x00', {0xff}, {}, 0x2b, 0x3, 0x0, 0x20}, 0x0, 0xa4, 0xe8}, @SNPT={0x44, 'SNPT\x00', 0x0, {@ipv4, @ipv4=@multicast1, 0x80, 0x1}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x52c)
bind$bt_hci(0xffffffffffffffff, &(0x7f00000001c0)={0x1f, 0x1}, 0x6)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=@newtaction={0xf4, 0x30, 0x1, 0x0, 0x0, {}, [{0xe0, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x98, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x54, 0x6, "fc0837ce0ecf6f59418b15917858047d491646d2f6f0592504645c490d58de7326fa43372d12a2b2865e46195a2b56357b37e3145afdeeac88272a5f84c6086440f60f24b5ee00"/80}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, 0x0, &(0x7f0000000280))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b0000001f0000000200000022bf000001000000", @ANYRES32, @ANYBLOB="08000000dd0000000000000000c8d05300000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r5, 0x0, 0xa002a0}, 0x38)
openat$sequencer(0xffffff9c, &(0x7f0000001bc0), 0x88302, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000680), r0)
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000001240)={0x14, r7, 0xd0141dcd7c0ac8e5, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004010}, 0x4000010)

6m14.595762992s ago: executing program 2 (id=47):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_attach_bpf(r1, 0x29, 0x4b, 0x0, 0x4)
r2 = getpgid(0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f00000001c0)='usrquota')
chdir(&(0x7f0000000140)='./file1\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0x80000300, 0x0, 0x0)
quotactl_fd$Q_GETINFO(r5, 0xffffffff80000500, 0x0, &(0x7f00000002c0))
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x10}}, 0x0)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x8, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe4)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x0)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, 0x0)

6m9.571444489s ago: executing program 2 (id=59):
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000040)=@dellink={0x34, 0x11, 0x1, 0x70bd26, 0x5dfdbff, {0x0, 0x0, 0x0, 0x0, 0x42008, 0x40000}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'veth1_vlan\x00'}]}, 0x34}, 0x1, 0x200000000000000, 0x0, 0x240040c4}, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'ipvlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r3], 0x20}, 0x1, 0x0, 0x0, 0x20000050}, 0x30008010)

6m8.434158605s ago: executing program 2 (id=61):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2"], 0x0, 0x96}, 0x28)
openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @multicast}, 0x38, {0x2, 0x2, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)

5m53.320403381s ago: executing program 32 (id=61):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2"], 0x0, 0x96}, 0x28)
openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @multicast}, 0x38, {0x2, 0x2, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)

22.610463579s ago: executing program 4 (id=536):
r0 = io_uring_setup(0xaab, &(0x7f0000000340)={0x0, 0x2c97, 0x1000, 0xfffffffd, 0x17b})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xfffffffd}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x13, &(0x7f0000000880), 0x4)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002e000000180100002020692500000000002020207b1af8ff00000000"], &(0x7f0000000080)='GPL\x00'}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x30, 0x3e, 0x107, 0xfffffffc, 0x10000, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x2e, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0xc, 0x2, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x13}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
close_range(r0, 0xffffffffffffffff, 0x0)

21.036879525s ago: executing program 4 (id=540):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80202, 0x0)
r0 = openat$sndseq(0xffffff9c, &(0x7f0000000140), 0x400)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000400)={0x4, 0x4, 0x1, 'queue0\x00', 0x2})
unlink(&(0x7f0000000000)='./bus/\x00')
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x100, &(0x7f0000000280)=0xfffffffc, 0x0, 0x4)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xe7}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x6}, {0x66, 0x0, 0x0, 0x25702020}}, [@printk={@p, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x1, 0x5, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xffffffff}, {0x56}}], {{0x4, 0x1, 0x2, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x2020000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054)
r7 = syz_usb_connect$cdc_ecm(0x4, 0x89, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x77, 0x1, 0x1, 0x2, 0x80, 0xd, [{{0x9, 0x4, 0x0, 0x5, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0xd99f}, {0xd, 0x24, 0xf, 0x1, 0x2003, 0x5, 0x3, 0x8c}, [@mdlm={0x15, 0x24, 0x12, 0x4}, @network_terminal={0x7, 0x24, 0xa, 0x6, 0x4, 0xe, 0x23}, @acm={0x4, 0x24, 0x2, 0x9}, @mbim={0xc, 0x24, 0x1b, 0x200, 0x7, 0x80, 0x0, 0xffff, 0x7}, @network_terminal={0x7, 0x24, 0xa, 0xd, 0xb, 0x3, 0x9}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x8, 0x9, 0x0, 0x4}}], {{0x9, 0x5, 0x82, 0x2, 0x44, 0x0, 0x3, 0xd3}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x1, 0x7, 0x80}}}}}]}}]}}, &(0x7f0000000280)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x300, 0x9, 0xb, 0x2, 0x8, 0xff}, 0x10, &(0x7f0000000100)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0x0, 0x64, 0x6, 0x7, 0x9, 0x7}]}, 0x1, [{0xb4, &(0x7f0000000140)=ANY=[@ANYRES16]}]})
syz_usb_control_io$cdc_ecm(r7, &(0x7f0000000400)={0xc, &(0x7f00000002c0)={0x0, 0x24, 0xc2, {0xc2, 0x4, "e5033fcb72fe4df3ee1725b8d8867bd13c96d4df0b3cf11c5f00251d572d65fa2866451d27e3ffb4f78a95e7cb51e19297d4b1a4c65cbde1056b3a8d2cb99794691d1d91f1025523fa908d8aeadb2b99240ae02fe21aa8a351f0f3eb18ea17aa1fdb1c430727ace517889c940046e43eebe501b1993c7fd6d9c541913439e259ce66f1e61d380b0a5fe96ab3e75140e05a95f44466cd0aa972fe15d3b302b2fd0a2a089b538d77dc28fe5178c53c96f9a19028b1cd34e0bcdf748036a2bc635f"}}, &(0x7f00000003c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000005c0)={0x10, 0x0, &(0x7f0000000540)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000580)={0x0, 0x8, 0x1, 0x3}})
r8 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r8, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6, "427f4d0561864078b7f952fc7ebbfea1deee001debd532649a2ecf00"}})

20.669037955s ago: executing program 1 (id=541):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000cc0)={'batadv_slave_1\x00'})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000001800dd8d00000000000000000a000000000000060000000008001e0002"], 0x30}}, 0x4090)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000001800efe000000000000000000a00000000000000000000000c00090008000000", @ANYRES32=0x0, @ANYBLOB="14000500"/15], 0x3c}, 0x1, 0x11}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

20.5435717s ago: executing program 1 (id=542):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x24, 0x2c, 0xd27, 0x170bd2b, 0x2, {0x0, 0x0, 0x0, r7, {0x0, 0x10}, {}, {0x8, 0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
close(r5)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$kcm(r4, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r9, 0x42}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000200)="27030200000314000e00003c000300000000ff8400000000000000000000000000000000000085dc9d9839dc1336", 0x2e}], 0x1}, 0x4005)

20.297051719s ago: executing program 3 (id=543):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x56)
sendmmsg$inet6(r0, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f0000003f80)=[{&(0x7f0000000c80)="0b0ec2a1e3fc84788972f461fec27348bd54a57f68a85a0200ad43c367bae5f7bd6c1e1d9017109e232e5bb561d280b32fa2b07a0cd31f1b8b9acdc89d4d5725350a9ec9303e53def89bcb6bb6ea83324927b43749f25be60c4f8707382b8e3062032c28dcccb784fdcfe6f2febd55e05bf1ccb63237c1d1bea4db828a5be79e518cf55a88e130609528b84359e76eee93584aad3f751172c449fb00"/165, 0xa5}, {&(0x7f0000000680)="5f62f632763c84825847145170282f67ba6d5dadf0baf135d503e93a17ee560409202f4c5f0de32b0e53e4d26d04c825d923318fd574b1924b09ebb91d5be30b532a2fb95030c6be2a14ccfbce6eef05ea88d2413dc3fc0ae8a2e071f8764a4843611ae28b340100ddefa8ffed32420677397aa63e880adc56d03d8799429f33741886bd6c4065bba5005d74f67508dc3434165b51bf8f73bf1a7c158d8905e518e8", 0xa2}, {&(0x7f0000000380)="dfd1db04f5eef4b5714a69f5392e27d1b79a961a16fbdc4f01a9e38a1f95f939a209f049ad8d4f9447506fd73cec26b8246758f684013c99b717e119d15432e9d46da8a0c25e7e3771b0b146e56d2fcf8107332acc1c56948171260ed44c97919f70210c914c1098c9ac622d460000ae373480c9d8e590395ea4365569b8ea75ea1a9a181cfa88541804ec97980211c9b7eb2235d6f0b644fd31dda9bc2cc99434e0df4934d0", 0xa6}, {&(0x7f0000000740)="a405df87c6e89abd7ae7e6b8550f9923917c9d38e14a4e9ace3100b34d0056282b7ed43e9c6efe6245152417b33aa8f7231ef5c2928c6284654a2204c4c4f8ffdda3684a967d85159658c07e3a7c75d219403b0be9379f7b017bd850fd4c3a18d59f735980d1520b641a6fc2a58ba15bce382460c95db8299b404b8d0d5821a4604f59cfa04cd0d4496fc41b951e7f8ed2a6ac350002000000000000babffca7484a82e2b3bd3e55b4a6f0153a88f5", 0xaf}, {&(0x7f0000000800)="f76c72c4066a174e1300da0da7d191a618fc5793ff23c6328c6d61df0a2fb72441d4ded25cf7b5f31eb5d65e412665a6177f09ca3ac5cfd751577dec547711dc43b694a601fcb6575547ee6ec2a01c32b65d3429fbb9623a83d457d3ddea9eb90ab14b6b323a9358af0b55cff95844d5b47f6994a72f984e19e961cc00f6e364e141c8", 0x83}, {&(0x7f00000008c0)="4b000ffd096c1b77cd99b1458609c4b82100375ca9411e734cc8e9627df29e9b97a002d7f15ea9f42bd71401384ed6b5772b5c618c35c4aab72b1d515ceada9e64d7a35fd435e98f06243fcd53966c196ff3f47537912a1a5dec7e8e1fbf4543d1a6c80467d6ba3d241e3fd22efa09c638c98b4ce9fbe6d2053fcfa334eaee64efad2d349f048afb2635ae06c05697746fe073ed230c9c7c4643396305424c1c7eaa3ee09891995a607de26be9abcd2b65a4f9093da8a07eea61b1ff21ea3b323b191f95b997cfdface3dc21a664e38896f9f689bc06f4800d5c977102358770b0d8425f098be9383b5e487e7165e847191d5e95233e971edd", 0xf9}, {&(0x7f0000002380)="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", 0xbe8}, {&(0x7f0000002f80)="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", 0xf80}], 0x8}}], 0x1, 0x8800)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x604ab000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000001380)=""/4080, 0xfffffffffffffdcc, 0x0, 0x0, 0xffffffffffffff87}, &(0x7f0000000000)=0x40)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000580)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000004000)=""/4096, 0x1000, 0x1, 0x0}, &(0x7f00000005c0)=0x40)

20.220768256s ago: executing program 3 (id=544):
syz_init_net_socket$rose(0xb, 0x5, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xfffffffd}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x13, &(0x7f0000000880), 0x4)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x104)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002e000000180100002020692500000000002020207b1af8ff00000000"], 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
unlinkat(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x30, 0x3e, 0x107, 0xfffffffc, 0x10000, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x2e, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0xc, 0x2, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x13}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

15.868409481s ago: executing program 1 (id=546):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2bc3f815c59d50a891f56f793f5"], 0x0, 0x96}, 0x28)
r0 = openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet(0x2, 0xa, 0x262)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(r4, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @multicast}, 0x38, {0x2, 0x2, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0x8, 0x720, 0x0, 0x0)
unshare(0x6a040000)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
syz_open_dev$tty20(0xc, 0x4, 0x0)
bind$phonet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

13.318134319s ago: executing program 4 (id=547):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee7, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newnexthop={0x1c, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004880}, 0x0)
r6 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff)
close(r6)
r7 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xff7ffffd}}, {{0xa, 0x4e08, 0x4a3, @local, 0x4f1}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r7, 0x29, 0x30, &(0x7f0000000d40)=ANY=[@ANYBLOB="030000000a004e230000000cff010000000000000000000000000001f8ffffff0000000000000000000000000000000000000000000000000000000000000000a42970d0a2ee3d8700"/102], 0x210)
execveat$binfmt(0xffffffffffffff9c, r4, 0x0, 0x0, 0x0)
mount$9p_virtio(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
r8 = syz_open_dev$sndpcmp(&(0x7f0000001480), 0x0, 0x101000)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r8, 0xc0804124, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x64}]}, &(0x7f0000000080)='syzkaller\x00', 0x5}, 0x94)

