last executing test programs:

1.185517493s ago: executing program 0 (id=422):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000003c0)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f00000008c0)=0x2, 0x4)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)

368.782915ms ago: executing program 1 (id=448):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000500), r0)
sendmsg$NFC_CMD_SE_IO(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000005c0)={0x28, r1, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_SE_APDU={0x4}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

368.3691ms ago: executing program 2 (id=449):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000800), &(0x7f0000000840)=0x4)

298.204322ms ago: executing program 1 (id=450):
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x6}, 0x38)

297.799162ms ago: executing program 0 (id=451):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r2, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)

297.598794ms ago: executing program 2 (id=452):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40))
socket$packet(0x11, 0x3, 0x300)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket$kcm(0x2, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000d"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket(0x28, 0x1, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
socket$rds(0x15, 0x5, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r2}, 0x18)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r3, @ANYRES64=0x0, @ANYRESOCT=r1], 0x20)

231.020915ms ago: executing program 1 (id=453):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x20, r1, 0x301, 0x0, 0x0, {0x1c}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20044405}, 0x8044)

230.772195ms ago: executing program 2 (id=454):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)=@updsa={0x104, 0x1a, 0xa21, 0x0, 0x0, {{@in=@remote, @in=@dev={0xac, 0x14, 0x14, 0x27}, 0x0, 0x0, 0x4e22, 0x0, 0x0, 0x0, 0x0, 0x6c}, {@in, 0x0, 0x3c}, @in6=@empty, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x8d8d}, {}, 0x0, 0xffffffff, 0x2, 0x0, 0x0, 0x39}, [@coaddr={0x14, 0xe, @in6=@dev={0xfe, 0x80, '\x00', 0x17}}]}, 0x104}}, 0x810)

230.578749ms ago: executing program 0 (id=455):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000500000000000000000000008500000041000000850000000700000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000240)="354da925f340a56cd9bd738d6055", 0x0, 0x501, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

128.31439ms ago: executing program 1 (id=456):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'gre0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x12}]}}}]}, 0x38}}, 0x0)

128.117784ms ago: executing program 0 (id=457):
r0 = socket(0x2b, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000180)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@loopback={0x600}, 0x8000000, 0x0, 0xff, 0x0, 0x4}, 0x20)
close(0x3)

127.82689ms ago: executing program 2 (id=458):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="0e000100020075"], 0x8)

71.213828ms ago: executing program 1 (id=459):
syz_emit_ethernet(0x5e, &(0x7f0000000c00)={@random="c3472ab8358d", @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00\x00\b', 0x28, 0x3a, 0xff, @dev={0xfe, 0x80, '\x00', 0xe}, @mcast2, {[], @ndisc_redir={0x87, 0x0, 0x0, '\x00', @rand_addr=' \x01\x00', @private1}}}}}}, 0x0)

70.982301ms ago: executing program 2 (id=460):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r0, 0x8947, &(0x7f0000000580)={'bond0\x00', 0x10001})

70.758577ms ago: executing program 0 (id=461):
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x7)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000007, 0x31, 0xffffffffffffffff, 0x0)
ioctl$SIOCAX25GETINFO(r0, 0x89ed, &(0x7f0000000000))

410.327µs ago: executing program 1 (id=462):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000780)=@base={0xa, 0x16, 0x800, 0x7f}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018100000", @ANYRES32=r0, @ANYBLOB="00000000000000006100000a00000000180000000000000000000000000000009500000000000000360a00000000000018010000202078250000000000202020631af8ff00000000bfa100000000000007010000f8ffffffb7020000080000e3b50200000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x4, 0x1e, &(0x7f0000000340)=""/222}, 0x21)

142.78µs ago: executing program 0 (id=463):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x11000)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

