last executing test programs:

963.672061ms ago: executing program 1 (id=297):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={0x38, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x4}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x24044815}, 0x0)

929.070325ms ago: executing program 1 (id=299):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r1, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r1], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x3, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x84, 0x28, 0xd27, 0x1003ffd, 0x0, {0x0, 0x0, 0x0, r4, {0xffe0, 0x9}, {0x0, 0x9}, {0xa, 0xb}}, [@filter_kind_options=@f_fw={{0x7}, {0x58, 0x2, [@TCA_FW_POLICE={0x40, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x6, 0x10000000, 0x4, 0x7, 0x3, {0x6, 0x1, 0x4000, 0x6, 0xf, 0x800b}, {0xb, 0x2, 0x0, 0xc0b, 0xf, 0x7ff}, 0x3, 0x82}}]}, @TCA_FW_INDEV={0x14, 0x3, 'virt_wifi0\x00'}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x810}, 0x200008c4)

791.655607ms ago: executing program 1 (id=304):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f00000003c0)=0x5, 0x4)
write(r0, &(0x7f00000002c0), 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}}, 0x4044004)
recvmmsg(r5, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x10003}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000240)=""/180, 0xb4}, {&(0x7f0000000780)=""/260, 0x104}, {&(0x7f0000000000)=""/32, 0x20}, {&(0x7f0000002900)=""/4114, 0x1012}, {&(0x7f00000017c0)=""/220, 0xdc}, {&(0x7f0000000f40)=""/218, 0xda}, {&(0x7f00000005c0)=""/146, 0x92}, {&(0x7f00000008c0)=""/234, 0xea}], 0x8}, 0x80000002}], 0x4, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff)
r8 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000000c0)="1b0000001a007f029e", 0x9}, {&(0x7f0000000240)="6848b2796acd812dce3d01d190a3cab1e8ce", 0x12}], 0x2}, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x3c, r7, 0xd01, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x28, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xf}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x851}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)

304.022055ms ago: executing program 0 (id=313):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x18, 0x0, &(0x7f0000000040))

238.958884ms ago: executing program 0 (id=314):
unshare(0x22020400)
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
connect$unix(r0, &(0x7f0000000640)=@file={0x0, './file0\x00'}, 0x6e)

238.743153ms ago: executing program 2 (id=316):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f00000013c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000300)="1205020029ff14000600002fb96dbcf706060000170008005f45f491bdd54ec5ff1144ee162fd4b8bf7256da", 0x2c}], 0x1}, 0x24000894)

229.963847ms ago: executing program 1 (id=317):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000400003800800014000000000080002400000fbff2b0003801400010067656e6576653000000000000000000014000100776732000000000000000000c6e49c0f5c000000180a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010067656e6576653000000000000000000014"], 0x110}}, 0x0)

142.331108ms ago: executing program 0 (id=318):
r0 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r0, &(0x7f00000019c0)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x123, 0x0)

142.069716ms ago: executing program 2 (id=319):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000001740)=[{{&(0x7f0000000480)={0xa, 0x4e23, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000080)="df", 0x1}], 0x1}}], 0x1, 0x24088804)
shutdown(r0, 0x1)
getsockopt$bt_hci(r0, 0x84, 0x6c, &(0x7f0000003140)=""/4095, &(0x7f0000000000)=0xfff)

141.823623ms ago: executing program 1 (id=320):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYRES32=r0, @ANYRES16=r0, @ANYBLOB="010200000000000000006700000008000300", @ANYRES32=r2, @ANYBLOB="0800c3"], 0x30}}, 0x10)

83.073902ms ago: executing program 2 (id=321):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="1c00"], 0x20)

82.928105ms ago: executing program 0 (id=322):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=@can_newroute={0x2c, 0x18, 0x1, 0x70bd25, 0xfffffffc, {0x1d, 0x1, 0x1}, [@CGW_MOD_AND={0x15, 0x1, {{{0x4, 0x1, 0x1, 0x1}, 0x5, 0x0, 0x0, 0x0, "0e5fa2e4e96119c1"}, 0x5}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008044}, 0xc000)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c030000160001000000000000000000fc010000000000000000000000000000fe88000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000025bd7000000000000000000000000000000000000300000006"], 0x34c}}, 0x0)

82.657302ms ago: executing program 1 (id=323):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x9)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="1c00000014000100000080000000000007000080080002"], 0x1c}], 0x1}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x5, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1}, @ldst={0x2, 0x0, 0x3, 0x0, 0x0, 0x2}]}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x5}, 0x94)
ioctl$SIOCSIFHWADDR(r1, 0x8b19, &(0x7f0000000000)={'wlan0\x00', @random="7cf1e97c9e4f"})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r4, 0x8914, &(0x7f0000000000))
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r6 = socket$unix(0x1, 0x1, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x8000000, {0x0, 0x0, 0x0, r8, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x7}, @TCA_NETEM_RATE64={0xc, 0x8, 0x4526dd370cbcddac}]}}}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r9 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r9, 0x890b, &(0x7f0000000380)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6, @null, @bpq0, 0x0, [@bcast, @bcast, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
r10 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r10, &(0x7f0000000040)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1, @default}, 0x1c)
connect$rose(r10, &(0x7f0000000100)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x0, [@null, @null, @null, @default, @bcast, @default]}, 0x40)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x5, @loopback}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}]}}}]}, 0x58}}, 0x0)