12.432561237s ago: executing program 1 (id=549):
r0 = io_uring_setup(0xaab, &(0x7f0000000340)={0x0, 0x2c97, 0x1000, 0xfffffffd, 0x17b})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xfffffffd}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x13, &(0x7f0000000880), 0x4)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002e000000180100002020692500000000002020207b1af8ff00000000"], &(0x7f0000000080)='GPL\x00'}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x30, 0x3e, 0x107, 0xfffffffc, 0x10000, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x2e, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0xc, 0x2, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x13}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
close_range(r0, 0xffffffffffffffff, 0x0)

11.869864363s ago: executing program 0 (id=550):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000cc0)={'batadv_slave_1\x00'})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000001800dd8d00000000000000000a000000000000060000000008001e0002"], 0x30}}, 0x4090)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000001800efe000000000000000000a00000000000000000000000c00090008000000", @ANYRES32=0x0, @ANYBLOB="14000500"/15], 0x3c}, 0x1, 0x11}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

11.787896347s ago: executing program 0 (id=551):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbff, 0x2fdfffffd}, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="090000000600000004000000fc07"], 0x48)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000003c0)="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", 0x2000, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000002480), 0xce4, r3}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1b, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000600), 0x0, 0x3ff, r3, 0x0, 0x100000000000000}, 0x38)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200a8140900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETSET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c0000000a0a0108002b0020000000000200000a0900010073797a30"], 0x2c}, 0x1, 0x0, 0x0, 0x2000c801}, 0x20000080)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB="44000000050000000000000000d8e900000000000900020073797a310000000005000100070000001c0024800c00018008000140acd3ada05079e656da000140e0000002b71a4612e88201b01cd675fa4846229d08000000a2132fe71ca5afb848aaa3f2346a341bd12786c80f2d2d4048"], 0x44}, 0x1, 0x0, 0x0, 0x10040057}, 0x240008c4)
sendmsg$IPSET_CMD_LIST(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)={0x1c, 0x7, 0x6, 0x401, 0x0, 0x0, {0x5, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004055}, 0x48000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xff, 0x7fff7ffc}]})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000040)={0x1d, 0x0, 0x8000000000000003, {}, 0xfd}, 0x18)
r7 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0)
syz_usb_control_io(r7, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

11.081085449s ago: executing program 3 (id=552):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000002000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222}, 0x78)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001040)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r4, &(0x7f00000005c0)="bad330fbc9b55400040000ea0756a85d86dd", 0x5ea, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r3, 0x1, 0xd8, 0x6, @multicast}, 0x14)

10.563864144s ago: executing program 3 (id=553):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2bc3f815c59d50a891f56f793f5"], 0x0, 0x96}, 0x28)
r0 = openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet(0x2, 0xa, 0x262)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(r4, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @multicast}, 0x38, {0x2, 0x2, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0x8, 0x720, 0x0, 0x0)
unshare(0x6a040000)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
syz_open_dev$tty20(0xc, 0x4, 0x0)
bind$phonet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004000000000000f125e9ebb3908735f5e554df73dc9c476b192e28c405"], 0x0, 0x26, 0x0, 0x1}, 0x28)

10.220090361s ago: executing program 4 (id=554):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2bc3f815c59d50a891f56f793f5"], 0x0, 0x96}, 0x28)
r0 = openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet(0x2, 0xa, 0x262)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(r4, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @multicast}, 0x38, {0x2, 0x2, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0x8, 0x720, 0x0, 0x0)
unshare(0x6a040000)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
syz_open_dev$tty20(0xc, 0x4, 0x0)
bind$phonet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004000000000000f125e9ebb3908735f5e554df73dc9c476b192e28c405691a10cda7a54033f59b7144714c945ea248b2bf9deb48222c69b9a9c4f43182558132d9a7c88f04074a9c6fbd6706fe183b38e6"], 0x0, 0x26, 0x0, 0x1}, 0x28)

6.514943473s ago: executing program 0 (id=555):
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e24, @multicast2}, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x87, &(0x7f0000000180)=ANY=[@ANYBLOB="ffff50ad45ffffffffaaaaaaaaaa3386dd6700000100513afffe8800000000000000"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x6, 0x8, 0x8001, 0x0, 0xb3, 0x4, 0xfffffe0000000001, 0x7, 0xffffffff}, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000007c0)=ANY=[], 0x119)
r2 = add_key$user(&(0x7f0000000000), &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000480)="d25a9850a9a91163f76c5357f3bbadf2656e10d77f85d1028e60ab4e45b931e71645d3d636e82cfdeaadb674e1693d4a7de63820fefc4f787e272b122ebbff6884b3de82f8a3df9a2d0b67e46c349917110300b94240185146e52ac1540130161b6534e99e466173af4c775f238fae344b198915446b576be455f251e79f7ec703f937cd8530410f370000000000", 0x8e, 0xfffffffffffffffe)
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r2, r3, r2}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000008000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/10, @ANYRES32], 0x50)
syz_open_dev$sg(&(0x7f0000000000), 0x4, 0x8000)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="11000000040000000400000008"], 0x48)
socketpair(0x2b, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})

6.16320992s ago: executing program 4 (id=556):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2bc3f815c59d50a891f56f793f5"], 0x0, 0x96}, 0x28)
r0 = openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet(0x2, 0xa, 0x262)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(r4, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @multicast}, 0x38, {0x2, 0x2, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0x8, 0x720, 0x0, 0x0)
unshare(0x6a040000)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
syz_open_dev$tty20(0xc, 0x4, 0x0)
bind$phonet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004000000000000f125e9ebb3908735f5e554df73dc9c476b192e28c405691a10cda7a54033f59b7144714c945ea248b2bf9deb48222c69b9a9c4f43182558132d9a7c88f04074a9c6fbd6706fe183b38e6"], 0x0, 0x26, 0x0, 0x1}, 0x28)

5.801900923s ago: executing program 3 (id=557):
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet(0x2, 0x1, 0x100)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='map_files\x00')
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
ioctl$SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
write$dsp(r2, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)

4.804297647s ago: executing program 1 (id=558):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018100000", @ANYRES32=r1, @ANYBLOB="00000000000000007900c81800000000180000000000000000000000000000009500000000000000d50a0000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xfa, &(0x7f0000000700)=""/250}, 0x94)
setsockopt$sock_int(r0, 0x1, 0x1, &(0x7f00000000c0)=0xb, 0x4)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="480000001000010028bd70000000000000000000", @ANYBLOB="742900005f4004de140003007465616d5f736c6176655f310000000014001680100001800c000700ffffffff09000000"], 0x48}, 0x1, 0x0, 0x0, 0x20004011}, 0x200088c4)
bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
listen(r0, 0x0)
r3 = gettid()
capset(&(0x7f0000000200)={0x20080522, r3}, &(0x7f0000000240)={0xfffffff9, 0x3, 0x9, 0x0, 0xffff, 0x9})
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0)
readv(r4, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/234, 0xea}], 0x1)
rt_sigqueueinfo(r3, 0x21, &(0x7f0000000180)={0x33, 0x40000020, 0xfffffffb})

4.327090741s ago: executing program 0 (id=559):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000cc0)={'batadv_slave_1\x00'})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000001800dd8d00000000000000000a000000000000060000000008001e0002"], 0x30}}, 0x4090)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000001800efe000000000000000000a00000000000000000000000c00090008000000", @ANYRES32=0x0, @ANYBLOB="14000500"/18], 0x3c}, 0x1, 0x11}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

4.232619841s ago: executing program 0 (id=560):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2bc3f815c59d50a891f56f793f5"], 0x0, 0x96}, 0x28)
r0 = openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet(0x2, 0xa, 0x262)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(r4, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @multicast}, 0x38, {0x2, 0x2, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000340)='illinois', 0x8)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0x8, 0x720, 0x0, 0x0)
unshare(0x6a040000)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
syz_open_dev$tty20(0xc, 0x4, 0x0)
bind$phonet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004000000000000f125e9ebb3908735f5e554df73dc9c476b192e28c405691a10cda7a54033f59b7144714c945ea248b2bf9deb48222c69b9a9c4f4"], 0x0, 0x26, 0x0, 0x1}, 0x28)

3.24738757s ago: executing program 1 (id=561):
r0 = io_uring_setup(0xaab, &(0x7f0000000340)={0x0, 0x2c97, 0x1000, 0xfffffffd, 0x17b})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xfffffffd}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x13, &(0x7f0000000880), 0x4)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x104)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002e000000180100002020692500000000002020207b1af8ff00000000"], &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r6, 0x0, 0x9, 0x0, &(0x7f0000000000)="77844923fbde9d724b", 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e79"])
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000380)='./file0/file0\x00', 0x81c0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x30, 0x3e, 0x107, 0xfffffffc, 0x10000, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x2e, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0xc, 0x2, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x13}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
close_range(r0, 0xffffffffffffffff, 0x0)

2.946670841s ago: executing program 4 (id=562):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee7, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newnexthop={0x1c, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004880}, 0x0)
r6 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff)
close(r6)
r7 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xff7ffffd}}, {{0xa, 0x4e08, 0x4a3, @local, 0x4f1}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r7, 0x29, 0x30, &(0x7f0000000d40)=ANY=[@ANYBLOB="030000000a004e230000000cff010000000000000000000000000001f8ffffff0000000000000000000000000000000000000000000000000000000000000000a42970d0a2ee3d8700"/102], 0x210)
execveat$binfmt(0xffffffffffffff9c, r4, 0x0, 0x0, 0x0)
mount$9p_virtio(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
r8 = syz_open_dev$sndpcmp(&(0x7f0000001480), 0x0, 0x101000)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r8, 0xc0804124, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x64}]}, &(0x7f0000000080)='syzkaller\x00', 0x5}, 0x94)

486.922394ms ago: executing program 0 (id=563):
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e24, @multicast2}, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x87, &(0x7f0000000180)=ANY=[@ANYBLOB="ffff50ad45ffffffffaaaaaaaaaa3386dd6700000100513afffe8800000000000000"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x6, 0x8, 0x8001, 0x0, 0xb3, 0x4, 0xfffffe0000000001, 0x7, 0xffffffff}, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000007c0)=ANY=[], 0x119)
r2 = add_key$user(&(0x7f0000000000), &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000480)="d25a9850a9a91163f76c5357f3bbadf2656e10d77f85d1028e60ab4e45b931e71645d3d636e82cfdeaadb674e1693d4a7de63820fefc4f787e272b122ebbff6884b3de82f8a3df9a2d0b67e46c349917110300b94240185146e52ac1540130161b6534e99e466173af4c775f238fae344b198915446b576be455f251e79f7ec703f937cd8530410f370000000000", 0x8e, 0xfffffffffffffffe)
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r2, r3, r2}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000008000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/10, @ANYRES32], 0x50)
syz_open_dev$sg(&(0x7f0000000000), 0x4, 0x8000)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="11000000040000000400000008"], 0x48)
socketpair(0x2b, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
syz_emit_ethernet(0x141, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaabba6dde655713788a84d008100300086dd61ab279c0103110000000000000000000000ffffac141433fe8000000000000000000000000000aa4e244e200103907801080000c1dbb85dd2e710187de2755a5a57d363edcc98333396facdd578da8e3397d001e80760a98182e1710242074ac83b3c45d4a8b083f79845a644998482b934a5e5a952841f0bc8a73e29e69415f57196bae21959e6bff3cb8c187d29ca1836a5b5b472220c5347b89e5bebc5822ae74b2c95ecc9a2922be9b0f9c175a65288afe257b388af0d64993787f5e69bd9519d85251666398c780426ce186e030c45e89cc798819a217381dcf681cc4f3de35b861da7c42ea80082e41a9f3e3c6459a2749875ab86bc23192827a66dbeb8fcee5cd34f8bbd91ef27bb0574bba8b42193f0034f9f34bc9b77de6e6e59071b5d90e441ec4ee4"], 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc2c45512, &(0x7f0000000a00)={{0x8, 0x0, 0x0, 0x8, 'syz1\x00'}, 0x0, [0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800]})