0s ago: executing program 2 (id=464):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x4, &(0x7f00000001c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x11}]}, &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffd}, 0x39)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:13900' (ED25519) to the list of known hosts.
syzkaller login: [   56.071362][ T5813] cgroup: Unknown subsys name 'net'
[   56.185788][ T5813] cgroup: Unknown subsys name 'cpuset'
[   56.190698][ T5813] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   58.866114][ T5813] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   63.853797][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   63.868511][ T5219] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   63.872642][ T5219] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   63.876351][ T5219] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   63.880478][ T5842] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   63.884083][ T5842] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   63.908627][ T5840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   63.912936][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   63.916996][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   63.920800][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   63.924698][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   63.930660][   T54] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   63.942505][   T54] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   63.947021][   T54] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   63.952097][   T54] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   64.285976][ T5834] chnl_net:caif_netlink_parms(): no params data found
[   64.387843][ T5830] chnl_net:caif_netlink_parms(): no params data found
[   64.423042][ T5835] chnl_net:caif_netlink_parms(): no params data found
[   64.463450][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.466282][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.468803][ T5834] bridge_slave_0: entered allmulticast mode
[   64.472154][ T5834] bridge_slave_0: entered promiscuous mode
[   64.507702][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.510183][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.513071][ T5834] bridge_slave_1: entered allmulticast mode
[   64.516046][ T5834] bridge_slave_1: entered promiscuous mode
[   64.580682][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.584155][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.587077][ T5830] bridge_slave_0: entered allmulticast mode
[   64.592189][ T5830] bridge_slave_0: entered promiscuous mode
[   64.616449][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.623014][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.626816][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.629787][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.635441][ T5830] bridge_slave_1: entered allmulticast mode
[   64.639596][ T5830] bridge_slave_1: entered promiscuous mode
[   64.658256][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.661335][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.664213][ T5835] bridge_slave_0: entered allmulticast mode
[   64.668069][ T5835] bridge_slave_0: entered promiscuous mode
[   64.673145][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.675954][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.678783][ T5835] bridge_slave_1: entered allmulticast mode
[   64.682949][ T5835] bridge_slave_1: entered promiscuous mode
[   64.743758][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.750499][ T5834] team0: Port device team_slave_0 added
[   64.769720][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.776283][ T5834] team0: Port device team_slave_1 added
[   64.794950][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.844063][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.850224][ T5830] team0: Port device team_slave_0 added
[   64.856551][ T5830] team0: Port device team_slave_1 added
[   64.872285][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.875095][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.885140][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.916529][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.919419][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.931989][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.950511][ T5835] team0: Port device team_slave_0 added
[   64.953619][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.955892][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.966449][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.979180][ T5835] team0: Port device team_slave_1 added
[   64.991988][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.994286][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.004099][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.051401][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.053639][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.062193][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.072832][ T5834] hsr_slave_0: entered promiscuous mode
[   65.075988][ T5834] hsr_slave_1: entered promiscuous mode
[   65.079670][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.082525][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.091659][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.137361][ T5830] hsr_slave_0: entered promiscuous mode
[   65.140611][ T5830] hsr_slave_1: entered promiscuous mode
[   65.145002][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   65.148246][ T5830] Cannot create hsr debugfs directory
[   65.219863][ T5835] hsr_slave_0: entered promiscuous mode
[   65.223658][ T5835] hsr_slave_1: entered promiscuous mode
