last executing test programs:

3.223591007s ago: executing program 1 (id=49):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000004700)=""/4098, 0x1002}, {&(0x7f0000003700)=""/4074, 0xfea}, {&(0x7f0000000200)=""/100, 0x64}, {&(0x7f0000000400)=""/170, 0xaa}, {&(0x7f0000000140)=""/184, 0xb8}], 0x5}, 0x0)

3.223178951s ago: executing program 1 (id=50):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="80000000000201040000000000000000020000052400028014000180080001000000000008000200ac1e00010c00028005210100000000002400038014000180080001000000000008000200ac1414000c0002800500010000000000240001"], 0x80}}, 0x0)

3.149664988s ago: executing program 1 (id=52):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
close(0x3)
sendmmsg(r1, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

3.068824409s ago: executing program 1 (id=54):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000300)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="02"], 0x10)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@cgroup=r2, 0x2, 0x0, 0x3ff, &(0x7f0000001440)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)

3.068029545s ago: executing program 1 (id=56):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000000)={{0x6, @netrom={0xbb, 0xbb, 0x2, 0xbb, 0xbb, 0x0, 0x0}}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast]}, 0x48)

2.319008245s ago: executing program 1 (id=64):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000001140)=[{{&(0x7f0000000300)={0xa, 0x4e21, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x6}, 0x1c, &(0x7f0000000000)=[{&(0x7f0000000540)='O', 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000100), 0x4)

1.281031359s ago: executing program 2 (id=81):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x2d75000)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x989680}, 0x0)

1.175866502s ago: executing program 2 (id=82):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r0, 0x400454ce, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})

900.267996ms ago: executing program 2 (id=87):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@union={0x0, 0x0, 0x0, 0x5, 0x0, 0x7ff}]}}, 0x0, 0x26, 0x0, 0xa, 0x7ff}, 0x28)

899.707093ms ago: executing program 2 (id=88):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=@ipv4_newrule={0x54, 0x20, 0x1, 0x0, 0x0, {0x2, 0x0, 0x20, 0x0, 0x3}, [@FRA_GENERIC_POLICY=@FRA_OIFNAME={0x14, 0x11, 'veth0_macvtap\x00'}, @FRA_SRC={0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, @FRA_GENERIC_POLICY=@FRA_DPORT_RANGE={0x8, 0x18, {0x4e20, 0x4e24}}, @FRA_GENERIC_POLICY=@FRA_IIFNAME={0x14, 0x3, 'wg0\x00'}]}, 0x54}}, 0x0)

292.258054ms ago: executing program 0 (id=91):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="18020000000000020000000000000000850000003600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000008850000000700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

292.05757ms ago: executing program 2 (id=92):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x1, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000b40)={r0, &(0x7f0000000a80), 0x0}, 0x20)