0s ago: executing program 3 (id=564):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80202, 0x0)
r0 = openat$sndseq(0xffffff9c, &(0x7f0000000140), 0x400)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000400)={0x4, 0x4, 0x1, 'queue0\x00', 0x2})
unlink(&(0x7f0000000000)='./bus/\x00')
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x100, &(0x7f0000000280)=0xfffffffc, 0x0, 0x4)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xe7}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x6}, {0x66, 0x0, 0x0, 0x25702020}}, [@printk={@p, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x1, 0x5, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xffffffff}, {0x56}}], {{0x4, 0x1, 0x2, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000040))
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x2020000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x13}}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054)
r6 = syz_usb_connect$cdc_ecm(0x4, 0x89, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x77, 0x1, 0x1, 0x2, 0x80, 0xd, [{{0x9, 0x4, 0x0, 0x5, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0xd99f}, {0xd, 0x24, 0xf, 0x1, 0x2003, 0x5, 0x3, 0x8c}, [@mdlm={0x15, 0x24, 0x12, 0x4}, @network_terminal={0x7, 0x24, 0xa, 0x6, 0x4, 0xe, 0x23}, @acm={0x4, 0x24, 0x2, 0x9}, @mbim={0xc, 0x24, 0x1b, 0x200, 0x7, 0x80, 0x0, 0xffff, 0x7}, @network_terminal={0x7, 0x24, 0xa, 0xd, 0xb, 0x3, 0x9}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x8, 0x9, 0x0, 0x4}}], {{0x9, 0x5, 0x82, 0x2, 0x44, 0x0, 0x3, 0xd3}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x1, 0x7, 0x80}}}}}]}}]}}, &(0x7f0000000280)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x300, 0x9, 0xb, 0x2, 0x8, 0xff}, 0x10, &(0x7f0000000100)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0x0, 0x64, 0x6, 0x7, 0x9, 0x7}]}, 0x1, [{0xb4, &(0x7f0000000140)=ANY=[@ANYRES16]}]})
syz_usb_control_io$cdc_ecm(r6, &(0x7f0000000400)={0xc, &(0x7f00000002c0)={0x0, 0x24, 0xc2, {0xc2, 0x4, "e5033fcb72fe4df3ee1725b8d8867bd13c96d4df0b3cf11c5f00251d572d65fa2866451d27e3ffb4f78a95e7cb51e19297d4b1a4c65cbde1056b3a8d2cb99794691d1d91f1025523fa908d8aeadb2b99240ae02fe21aa8a351f0f3eb18ea17aa1fdb1c430727ace517889c940046e43eebe501b1993c7fd6d9c541913439e259ce66f1e61d380b0a5fe96ab3e75140e05a95f44466cd0aa972fe15d3b302b2fd0a2a089b538d77dc28fe5178c53c96f9a19028b1cd34e0bcdf748036a2bc635f"}}, &(0x7f00000003c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000005c0)={0x10, 0x0, &(0x7f0000000540)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000580)={0x0, 0x8, 0x1, 0x3}})
r7 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r7, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6, "427f4d0561864078b7f952fc7ebbfea1deee001debd532649a2ecf00"}})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:27679' (ED25519) to the list of known hosts.
[   49.146299][ T5849] cgroup: Unknown subsys name 'net'
[   49.334335][ T5849] cgroup: Unknown subsys name 'cpuset'
[   49.338313][ T5849] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   50.414907][ T5849] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   54.349096][   T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   54.350051][ T5947] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   54.352806][ T5949] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   54.353619][   T63] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   54.356324][ T5947] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   54.356974][ T5948] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   54.357675][ T5948] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   54.358614][ T5948] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   54.359149][ T5948] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   54.361793][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   54.362744][ T5947] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   54.363043][ T5947] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   54.363466][ T5947] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   54.363771][ T5947] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   54.364941][ T5946] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   54.372151][ T5950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   54.383143][ T5949] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   54.384597][ T5950] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   54.389512][ T5949] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   54.393279][ T5950] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   54.729064][ T5933] chnl_net:caif_netlink_parms(): no params data found
[   54.783882][ T5934] chnl_net:caif_netlink_parms(): no params data found
[   54.801157][ T5944] chnl_net:caif_netlink_parms(): no params data found
[   54.898289][ T5933] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.901052][ T5933] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.906267][ T5933] bridge_slave_0: entered allmulticast mode
[   54.909118][ T5933] bridge_slave_0: entered promiscuous mode
[   54.913426][ T5933] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.915857][ T5933] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.918597][ T5933] bridge_slave_1: entered allmulticast mode
[   54.921387][ T5933] bridge_slave_1: entered promiscuous mode
[   54.962536][ T5934] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.964988][ T5934] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.967455][ T5934] bridge_slave_0: entered allmulticast mode
[   54.970194][ T5934] bridge_slave_0: entered promiscuous mode
[   54.979995][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.982426][ T5934] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.984988][ T5934] bridge_slave_1: entered allmulticast mode
[   54.988016][ T5934] bridge_slave_1: entered promiscuous mode
[   55.014865][ T5933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.025969][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.028332][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.031371][ T5944] bridge_slave_0: entered allmulticast mode
[   55.035724][ T5944] bridge_slave_0: entered promiscuous mode
[   55.039711][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.042914][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.045918][ T5944] bridge_slave_1: entered allmulticast mode
[   55.048643][ T5944] bridge_slave_1: entered promiscuous mode
[   55.054030][ T5933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.071991][ T5939] chnl_net:caif_netlink_parms(): no params data found
[   55.109215][ T5934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.132495][ T5933] team0: Port device team_slave_0 added
[   55.137696][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.143774][ T5934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.154027][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.158701][ T5933] team0: Port device team_slave_1 added
[   55.230957][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.233801][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.243320][ T5933] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.251008][ T5944] team0: Port device team_slave_0 added
[   55.255712][ T5944] team0: Port device team_slave_1 added
[   55.270793][ T5934] team0: Port device team_slave_0 added
[   55.275644][ T5934] team0: Port device team_slave_1 added
[   55.278522][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.281637][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.291095][ T5933] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.316229][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.319054][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.321555][ T5939] bridge_slave_0: entered allmulticast mode
[   55.324845][ T5939] bridge_slave_0: entered promiscuous mode
[   55.331946][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.334147][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.342531][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.353430][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.355759][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.364558][ T5934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.368345][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.370702][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.373344][ T5939] bridge_slave_1: entered allmulticast mode
[   55.376610][ T5939] bridge_slave_1: entered promiscuous mode
[   55.396085][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.398775][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.407471][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.411612][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.413911][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.422630][ T5934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.446737][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.451402][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.486908][ T5939] team0: Port device team_slave_0 added
[   55.494531][ T5933] hsr_slave_0: entered promiscuous mode
[   55.497812][ T5933] hsr_slave_1: entered promiscuous mode
[   55.525917][ T5939] team0: Port device team_slave_1 added
[   55.537379][ T5944] hsr_slave_0: entered promiscuous mode
[   55.539868][ T5944] hsr_slave_1: entered promiscuous mode
[   55.542248][ T5944] debugfs: 'hsr0' already exists in 'hsr'
[   55.544220][ T5944] Cannot create hsr debugfs directory
[   55.550955][ T5934] hsr_slave_0: entered promiscuous mode
[   55.554145][ T5934] hsr_slave_1: entered promiscuous mode
[   55.557014][ T5934] debugfs: 'hsr0' already exists in 'hsr'
[   55.559365][ T5934] Cannot create hsr debugfs directory
[   55.596246][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.598728][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.609146][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.627138][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.630005][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   55.640586][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.745922][ T5939] hsr_slave_0: entered promiscuous mode
[   55.748447][ T5939] hsr_slave_1: entered promiscuous mode
[   55.751307][ T5939] debugfs: 'hsr0' already exists in 'hsr'
[   55.753813][ T5939] Cannot create hsr debugfs directory
[   55.957457][ T5934] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   55.964065][ T5934] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   55.977006][ T5934] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   55.982393][ T5934] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   56.009758][ T5933] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   56.022947][ T5933] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   56.038134][ T5933] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   56.043887][ T5933] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   56.103974][ T5944] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.108914][ T5944] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.113380][ T5944] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.118288][ T5944] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.216777][ T5939] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   56.222886][ T5939] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   56.229487][ T5939] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.236610][ T5939] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.266227][ T5934] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.290457][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.317264][ T5934] 8021q: adding VLAN 0 to HW filter on device team0
[   56.324815][ T5933] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.337467][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.340645][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.346810][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.349853][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.361847][ T5933] 8021q: adding VLAN 0 to HW filter on device team0
[   56.402556][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.405645][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.413460][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   56.420130][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.422441][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.422536][ T5950] Bluetooth: hci2: command tx timeout
[   56.425414][ T5940] Bluetooth: hci0: command tx timeout
[   56.426905][ T5291] Bluetooth: hci3: command tx timeout
[   56.426954][ T5949] Bluetooth: hci1: command tx timeout
[   56.449066][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.452035][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.458094][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.461136][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.476055][ T5934] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.544110][ T5944] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.558583][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.587739][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[   56.598598][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.601798][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.618387][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.621568][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.654428][ T5934] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.728895][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.740283][ T5933] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.762097][ T5934] veth0_vlan: entered promiscuous mode
[   56.772777][ T5934] veth1_vlan: entered promiscuous mode
[   56.808735][ T5934] veth0_macvtap: entered promiscuous mode
[   56.817297][ T5944] veth0_vlan: entered promiscuous mode
[   56.822791][ T5934] veth1_macvtap: entered promiscuous mode
[   56.828227][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.838057][ T5944] veth1_vlan: entered promiscuous mode
[   56.855056][ T5933] veth0_vlan: entered promiscuous mode
[   56.865309][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.871419][ T5933] veth1_vlan: entered promiscuous mode