[   65.226506][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   65.229497][ T5835] Cannot create hsr debugfs directory
[   65.549458][ T5834] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   65.557562][ T5834] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   65.563572][ T5834] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   65.577074][ T5834] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   65.620274][ T5830] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   65.636446][ T5830] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   65.654093][ T5830] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   65.659284][ T5830] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   65.732711][ T5835] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   65.739419][ T5835] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   65.757586][ T5835] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   65.773448][ T5835] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   65.845489][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.856224][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.884398][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   65.896238][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   65.913292][ T1086] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.916420][ T1086] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.922296][ T1086] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.925189][ T1086] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.946125][ T1086] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.949018][ T1086] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.965313][ T1086] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.968294][ T1086] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.972673][   T54] Bluetooth: hci0: command tx timeout
[   65.975065][   T54] Bluetooth: hci2: command tx timeout
[   65.975968][ T5838] Bluetooth: hci1: command tx timeout
[   66.070986][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.114580][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   66.143331][   T32] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.145709][   T32] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.158697][   T32] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.161684][   T32] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.277866][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.358064][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.387895][ T5834] veth0_vlan: entered promiscuous mode
[   66.406469][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.419266][ T5834] veth1_vlan: entered promiscuous mode
[   66.484154][ T5834] veth0_macvtap: entered promiscuous mode
[   66.505226][ T5830] veth0_vlan: entered promiscuous mode
[   66.508211][ T5835] veth0_vlan: entered promiscuous mode
[   66.517055][ T5834] veth1_macvtap: entered promiscuous mode
[   66.530750][ T5835] veth1_vlan: entered promiscuous mode
[   66.538467][ T5830] veth1_vlan: entered promiscuous mode
[   66.551696][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.573749][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.583858][ T5834] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.587431][ T5834] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.590854][ T5834] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.594574][ T5834] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.628775][ T5835] veth0_macvtap: entered promiscuous mode
[   66.632865][ T5830] veth0_macvtap: entered promiscuous mode
[   66.648452][ T5835] veth1_macvtap: entered promiscuous mode
[   66.654828][ T5830] veth1_macvtap: entered promiscuous mode
[   66.709275][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.722551][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.739187][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.767587][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.776391][   T32] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.779629][ T5835] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.785043][   T32] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.785574][ T5835] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.795161][ T5835] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.798506][ T5835] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.805364][ T5830] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.808784][ T5830] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.814439][ T5830] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.817764][ T5830] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.873587][   T32] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.877537][   T32] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.946088][ T5834] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   66.951923][   T27] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.954640][   T27] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.024495][ T1086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.027218][ T1086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.075056][ T1086] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.075816][   T32] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.077707][ T1086] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.102385][   T32] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.140566][ T5899] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4'.
[   67.410232][ T5912] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7'.
[   67.495999][ T5922] netlink: 'syz.1.12': attribute type 4 has an invalid length.
[   67.774892][ T5940] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   67.790823][ T5940] netlink: 'syz.2.19': attribute type 10 has an invalid length.