218.433965ms ago: executing program 2 (id=93):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000001100000095"], &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="150000000300000008000000e2cf00003082", @ANYRES32, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000050000000300"/20, @ANYRES32], 0x50)
bind$alg(0xffffffffffffffff, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-avx\x00'}, 0x58)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x61, &(0x7f0000000600)={'filter\x00', 0x4}, 0x68)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
syz_80211_inject_frame(&(0x7f0000000340)=@broadcast, &(0x7f0000000900)=@mgmt_frame=@probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x8}, @device_b, @broadcast, @random="11c302284448", {0x5, 0x1}, @value=@ver_80211n={0x0, 0x0, 0x3, 0x3, 0x0, 0x2, 0x1}}, 0x3, @random=0x7, 0x2100, @val={0x0, 0x6, @default_ap_ssid}, @void, @void, @void, @val={0x6, 0x2}, @val={0x2d, 0x1a, {0xf4a2, 0x1, 0x1, 0x0, {0x8, 0x1ad1, 0x0, 0x4, 0x0, 0x1, 0x1, 0x1}, 0x300, 0x7fffffff, 0x1}}, @val={0x72, 0x6}, @val={0x71, 0x7, {0x3, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x2}}, [{0xdd, 0xb3, "5be25a2b259df5cc0872e13cccfcf0fca84fb0a3e48be155e52dbdc74e8d3db81b07c33a43ae64549dd18fe07833bd96ffd825e59cfb819977ce4068fd8f25ab76e689924d014648931df2dc14c7969652a93ee133c675548e3a27e521ea2c3692efa7064c8b8a83fec9da3831a5498b2d89928fa54a3cb2145fb7000ab6ca9d129d7af3cb1930899a8daec7fbf4cde6fdf4d4441f270c88f4fd0876822a3435ae2da1266345a85221d70957b008ca83e9f55b"}, {0xdd, 0x5d, "8107ef84105a390d07cb5ec75ff14b17f206e4f4548a39d5e9bac79c24246df0bb1c599e87d5163dbea056419ead61fc4b62a0d1f8e636760478fb4e8ed20c4108014126121dc0536788110fd6d08908ce55967d5654a96f1e42397357"}, {0xdd, 0xd1, "051a63f5329d77e32606206303ccd046d5308cd5a1a000edb790ac5fc21db8ff6d2bac72520c71ae9c43731ac104dee7ea49ca5e569940968c88e004359e76eb41940ea8e6013447b91f1749c4651abd8902247ccf09ef3b390e3cc119c2569d73e025adfa960c97a008e48931f479db1b17b137ea42ab184bf7eb1f07f679dcdc32b1dfd5c3f37d60f706e4f42547d0b8b47a6ae7c44b8431fcd8fb9647ce67fc09f9f925b7ac0568e6d65c0ed1c9b07b56017a8aaaf55a40d9dd7fb4ed000fa642d150aef7df12a7c19b3dc2ed77edaf"}, {0xdd, 0xaf, "6f11f1ce5aafd1f3a0b917f8d78367b4e4961776c0419490954bae795059ba66a321f7fa22c3553bac8e77810e703fc798aeedd6260d89c13b9e7e7fc029b4f24c29455cda7d19ca6c98c33f97a9d3e46abf8ead2e883ce7bda32762617b69926eee82f2162b806170fff1ffd076a88f03a99901cfe76a3b305a3c6bb84906f0e4b3fe2544626fc7eda9f0fc136f30e2441e972cf35416fffb5c70bbf110b2b48e72c9c92e9fe0096ecdf0fb7593e5"}, {0xdd, 0x6, "f3ffe4ac18b8"}]}, 0x301)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

218.164148ms ago: executing program 0 (id=94):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=ANY=[@ANYBLOB="00020401"], 0x18)
connect$inet6(r0, &(0x7f0000001940)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000002200)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

153.362497ms ago: executing program 0 (id=95):
syz_emit_ethernet(0x5a, &(0x7f0000000380)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd308", 0x24, 0x6, 0xff, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0x2, 0x1000, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x40, 0x5}, @window={0x3, 0x3, 0x80}]}}}}}}}}, 0x0)

153.20645ms ago: executing program 0 (id=96):
unshare(0x60600)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, 0x0, 0x0)

58.990885ms ago: executing program 0 (id=97):
r0 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x271c, 0x0, &(0x7f0000000000))
syz_init_net_socket$ax25(0x3, 0x3, 0xcb)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)