[   56.879553][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.889650][ T5944] veth0_macvtap: entered promiscuous mode
[   56.896620][ T5944] veth1_macvtap: entered promiscuous mode
[   56.909856][  T154] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.913466][  T154] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.925402][  T154] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.928340][  T154] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.956549][ T5933] veth0_macvtap: entered promiscuous mode
[   56.968368][ T5939] veth0_vlan: entered promiscuous mode
[   56.973391][ T5933] veth1_macvtap: entered promiscuous mode
[   56.987371][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.997878][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.000446][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.005149][ T5939] veth1_vlan: entered promiscuous mode
[   57.014943][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.022438][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.046846][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.070205][  T154] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.075260][  T154] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.095936][  T154] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.098688][  T154] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.103055][  T118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.106836][  T118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.113903][  T154] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.119387][ T5939] veth0_macvtap: entered promiscuous mode
[   57.123011][  T154] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.125928][  T154] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.134268][  T154] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.146129][ T5934] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   57.155668][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.158316][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.162571][ T5939] veth1_macvtap: entered promiscuous mode
[   57.202858][  T118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.211511][  T118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.217183][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.218981][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.225588][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.261138][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.267785][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.271939][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.290829][  T154] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.297878][  T154] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.324362][  T154] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.327260][  T154] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.504496][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.511190][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.513506][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.514478][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.641887][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.762058][   T29] usb 5-1: new low-speed USB device number 2 using dummy_hcd
[   57.775891][ T6038] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   57.901769][   T29] usb 5-1: device descriptor read/64, error -71
[   58.151409][ T6045] syz.1.7 uses obsolete (PF_INET,SOCK_PACKET)
[   58.294006][ T6047] capability: warning: `syz.1.7' uses 32-bit capabilities (legacy support in use)
[   58.371978][   T29] usb 5-1: new low-speed USB device number 3 using dummy_hcd
[   58.495756][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.502112][ T5291] Bluetooth: hci1: command tx timeout
[   58.504285][ T5291] Bluetooth: hci2: command tx timeout
[   58.506940][ T5950] Bluetooth: hci3: command tx timeout
[   58.510170][ T5940] Bluetooth: hci0: command tx timeout
[   58.532649][   T29] usb 5-1: device descriptor read/64, error -71
[   58.561860][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.566081][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.652126][   T29] usb usb5-port1: attempt power cycle
[   58.856783][ T6039] netlink: 'syz.2.6': attribute type 2 has an invalid length.
[   59.128068][   T29] usb 5-1: new low-speed USB device number 4 using dummy_hcd
[   59.151526][   T29] usb 5-1: device descriptor read/8, error -71
[   59.441571][   T29] usb 5-1: new low-speed USB device number 5 using dummy_hcd
[   59.462923][   T29] usb 5-1: device descriptor read/8, error -71
[   59.582566][   T29] usb usb5-port1: unable to enumerate USB device
[   59.774936][ T6053] netlink: 'syz.3.8': attribute type 2 has an invalid length.
[   60.610130][ T5949] Bluetooth: hci0: command tx timeout
[   60.612436][ T5949] Bluetooth: hci3: command tx timeout
[   60.614354][ T5949] Bluetooth: hci1: command tx timeout
[   60.616197][ T5949] Bluetooth: hci2: command tx timeout
[   62.140077][ T6071] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14'.
[   62.151024][  T959] IPVS: starting estimator thread 0...
[   62.219222][ T6073] input: syz1 as /devices/virtual/input/input5
[   62.237754][ T6077] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15'.
[   62.249706][ T6077] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   62.252489][ T6077] IPv6: NLM_F_CREATE should be set when creating new route
[   62.257589][ T6077] Zero length message leads to an empty skb
[   62.264064][ T6072] IPVS: using max 28 ests per chain, 67200 per kthread
[   62.352818][ T6083] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18'.
[   62.396617][ T6081] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17'.
[   62.549871][ T6099] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   62.553120][ T6099] IPv6: NLM_F_CREATE should be set when creating new route
[   62.737378][ T6102] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input6
[   62.801625][ T5940] Bluetooth: hci2: command tx timeout
[   62.804173][ T5940] Bluetooth: hci1: command tx timeout
[   62.811699][ T5940] Bluetooth: hci3: command tx timeout
[   62.814130][ T5940] Bluetooth: hci0: command tx timeout
[   62.862298][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   62.866860][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   63.000374][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   63.003386][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   63.221669][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   63.243218][ T6109] netlink: 4 bytes leftover after parsing attributes in process `syz.1.26'.
[   63.364369][ T6111] syzkaller0: entered promiscuous mode
[   63.366702][ T6111] syzkaller0: entered allmulticast mode
[   63.372200][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   64.504595][ T6085] Set syz1 is full, maxelem 65536 reached
[   64.544249][ T6161] netlink: 8 bytes leftover after parsing attributes in process `syz.1.32'.
[   64.576520][ T6172] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   64.672440][ T6169] netlink: 4 bytes leftover after parsing attributes in process `syz.3.33'.
[   64.806147][ T6178] syzkaller0: entered promiscuous mode
[   64.808634][ T6178] syzkaller0: entered allmulticast mode
[   65.031187][ T6183] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   65.036432][ T6183] netlink: 4 bytes leftover after parsing attributes in process `syz.3.37'.
[   65.332249][ T6199] netlink: 'syz.1.41': attribute type 72 has an invalid length.
[   65.335455][ T6199] netlink: 56 bytes leftover after parsing attributes in process `syz.1.41'.
[   65.388891][ T6193] syzkaller0: entered promiscuous mode
[   65.391265][ T6193] syzkaller0: entered allmulticast mode
[   66.227364][ T6214] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input7
[   67.014840][ T6222] syzkaller0: entered promiscuous mode
[   67.081331][ T6222] syzkaller0: entered allmulticast mode
[   67.128081][ T6233] netlink: 4 bytes leftover after parsing attributes in process `syz.3.46'.
[   67.732161][ T6241] netlink: 4 bytes leftover after parsing attributes in process `syz.3.48'.
[   67.976728][ T6246] netlink: 56 bytes leftover after parsing attributes in process `syz.1.50'.
[   68.874676][ T6263] netlink: 4 bytes leftover after parsing attributes in process `syz.0.54'.
[   68.882600][ T6030] IPVS: starting estimator thread 0...
[   69.121606][ T6264] IPVS: using max 30 ests per chain, 72000 per kthread
[   69.243661][ T6272] bridge0: port 3(syz_tun) entered blocking state
[   69.247953][ T6272] bridge0: port 3(syz_tun) entered disabled state
[   69.292261][ T6272] syz_tun: entered allmulticast mode
[   69.298920][ T6272] syz_tun: entered promiscuous mode
[   69.302231][ T6272] bridge0: port 3(syz_tun) entered blocking state
[   69.326218][ T6272] bridge0: port 3(syz_tun) entered forwarding state
[   70.134695][ T6300] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input8
[   72.548603][ T6321] syzkaller0: entered promiscuous mode
[   72.567663][ T6321] syzkaller0: entered allmulticast mode
[   72.691835][ T6324] netlink: 'syz.1.57': attribute type 2 has an invalid length.
[   73.454741][ T6331] netlink: 4 bytes leftover after parsing attributes in process `syz.0.60'.
[   74.150517][ T6339] netlink: 4 bytes leftover after parsing attributes in process `syz.1.63'.
[   74.390369][ T6342] bridge0: port 3(syz_tun) entered blocking state
[   74.426936][ T6342] bridge0: port 3(syz_tun) entered disabled state
[   74.436343][ T6342] syz_tun: entered allmulticast mode
[   74.448525][ T6342] syz_tun: entered promiscuous mode
[   74.452859][ T6342] bridge0: port 3(syz_tun) entered blocking state
[   74.458540][ T6342] bridge0: port 3(syz_tun) entered forwarding state
[   75.962219][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[   75.967196][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[   80.866754][ T6364] process 'syz.0.69' launched './file1' with NULL argv: empty string added
[   82.011696][ T6369] netlink: 32 bytes leftover after parsing attributes in process `syz.3.71'.
[   82.413457][ T6373] netlink: 4 bytes leftover after parsing attributes in process `syz.3.72'.
[   82.438840][ T6372] netlink: 4 bytes leftover after parsing attributes in process `syz.1.73'.
[   82.631332][ T1329] IPVS: starting estimator thread 0...
[   82.768331][ T6377] bridge0: port 3(syz_tun) entered blocking state
[   82.791631][ T6375] IPVS: using max 28 ests per chain, 67200 per kthread
[   82.813415][ T6377] bridge0: port 3(syz_tun) entered disabled state
[   82.841741][ T6377] syz_tun: entered allmulticast mode
[   82.845774][ T6377] syz_tun: entered promiscuous mode
[   82.848994][ T6377] bridge0: port 3(syz_tun) entered blocking state
[   82.852878][ T6377] bridge0: port 3(syz_tun) entered forwarding state
[   83.462006][ T6383] netlink: set zone limit has 4 unknown bytes
[   83.840012][ T6388] netlink: 24 bytes leftover after parsing attributes in process `syz.3.76'.
[   84.151688][ T6066] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   84.371722][ T6066] usb 8-1: Using ep0 maxpacket: 8
[   84.429794][ T6066] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   84.437765][ T6066] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   84.458341][ T6066] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[   84.471346][ T6066] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   84.486086][ T6066] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   84.490437][ T6066] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.017133][ T6066] usb 8-1: GET_CAPABILITIES returned 0
[   85.020968][ T6066] usbtmc 8-1:16.0: can't read capabilities
[   85.067313][ T6400] netlink: 32 bytes leftover after parsing attributes in process `syz.0.80'.
[   85.742851][ T6395] netlink: 'syz.1.78': attribute type 2 has an invalid length.
[   85.972130][ T6406] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input9
[   86.746546][   T34] cfg80211: failed to load regulatory.db
[   88.651684][ T6030] usb 8-1: USB disconnect, device number 2
[   88.939156][ T6416] syzkaller0: entered promiscuous mode
[   88.943508][ T6416] syzkaller0: entered allmulticast mode
[   89.093658][ T5940] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   89.123013][ T5940] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   89.144132][ T5940] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   89.152882][ T5940] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   89.175831][ T5940] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   89.180507][ T6420] netlink: 4 bytes leftover after parsing attributes in process `syz.1.82'.
[   89.529034][ T6424] syzkaller0: entered promiscuous mode
[   89.555812][ T6424] syzkaller0: entered allmulticast mode
[   89.863842][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.102164][ T6445] netlink: 4 bytes leftover after parsing attributes in process `syz.3.89'.
[   90.430533][ T6454] netlink: 12 bytes leftover after parsing attributes in process `syz.0.91'.
[   90.510209][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.040100][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.301745][ T5940] Bluetooth: hci4: command tx timeout
[   91.306026][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.370242][ T6417] chnl_net:caif_netlink_parms(): no params data found
[   91.651764][ T6417] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.655122][ T6417] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.666993][ T6417] bridge_slave_0: entered allmulticast mode
[   91.671845][ T6417] bridge_slave_0: entered promiscuous mode
[   91.678992][ T6417] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.684290][ T6417] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.690201][ T6417] bridge_slave_1: entered allmulticast mode
[   91.696976][ T6417] bridge_slave_1: entered promiscuous mode
[   91.813089][ T6417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.867660][ T6417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.018222][   T12] bridge_slave_1: left allmulticast mode
[   92.021402][   T12] bridge_slave_1: left promiscuous mode
[   92.029958][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.148695][   T12] bridge_slave_0: left allmulticast mode
[   92.153443][   T12] bridge_slave_0: left promiscuous mode