[   67.798023][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.807433][ T5940] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   68.051508][ T5833] Bluetooth: hci0: command tx timeout
[   68.053784][ T5838] Bluetooth: hci2: command tx timeout
[   68.061760][ T5838] Bluetooth: hci1: command tx timeout
[   68.087528][ T5950] Bluetooth: MGMT ver 1.23
[   68.325862][ T5958] netlink: 8 bytes leftover after parsing attributes in process `syz.0.29'.
[   68.466142][ T5968] netlink: 36 bytes leftover after parsing attributes in process `syz.1.34'.
[   68.577246][ T5974] warning: `syz.0.36' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   68.978219][ T5996] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.47'.
[   69.124156][ T6003] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   69.259556][ T6009] netlink: 4 bytes leftover after parsing attributes in process `syz.1.53'.
[   69.279472][ T6011] sctp: [Deprecated]: syz.2.54 (pid 6011) Use of struct sctp_assoc_value in delayed_ack socket option.
[   69.279472][ T6011] Use struct sctp_sack_info instead
[   69.443947][ T6016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.57'.
[   69.543079][ T6021] netlink: 'syz.0.59': attribute type 39 has an invalid length.
[   69.736801][ T6037] syz.2.67 uses obsolete (PF_INET,SOCK_PACKET)
[   69.821691][ T6041] veth0: entered promiscuous mode
[   69.824335][ T6041] veth0: left promiscuous mode
[   70.098049][ T6066] netlink: 'syz.2.81': attribute type 14 has an invalid length.
[   70.130615][ T6066] netlink: 'syz.2.81': attribute type 14 has an invalid length.
[   70.133880][ T5838] Bluetooth: hci1: command tx timeout
[   70.135667][ T5838] Bluetooth: hci2: command tx timeout
[   70.137614][ T5838] Bluetooth: hci0: command tx timeout
[   70.210320][ T6066] Zero length message leads to an empty skb
[   70.400332][ T6089] netlink: 12 bytes leftover after parsing attributes in process `syz.2.92'.
[   70.411899][ T6089] macvlan2: entered promiscuous mode
[   70.414057][ T6089] macvlan2: entered allmulticast mode
[   70.552059][ T6101] sctp: [Deprecated]: syz.2.97 (pid 6101) Use of int in max_burst socket option deprecated.
[   70.552059][ T6101] Use struct sctp_assoc_value instead
[   71.007102][ T6144] netlink: 'syz.1.118': attribute type 1 has an invalid length.
[   71.009896][ T6144] netlink: 236 bytes leftover after parsing attributes in process `syz.1.118'.
[   71.013924][ T6144] NCSI netlink: No device for ifindex 813332851
[   71.101245][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[   71.103952][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[   71.770881][ T6190] netlink: 'syz.2.139': attribute type 8 has an invalid length.
[   71.790796][ T6192] netlink: 'syz.1.140': attribute type 1 has an invalid length.
[   71.795706][ T6192] netlink: 24 bytes leftover after parsing attributes in process `syz.1.140'.
[   72.223547][ T5833] Bluetooth: hci0: command tx timeout
[   72.225282][ T5833] Bluetooth: hci2: command tx timeout
[   72.225487][ T5838] Bluetooth: hci1: command tx timeout
[   72.328539][ T6232] netlink: 'syz.2.159': attribute type 1 has an invalid length.
[   72.332246][ T6232] netlink: 244 bytes leftover after parsing attributes in process `syz.2.159'.
[   72.613407][ T6247] netlink: 4 bytes leftover after parsing attributes in process `syz.0.165'.
[   72.618260][ T6247] netlink: 12 bytes leftover after parsing attributes in process `syz.0.165'.
[   72.809948][ T6257] netlink: 20 bytes leftover after parsing attributes in process `syz.2.170'.
[   72.832213][ T6257] netlink: 4 bytes leftover after parsing attributes in process `syz.2.170'.
[   73.135850][ T6274] 8021q: adding VLAN 0 to HW filter on device batadv1
[   73.142797][ T6274] team0: Port device batadv1 added
[   73.252399][ T6280] netlink: 44 bytes leftover after parsing attributes in process `syz.1.181'.
[   73.292712][ T6280] netlink: 'syz.1.181': attribute type 1 has an invalid length.
[   73.295806][ T6280] netlink: 224 bytes leftover after parsing attributes in process `syz.1.181'.
[   73.295817][ T6284] syzkaller1: entered promiscuous mode
[   73.302556][ T6284] syzkaller1: entered allmulticast mode
[   73.396697][ T6288] netlink: 60 bytes leftover after parsing attributes in process `syz.2.184'.
[   73.400510][ T6288] netlink: 84 bytes leftover after parsing attributes in process `syz.2.184'.
[   73.570171][ T6294] netlink: 20 bytes leftover after parsing attributes in process `syz.0.187'.
[   73.836373][ T6311] netlink: 'syz.2.190': attribute type 1 has an invalid length.
[   74.513841][ T6333] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   74.517539][ T6333] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   74.520999][ T6333] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   74.525015][ T6333] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   74.540749][ T6333] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   74.544629][ T6333] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   74.548713][ T6333] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   74.552779][ T6333] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   74.689492][ T6342] netlink: 'syz.0.205': attribute type 13 has an invalid length.
[   74.707291][ T6342] netlink: 'syz.0.205': attribute type 17 has an invalid length.
[   74.835519][ T6342] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   74.970034][ T6334] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   75.030662][ T6342] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   75.088306][ T6334] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   75.604411][ T6334] syz.0.205 (6334) used greatest stack depth: 18552 bytes left
[   75.871003][ T6369] ip6gretap0: entered promiscuous mode
[   75.882157][ T6369] vlan2: entered promiscuous mode