82.469352ms ago: executing program 2 (id=324):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000540)="1a999d66", 0x4, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x100, @loopback}, 0x1c)
sendmmsg$sock(r0, &(0x7f00000004c0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)="89", 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r0, 0x1)
socket$inet6_udplite(0xa, 0x2, 0x88)
close(0x4)

505.845µs ago: executing program 2 (id=325):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}}, 0x4044004)
recvmmsg(r0, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x10003}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000240)=""/180, 0xb4}, {&(0x7f0000002900)=""/4103, 0x1007}, {&(0x7f00000017c0)=""/220, 0xdc}, {&(0x7f0000000000)=""/225, 0xe1}, {&(0x7f00000005c0)=""/146, 0x92}, {&(0x7f00000008c0)=""/212, 0xd4}], 0x6}, 0x80000002}], 0x4, 0x6000, 0x0)

295.349µs ago: executing program 0 (id=326):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0xfffd}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x8}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x78}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)

158.171µs ago: executing program 2 (id=327):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'lo\x00', &(0x7f0000000080)=@ethtool_cmd={0x14, 0x0, 0x3, 0x8, 0xff, 0xff, 0x0, 0xff, 0x0, 0xfe, 0x20000000, 0x7883, 0x0, 0x1, 0x1, 0x3, [0x0, 0x3]}})