[   92.156150][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.488245][ T6513] netlink: 'syz.0.92': attribute type 2 has an invalid length.
[   92.694645][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   92.717182][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   92.737699][   T12] bond0 (unregistering): Released all slaves
[   92.889309][ T6417] team0: Port device team_slave_0 added
[   92.894868][ T6417] team0: Port device team_slave_1 added
[   92.966918][ T6506] syzkaller0: entered promiscuous mode
[   92.969594][ T6506] syzkaller0: entered allmulticast mode
[   93.369137][ T6417] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.372264][ T6417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.384850][ T6417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.393469][ T6417] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.397123][ T6417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.411725][ T6417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.417460][ T5940] Bluetooth: hci4: command tx timeout
[   93.679341][ T6517] syzkaller0: entered promiscuous mode
[   93.696728][ T6517] syzkaller0: entered allmulticast mode
[   93.785070][ T6417] hsr_slave_0: entered promiscuous mode
[   93.812000][ T6417] hsr_slave_1: entered promiscuous mode
[   93.815516][ T6417] debugfs: 'hsr0' already exists in 'hsr'
[   93.830010][ T6417] Cannot create hsr debugfs directory
[   94.509011][ T6537] netlink: 12 bytes leftover after parsing attributes in process `syz.0.101'.
[   94.577055][   T12] hsr_slave_0: left promiscuous mode
[   94.630962][   T12] hsr_slave_1: left promiscuous mode
[   94.655999][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   94.658876][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   94.671183][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   94.677271][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   94.790236][   T12] veth1_macvtap: left promiscuous mode
[   94.795411][   T12] veth0_macvtap: left promiscuous mode
[   94.914007][ T6542] netlink: 'syz.1.100': attribute type 2 has an invalid length.
[   95.292078][   T12] team0 (unregistering): Port device team_slave_1 removed
[   95.328060][   T12] team0 (unregistering): Port device team_slave_0 removed
[   95.489047][ T5940] Bluetooth: hci4: command tx timeout
[   96.310055][ T6417] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   96.449060][ T6417] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   96.574349][ T6417] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   96.940102][ T6564] syzkaller0: entered promiscuous mode
[   96.944746][ T6564] syzkaller0: entered allmulticast mode
[   97.031761][ T6417] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   97.541680][ T5940] Bluetooth: hci4: command tx timeout
[   97.816177][ T6417] 8021q: adding VLAN 0 to HW filter on device bond0
[   97.849072][ T6417] 8021q: adding VLAN 0 to HW filter on device team0
[   97.859921][ T6314] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.887861][ T6314] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.167006][ T6315] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.171294][ T6315] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.122750][ T6598] syzkaller0: entered promiscuous mode
[   99.142694][ T6598] syzkaller0: entered allmulticast mode
[   99.244167][ T6417] 8021q: adding VLAN 0 to HW filter on device batadv0
[  100.426462][ T6605] netlink: 12 bytes leftover after parsing attributes in process `syz.3.110'.
[  105.162283][ T6417] veth0_vlan: entered promiscuous mode
[  105.197494][ T6417] veth1_vlan: entered promiscuous mode
[  105.223636][ T6417] veth0_macvtap: entered promiscuous mode
[  105.230522][ T6417] veth1_macvtap: entered promiscuous mode
[  105.264636][ T6417] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.276444][ T6417] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.398764][ T1156] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.414641][ T1156] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.419093][ T1156] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.457834][ T1156] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.652519][ T1156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.657603][ T1156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.925948][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.930233][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.942682][ T6647] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  107.949491][ T6647] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  107.954236][ T6647] vhci_hcd vhci_hcd.0: Device attached
[  108.331600][   T60] usb 46-1: SetAddress Request (2) to port 0
[  108.335043][   T60] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  108.485069][ T6655] vhci_hcd: connection reset by peer
[  108.489441][ T1156] vhci_hcd vhci_hcd.4: stop threads
[  108.494082][ T1156] vhci_hcd vhci_hcd.4: release socket
[  108.497963][ T1156] vhci_hcd vhci_hcd.4: disconnect device
[  108.859378][ T6665] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input10
[  109.617984][ T6675] netlink: 12 bytes leftover after parsing attributes in process `syz.1.122'.
[  110.992814][ T6685] netlink: 4 bytes leftover after parsing attributes in process `syz.4.126'.
[  111.092628][ T6618] IPVS: starting estimator thread 0...
[  111.241630][ T6687] IPVS: using max 30 ests per chain, 72000 per kthread
[  111.896336][ T6694] netlink: 'syz.1.124': attribute type 2 has an invalid length.
[  112.581399][ T6715] netlink: 4 bytes leftover after parsing attributes in process `syz.0.129'.
[  113.394689][   T60] usb 46-1: device descriptor read/8, error -110
[  113.509674][ T6729] netlink: 4 bytes leftover after parsing attributes in process `syz.0.133'.
[  113.802322][   T60] usb usb46-port1: attempt power cycle
[  113.932444][ T6731] netlink: 24 bytes leftover after parsing attributes in process `syz.1.132'.
[  114.262477][ T6736] syzkaller0: entered promiscuous mode
[  114.267848][ T6736] syzkaller0: entered allmulticast mode
[  114.348603][ T6618] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  114.452190][   T60] usb usb46-port1: unable to enumerate USB device
[  114.578799][ T6618] usb 6-1: Using ep0 maxpacket: 8
[  114.624309][ T6618] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  114.629327][ T6618] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  114.634211][ T6618] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  114.661616][ T6618] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  114.674221][ T6618] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  114.679060][ T6618] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.923506][ T6618] usb 6-1: GET_CAPABILITIES returned 0
[  114.926305][ T6618] usbtmc 6-1:16.0: can't read capabilities
[  115.259398][ T6753] netlink: 4 bytes leftover after parsing attributes in process `syz.0.135'.
[  116.491743][   T40] audit: type=1326 audit(1771307134.474:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6756 comm="syz.4.136" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709ef6c code=0x0
[  116.715378][ T6768] batman_adv: batadv0: Adding interface: gretap1
[  116.722876][ T6768] batman_adv: batadv0: Interface activated: gretap1
[  117.961721][ T6618] usb 6-1: USB disconnect, device number 2
[  119.055332][ T6787] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  119.059445][ T6787] IPv6: NLM_F_CREATE should be set when creating new route
[  119.481902][ T6787] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.486660][ T6787] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.189679][ T6787] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  121.242711][ T6787] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  124.451861][ T6795] batman_adv: batadv0: Adding interface: gretap1
[  124.487065][ T6795] batman_adv: batadv0: Interface activated: gretap1
[  124.827104][ T6805] syzkaller0: entered promiscuous mode
[  124.830395][ T6805] syzkaller0: entered allmulticast mode
[  124.845033][  T154] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  125.384027][  T154] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  125.402665][  T154] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  125.406573][  T154] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  129.524806][ T6865] syzkaller0: entered promiscuous mode
[  129.528202][ T6865] syzkaller0: entered allmulticast mode
[  129.788300][ T6874] netlink: 4 bytes leftover after parsing attributes in process `syz.0.156'.
[  129.858068][ T6872] netlink: set zone limit has 4 unknown bytes
[  130.233956][ T6881] netlink: 'syz.3.154': attribute type 2 has an invalid length.
[  132.833507][ T6890] netlink: 12 bytes leftover after parsing attributes in process `syz.1.158'.
[  133.225090][ T1329] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  133.391555][ T1329] usb 6-1: Using ep0 maxpacket: 8
[  133.426700][ T1329] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  133.453801][ T1329] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  133.457795][ T1329] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  133.495318][ T1329] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  133.503309][ T1329] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  133.508424][ T1329] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.799317][ T1329] usb 6-1: GET_CAPABILITIES returned 0
[  133.846346][ T1329] usbtmc 6-1:16.0: can't read capabilities
[  135.592677][ T6019] usb 6-1: USB disconnect, device number 3
[  137.402420][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  137.405172][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  138.763951][ T6914] netlink: 4 bytes leftover after parsing attributes in process `syz.1.165'.
[  139.019474][ T6921] netlink: 8 bytes leftover after parsing attributes in process `syz.0.166'.
[  140.664606][ T6936] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input11
[  142.972817][ T6943] netlink: 12 bytes leftover after parsing attributes in process `syz.4.169'.
[  143.104768][ T6947] netlink: 48 bytes leftover after parsing attributes in process `syz.3.171'.
[  144.161319][ T6958] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input12
[  144.777354][ T6971] netlink: 'syz.3.173': attribute type 2 has an invalid length.
[  144.982339][ T6972] Cache volume key already in use (9p,syz,)
[  145.059503][ T6974] netlink: 'syz.4.172': attribute type 2 has an invalid length.
[  148.272246][ T6991] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input13
[  148.808267][ T7001] netlink: 4 bytes leftover after parsing attributes in process `syz.0.181'.
[  151.926761][ T7012] syzkaller0: entered promiscuous mode
[  151.934812][ T7012] syzkaller0: entered allmulticast mode
[  152.622415][ T7024] netlink: 8 bytes leftover after parsing attributes in process `syz.1.186'.
[  152.719049][ T7027] netlink: 28 bytes leftover after parsing attributes in process `syz.4.188'.
[  153.141759][ T7029] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input14
[  156.423813][ T7051] netlink: 'syz.4.190': attribute type 2 has an invalid length.
[  156.434276][ T7050] input: syz1 as /devices/virtual/input/input15
[  156.935251][ T7044] 9pnet_virtio: no channels available for device syz
[  160.733087][ T7068] netlink: 12 bytes leftover after parsing attributes in process `syz.0.195'.
[  160.970297][ T7072] netlink: 48 bytes leftover after parsing attributes in process `syz.1.198'.
[  161.364960][ T7077] netlink: 28 bytes leftover after parsing attributes in process `syz.1.199'.
[  161.382932][ T6066] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  161.562068][ T6066] usb 5-1: Using ep0 maxpacket: 8
[  161.569441][ T6066] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  161.575333][ T6066] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  161.579853][ T6066] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  161.586025][ T6066] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  161.594762][ T6066] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  161.600151][ T6066] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.835870][ T7091] netlink: 'syz.4.197': attribute type 2 has an invalid length.
[  161.854599][ T7090] input: syz1 as /devices/virtual/input/input16
[  161.879386][ T6066] usb 5-1: GET_CAPABILITIES returned 0
[  162.091651][ T6066] usbtmc 5-1:16.0: can't read capabilities
[  163.232388][ T7099] netlink: 'syz.3.201': attribute type 2 has an invalid length.
[  163.611269][ T6618] usb 5-1: USB disconnect, device number 6
[  167.787766][ T7126] netlink: 28 bytes leftover after parsing attributes in process `syz.3.210'.
[  167.829858][ T7128] input: syz1 as /devices/virtual/input/input17
[  168.928016][ T7134] netlink: 20 bytes leftover after parsing attributes in process `syz.0.214'.
[  168.956550][ T7134] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  168.972362][ T7134] IPv6: NLM_F_CREATE should be set when creating new route
[  169.177323][ T7134] bridge0: port 3(syz_tun) entered disabled state
[  169.204830][ T7134] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.210869][ T7134] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.337358][ T7144] netlink: 4 bytes leftover after parsing attributes in process `syz.1.213'.
[  169.370852][ T7134] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  169.401917][ T7134] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  169.754357][ T7134] batman_adv: batadv0: Interface deactivated: gretap1
[  169.946143][ T1156] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.950449][ T1156] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  170.007216][ T1156] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  170.081551][ T1156] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  177.514896][ T7177] netlink: 'syz.1.220': attribute type 2 has an invalid length.
[  177.536768][ T7181] netlink: 20 bytes leftover after parsing attributes in process `syz.4.224'.
[  177.611997][ T7184] netlink: 4 bytes leftover after parsing attributes in process `syz.3.225'.
[  177.893512][ T7187] netlink: 4 bytes leftover after parsing attributes in process `syz.4.226'.