[   76.545291][   T33] audit: type=1800 audit(1752523760.072:2): pid=6394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.225" name="blkio.bfq.time_recursive" dev="tmpfs" ino=424 res=0 errno=0
[   76.559572][   T33] audit: type=1800 audit(1752523760.082:3): pid=6394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.225" name="blkio.bfq.time_recursive" dev="tmpfs" ino=424 res=0 errno=0
[   76.708540][ T6407] netlink: 'syz.2.232': attribute type 10 has an invalid length.
[   76.734960][ T6407] team0: Port device dummy0 added
[   77.400111][ T6448] __nla_validate_parse: 9 callbacks suppressed
[   77.400122][ T6448] netlink: 56 bytes leftover after parsing attributes in process `syz.2.250'.
[   78.037112][ T6467] netlink: 'syz.0.258': attribute type 4 has an invalid length.
[   78.238105][ T6477] Cannot find set identified by id 0 to match
[   78.339121][ T6483] netlink: 4 bytes leftover after parsing attributes in process `syz.1.266'.
[   78.347637][ T6483] netlink: 4 bytes leftover after parsing attributes in process `syz.1.266'.
[   78.352544][ T6485] netlink: 'syz.0.267': attribute type 1 has an invalid length.
[   78.406032][ T6485] bond1: (slave gretap1): making interface the new active one
[   78.410639][ T6485] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   80.360774][ T6573] netlink: 4 bytes leftover after parsing attributes in process `syz.1.309'.
[   80.399107][ T6573] netlink: 4 bytes leftover after parsing attributes in process `syz.1.309'.
[   80.840202][ T6609] Driver unsupported XDP return value 0 on prog  (id 58) dev N/A, expect packet loss!
[   80.897336][ T6611] netlink: 'syz.1.327': attribute type 22 has an invalid length.
[   80.934587][ T6613] netlink: 4 bytes leftover after parsing attributes in process `syz.2.328'.
[   81.053194][ T6621] netlink: 8 bytes leftover after parsing attributes in process `syz.2.332'.
[   81.055982][ T6621] netlink: 8 bytes leftover after parsing attributes in process `syz.2.332'.
[   81.120075][ T6627] netlink: 24 bytes leftover after parsing attributes in process `syz.2.335'.
[   81.432564][ T6654] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   81.474034][ T6660] netlink: 4 bytes leftover after parsing attributes in process `syz.0.351'.
[   81.543494][ T6664] vlan0: entered promiscuous mode
[   81.705189][ T6670] netlink: 'syz.2.356': attribute type 3 has an invalid length.
[   81.708637][ T6670] netlink: 'syz.2.356': attribute type 3 has an invalid length.
[   81.986601][ T6680] xt_CT: No such helper "syz0"
[   82.450282][ T6705] __nla_validate_parse: 3 callbacks suppressed
[   82.450300][ T6705] netlink: 8 bytes leftover after parsing attributes in process `syz.1.373'.
[   82.458638][ T6705] netlink: 120 bytes leftover after parsing attributes in process `syz.1.373'.
[   82.464791][ T6705] netlink: 8 bytes leftover after parsing attributes in process `syz.1.373'.
[   83.199667][ T6759] netlink: 'syz.2.397': attribute type 1 has an invalid length.
[   83.209615][ T6759] netlink: 36 bytes leftover after parsing attributes in process `syz.2.397'.
[   83.290038][ T6767] xt_cgroup: path and classid specified
[   83.402730][ T6776] lo: entered promiscuous mode
[   83.406597][ T6777] IPv6: addrconf: prefix option has invalid lifetime
[   83.410121][ T6776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.405'.
[   83.439029][ T6777] netlink: 8 bytes leftover after parsing attributes in process `syz.1.404'.
[   83.446352][ T6777] netlink: 8 bytes leftover after parsing attributes in process `syz.1.404'.
[   83.611679][ T6773] infiniband syz!: set active
[   83.614011][ T6773] infiniband syz!: added team_slave_0
[   83.676053][ T6773] RDS/IB: syz!: added
[   83.678112][ T6773] smc: adding ib device syz! with port count 1
[   83.685786][ T6773] smc:    ib device syz! port 1 has pnetid 
[   83.693598][ T6774] lo: left promiscuous mode
[   84.180340][ T6790] xt_hashlimit: size too large, truncated to 1048576
[   84.464040][ T6808] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2878)
[   84.466027][ T6810] netlink: 204 bytes leftover after parsing attributes in process `syz.1.418'.
[   84.466946][ T6808] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[   84.578148][ T6825] netlink: 'syz.0.422': attribute type 4 has an invalid length.
[   84.580984][ T6825] netlink: 'syz.0.422': attribute type 4 has an invalid length.
[   84.600768][ T6827] netlink: 'syz.2.426': attribute type 2 has an invalid length.
[   84.605880][ T6827] netlink: 119 bytes leftover after parsing attributes in process `syz.2.426'.
[   84.641797][ T6824] block nbd0: server does not support multiple connections per device.
[   84.647695][ T6824] block nbd0: shutting down sockets
[   85.036627][ T6858] netlink: 'syz.1.440': attribute type 2 has an invalid length.
[   85.057960][ T6859] netlink: 8 bytes leftover after parsing attributes in process `syz.2.439'.
[   85.615536][ T6896] Bluetooth: MGMT ver 1.23
[   85.741778][ T6909] 
[   85.742716][ T6909] =============================
[   85.744222][ T6909] WARNING: suspicious RCU usage
[   85.745798][ T6909] 6.16.0-rc5-syzkaller-00159-g47c84997c686-dirty #0 Not tainted
[   85.749787][ T6909] -----------------------------
[   85.751909][ T6909] net/core/netclassid_cgroup.c:24 suspicious rcu_dereference_check() usage!
[   85.754728][ T6909] 
[   85.754728][ T6909] other info that might help us debug this:
[   85.754728][ T6909] 
[   85.758017][ T6909] 
[   85.758017][ T6909] rcu_scheduler_active = 2, debug_locks = 1
[   85.760563][ T6909] 1 lock held by syz.2.464/6909:
[   85.762347][ T6909]  #0: ffffffff8e13f340 (rcu_read_lock_trace){....}-{0:0}, at: rcu_read_lock_trace+0x38/0x80
[   85.765677][ T6909] 
[   85.765677][ T6909] stack backtrace:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   85.767541][ T6909] CPU: 1 UID: 0 PID: 6909 Comm: syz.2.464 Not tainted 6.16.0-rc5-syzkaller-00159-g47c84997c686-dirty #0 PREEMPT(full) 