0s ago: executing program 0 (id=328):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x2c}, @call={0x85, 0x0, 0x0, 0xf}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2107, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:65431' (ED25519) to the list of known hosts.
syzkaller login: [   48.582572][ T5781] cgroup: Unknown subsys name 'net'
[   48.700148][ T5781] cgroup: Unknown subsys name 'cpuset'
[   48.707090][ T5781] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   50.721800][ T5781] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.724639][ T5845] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.728488][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.731850][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.735663][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.739107][ T5845] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.809837][ T5236] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.813405][ T5236] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.817094][ T5236] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.820290][ T5236] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.823359][ T5236] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   55.842675][ T5845] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.846014][ T5845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.849146][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.853122][ T5845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.855862][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   55.979082][ T5843] chnl_net:caif_netlink_parms(): no params data found
[   56.122653][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.126587][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.129281][ T5843] bridge_slave_0: entered allmulticast mode
[   56.132122][ T5843] bridge_slave_0: entered promiscuous mode
[   56.137420][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.140019][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.142423][ T5843] bridge_slave_1: entered allmulticast mode
[   56.145081][ T5843] bridge_slave_1: entered promiscuous mode
[   56.187113][ T5848] chnl_net:caif_netlink_parms(): no params data found
[   56.222449][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.250148][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.302132][ T5843] team0: Port device team_slave_0 added
[   56.304975][ T5851] chnl_net:caif_netlink_parms(): no params data found
[   56.312367][ T5843] team0: Port device team_slave_1 added
[   56.394078][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.397606][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.409553][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.415148][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.418777][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.421786][ T5848] bridge_slave_0: entered allmulticast mode
[   56.426255][ T5848] bridge_slave_0: entered promiscuous mode
[   56.435116][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.438075][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.449014][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.453098][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.456764][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.459874][ T5848] bridge_slave_1: entered allmulticast mode
[   56.463687][ T5848] bridge_slave_1: entered promiscuous mode
[   56.517736][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.528476][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.581775][ T5851] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.584814][ T5851] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.588373][ T5851] bridge_slave_0: entered allmulticast mode
[   56.592093][ T5851] bridge_slave_0: entered promiscuous mode
[   56.597136][ T5848] team0: Port device team_slave_0 added
[   56.599478][ T5851] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.602511][ T5851] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.608028][ T5851] bridge_slave_1: entered allmulticast mode
[   56.611815][ T5851] bridge_slave_1: entered promiscuous mode
[   56.623267][ T5848] team0: Port device team_slave_1 added
[   56.648712][ T5843] hsr_slave_0: entered promiscuous mode
[   56.651199][ T5843] hsr_slave_1: entered promiscuous mode
[   56.677279][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.680049][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.689267][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.697427][ T5851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.701823][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.704797][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.716587][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.722432][ T5851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.784887][ T5851] team0: Port device team_slave_0 added
[   56.819784][ T5851] team0: Port device team_slave_1 added
[   56.831810][ T5848] hsr_slave_0: entered promiscuous mode
[   56.834887][ T5848] hsr_slave_1: entered promiscuous mode
[   56.838468][ T5848] debugfs: 'hsr0' already exists in 'hsr'
[   56.840912][ T5848] Cannot create hsr debugfs directory
[   56.880681][ T5851] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.883489][ T5851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.893857][ T5851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.926956][ T5851] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.929698][ T5851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.941977][ T5851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   57.069622][ T5851] hsr_slave_0: entered promiscuous mode
[   57.072904][ T5851] hsr_slave_1: entered promiscuous mode
[   57.082893][ T5851] debugfs: 'hsr0' already exists in 'hsr'
[   57.085300][ T5851] Cannot create hsr debugfs directory
[   57.201077][ T5843] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   57.221597][ T5843] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   57.243452][ T5843] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   57.270312][ T5843] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   57.323579][ T5848] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   57.349683][ T5848] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   57.356350][ T5848] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   57.372561][ T5848] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   57.437069][ T5851] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   57.444678][ T5851] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   57.452078][ T5851] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   57.458806][ T5851] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   57.567455][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.598852][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.617250][ T5843] 8021q: adding VLAN 0 to HW filter on device team0