[  178.504358][ T7192] batman_adv: batadv0: Adding interface: gretap1
[  178.512491][ T7192] batman_adv: batadv0: Interface activated: gretap1
[  178.758239][ T7194] netlink: 12 bytes leftover after parsing attributes in process `syz.4.228'.
[  179.010476][ T7198] syzkaller0: entered promiscuous mode
[  179.015364][ T7198] syzkaller0: entered allmulticast mode
[  180.826894][ T5949] Bluetooth: hci1: command 0x0406 tx timeout
[  181.710421][ T5940] Bluetooth: hci2: command 0x0406 tx timeout
[  182.588247][ T7214] netlink: 36 bytes leftover after parsing attributes in process `syz.3.232'.
[  182.660148][ T7212] netlink: 'syz.4.230': attribute type 2 has an invalid length.
[  183.510740][ T7226] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input18
[  183.740225][ T7232] netlink: 12 bytes leftover after parsing attributes in process `syz.1.235'.
[  183.749665][ T7232] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  184.011237][ T7236] netlink: 4 bytes leftover after parsing attributes in process `syz.0.236'.
[  184.072717][ T7232] bridge0: port 3(syz_tun) entered disabled state
[  184.095753][ T7232] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.100355][ T7232] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.643461][ T7232] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  184.664214][ T7232] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  184.930948][ T7232] batman_adv: batadv0: Interface deactivated: gretap1
[  184.971583][ T6314] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.984605][ T6481] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.241839][ T6481] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.249943][ T6481] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  186.968803][ T7258] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  186.971703][ T7258] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  187.624395][ T7258] vhci_hcd vhci_hcd.0: Device attached
[  187.921855][   T34] usb 38-1: SetAddress Request (2) to port 0
[  187.924304][   T34] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  189.647356][ T7264] netlink: 4 bytes leftover after parsing attributes in process `syz.3.243'.
[  189.766784][ T7259] vhci_hcd: connection reset by peer
[  189.887009][ T6314] vhci_hcd vhci_hcd.0: stop threads
[  189.956653][ T7266] syzkaller0: entered promiscuous mode
[  189.959427][ T7266] syzkaller0: entered allmulticast mode
[  189.978622][ T6314] vhci_hcd vhci_hcd.0: release socket
[  189.992065][ T6314] vhci_hcd vhci_hcd.0: disconnect device
[  190.110152][ T7270] netlink: 4 bytes leftover after parsing attributes in process `syz.0.246'.
[  190.747070][ T7279] syzkaller0: entered promiscuous mode
[  190.749361][ T7279] syzkaller0: entered allmulticast mode
[  191.152267][ T7283] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input19
[  193.692003][   T34] usb 38-1: device descriptor read/8, error -110
[  194.644791][   T34] usb usb38-port1: attempt power cycle
[  194.781611][ T7305] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  194.785248][ T7305] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  194.808100][ T7305] vhci_hcd vhci_hcd.0: Device attached
[  195.171696][ T6615] usb 46-1: SetAddress Request (6) to port 0
[  195.174130][ T6615] usb 46-1: new SuperSpeed USB device number 6 using vhci_hcd
[  195.303175][   T34] usb usb38-port1: unable to enumerate USB device
[  195.571818][ T7306] vhci_hcd: connection reset by peer
[  195.658612][ T6314] vhci_hcd vhci_hcd.4: stop threads
[  195.678810][ T6314] vhci_hcd vhci_hcd.4: release socket
[  195.681528][ T6314] vhci_hcd vhci_hcd.4: disconnect device
[  196.502510][ T7319] netlink: 4 bytes leftover after parsing attributes in process `syz.4.255'.
[  197.088305][ T7324] syzkaller0: entered promiscuous mode
[  197.091124][ T7324] syzkaller0: entered allmulticast mode
[  198.756513][ T7336] netlink: 12 bytes leftover after parsing attributes in process `syz.1.260'.
[  198.971675][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  198.974166][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  200.200120][ T7352] 8021q: adding VLAN 0 to HW filter on device bond1
[  200.274586][ T6615] usb 46-1: device descriptor read/8, error -110
[  200.383518][ T7354] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  200.719447][ T6615] usb usb46-port1: attempt power cycle
[  200.778107][ T7359] netlink: 8 bytes leftover after parsing attributes in process `syz.4.266'.
[  200.781648][ T7359] netlink: 8 bytes leftover after parsing attributes in process `syz.4.266'.
[  201.355358][ T6615] usb usb46-port1: unable to enumerate USB device
[  201.453263][ T7365] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input20
[  202.789282][ T7371] syzkaller0: entered promiscuous mode
[  202.801162][ T7371] syzkaller0: entered allmulticast mode
[  203.607830][ T7388] netlink: 12 bytes leftover after parsing attributes in process `syz.1.269'.
[  206.365201][ T7402] netlink: 12 bytes leftover after parsing attributes in process `syz.1.272'.
[  206.801650][   T53] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  207.001650][   T53] usb 6-1: Using ep0 maxpacket: 8
[  208.981596][   T53] usb 6-1: unable to read config index 0 descriptor/start: -71
[  208.986702][   T53] usb 6-1: can't read configurations, error -71
[  211.301689][ T5940] Bluetooth: hci3: command 0x0406 tx timeout
[  212.461107][ T7424] netlink: 12 bytes leftover after parsing attributes in process `syz.4.279'.
[  212.631273][ T7427] syzkaller0: entered promiscuous mode
[  212.634488][ T7427] syzkaller0: entered allmulticast mode
[  213.963280][ T7436] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input21
[  216.010960][ T7447] netlink: 12 bytes leftover after parsing attributes in process `syz.1.283'.
[  216.621568][   T10] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  216.901905][   T10] usb 6-1: Using ep0 maxpacket: 8
[  217.081339][   T10] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  217.085971][   T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  217.089718][   T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  217.110897][   T10] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  217.132054][   T10] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  217.144216][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.944977][   T10] usb 6-1: usb_control_msg returned -71
[  217.976140][   T10] usbtmc 6-1:16.0: can't read capabilities
[  218.012122][   T10] usb 6-1: USB disconnect, device number 6
[  218.274635][ T7469] netlink: 12 bytes leftover after parsing attributes in process `syz.1.288'.
[  218.741056][ T7474] netlink: 'syz.3.285': attribute type 2 has an invalid length.
[  222.333137][ T7492] Cache volume key already in use (9p,syz,)
[  222.631175][ T7493] netlink: 'syz.4.292': attribute type 2 has an invalid length.
[  224.303344][ T7507] syzkaller0: entered promiscuous mode
[  224.321677][ T7507] syzkaller0: entered allmulticast mode
[  226.000579][ T7521] netlink: 12 bytes leftover after parsing attributes in process `syz.1.298'.
[  226.549340][ T7536] syzkaller0: entered promiscuous mode
[  226.552993][ T7536] syzkaller0: entered allmulticast mode
[  226.693237][   T40] audit: type=1326 audit(1771307244.684:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7522 comm="syz.3.299" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f05f6c code=0x0
[  229.914415][ T7555] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input22
[  235.252042][ T7571] netlink: 4 bytes leftover after parsing attributes in process `syz.4.307'.
[  235.876726][ T7577] netlink: 12 bytes leftover after parsing attributes in process `syz.4.309'.
[  236.211381][ T7586] netlink: 12 bytes leftover after parsing attributes in process `syz.3.312'.
[  236.218706][ T7586] netlink: 20 bytes leftover after parsing attributes in process `syz.3.312'.
[  236.333656][ T7582] syzkaller0: entered promiscuous mode
[  236.338805][ T7582] syzkaller0: entered allmulticast mode
[  236.381785][ T7590] netlink: 'syz.1.308': attribute type 2 has an invalid length.
[  243.120733][ T7614] netlink: 4 bytes leftover after parsing attributes in process `syz.0.317'.
[  243.665065][ T7623] netlink: 12 bytes leftover after parsing attributes in process `syz.0.319'.
[  244.042110][ T7630] netlink: 12 bytes leftover after parsing attributes in process `syz.0.321'.
[  244.048444][ T7630] netlink: 20 bytes leftover after parsing attributes in process `syz.0.321'.
[  246.081928][ T7648] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input23
[  250.167772][ T7667] netlink: 12 bytes leftover after parsing attributes in process `syz.3.328'.
[  253.650097][ T7667] bridge0: port 3(syz_tun) entered disabled state
[  253.676207][ T7667] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.680668][ T7667] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.737891][ T7677] netlink: 12 bytes leftover after parsing attributes in process `syz.0.330'.
[  253.742336][ T7677] netlink: 20 bytes leftover after parsing attributes in process `syz.0.330'.
[  254.067868][ T7681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.332'.
[  254.071288][ T7681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.332'.
[  254.148692][ T7667] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  254.164738][ T7667] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  254.570762][ T7667] batman_adv: batadv0: Interface deactivated: gretap1
[  254.623737][ T7688] syzkaller0: entered promiscuous mode
[  254.626650][ T7688] syzkaller0: entered allmulticast mode
[  254.721893][ T6143] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  254.727496][ T6143] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  254.742947][ T6143] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  255.003541][ T6143] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  257.641280][ T7711] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input24
[  260.282661][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  260.287421][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  263.646520][ T7738] netlink: 'syz.0.339': attribute type 2 has an invalid length.
[  264.082676][ T7747] netlink: 12 bytes leftover after parsing attributes in process `syz.1.342'.
[  264.096192][ T7747] netlink: 20 bytes leftover after parsing attributes in process `syz.1.342'.
[  264.323772][ T7750] netlink: 12 bytes leftover after parsing attributes in process `syz.4.343'.
[  264.393403][ T7752] syzkaller0: entered promiscuous mode
[  264.407744][ T7752] syzkaller0: entered allmulticast mode
[  264.868369][ T7755] netlink: 'syz.4.345': attribute type 2 has an invalid length.
[  274.785124][ T7780] netlink: 'syz.4.351': attribute type 1 has an invalid length.
[  274.852232][ T7780] 8021q: adding VLAN 0 to HW filter on device bond1
[  275.097127][ T7784] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  275.597665][  T154] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  275.605311][  T154] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  275.931350][  T154] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  275.935312][  T154] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  277.399857][ T7793] netlink: 'syz.4.354': attribute type 2 has an invalid length.
[  277.694558][ T7808] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  277.694601][ T7808] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  277.696086][ T7808] vhci_hcd vhci_hcd.0: Device attached
[  278.033924][ T7672] usb 38-1: SetAddress Request (6) to port 0
[  278.036893][ T7672] usb 38-1: new SuperSpeed USB device number 6 using vhci_hcd
[  278.144615][ T7809] vhci_hcd: connection reset by peer
[  278.150956][   T59] vhci_hcd vhci_hcd.0: stop threads
[  278.155107][   T59] vhci_hcd vhci_hcd.0: release socket
[  278.158145][   T59] vhci_hcd vhci_hcd.0: disconnect device
[  280.950976][ T7831] netlink: 'syz.3.359': attribute type 2 has an invalid length.
[  281.229917][ T7833] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input25
[  283.149701][ T7672] usb 38-1: device descriptor read/8, error -110
[  283.542427][ T7672] usb usb38-port1: attempt power cycle
[  284.418363][ T7672] usb usb38-port1: unable to enumerate USB device
[  284.631189][   T40] audit: type=1326 audit(1771307302.634:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.361" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x0
[  289.813638][ T7872] netlink: 12 bytes leftover after parsing attributes in process `syz.3.366'.
[  290.191665][ T6065] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  290.431998][ T7879] netlink: 4 bytes leftover after parsing attributes in process `syz.1.368'.
[  290.629920][ T7882] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input26
[  291.365601][ T6065] usb 8-1: Using ep0 maxpacket: 8
[  291.401572][ T6065] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  291.408760][ T6065] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  291.415514][ T6065] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  292.212929][ T7889] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  292.231748][ T7889] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  292.237707][ T7889] vhci_hcd vhci_hcd.0: Device attached
[  292.384306][ T6065] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  292.394499][ T6065] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  292.400682][ T6065] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.613533][ T6066] usb 38-1: SetAddress Request (10) to port 0
[  292.629860][ T6066] usb 38-1: new SuperSpeed USB device number 10 using vhci_hcd
[  292.752431][ T7896] vhci_hcd: connection reset by peer
[  292.797319][   T59] vhci_hcd vhci_hcd.0: stop threads
[  292.816304][   T59] vhci_hcd vhci_hcd.0: release socket
[  292.823077][   T59] vhci_hcd vhci_hcd.0: disconnect device
[  293.773745][ T6065] usb 8-1: can't set config #16, error -71
[  293.782761][ T6065] usb 8-1: USB disconnect, device number 3
[  294.611104][ T7913] netlink: 'syz.4.373': attribute type 2 has an invalid length.
[  295.164934][ T7925] netlink: 'syz.1.375': attribute type 2 has an invalid length.
[  295.444381][ T7927] netlink: 'syz.3.377': attribute type 2 has an invalid length.