[   85.767554][ T6909] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   85.767562][ T6909] Call Trace:
[   85.767567][ T6909]  <TASK>
[   85.767572][ T6909]  dump_stack_lvl+0x189/0x250
[   85.767591][ T6909]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.767602][ T6909]  ? __pfx__printk+0x10/0x10
[   85.767616][ T6909]  ? print_lock_name+0xde/0x100
[   85.767630][ T6909]  lockdep_rcu_suspicious+0x140/0x1d0
[   85.767645][ T6909]  task_cls_state+0x1a5/0x1d0
[   85.767658][ T6909]  bpf_get_cgroup_classid_curr+0x18/0x60
[   85.767669][ T6909]  bpf_prog_841aec7193f618b3+0x1b/0x21
[   85.767677][ T6909]  bpf_prog_run_pin_on_cpu+0xbf/0x150
[   85.767692][ T6909]  bpf_prog_test_run_syscall+0x312/0x4b0
[   85.767703][ T6909]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[   85.767713][ T6909]  ? __fget_files+0x2a/0x420
[   85.767738][ T6909]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[   85.767758][ T6909]  bpf_prog_test_run+0x2c7/0x340
[   85.767777][ T6909]  __sys_bpf+0x4a4/0x860
[   85.767795][ T6909]  ? __pfx___sys_bpf+0x10/0x10
[   85.767822][ T6909]  ? exc_page_fault+0x76/0xf0
[   85.767851][ T6909]  ? rcu_is_watching+0x15/0xb0
[   85.767873][ T6909]  __x64_sys_bpf+0x7c/0x90
[   85.767888][ T6909]  do_syscall_64+0xfa/0x3b0
[   85.767897][ T6909]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.767909][ T6909]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.767917][ T6909]  ? exc_page_fault+0x9f/0xf0
[   85.767929][ T6909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.767938][ T6909] RIP: 0033:0x7fb86bd8e929
[   85.767948][ T6909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.767956][ T6909] RSP: 002b:00007fb86cbfc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.767966][ T6909] RAX: ffffffffffffffda RBX: 00007fb86bfb5fa0 RCX: 00007fb86bd8e929
[   85.767973][ T6909] RDX: 0000000000000039 RSI: 0000200000000500 RDI: 000000000000000a
[   85.767979][ T6909] RBP: 00007fb86be10b39 R08: 0000000000000000 R09: 0000000000000000
[   85.767984][ T6909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.767989][ T6909] R13: 0000000000000000 R14: 00007fb86bfb5fa0 R15: 00007ffc83e461b8
[   85.768002][ T6909]  </TASK>
[   86.276279][ T5659] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.377755][ T5659] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.444092][ T5659] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.457242][   T10] cfg80211: failed to load regulatory.db
[   86.504383][ T5659] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.623213][ T5659] bridge_slave_1: left allmulticast mode
[   86.625451][ T5659] bridge_slave_1: left promiscuous mode
[   86.628457][ T5659] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.634955][ T5659] bridge_slave_0: left allmulticast mode
[   86.636786][ T5659] bridge_slave_0: left promiscuous mode
[   86.639135][ T5659] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.024446][ T5659] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   87.029213][ T5659] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   87.034084][ T5659] bond0 (unregistering): (slave batadv0): Releasing backup interface
[   87.037934][ T5659] bond0 (unregistering): Released all slaves
[   87.403107][ T5659] hsr_slave_0: left promiscuous mode
[   87.406707][ T5659] hsr_slave_1: left promiscuous mode
[   87.408985][ T5659] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   87.420138][ T5659] batman_adv: batadv0: Removing interface: batadv_slave_0
[   87.425076][ T5659] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   87.427450][ T5659] batman_adv: batadv0: Removing interface: batadv_slave_1
[   87.431809][ T5659] 
[   87.432639][ T5659] ======================================================
[   87.434812][ T5659] WARNING: possible circular locking dependency detected
[   87.437070][ T5659] 6.16.0-rc5-syzkaller-00159-g47c84997c686-dirty #0 Not tainted
[   87.439429][ T5659] ------------------------------------------------------
[   87.441583][ T5659] kworker/u8:2/5659 is trying to acquire lock:
[   87.443459][ T5659] ffff88810b0a0e00 (team->team_lock_key#3){+.+.}-{4:4}, at: team_device_event+0x182/0xa20
[   87.446572][ T5659] 
[   87.446572][ T5659] but task is already holding lock:
[   87.448794][ T5659] ffff888125212d30 (&dev_instance_lock_key#3){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x5a1/0x2320
[   87.452319][ T5659] 
[   87.452319][ T5659] which lock already depends on the new lock.
[   87.452319][ T5659] 
[   87.455409][ T5659] 
[   87.455409][ T5659] the existing dependency chain (in reverse order) is:
[   87.458048][ T5659] 
[   87.458048][ T5659] -> #1 (&dev_instance_lock_key#3){+.+.}-{4:4}:
[   87.460475][ T5659]        lock_acquire+0x120/0x360
[   87.461984][ T5659]        __mutex_lock+0x182/0xe80
[   87.463516][ T5659]        dev_set_mtu+0x10e/0x260
[   87.465069][ T5659]        team_add_slave+0x8b8/0x2840
[   87.466876][ T5659]        do_set_master+0x533/0x6d0
[   87.468640][ T5659]        do_setlink+0xcf0/0x41c0
[   87.470303][ T5659]        rtnl_newlink+0x160b/0x1c70
[   87.472150][ T5659]        rtnetlink_rcv_msg+0x7cf/0xb70
[   87.473990][ T5659]        netlink_rcv_skb+0x208/0x470
[   87.475566][ T5659]        netlink_unicast+0x75c/0x8e0
[   87.477165][ T5659]        netlink_sendmsg+0x805/0xb30
[   87.478876][ T5659]        __sock_sendmsg+0x21c/0x270
[   87.480502][ T5659]        ____sys_sendmsg+0x505/0x830
[   87.482095][ T5659]        ___sys_sendmsg+0x21f/0x2a0
[   87.483637][ T5659]        __x64_sys_sendmsg+0x19b/0x260
[   87.485489][ T5659]        do_syscall_64+0xfa/0x3b0
[   87.487091][ T5659]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.489190][ T5659] 
[   87.489190][ T5659] -> #0 (team->team_lock_key#3){+.+.}-{4:4}:
[   87.492315][ T5659]        validate_chain+0xb9b/0x2140