[   57.622865][ T5851] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.644203][ T1100] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.647124][ T1100] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.652371][ T1100] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.654701][ T1100] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.662074][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[   57.690390][ T1100] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.693372][ T1100] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.701979][ T5851] 8021q: adding VLAN 0 to HW filter on device team0
[   57.709342][ T1100] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.712396][ T1100] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.727334][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.730356][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.748799][ T1100] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.751802][ T1100] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.799100][ T5845] Bluetooth: hci0: command tx timeout
[   57.803550][ T5848] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.879571][ T5845] Bluetooth: hci2: command tx timeout
[   57.882085][ T5845] Bluetooth: hci1: command tx timeout
[   57.961705][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.991335][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.053987][ T5848] veth0_vlan: entered promiscuous mode
[   58.060164][ T5851] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.063061][ T5843] veth0_vlan: entered promiscuous mode
[   58.072843][ T5843] veth1_vlan: entered promiscuous mode
[   58.082725][ T5848] veth1_vlan: entered promiscuous mode
[   58.102491][ T5843] veth0_macvtap: entered promiscuous mode
[   58.118113][ T5843] veth1_macvtap: entered promiscuous mode
[   58.141097][ T5848] veth0_macvtap: entered promiscuous mode
[   58.149189][ T5848] veth1_macvtap: entered promiscuous mode
[   58.163405][ T5851] veth0_vlan: entered promiscuous mode
[   58.171491][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.180711][ T5851] veth1_vlan: entered promiscuous mode
[   58.185195][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.202246][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.214390][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.219449][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.223026][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.229573][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.242862][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.258127][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.262062][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.279487][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.283266][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.318860][ T5851] veth0_macvtap: entered promiscuous mode
[   58.352490][ T5851] veth1_macvtap: entered promiscuous mode
[   58.373898][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.383999][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.398162][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.413811][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.419381][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.422312][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.440465][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.444271][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.453091][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.466131][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.473370][ T1100] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.476513][ T1100] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.539888][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.543252][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.561483][ T5843] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.595425][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.604110][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.655043][ T2190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.660453][ T2190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.709818][ T5912] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   58.873240][ T5926] bridge_slave_0: left allmulticast mode
[   58.875434][ T5926] bridge_slave_0: left promiscuous mode
[   58.880894][ T5926] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.899844][ T5926] bridge_slave_1: left allmulticast mode
[   58.902096][ T5926] bridge_slave_1: left promiscuous mode
[   58.904376][ T5926] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.950578][ T5926] bond0: (slave bond_slave_0): Releasing backup interface
[   58.962843][ T5926] bond0: (slave bond_slave_1): Releasing backup interface
[   59.018763][ T5926] team0: Port device team_slave_0 removed
[   59.034642][ T5926] team0: Port device team_slave_1 removed
[   59.042053][ T5926] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.044585][ T5926] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.059439][ T5926] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.062235][ T5926] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.111709][ T5931] team0: Mode changed to "broadcast"
[   59.134735][ T5938] vlan0: entered promiscuous mode
[   59.145160][ T5938] team0: Port device vlan0 added
[   59.168820][ T5943] tipc: Started in network mode
[   59.170946][ T5943] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   59.182390][ T5943] tipc: Enabled bearer <eth:team0>, priority 0
[   59.393974][ T5958] syzkaller1: entered promiscuous mode
[   59.402167][ T5958] syzkaller1: entered allmulticast mode
[   59.416581][ T5962] warning: `syz.2.20' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   59.472877][ T5965] netlink: 4 bytes leftover after parsing attributes in process `syz.2.21'.
[   59.866081][   T54] Bluetooth: hci0: command tx timeout
[   59.946054][   T54] Bluetooth: hci1: command tx timeout