[  296.635917][   T40] audit: type=1326 audit(1771307314.614:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7929 comm="syz.4.378" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709ef6c code=0x0
[  297.830562][ T6066] usb 38-1: device descriptor read/8, error -110
[  298.074700][ T7940] netlink: 12 bytes leftover after parsing attributes in process `syz.0.380'.
[  298.217852][ T6066] usb usb38-port1: attempt power cycle
[  299.652873][ T6066] usb usb38-port1: unable to enumerate USB device
[  300.151387][ T7937] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  300.168161][ T7937] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  300.173334][ T7937] vhci_hcd vhci_hcd.0: Device attached
[  300.501690][ T6619] usb 40-1: SetAddress Request (2) to port 0
[  300.504949][ T6619] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[  301.081526][   T40] audit: type=1326 audit(1771307318.684:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7950 comm="syz.4.382" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709ef6c code=0x0
[  301.608015][ T7952] vhci_hcd: connection reset by peer
[  301.618222][   T59] vhci_hcd vhci_hcd.1: stop threads
[  301.624312][   T59] vhci_hcd vhci_hcd.1: release socket
[  301.628079][   T59] vhci_hcd vhci_hcd.1: disconnect device
[  301.944376][ T7965] netlink: 32 bytes leftover after parsing attributes in process `syz.1.385'.
[  302.410135][ T7973] netlink: 40 bytes leftover after parsing attributes in process `syz.1.390'.
[  302.416615][ T7975] netlink: 12 bytes leftover after parsing attributes in process `syz.3.389'.
[  302.950064][ T7981] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input27
[  305.809608][ T6619] usb 40-1: device descriptor read/8, error -110
[  307.124299][ T8005] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input28
[  308.113672][ T6619] usb usb40-port1: attempt power cycle
[  308.653418][ T8013] netlink: 32 bytes leftover after parsing attributes in process `syz.4.396'.
[  308.683370][ T6619] usb usb40-port1: unable to enumerate USB device
[  311.631078][ T8022] netlink: 12 bytes leftover after parsing attributes in process `syz.3.399'.
[  311.647099][ T8024] syzkaller0: entered promiscuous mode
[  311.683087][ T8024] syzkaller0: entered allmulticast mode
[  313.508409][ T8036] netlink: 'syz.1.404': attribute type 2 has an invalid length.
[  313.987724][ T8047] netlink: 'syz.4.403': attribute type 2 has an invalid length.
[  313.992655][ T8046] netlink: 'syz.0.401': attribute type 2 has an invalid length.
[  315.702515][ T8051] netlink: 32 bytes leftover after parsing attributes in process `syz.1.405'.
[  317.873626][ T8068] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input29
[  318.432574][ T8075] netlink: 48 bytes leftover after parsing attributes in process `syz.4.409'.
[  319.609153][ T8078] netlink: 12 bytes leftover after parsing attributes in process `syz.4.411'.
[  319.840701][   T59] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  319.847781][   T59] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  319.857795][   T59] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  319.879838][   T59] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  321.862498][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  321.865294][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  327.916413][ T8124] netlink: 48 bytes leftover after parsing attributes in process `syz.0.420'.
[  327.975905][ T8122] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input30
[  330.586419][ T8148] netlink: 12 bytes leftover after parsing attributes in process `syz.4.422'.
[  333.782720][ T8163] netlink: 12 bytes leftover after parsing attributes in process `syz.3.425'.
[  334.111715][   T39] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  334.281990][   T39] usb 8-1: Using ep0 maxpacket: 8
[  334.306647][   T39] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  334.311342][   T39] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  334.351052][   T39] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  334.369589][   T39] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  334.376046][   T39] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  334.380951][   T39] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.819916][ T8173] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input31
[  335.851320][ T8178] netlink: 'syz.0.427': attribute type 2 has an invalid length.
[  336.524792][   T39] usb 8-1: usb_control_msg returned -71
[  336.528838][   T39] usbtmc 8-1:16.0: can't read capabilities
[  337.275142][   T39] usb 8-1: USB disconnect, device number 4
[  346.720745][ T8207] syzkaller0: entered promiscuous mode
[  346.913316][ T8207] syzkaller0: entered allmulticast mode
[  349.870942][ T8220] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  349.887440][ T8220] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  349.891528][ T8220] vhci_hcd vhci_hcd.0: Device attached
[  350.244175][   T39] usb 38-1: SetAddress Request (14) to port 0
[  350.266111][   T39] usb 38-1: new SuperSpeed USB device number 14 using vhci_hcd
[  350.800276][ T8240] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input32
[  353.527979][ T8231] vhci_hcd: connection reset by peer
[  353.533835][ T6143] vhci_hcd vhci_hcd.0: stop threads
[  353.535829][ T6143] vhci_hcd vhci_hcd.0: release socket
[  353.538932][ T6143] vhci_hcd vhci_hcd.0: disconnect device
[  355.369063][   T39] usb 38-1: device descriptor read/8, error -110
[  355.581602][ T8280] netlink: 8 bytes leftover after parsing attributes in process `syz.4.448'.
[  355.589288][ T8280] netlink: 8 bytes leftover after parsing attributes in process `syz.4.448'.
[  355.848012][   T39] usb usb38-port1: attempt power cycle
[  356.446725][   T39] usb usb38-port1: unable to enumerate USB device
[  356.962906][ T8266] netlink: 'syz.1.446': attribute type 2 has an invalid length.
[  357.278451][ T8293] syzkaller0: entered promiscuous mode
[  357.281283][ T8293] syzkaller0: entered allmulticast mode
[  363.459256][ T8317] netlink: 48 bytes leftover after parsing attributes in process `syz.3.456'.
[  363.647456][ T8319] netlink: 8 bytes leftover after parsing attributes in process `syz.3.457'.
[  363.657444][ T8319] netlink: 8 bytes leftover after parsing attributes in process `syz.3.457'.
[  366.657941][ T8338] netlink: 17780 bytes leftover after parsing attributes in process `syz.1.459'.
[  369.137042][ T8344] netlink: 'syz.4.461': attribute type 2 has an invalid length.
[  369.487541][ T8350] syzkaller0: entered promiscuous mode
[  369.509559][ T8350] syzkaller0: entered allmulticast mode
[  370.585362][ T8360] netlink: 48 bytes leftover after parsing attributes in process `syz.4.465'.
[  375.176884][ T8386] netlink: 8 bytes leftover after parsing attributes in process `syz.3.468'.
[  375.180527][ T8386] netlink: 8 bytes leftover after parsing attributes in process `syz.3.468'.
[  376.297968][ T8399] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input33
[  378.453658][ T8407] netlink: 28 bytes leftover after parsing attributes in process `syz.0.471'.
[  378.562482][ T8404] netlink: 'syz.3.470': attribute type 2 has an invalid length.
[  379.711553][ T8415] netlink: 'syz.0.472': attribute type 2 has an invalid length.
[  383.148946][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  383.152947][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  386.050731][ T8429] netlink: set zone limit has 4 unknown bytes
[  386.210801][ T8442] netlink: 8 bytes leftover after parsing attributes in process `syz.4.478'.
[  386.242810][ T8442] netlink: 8 bytes leftover after parsing attributes in process `syz.4.478'.
[  391.098278][ T8464] netlink: 48 bytes leftover after parsing attributes in process `syz.4.483'.
[  391.903255][ T8474] netlink: 28 bytes leftover after parsing attributes in process `syz.3.487'.
[  392.686533][ T8471] netlink: set zone limit has 4 unknown bytes
[  393.012676][ T8485] 9pnet_virtio: no channels available for device syz
[  393.021774][ T8485] netlink: 'syz.3.489': attribute type 2 has an invalid length.
[  393.058992][ T8488] netlink: 'syz.1.486': attribute type 2 has an invalid length.
[  393.172760][ T8481] 9pnet_virtio: no channels available for device syz
[  393.184133][ T8481] netlink: 'syz.0.488': attribute type 2 has an invalid length.
[  397.389089][ T8512] netlink: 12 bytes leftover after parsing attributes in process `syz.0.491'.
[  397.961598][   T39] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  397.977449][ T8519] netlink: 28 bytes leftover after parsing attributes in process `syz.1.497'.
[  398.171748][   T39] usb 5-1: Using ep0 maxpacket: 8
[  398.300176][ T8516] netlink: set zone limit has 4 unknown bytes
[  398.417187][   T39] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  398.425038][ T8509] netlink: 'syz.4.495': attribute type 2 has an invalid length.
[  398.454131][   T39] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  398.454180][   T39] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  398.454201][   T39] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  398.454250][   T39] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  398.454270][   T39] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  398.600383][   T39] usb 5-1: can't set config #16, error -71
[  398.606972][   T39] usb 5-1: USB disconnect, device number 7
[  399.418471][ T8541] netlink: 'syz.0.499': attribute type 2 has an invalid length.
[  403.187530][ T8566] netlink: 'syz.3.506': attribute type 2 has an invalid length.
[  403.227856][ T8567] netlink: 28 bytes leftover after parsing attributes in process `syz.0.507'.
[  404.755853][ T8572] netlink: 12 bytes leftover after parsing attributes in process `syz.4.508'.
[  405.061547][   T60] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  405.270893][   T60] usb 9-1: Using ep0 maxpacket: 8
[  405.300498][   T60] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  405.364696][   T60] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  405.377373][   T60] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  405.392140][   T60] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  405.424665][   T60] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  405.431311][   T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  405.846134][   T60] usb 9-1: GET_CAPABILITIES returned 0
[  405.848513][   T60] usbtmc 9-1:16.0: can't read capabilities
[  407.150207][   T60] usb 9-1: USB disconnect, device number 2
[  410.275788][ T8612] netlink: 24 bytes leftover after parsing attributes in process `syz.3.516'.
[  413.187750][ T8632] netlink: 12 bytes leftover after parsing attributes in process `syz.0.520'.
[  413.514471][ T8635] netlink: 12 bytes leftover after parsing attributes in process `syz.4.521'.
[  413.596483][ T6019] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  413.881536][ T6019] usb 5-1: Using ep0 maxpacket: 8
[  414.380435][ T6019] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  414.388283][ T6019] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  414.391805][ T8647] netlink: 24 bytes leftover after parsing attributes in process `syz.3.526'.
[  414.395931][ T6019] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  414.406291][ T6019] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  414.420615][ T6019] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  414.426262][ T6019] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  416.831327][ T6019] usb 5-1: can't set config #16, error -71
[  416.836334][ T6019] usb 5-1: USB disconnect, device number 8
[  418.768268][ T8684] netlink: 12 bytes leftover after parsing attributes in process `syz.1.532'.
[  419.887461][ T8697] netlink: 'syz.4.536': attribute type 2 has an invalid length.
[  421.362021][ T8711] netlink: 12 bytes leftover after parsing attributes in process `syz.1.541'.
[  421.740420][ T8713] syzkaller0: entered promiscuous mode
[  421.745049][ T8713] syzkaller0: entered allmulticast mode
[  429.301040][ T8740] netlink: 40 bytes leftover after parsing attributes in process `syz.0.548'.
[  430.168352][ T8746] netlink: 12 bytes leftover after parsing attributes in process `syz.0.550'.
[  430.484225][ T8750] netlink: 12 bytes leftover after parsing attributes in process `syz.0.551'.
[  430.781573][   T39] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  430.971705][   T39] usb 5-1: Using ep0 maxpacket: 8
[  431.010675][   T39] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  431.015373][   T39] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  431.113673][   T39] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  431.119905][   T39] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  431.182412][   T39] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  431.186928][   T39] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.566313][   T39] usb 5-1: GET_CAPABILITIES returned 0
[  431.582862][   T39] usbtmc 5-1:16.0: can't read capabilities
[  431.775068][ T8744] netlink: 'syz.1.549': attribute type 2 has an invalid length.
[  435.379543][ T6065] usb 5-1: USB disconnect, device number 9
[  437.755486][ T8779] netlink: 12 bytes leftover after parsing attributes in process `syz.0.559'.
[  437.785124][ T8780] netlink: 40 bytes leftover after parsing attributes in process `syz.1.558'.
[  442.068684][    C0] ==================================================================
[  442.073967][    C0] BUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0x3a/0x60
[  442.083136][    C0] Read of size 1 at addr ffff888024cf0418 by task swapper/0/0
[  442.092388][    C0] 
[  442.093550][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  442.093570][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  442.093578][    C0] Call Trace:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  442.093584][    C0]  <IRQ>
[  442.093590][    C0]  dump_stack_lvl+0x100/0x190
[  442.093614][    C0]  print_report+0x156/0x4c9
[  442.093633][    C0]  ? __virt_addr_valid+0x81/0x620
[  442.093649][    C0]  ? __phys_addr+0xe8/0x180
[  442.093663][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  442.093680][    C0]  kasan_report+0xdf/0x1e0