[   87.494300][ T5659]        __lock_acquire+0xab9/0xd20
[   87.495852][ T5659]        lock_acquire+0x120/0x360
[   87.497484][ T5659]        __mutex_lock+0x182/0xe80
[   87.499452][ T5659]        team_device_event+0x182/0xa20
[   87.501596][ T5659]        notifier_call_chain+0x1b6/0x3e0
[   87.503364][ T5659]        dev_close_many+0x29c/0x410
[   87.504981][ T5659]        unregister_netdevice_many_notify+0x619/0x2320
[   87.507218][ T5659]        default_device_exit_batch+0x819/0x890
[   87.509453][ T5659]        ops_undo_list+0x525/0x990
[   87.511099][ T5659]        cleanup_net+0x4c5/0x800
[   87.513046][ T5659]        process_scheduled_works+0xae1/0x17b0
[   87.515210][ T5659]        worker_thread+0x8a0/0xda0
[   87.517024][ T5659]        kthread+0x711/0x8a0
[   87.518570][ T5659]        ret_from_fork+0x3fc/0x770
[   87.520271][ T5659]        ret_from_fork_asm+0x1a/0x30
[   87.521885][ T5659] 
[   87.521885][ T5659] other info that might help us debug this:
[   87.521885][ T5659] 
[   87.525257][ T5659]  Possible unsafe locking scenario:
[   87.525257][ T5659] 
[   87.527606][ T5659]        CPU0                    CPU1
[   87.529277][ T5659]        ----                    ----
[   87.530944][ T5659]   lock(&dev_instance_lock_key#3);
[   87.532567][ T5659]                                lock(team->team_lock_key#3);
[   87.534938][ T5659]                                lock(&dev_instance_lock_key#3);
[   87.537814][ T5659]   lock(team->team_lock_key#3);
[   87.539780][ T5659] 
[   87.539780][ T5659]  *** DEADLOCK ***
[   87.539780][ T5659] 
[   87.542799][ T5659] 5 locks held by kworker/u8:2/5659:
[   87.544804][ T5659]  #0: ffff88801b2f6948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[   87.548409][ T5659]  #1: ffffc90002c4fbc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[   87.551500][ T5659]  #2: ffffffff8f510c10 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[   87.554334][ T5659]  #3: ffffffff8f51d808 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0xdc/0x890
[   87.557491][ T5659]  #4: ffff888125212d30 (&dev_instance_lock_key#3){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x5a1/0x2320
[   87.561077][ T5659] 
[   87.561077][ T5659] stack backtrace:
[   87.563127][ T5659] CPU: 1 UID: 0 PID: 5659 Comm: kworker/u8:2 Not tainted 6.16.0-rc5-syzkaller-00159-g47c84997c686-dirty #0 PREEMPT(full) 
[   87.563145][ T5659] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   87.563157][ T5659] Workqueue: netns cleanup_net
[   87.563175][ T5659] Call Trace:
[   87.563185][ T5659]  <TASK>
[   87.563193][ T5659]  dump_stack_lvl+0x189/0x250
[   87.563210][ T5659]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.563220][ T5659]  ? __pfx__printk+0x10/0x10
[   87.563237][ T5659]  ? print_lock_name+0xde/0x100
[   87.563256][ T5659]  print_circular_bug+0x2ee/0x310
[   87.563275][ T5659]  check_noncircular+0x134/0x160
[   87.563293][ T5659]  validate_chain+0xb9b/0x2140
[   87.563317][ T5659]  __lock_acquire+0xab9/0xd20
[   87.563332][ T5659]  ? team_device_event+0x182/0xa20
[   87.563345][ T5659]  lock_acquire+0x120/0x360
[   87.563357][ T5659]  ? team_device_event+0x182/0xa20
[   87.563376][ T5659]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[   87.563397][ T5659]  __mutex_lock+0x182/0xe80
[   87.563410][ T5659]  ? team_device_event+0x182/0xa20
[   87.563427][ T5659]  ? __try_to_del_timer_sync+0x34a/0x3a0
[   87.563442][ T5659]  ? team_device_event+0x182/0xa20
[   87.563459][ T5659]  ? __pfx___mutex_lock+0x10/0x10
[   87.563471][ T5659]  ? __timer_delete_sync+0x218/0x2d0
[   87.563495][ T5659]  team_device_event+0x182/0xa20
[   87.563513][ T5659]  notifier_call_chain+0x1b6/0x3e0
[   87.563527][ T5659]  dev_close_many+0x29c/0x410
[   87.563543][ T5659]  ? __pfx_dev_close_many+0x10/0x10
[   87.563559][ T5659]  unregister_netdevice_many_notify+0x619/0x2320
[   87.563584][ T5659]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[   87.563603][ T5659]  ? kvfree_call_rcu+0x374/0x410
[   87.563617][ T5659]  ? unregister_netdevice_queue+0x1b3/0x380
[   87.563635][ T5659]  ? batadv_meshif_destroy_netlink+0x1dd/0x270
[   87.563653][ T5659]  default_device_exit_batch+0x819/0x890
[   87.563670][ T5659]  ? __pfx___might_resched+0x10/0x10
[   87.563686][ T5659]  ? __pfx_default_device_exit_batch+0x10/0x10
[   87.563701][ T5659]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[   87.563714][ T5659]  ? net_generic+0x1e/0x240
[   87.563734][ T5659]  ? __pfx_default_device_exit_batch+0x10/0x10
[   87.563742][ T5659]  ops_undo_list+0x525/0x990
[   87.563758][ T5659]  ? __pfx_ops_undo_list+0x10/0x10
[   87.563776][ T5659]  cleanup_net+0x4c5/0x800
[   87.563790][ T5659]  ? __pfx_cleanup_net+0x10/0x10
[   87.563805][ T5659]  ? _raw_spin_unlock_irq+0x23/0x50
[   87.563843][ T5659]  ? process_scheduled_works+0x9ef/0x17b0
[   87.563854][ T5659]  ? process_scheduled_works+0x9ef/0x17b0
[   87.563867][ T5659]  process_scheduled_works+0xae1/0x17b0
[   87.563890][ T5659]  ? __pfx_process_scheduled_works+0x10/0x10
[   87.563936][ T5659]  worker_thread+0x8a0/0xda0
[   87.563946][ T5659]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   87.563966][ T5659]  ? __kthread_parkme+0x7b/0x200
[   87.563985][ T5659]  kthread+0x711/0x8a0
[   87.564004][ T5659]  ? __pfx_worker_thread+0x10/0x10
[   87.564018][ T5659]  ? __pfx_kthread+0x10/0x10
[   87.564035][ T5659]  ? _raw_spin_unlock_irq+0x23/0x50
[   87.564052][ T5659]  ? lockdep_hardirqs_on+0x9c/0x150
[   87.564065][ T5659]  ? __pfx_kthread+0x10/0x10
[   87.564081][ T5659]  ret_from_fork+0x3fc/0x770
[   87.564096][ T5659]  ? __pfx_ret_from_fork+0x10/0x10
[   87.564110][ T5659]  ? __switch_to_asm+0x39/0x70
[   87.564127][ T5659]  ? __switch_to_asm+0x33/0x70
[   87.564143][ T5659]  ? __pfx_kthread+0x10/0x10
[   87.564160][ T5659]  ret_from_fork_asm+0x1a/0x30
[   87.564179][ T5659]  </TASK>