[   59.948286][ T5845] Bluetooth: hci2: command tx timeout
[   60.306231][ T5873] tipc: Node number set to 11578026
[   60.358525][ T5981] Bluetooth: MGMT ver 1.23
[   60.472579][ T5983] Zero length message leads to an empty skb
[   60.824830][ T6007] 8021q: VLANs not supported on caif0
[   60.888338][ T6015] tipc: Trying to set illegal importance in message
[   61.024942][ T6025] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.41'.
[   61.078834][ T6027] netlink: 'syz.1.43': attribute type 1 has an invalid length.
[   61.082009][ T6027] netlink: 16166 bytes leftover after parsing attributes in process `syz.1.43'.
[   61.143756][ T6033] netlink: 40 bytes leftover after parsing attributes in process `syz.1.45'.
[   61.274260][ T6043] netlink: 144 bytes leftover after parsing attributes in process `syz.0.50'.
[   61.684382][ T6072] netlink: 12 bytes leftover after parsing attributes in process `syz.0.63'.
[   61.717079][ T6073] netlink: 'syz.1.61': attribute type 1 has an invalid length.
[   61.743205][ T6075] netlink: 27 bytes leftover after parsing attributes in process `syz.0.64'.
[   61.744311][ T6068] netlink: 8 bytes leftover after parsing attributes in process `syz.1.61'.
[   61.945983][ T5845] Bluetooth: hci0: command tx timeout
[   61.949034][ T6088] team0: entered promiscuous mode
[   61.951401][ T6088] team_slave_0: entered promiscuous mode
[   61.954133][ T6088] team_slave_1: entered promiscuous mode
[   61.961705][ T6088] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[   62.020215][ T6093] netlink: 4388 bytes leftover after parsing attributes in process `syz.1.72'.
[   62.028443][ T5845] Bluetooth: hci1: command tx timeout
[   62.030182][   T54] Bluetooth: hci2: command tx timeout
[   62.289590][ T6111] vlan2: entered promiscuous mode
[   62.291728][ T6111] bond0: entered promiscuous mode
[   62.294589][ T6111] vlan2: entered allmulticast mode
[   62.297993][ T6111] bond0: entered allmulticast mode
[   62.300550][ T6113] netlink: 28 bytes leftover after parsing attributes in process `syz.0.82'.
[   62.684476][   T12] nci: nci_add_new_protocol: the target found does not have the desired protocol
[   63.469928][ T6140] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   64.027186][   T54] Bluetooth: hci0: command tx timeout
[   64.108242][   T54] Bluetooth: hci1: command tx timeout
[   64.108270][ T5845] Bluetooth: hci2: command tx timeout
[   64.283812][ T6197] blkio.reset_stats is deprecated
[   64.562000][   T12] nci: nci_rx_work: unknown MT 0x1
[   65.257168][ T6231] __nla_validate_parse: 4 callbacks suppressed
[   65.257182][ T6231] netlink: 56 bytes leftover after parsing attributes in process `syz.0.123'.
[   65.290350][ T6233] syz.2.122 uses obsolete (PF_INET,SOCK_PACKET)
[   65.615705][ T6255] netlink: 'syz.0.132': attribute type 1 has an invalid length.
[   65.674205][ T6255] netlink: 8 bytes leftover after parsing attributes in process `syz.0.132'.
[   65.701175][ T6255] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   65.706719][ T6255] netlink: 4 bytes leftover after parsing attributes in process `syz.0.132'.
[   65.742420][ T6255] bond0: (slave bond_slave_1): Releasing backup interface
[   65.764132][ T6264] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[   65.798218][ T6269] netlink: 8 bytes leftover after parsing attributes in process `syz.1.139'.
[   65.962985][ T6283] team0: Port device vlan0 removed
[   65.970715][   T40] tipc: Resetting bearer <eth:team0>
[   66.140614][ T6298] netlink: 64 bytes leftover after parsing attributes in process `syz.2.153'.
[   66.259828][ T6310] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   66.262512][ T6310] syzkaller0: entered promiscuous mode
[   66.264759][ T6310] syzkaller0: entered allmulticast mode
[   66.297700][ T6310] tipc: Resetting bearer <eth:syzkaller0>
[   66.304942][ T6309] tipc: Resetting bearer <eth:syzkaller0>
[   66.323980][ T6309] tipc: Disabling bearer <eth:syzkaller0>
[   66.603486][ T6337] netlink: 48 bytes leftover after parsing attributes in process `syz.1.171'.
[   66.805305][ T6354] netlink: 8 bytes leftover after parsing attributes in process `syz.1.179'.
[   66.810756][ T6354] netlink: 16 bytes leftover after parsing attributes in process `syz.1.179'.
[   66.814691][ T6354] netlink: 40 bytes leftover after parsing attributes in process `syz.1.179'.
[   66.829620][ T6354] netlink: 540 bytes leftover after parsing attributes in process `syz.1.179'.
[   67.271880][ T6397] tipc: Resetting bearer <eth:team0>
[   67.337162][ T6403] openvswitch: netlink: Missing key (keys=40, expected=200000)
[   67.379888][ T6397] ieee802154 phy0 wpan0: encryption failed: -90
[   67.398148][ T6397] team0: Mode changed to "loadbalance"
[   67.484904][ T6413] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   68.224475][ T6458] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   68.226800][ T6458] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   68.433507][ T6466] 8021q: adding VLAN 0 to HW filter on device bond1
[   68.467689][ T6469] netlink: 'syz.0.234': attribute type 6 has an invalid length.
[   68.470591][ T6469] IPv6: NLM_F_CREATE should be specified when creating new route
[   68.789921][ T6488] netlink: 'syz.0.242': attribute type 9 has an invalid length.
[   68.802012][ T6488] netlink: 'syz.0.242': attribute type 6 has an invalid length.
[   68.915390][ T6496] netlink: 'syz.1.247': attribute type 1 has an invalid length.
[   68.920589][ T6496] netlink: 'syz.1.247': attribute type 3 has an invalid length.
[   69.685112][ T6530] netlink: 'syz.2.264': attribute type 1 has an invalid length.
[   69.841702][   T13] nci: nci_ntf_packet: unsupported ntf opcode 0xf3d
[   70.719993][ T6556] netlink: 'syz.1.274': attribute type 10 has an invalid length.
[   70.723321][ T6556] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[   71.010969][ T6575] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   71.023177][ T5873] IPVS: starting estimator thread 0...
[   71.027583][ T6575] tipc: Failed to remove unknown binding: 66,1,1/11578026:174630899/174630901
[   71.034608][ T6575] tipc: Failed to remove unknown binding: 66,1,1/11578026:174630899/174630901
[   71.041454][ T6575] tipc: Failed to remove unknown binding: 66,1,1/11578026:174630899/174630901
[   71.048078][ T6575] __nla_validate_parse: 61 callbacks suppressed
[   71.048098][ T6575] netlink: 788 bytes leftover after parsing attributes in process `syz.1.281'.