[  442.093698][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  442.093714][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  442.093729][    C0]  __kasan_check_byte+0x36/0x50
[  442.093746][    C0]  lock_acquire+0x148/0x380
[  442.093762][    C0]  ? do_raw_spin_unlock+0x53/0x1e0
[  442.093777][    C0]  ? .slowpath+0x9/0x18
[  442.093795][    C0]  _raw_spin_lock_irqsave+0x3a/0x60
[  442.093810][    C0]  ? p9_req_put+0xaf/0x250
[  442.093829][    C0]  p9_req_put+0xaf/0x250
[  442.093849][    C0]  req_done+0x1dc/0x2e0
[  442.093867][    C0]  ? __pfx_req_done+0x10/0x10
[  442.093883][    C0]  ? clockevents_program_event+0x151/0x360
[  442.093902][    C0]  ? __pfx_req_done+0x10/0x10
[  442.093918][    C0]  vring_interrupt+0x2ef/0x650
[  442.093938][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  442.093955][    C0]  __handle_irq_event_percpu+0x232/0x8e0
[  442.093977][    C0]  handle_irq_event+0xab/0x1e0
[  442.093996][    C0]  handle_edge_irq+0x375/0x970
[  442.094026][    C0]  __common_interrupt+0xd8/0x2f0
[  442.094043][    C0]  common_interrupt+0xb9/0xe0
[  442.094058][    C0]  </IRQ>
[  442.094062][    C0]  <TASK>
[  442.094067][    C0]  asm_common_interrupt+0x26/0x40
[  442.094081][    C0] RIP: 0010:sched_core_balance+0x9f/0xe20
[  442.094098][    C0] Code: 92 7e 8e e8 63 ef 0d 00 e8 ce d6 b5 09 41 5a 85 c0 0f 85 28 0a 00 00 4c 89 ef e8 fc 35 ff ff e8 07 ad 39 00 fb 48 63 44 24 50 <48> c7 c3 80 72 0e 94 48 89 dd 48 89 44 24 08 48 83 f8 08 0f 83 4c
[  442.094111][    C0] RSP: 0000:ffffffff8e407b70 EFLAGS: 00000202
[  442.094123][    C0] RAX: 0000000000000000 RBX: ffff88802b23b280 RCX: 0000000000000000
[  442.094131][    C0] RDX: 0000000000000000 RSI: ffffffff8de76c50 RDI: ffffffff8c1ae520
[  442.094138][    C0] RBP: ffffffff8e407c88 R08: 0000000000000001 R09: 0000000000000000
[  442.094145][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8e4975c0
[  442.094152][    C0] R13: ffff88802b23b280 R14: 0000000000000000 R15: dffffc0000000000
[  442.094166][    C0]  ? lock_acquire+0x1cf/0x380
[  442.094183][    C0]  finish_task_switch.isra.0+0x446/0xb80
[  442.094197][    C0]  __schedule+0xff6/0x60e0
[  442.094216][    C0]  ? find_held_lock+0x2b/0x80
[  442.094234][    C0]  ? kvm_steal_clock+0xd2/0x120
[  442.094248][    C0]  ? __pfx___schedule+0x10/0x10
[  442.094264][    C0]  ? rcu_is_watching+0x12/0xc0
[  442.094282][    C0]  schedule_idle+0x54/0x80
[  442.094298][    C0]  do_idle+0x289/0x4b0
[  442.094315][    C0]  ? __pfx_do_idle+0x10/0x10
[  442.094335][    C0]  cpu_startup_entry+0x4f/0x60
[  442.094353][    C0]  rest_init+0x251/0x260
[  442.094365][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  442.094378][    C0]  start_kernel+0x47f/0x480
[  442.094396][    C0]  x86_64_start_reservations+0x24/0x30
[  442.094414][    C0]  x86_64_start_kernel+0x12b/0x130
[  442.094432][    C0]  common_startup_64+0x13e/0x148
[  442.094448][    C0]  </TASK>
[  442.094453][    C0] 
[  442.333267][    C0] Allocated by task 8791:
[  442.334904][    C0]  kasan_save_stack+0x30/0x50
[  442.336918][    C0]  kasan_save_track+0x14/0x30
[  442.339042][    C0]  __kasan_kmalloc+0xaa/0xb0
[  442.354738][    C0]  p9_client_create+0xaf/0xd40
[  442.356725][    C0]  v9fs_session_init+0x40/0xce0
[  442.358700][    C0]  v9fs_get_tree+0xb8/0xb50
[  442.376796][    C0]  vfs_get_tree+0x92/0x320
[  442.379148][    C0]  path_mount+0x7d0/0x23d0
[  442.381779][    C0]  __ia32_sys_mount+0x292/0x310
[  442.384838][    C0]  __do_fast_syscall_32+0xe3/0x8c0
[  442.387332][    C0]  do_fast_syscall_32+0x32/0x70
[  442.391821][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  442.404020][    C0] 
[  442.405348][    C0] Freed by task 8791:
[  442.407213][    C0]  kasan_save_stack+0x30/0x50
[  442.409604][    C0]  kasan_save_track+0x14/0x30
[  442.412060][    C0]  kasan_save_free_info+0x3b/0x70
[  442.423154][    C0]  __kasan_slab_free+0x5f/0x80
[  442.425212][    C0]  kfree+0x1f6/0x6b0
[  442.427274][    C0]  p9_client_create+0x72d/0xd40
[  442.429481][    C0]  v9fs_session_init+0x40/0xce0
[  442.433002][    C0]  v9fs_get_tree+0xb8/0xb50
[  442.442710][    C0]  vfs_get_tree+0x92/0x320
[  442.445640][    C0]  path_mount+0x7d0/0x23d0
[  442.448425][    C0]  __ia32_sys_mount+0x292/0x310
[  442.452633][    C0]  __do_fast_syscall_32+0xe3/0x8c0
[  442.458855][    C0]  do_fast_syscall_32+0x32/0x70
[  442.462441][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  442.468036][    C0] 
[  442.469488][    C0] The buggy address belongs to the object at ffff888024cf0400
[  442.469488][    C0]  which belongs to the cache kmalloc-512 of size 512
[  442.474981][    C0] The buggy address is located 24 bytes inside of
[  442.474981][    C0]  freed 512-byte region [ffff888024cf0400, ffff888024cf0600)
[  442.496684][    C0] 
[  442.497700][    C0] The buggy address belongs to the physical page:
[  442.504878][    C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x24cf0
[  442.512621][    C0] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  442.516022][    C0] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  442.518836][    C0] page_type: f5(slab)
[  442.520398][    C0] raw: 00fff00000000040 ffff88801b842c80 dead000000000100 dead000000000122
[  442.543124][    C0] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  442.548374][    C0] head: 00fff00000000040 ffff88801b842c80 dead000000000100 dead000000000122
[  442.563298][    C0] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  442.568665][    C0] head: 00fff00000000002 ffffea0000933c01 00000000ffffffff 00000000ffffffff
[  442.580267][    C0] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  442.583924][    C0] page dumped because: kasan: bad access detected
[  442.587414][    C0] page_owner tracks the page as allocated
[  442.589813][    C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 99, tgid 99 (kworker/u32:4), ts 56533371445, free_ts 56064526030
[  442.599077][    C0]  post_alloc_hook+0x153/0x170
[  442.601773][    C0]  get_page_from_freelist+0x111d/0x3140
[  442.618498][    C0]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  442.622858][    C0]  new_slab+0xa6/0x6d0
[  442.624668][    C0]  refill_objects+0x26b/0x400
[  442.626892][    C0]  __pcs_replace_empty_main+0x19f/0x600
[  442.629223][    C0]  __kmalloc_noprof+0x688/0x850
[  442.631418][    C0]  fib6_info_alloc+0x40/0x160
[  442.634353][    C0]  ip6_route_info_create+0x14c/0xad0
[  442.637162][    C0]  ip6_route_add+0x4b/0x1d0
[  442.639587][    C0]  addrconf_add_mroute+0x1de/0x350
[  442.642317][    C0]  addrconf_add_dev+0x14e/0x1a0
[  442.645006][    C0]  addrconf_init_auto_addrs+0x10e/0x780
[  442.647911][    C0]  addrconf_notify+0x9aa/0x19c0
[  442.650533][    C0]  notifier_call_chain+0x99/0x420
[  442.653752][    C0]  call_netdevice_notifiers_info+0xbe/0x110
[  442.658532][    C0] page last free pid 2 tgid 2 stack trace:
[  442.662829][    C0]  __free_frozen_pages+0x7ca/0x10a0
[  442.666376][    C0]  qlist_free_all+0x47/0xe0
[  442.669146][    C0]  kasan_quarantine_reduce+0x1a0/0x1f0
[  442.672522][    C0]  __kasan_slab_alloc+0x69/0x90
[  442.675654][    C0]  __kmalloc_cache_noprof+0x243/0x6f0
[  442.679008][    C0]  set_kthread_struct+0xcb/0x3a0
[  442.682094][    C0]  copy_process+0x3978/0x7a10
[  442.684976][    C0]  kernel_clone+0xfc/0x9a0
[  442.687692][    C0]  kernel_thread+0xdb/0x120
[  442.690637][    C0]  kthreadd+0x498/0x7a0
[  442.693233][    C0]  ret_from_fork+0x754/0xd80
[  442.696120][    C0]  ret_from_fork_asm+0x1a/0x30
[  442.699050][    C0] 
[  442.700632][    C0] Memory state around the buggy address:
[  442.704192][    C0]  ffff888024cf0300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  442.709196][    C0]  ffff888024cf0380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  442.716182][    C0] >ffff888024cf0400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  442.720909][    C0]                             ^
[  442.723939][    C0]  ffff888024cf0480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  442.728932][    C0]  ffff888024cf0500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  442.733817][    C0] ==================================================================
[  442.738951][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  442.743321][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  442.750057][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  442.755663][    C0] Call Trace:
[  442.757752][    C0]  <IRQ>
[  442.759563][    C0]  dump_stack_lvl+0x100/0x190
[  442.761747][    C0]  vpanic+0x552/0x970
[  442.763909][    C0]  ? __pfx_vpanic+0x10/0x10
[  442.767355][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  442.771302][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  442.774848][    C0]  panic+0xd1/0xe0
[  442.776890][    C0]  ? __pfx_panic+0x10/0x10
[  442.779387][    C0]  ? end_report.part.0+0x23/0x90
[  442.782116][    C0]  ? rcu_is_watching+0x12/0xc0
[  442.784730][    C0]  ? end_report.part.0+0x23/0x90
[  442.787638][    C0]  ? check_panic_on_warn+0x1f/0x90
[  442.790775][    C0]  check_panic_on_warn.cold+0x19/0x34
[  442.793911][    C0]  end_report.part.0+0x3a/0x90
[  442.796960][    C0]  kasan_report.cold+0xe/0x18
[  442.800093][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  442.803514][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  442.806359][    C0]  __kasan_check_byte+0x36/0x50
[  442.809253][    C0]  lock_acquire+0x148/0x380
[  442.811755][    C0]  ? do_raw_spin_unlock+0x53/0x1e0
[  442.814816][    C0]  ? .slowpath+0x9/0x18
[  442.817389][    C0]  _raw_spin_lock_irqsave+0x3a/0x60
[  442.819675][    C0]  ? p9_req_put+0xaf/0x250
[  442.821721][    C0]  p9_req_put+0xaf/0x250
[  442.824074][    C0]  req_done+0x1dc/0x2e0
[  442.826481][    C0]  ? __pfx_req_done+0x10/0x10
[  442.829126][    C0]  ? clockevents_program_event+0x151/0x360
[  442.833098][    C0]  ? __pfx_req_done+0x10/0x10
[  442.837531][    C0]  vring_interrupt+0x2ef/0x650
[  442.840855][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  442.844204][    C0]  __handle_irq_event_percpu+0x232/0x8e0
[  442.847818][    C0]  handle_irq_event+0xab/0x1e0
[  442.850973][    C0]  handle_edge_irq+0x375/0x970
[  442.853960][    C0]  __common_interrupt+0xd8/0x2f0
[  442.857403][    C0]  common_interrupt+0xb9/0xe0
[  442.860196][    C0]  </IRQ>
[  442.861998][    C0]  <TASK>
[  442.864027][    C0]  asm_common_interrupt+0x26/0x40
[  442.868022][    C0] RIP: 0010:sched_core_balance+0x9f/0xe20
[  442.876202][    C0] Code: 92 7e 8e e8 63 ef 0d 00 e8 ce d6 b5 09 41 5a 85 c0 0f 85 28 0a 00 00 4c 89 ef e8 fc 35 ff ff e8 07 ad 39 00 fb 48 63 44 24 50 <48> c7 c3 80 72 0e 94 48 89 dd 48 89 44 24 08 48 83 f8 08 0f 83 4c
[  442.890308][    C0] RSP: 0000:ffffffff8e407b70 EFLAGS: 00000202
[  442.894089][    C0] RAX: 0000000000000000 RBX: ffff88802b23b280 RCX: 0000000000000000
[  442.913931][    C0] RDX: 0000000000000000 RSI: ffffffff8de76c50 RDI: ffffffff8c1ae520
[  442.917307][    C0] RBP: ffffffff8e407c88 R08: 0000000000000001 R09: 0000000000000000
[  442.921456][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8e4975c0
[  442.925184][    C0] R13: ffff88802b23b280 R14: 0000000000000000 R15: dffffc0000000000
[  442.930098][    C0]  ? lock_acquire+0x1cf/0x380
[  442.933116][    C0]  finish_task_switch.isra.0+0x446/0xb80
[  442.936330][    C0]  __schedule+0xff6/0x60e0
[  442.938815][    C0]  ? find_held_lock+0x2b/0x80
[  442.941487][    C0]  ? kvm_steal_clock+0xd2/0x120
[  442.944140][    C0]  ? __pfx___schedule+0x10/0x10
[  442.946683][    C0]  ? rcu_is_watching+0x12/0xc0
[  442.949304][    C0]  schedule_idle+0x54/0x80
[  442.952094][    C0]  do_idle+0x289/0x4b0
[  442.954709][    C0]  ? __pfx_do_idle+0x10/0x10
[  442.960176][    C0]  cpu_startup_entry+0x4f/0x60
[  442.963255][    C0]  rest_init+0x251/0x260
[  442.965913][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  442.969370][    C0]  start_kernel+0x47f/0x480
[  442.972283][    C0]  x86_64_start_reservations+0x24/0x30
[  442.975580][    C0]  x86_64_start_kernel+0x12b/0x130
[  442.978778][    C0]  common_startup_64+0x13e/0x148
[  442.981965][    C0]  </TASK>
[  442.988657][    C0] Kernel Offset: disabled
[  442.991406][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
05:51:00  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85762e20 RDI=ffffffff9b483f80 RBP=ffffffff9b483f40 RSP=ffffc900000076c0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=206e692065655542
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff3690842 R15=dffffc0000000000
RIP=ffffffff85762e47 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097154000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000080b4f018 CR3=000000004edc7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000002981ed RBX=ffff88801c32a480 RCX=ffffffff8b8c2c75 RDX=0000000000000000
RSI=ffffffff8de76c50 RDI=ffffffff8c1ae520 RBP=0000000000000001 RSP=ffffc9000046fdf0
R8 =0000000000000001 R9 =ffffed1005666795 R10=ffff88802b333cab R11=0000000000000000
R12=ffffed1003865490 R13=0000000000000001 R14=ffffffff90d98010 R15=0000000000000000
RIP=ffffffff8b8c15df RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097254000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000002fbfeff8 CR3=0000000063b1d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000001f67ff RBX=ffff88801c3cc900 RCX=ffffffff8b8c2c75 RDX=0000000000000000
RSI=ffffffff8de76c50 RDI=ffffffff8c1ae520 RBP=0000000000000002 RSP=ffffc9000047fdf0
R8 =0000000000000001 R9 =ffffed1005686795 R10=ffff88802b433cab R11=0000000000000000
R12=ffffed1003879920 R13=0000000000000002 R14=ffffffff90d98010 R15=0000000000000000
RIP=ffffffff8b8c15df RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097354000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000080134018 CR3=000000006dea4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81fba4e2 RDX=ffff8880297aa480
RSI=ffffffff81fba4bc RDI=ffff8880297aa480 RBP=ffff88802b242c60 RSP=ffffc9000d3ef878
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000003 R13=ffffed100564858d R14=0000000000000001 R15=ffff88802b53c500
RIP=ffffffff81fba4be RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097454000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f7efa190 CR3=000000000e598000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000