[   87.676049][ T5659] veth1_vlan: left promiscuous mode
[   87.806552][ T5659] team0 (unregistering): Port device team_slave_1 removed
[   87.823663][ T5659] team0 (unregistering): Port device team_slave_0 removed
[   87.967892][ T5659] team0 (unregistering): Port device dummy0 removed
[   88.288776][ T5659] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.343564][ T5659] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.377313][ T5659] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.430656][ T5659] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.517194][ T5659] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.566375][ T5659] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.628153][ T5659] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.666742][ T5659] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.736540][ T5659] bridge_slave_1: left allmulticast mode
[   88.738838][ T5659] bridge_slave_1: left promiscuous mode
[   88.741093][ T5659] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.746479][ T5659] bridge_slave_0: left allmulticast mode
[   88.748639][ T5659] bridge_slave_0: left promiscuous mode
[   88.750723][ T5659] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.756072][ T5659] bridge_slave_1: left allmulticast mode
[   88.758000][ T5659] bridge_slave_1: left promiscuous mode
[   88.760133][ T5659] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.765279][ T5659] bridge_slave_0: left allmulticast mode
[   88.767580][ T5659] bridge_slave_0: left promiscuous mode
[   88.769890][ T5659] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.957045][ T5659] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   88.960701][ T5659] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   88.964402][ T5659] bond0 (unregistering): Released all slaves
[   89.045752][ T5659] bond1 (unregistering): (slave gretap1): Releasing active interface
[   89.244694][ T5659] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   89.249558][ T5659] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   89.254338][ T5659] bond0 (unregistering): Released all slaves
[   89.260992][ T5659] bond1 (unregistering): Released all slaves
[   89.817543][ T5659] hsr_slave_0: left promiscuous mode
[   89.820130][ T5659] hsr_slave_1: left promiscuous mode
[   89.830091][ T5659] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   89.836539][ T5659] batman_adv: batadv0: Removing interface: batadv_slave_0
[   89.845748][ T5659] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   89.848848][ T5659] batman_adv: batadv0: Removing interface: batadv_slave_1
[   89.856992][ T5659] hsr_slave_0: left promiscuous mode
[   89.859765][ T5659] hsr_slave_1: left promiscuous mode
[   89.862422][ T5659] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   89.865369][ T5659] batman_adv: batadv0: Removing interface: batadv_slave_0
[   89.868665][ T5659] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   89.871413][ T5659] batman_adv: batadv0: Removing interface: batadv_slave_1
[   89.879777][ T5659] veth1_macvtap: left promiscuous mode
[   89.882096][ T5659] veth0_macvtap: left promiscuous mode
[   89.884470][ T5659] veth1_vlan: left promiscuous mode
[   89.886552][ T5659] veth0_vlan: left promiscuous mode
[   89.889614][ T5659] veth1_macvtap: left promiscuous mode
[   89.893276][ T5659] veth0_macvtap: left promiscuous mode
[   89.895634][ T5659] veth1_vlan: left promiscuous mode
[   89.897801][ T5659] veth0_vlan: left promiscuous mode
[   90.005139][ T5659] team0 (unregistering): Port device batadv1 removed
[   90.120833][ T5659] team0 (unregistering): Port device team_slave_1 removed
[   90.147286][ T5659] team0 (unregistering): Port device team_slave_0 removed
[   90.150741][   T32] smc: removing ib device syz!
[   90.397426][ T5659] team0 (unregistering): Port device team_slave_1 removed
[   90.417327][ T5659] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
20:09:29  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff8204d95e RBX=dffffc0000000000 RCX=ffff88801d2c0000 RDX=0000000000000000
RSI=0000000000000400 RDI=0000000000000400 RBP=000000000000003f RSP=ffffc9000066f790
R8 =ffffc9000004c260 R9 =0000000000000004 R10=dffffc0000000000 R11=fffff520000cdef8
R12=0000000000000000 R13=0000000000042e00 R14=ffffc9000004d574 R15=ffffc9000004d570
RIP=ffffffff81c03678 RFL=00000016 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b30619ff8 CR3=0000000028452000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff8133a4fe ffffffff8133a4fe
XMM02=0000000000000a36 ffffffff8133a4fe XMM03=2020200000000000 2578202000000118
XMM04=0000000000000095 0000000600000085 XMM05=00000000000002b5 e3000008000002b7
XMM06=fffffff800000107 000000000000a1bf XMM07=00000000fff81a63 2020200000000000
XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007f95f5811c91
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000023 RBX=0000000000000023 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000faa RDI=0000000000000fab RBP=00000000000003f8 RSP=ffffc900065ef550
R8 =ffff888108620237 R9 =1ffff110210c4046 R10=dffffc0000000000 R11=ffffffff85478780
R12=dffffc0000000000 R13=ffffffff99af98c7 R14=ffffffff99dfe6e0 R15=0000000000000000
RIP=ffffffff854787fc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fb86cbfc6c0 ffffffff 00c00000
GS =0000 ffff8881a3c1b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c2c1b60 CR3=000000010796c000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fb86bf85478 00007fb86bf85450 XMM03=00007fb86bf85488 00007fb86bf85480
XMM04=00007fb86caed100 00007fb86bf85440 XMM05=00007fb86bf85458 00007fb86bf854a0
XMM06=00007fb86bf85498 00007fb86bf85490 XMM07=00007fb86bf85488 00007fb86bf85480
XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007fb86be11c91
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