[   71.125979][ T6576] IPVS: using max 81 ests per chain, 194400 per kthread
[   71.151139][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[   71.153788][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[   71.445116][ T6598] netlink: 20 bytes leftover after parsing attributes in process `syz.2.292'.
[   71.716913][ T6617] netlink: 8 bytes leftover after parsing attributes in process `syz.1.299'.
[   71.857525][ T6627] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.872683][ T6622] netlink: 4 bytes leftover after parsing attributes in process `syz.0.301'.
[   71.920034][ T6627] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.064460][ T6636] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.068558][ T6636] bond0: (slave bond1): Enslaving as an active interface with an up link
[   72.084898][ T6627] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.168711][ T6627] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.269715][ T5872] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.278649][ T5872] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.288370][   T13] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.300007][   T13] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.523681][ T6672] netlink: 'syz.0.322': attribute type 29 has an invalid length.
[   72.534407][ T6672] netlink: 'syz.0.322': attribute type 29 has an invalid length.
[   72.540766][ T6672] netlink: 488 bytes leftover after parsing attributes in process `syz.0.322'.
[   72.607085][ T6682] netlink: 'syz.1.323': attribute type 5 has an invalid length.
[   72.663042][ T6687] ------------[ cut here ]------------
[   72.665144][ T6687] WARNING: CPU: 1 PID: 6687 at net/mac80211/rate.c:53 rate_control_rate_init+0x64a/0x6e0
[   72.668926][ T6687] Modules linked in:
[   72.670230][ T6687] CPU: 1 UID: 0 PID: 6687 Comm: syz.2.329 Not tainted syzkaller #0 PREEMPT(full) 
[   72.674431][ T6687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   72.679710][ T6687] RIP: 0010:rate_control_rate_init+0x64a/0x6e0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   72.682473][ T6687] Code: 82 01 00 00 20 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 a2 a6 cf f6 90 0f 0b 90 eb e1 e8 97 a6 cf f6 90 <0f> 0b 90 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 90 00 00 00
[   72.690639][ T6687] RSP: 0018:ffffc90006976f70 EFLAGS: 00010287
[   72.692686][ T6687] RAX: ffffffff8af004f9 RBX: ffff888105f04000 RCX: 0000000000080000
[   72.695402][ T6687] RDX: ffffc900080e9000 RSI: 0000000000000362 RDI: 0000000000000363
[   72.698642][ T6687] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8af00013
[   72.701998][ T6687] R10: dffffc0000000000 R11: ffffed1020be0831 R12: 1ffff11020be080a
[   72.705180][ T6687] R13: ffff88802f840e40 R14: 0000000000000001 R15: ffffffff8af00013
[   72.709094][ T6687] FS:  00007f27bf47e6c0(0000) GS:ffff8881a3c18000(0000) knlGS:0000000000000000
[   72.713466][ T6687] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   72.716204][ T6687] CR2: 0000200000001080 CR3: 0000000120934000 CR4: 00000000000006f0
[   72.719301][ T6687] Call Trace:
[   72.720709][ T6687]  <TASK>
[   72.721877][ T6687]  rate_control_rate_init_all_links+0x109/0x1a0
[   72.724122][ T6687]  sta_apply_auth_flags+0x1c2/0x400
[   72.726323][ T6687]  sta_apply_parameters+0xe4b/0x15b0
[   72.728447][ T6687]  ieee80211_add_station+0x424/0x6a0
[   72.730487][ T6687]  rdev_add_station+0x108/0x290
[   72.732080][ T6687]  nl80211_new_station+0x1755/0x1b70
[   72.733961][ T6687]  ? __pfx_nl80211_new_station+0x10/0x10
[   72.736229][ T6687]  ? netdev_run_todo+0xe1d/0xea0
[   72.737998][ T6687]  ? nl80211_pre_doit+0x4f1/0x930
[   72.739746][ T6687]  genl_family_rcv_msg_doit+0x215/0x300
[   72.741666][ T6687]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   72.743891][ T6687]  ? bpf_lsm_capable+0x9/0x20
[   72.745910][ T6687]  ? security_capable+0x7e/0x2e0
[   72.747549][ T6687]  genl_rcv_msg+0x60e/0x790
[   72.749087][ T6687]  ? __pfx_genl_rcv_msg+0x10/0x10
[   72.750752][ T6687]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   72.752672][ T6687]  ? __pfx_nl80211_new_station+0x10/0x10
[   72.754762][ T6687]  ? __pfx_nl80211_post_doit+0x10/0x10
[   72.756686][ T6687]  ? __asan_memcpy+0x40/0x70
[   72.758297][ T6687]  ? __pfx_ref_tracker_free+0x10/0x10
[   72.760056][ T6687]  netlink_rcv_skb+0x208/0x470
[   72.761870][ T6687]  ? __lock_acquire+0xab9/0xd20
[   72.763490][ T6687]  ? __pfx_genl_rcv_msg+0x10/0x10
[   72.765214][ T6687]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   72.767367][ T6687]  ? down_read+0x1ad/0x2e0
[   72.768859][ T6687]  genl_rcv+0x28/0x40
[   72.770320][ T6687]  netlink_unicast+0x82f/0x9e0
[   72.772174][ T6687]  ? __pfx_netlink_unicast+0x10/0x10
[   72.773860][ T6687]  ? netlink_sendmsg+0x642/0xb30
[   72.775382][ T6687]  ? skb_put+0x11b/0x210
[   72.777071][ T6687]  netlink_sendmsg+0x805/0xb30
[   72.778908][ T6687]  ? __pfx_netlink_sendmsg+0x10/0x10
[   72.780702][ T6687]  ? aa_sock_msg_perm+0xf1/0x1d0
[   72.782461][ T6687]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   72.784179][ T6687]  ? __pfx_netlink_sendmsg+0x10/0x10
[   72.786397][ T6687]  __sock_sendmsg+0x21c/0x270
[   72.788356][ T6687]  ____sys_sendmsg+0x505/0x830
[   72.790310][ T6687]  ? __pfx_____sys_sendmsg+0x10/0x10
[   72.792118][ T6687]  ? import_iovec+0x74/0xa0
[   72.793844][ T6687]  ___sys_sendmsg+0x21f/0x2a0
[   72.795907][ T6687]  ? __pfx____sys_sendmsg+0x10/0x10
[   72.798043][ T6687]  ? __fget_files+0x2a/0x420
[   72.799937][ T6687]  ? __fget_files+0x3a0/0x420
[   72.801880][ T6687]  __x64_sys_sendmsg+0x19b/0x260
[   72.803872][ T6687]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   72.806092][ T6687]  ? rcu_is_watching+0x15/0xb0
[   72.808353][ T6687]  ? do_syscall_64+0xbe/0x3b0
[   72.810294][ T6687]  do_syscall_64+0xfa/0x3b0
[   72.811901][ T6687]  ? lockdep_hardirqs_on+0x9c/0x150
[   72.813764][ T6687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.816405][ T6687]  ? exc_page_fault+0x9f/0xf0
[   72.818369][ T6687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.820783][ T6687] RIP: 0033:0x7f27be58ebe9
[   72.822684][ T6687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.829605][ T6687] RSP: 002b:00007f27bf47e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   72.832830][ T6687] RAX: ffffffffffffffda RBX: 00007f27be7c5fa0 RCX: 00007f27be58ebe9
[   72.835376][ T6687] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000006
[   72.838104][ T6687] RBP: 00007f27be611e19 R08: 0000000000000000 R09: 0000000000000000
[   72.840845][ T6687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   72.844086][ T6687] R13: 00007f27be7c6038 R14: 00007f27be7c5fa0 R15: 00007ffc87f0e2d8
[   72.847524][ T6687]  </TASK>
[   72.848819][ T6687] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   72.851815][ T6687] CPU: 1 UID: 0 PID: 6687 Comm: syz.2.329 Not tainted syzkaller #0 PREEMPT(full) 
[   72.855546][ T6687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   72.859699][ T6687] Call Trace:
[   72.860918][ T6687]  <TASK>
[   72.861991][ T6687]  dump_stack_lvl+0x99/0x250
[   72.863470][ T6687]  ? __asan_memcpy+0x40/0x70
[   72.865372][ T6687]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.867526][ T6687]  ? __pfx__printk+0x10/0x10
[   72.869439][ T6687]  vpanic+0x281/0x750
[   72.870945][ T6687]  ? __pfx__printk+0x10/0x10
[   72.872635][ T6687]  ? __pfx_vpanic+0x10/0x10
[   72.874077][ T6687]  ? is_bpf_text_address+0x292/0x2b0
[   72.875968][ T6687]  panic+0xb9/0xc0
[   72.877132][ T6687]  ? __pfx_panic+0x10/0x10
[   72.878629][ T6687]  __warn+0x31b/0x4b0
[   72.879912][ T6687]  ? rate_control_rate_init+0x64a/0x6e0
[   72.881621][ T6687]  ? rate_control_rate_init+0x64a/0x6e0
[   72.883855][ T6687]  report_bug+0x2be/0x4f0
[   72.885441][ T6687]  ? rate_control_rate_init+0x64a/0x6e0
[   72.887541][ T6687]  ? rate_control_rate_init+0x64a/0x6e0
[   72.889385][ T6687]  ? rate_control_rate_init+0x64c/0x6e0
[   72.891293][ T6687]  handle_bug+0x84/0x160
[   72.893002][ T6687]  exc_invalid_op+0x1a/0x50
[   72.894871][ T6687]  asm_exc_invalid_op+0x1a/0x20
[   72.896532][ T6687] RIP: 0010:rate_control_rate_init+0x64a/0x6e0
[   72.898985][ T6687] Code: 82 01 00 00 20 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 a2 a6 cf f6 90 0f 0b 90 eb e1 e8 97 a6 cf f6 90 <0f> 0b 90 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 90 00 00 00
[   72.906780][ T6687] RSP: 0018:ffffc90006976f70 EFLAGS: 00010287
[   72.909204][ T6687] RAX: ffffffff8af004f9 RBX: ffff888105f04000 RCX: 0000000000080000
[   72.912363][ T6687] RDX: ffffc900080e9000 RSI: 0000000000000362 RDI: 0000000000000363
[   72.915558][ T6687] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8af00013
[   72.918770][ T6687] R10: dffffc0000000000 R11: ffffed1020be0831 R12: 1ffff11020be080a
[   72.921955][ T6687] R13: ffff88802f840e40 R14: 0000000000000001 R15: ffffffff8af00013
[   72.925020][ T6687]  ? rate_control_rate_init+0x163/0x6e0
[   72.926816][ T6687]  ? rate_control_rate_init+0x163/0x6e0
[   72.928580][ T6687]  ? rate_control_rate_init+0x649/0x6e0
[   72.930399][ T6687]  rate_control_rate_init_all_links+0x109/0x1a0
[   72.932462][ T6687]  sta_apply_auth_flags+0x1c2/0x400
[   72.934225][ T6687]  sta_apply_parameters+0xe4b/0x15b0
[   72.936007][ T6687]  ieee80211_add_station+0x424/0x6a0
[   72.937959][ T6687]  rdev_add_station+0x108/0x290
[   72.939905][ T6687]  nl80211_new_station+0x1755/0x1b70
[   72.941945][ T6687]  ? __pfx_nl80211_new_station+0x10/0x10
[   72.944026][ T6687]  ? netdev_run_todo+0xe1d/0xea0
[   72.946018][ T6687]  ? nl80211_pre_doit+0x4f1/0x930
[   72.947883][ T6687]  genl_family_rcv_msg_doit+0x215/0x300
[   72.949604][ T6687]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   72.951608][ T6687]  ? bpf_lsm_capable+0x9/0x20
[   72.953155][ T6687]  ? security_capable+0x7e/0x2e0
[   72.955005][ T6687]  genl_rcv_msg+0x60e/0x790
[   72.956882][ T6687]  ? __pfx_genl_rcv_msg+0x10/0x10
[   72.958585][ T6687]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   72.960756][ T6687]  ? __pfx_nl80211_new_station+0x10/0x10
[   72.963117][ T6687]  ? __pfx_nl80211_post_doit+0x10/0x10
[   72.965380][ T6687]  ? __asan_memcpy+0x40/0x70
[   72.967293][ T6687]  ? __pfx_ref_tracker_free+0x10/0x10
[   72.969263][ T6687]  netlink_rcv_skb+0x208/0x470
[   72.971245][ T6687]  ? __lock_acquire+0xab9/0xd20
[   72.973302][ T6687]  ? __pfx_genl_rcv_msg+0x10/0x10
[   72.975316][ T6687]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   72.977502][ T6687]  ? down_read+0x1ad/0x2e0
[   72.979329][ T6687]  genl_rcv+0x28/0x40
[   72.980861][ T6687]  netlink_unicast+0x82f/0x9e0
[   72.982904][ T6687]  ? __pfx_netlink_unicast+0x10/0x10
[   72.985090][ T6687]  ? netlink_sendmsg+0x642/0xb30
[   72.987151][ T6687]  ? skb_put+0x11b/0x210
[   72.988925][ T6687]  netlink_sendmsg+0x805/0xb30
[   72.990909][ T6687]  ? __pfx_netlink_sendmsg+0x10/0x10
[   72.993092][ T6687]  ? aa_sock_msg_perm+0xf1/0x1d0
[   72.995144][ T6687]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   72.997336][ T6687]  ? __pfx_netlink_sendmsg+0x10/0x10
[   72.999479][ T6687]  __sock_sendmsg+0x21c/0x270
[   73.001436][ T6687]  ____sys_sendmsg+0x505/0x830
[   73.003437][ T6687]  ? __pfx_____sys_sendmsg+0x10/0x10
[   73.005581][ T6687]  ? import_iovec+0x74/0xa0
[   73.007321][ T6687]  ___sys_sendmsg+0x21f/0x2a0
[   73.009256][ T6687]  ? __pfx____sys_sendmsg+0x10/0x10
[   73.011083][ T6687]  ? __fget_files+0x2a/0x420
[   73.012634][ T6687]  ? __fget_files+0x3a0/0x420
[   73.014401][ T6687]  __x64_sys_sendmsg+0x19b/0x260
[   73.016248][ T6687]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   73.018428][ T6687]  ? rcu_is_watching+0x15/0xb0
[   73.020353][ T6687]  ? do_syscall_64+0xbe/0x3b0
[   73.022111][ T6687]  do_syscall_64+0xfa/0x3b0
[   73.023532][ T6687]  ? lockdep_hardirqs_on+0x9c/0x150
[   73.025162][ T6687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.027152][ T6687]  ? exc_page_fault+0x9f/0xf0
[   73.028711][ T6687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.030832][ T6687] RIP: 0033:0x7f27be58ebe9
[   73.032388][ T6687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.039460][ T6687] RSP: 002b:00007f27bf47e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.042537][ T6687] RAX: ffffffffffffffda RBX: 00007f27be7c5fa0 RCX: 00007f27be58ebe9
[   73.045808][ T6687] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000006
[   73.048354][ T6687] RBP: 00007f27be611e19 R08: 0000000000000000 R09: 0000000000000000
[   73.051167][ T6687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   73.053882][ T6687] R13: 00007f27be7c6038 R14: 00007f27be7c5fa0 R15: 00007ffc87f0e2d8
[   73.056578][ T6687]  </TASK>
[   73.058520][ T6687] Kernel Offset: disabled
[   73.059927][ T6687] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:12:59  Registers:
info registers vcpu 0

CPU#0
RAX=1ffffffff3365b01 RBX=000000000002d34a RCX=ffffffff822e474b RDX=0000000000000000
RSI=0000000000000004 RDI=ffff88801bda0768 RBP=ffff88801bda0720 RSP=ffffc90006a27558
R8 =ffff88801bda076c R9 =ffff800000000000 R10=dffffc0000000000 R11=fffff94000169a51
R12=0000000000000000 R13=0000000000000001 R14=ffffffff822e4617 R15=ffff88801bda0768
RIP=ffffffff82230167 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b8618000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c27f859 CR3=000000000df36000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0100000000000000 0000000000000120
XMM02=00007f8b4e797498 00007f8b4e797470 XMM03=00007f8b4e7974a8 00007f8b4e7974a0
XMM04=00007f8b4f2fd100 00007f8b4e797460 XMM05=00007f8b4e797478 00007f8b4e7974c0
XMM06=00007f8b4e7974b8 00007f8b4e7974b0 XMM07=00007f8b4e7974a8 00007f8b4e7974a0
XMM08=0000000000000000 00007f8b4e612ee7 XMM09=0000000000000000 00007f8b4e612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=1ffffffff33be460 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=0000000000010361 RDI=0000000000010362 RBP=ffffffff99df26b0 RSP=ffffc900069766b0
R8 =ffff888107610237 R9 =1ffff11020ec2046 R10=dffffc0000000000 R11=ffffffff854f37f0
R12=dffffc0000000000 R13=0000000000000000 R14=ffffffff99df2420 R15=0000000000000000
RIP=ffffffff854f3867 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f27bf47e6c0 ffffffff 00c00000
GS =0000 ffff8881a3c18000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000001080 CR3=0000000120934000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffff ff00000000000000 XMM01=ffffffffffffffff ffffffffffffffff
XMM02=ffffffffffffffff ffffffffffffffff XMM03=ffffffffffffffff ffffffffffffffff
XMM04=00007f27bf2fd100 00007f27be797460 XMM05=00007f27be797478 00007f27be7974c0
XMM06=00007f27be7974b8 00007f27be7974b0 XMM07=00007f27be7974a8 00007f27be7974a0
XMM08=0000000000000000 00007f27be612ee7 XMM09=0000000000000000 00007f27be612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