0s ago: executing program 0 (id=98):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000380)={{0x6, @default, 0xa}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast]}, 0x48)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r1, &(0x7f0000000300)={{0x6, @rose, 0xfffbffff}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)
listen(r0, 0x1ad72f7)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
r3 = socket$kcm(0x10, 0x2, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDR(r4, 0x29, 0x39, &(0x7f0000000140)=ANY=[@ANYBLOB="3b02000000000000000000"], 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r8, @ANYBLOB="08002600851600000a00180000000000000000001c005a80180001801400"], 0x4c}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:20041' (ED25519) to the list of known hosts.
syzkaller login: [   49.090698][ T5742] cgroup: Unknown subsys name 'net'
[   49.215237][ T5742] cgroup: Unknown subsys name 'cpuset'
[   49.221452][ T5742] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   51.248354][ T5742] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.360916][ T5813] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.365247][ T5813] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.368330][ T5813] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.371219][ T5813] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.374128][ T5813] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.412417][ T5813] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.415500][ T5813] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.418494][ T5813] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.422748][ T5813] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.425457][ T5813] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   55.440053][ T5813] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.449112][ T5813] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.452018][ T5813] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.455352][ T5813] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.458048][ T5813] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   55.599914][ T5810] chnl_net:caif_netlink_parms(): no params data found
[   55.718533][ T5810] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.721061][ T5810] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.724767][ T5810] bridge_slave_0: entered allmulticast mode
[   55.727549][ T5810] bridge_slave_0: entered promiscuous mode
[   55.740578][ T5810] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.743110][ T5810] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.745333][ T5810] bridge_slave_1: entered allmulticast mode
[   55.748168][ T5810] bridge_slave_1: entered promiscuous mode
[   55.757692][ T5814] chnl_net:caif_netlink_parms(): no params data found
[   55.793946][ T5816] chnl_net:caif_netlink_parms(): no params data found
[   55.800819][ T5810] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.809468][ T5810] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.850353][ T5810] team0: Port device team_slave_0 added
[   55.876156][ T5810] team0: Port device team_slave_1 added
[   55.923405][ T5814] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.926064][ T5814] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.928828][ T5814] bridge_slave_0: entered allmulticast mode
[   55.932918][ T5814] bridge_slave_0: entered promiscuous mode
[   55.949512][ T5816] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.952560][ T5816] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.955416][ T5816] bridge_slave_0: entered allmulticast mode
[   55.958391][ T5816] bridge_slave_0: entered promiscuous mode
[   55.961719][ T5814] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.964222][ T5814] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.966785][ T5814] bridge_slave_1: entered allmulticast mode
[   55.969637][ T5814] bridge_slave_1: entered promiscuous mode
[   55.974065][ T5810] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.976979][ T5810] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.989756][ T5810] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.995809][ T5816] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.999677][ T5816] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.004217][ T5816] bridge_slave_1: entered allmulticast mode
[   56.008168][ T5816] bridge_slave_1: entered promiscuous mode
[   56.028481][ T5810] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.031733][ T5810] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.042352][ T5810] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.061087][ T5814] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.103387][ T5814] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.109450][ T5816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.129667][ T5816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.163752][ T5810] hsr_slave_0: entered promiscuous mode
[   56.166342][ T5810] hsr_slave_1: entered promiscuous mode
[   56.184234][ T5814] team0: Port device team_slave_0 added
[   56.189523][ T5814] team0: Port device team_slave_1 added
[   56.208081][ T5816] team0: Port device team_slave_0 added
[   56.234537][ T5816] team0: Port device team_slave_1 added
[   56.249478][ T5814] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.252222][ T5814] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.261568][ T5814] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.284258][ T5814] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.286517][ T5814] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.295500][ T5814] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.333613][ T5816] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.336611][ T5816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.347181][ T5816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.357144][ T5816] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.360131][ T5816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.370983][ T5816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.405224][ T5814] hsr_slave_0: entered promiscuous mode
[   56.407573][ T5814] hsr_slave_1: entered promiscuous mode
[   56.409896][ T5814] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.413905][ T5814] Cannot create hsr debugfs directory
[   56.487536][ T5816] hsr_slave_0: entered promiscuous mode
[   56.490569][ T5816] hsr_slave_1: entered promiscuous mode
[   56.494754][ T5816] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.497728][ T5816] Cannot create hsr debugfs directory
[   56.657950][ T5810] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   56.674536][ T5810] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   56.680818][ T5810] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   56.702764][ T5810] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   56.754063][ T5814] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   56.769205][ T5814] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   56.784429][ T5814] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.789273][ T5814] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.825830][ T5816] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.833161][ T5816] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.838082][ T5816] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.847371][ T5816] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.978782][ T5810] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.009010][ T5816] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.023368][ T5810] 8021q: adding VLAN 0 to HW filter on device team0
[   57.040009][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.043309][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.057442][ T5814] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.063248][ T5816] 8021q: adding VLAN 0 to HW filter on device team0
[   57.069074][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.072150][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.096274][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.099328][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.110398][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.113502][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.135490][ T5814] 8021q: adding VLAN 0 to HW filter on device team0
[   57.160498][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.163504][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.178273][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.181226][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.230372][ T5816] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   57.235755][ T5816] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.384899][ T5810] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.389902][ T5816] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.429563][ T5814] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.443727][ T5813] Bluetooth: hci1: command tx timeout
[   57.446340][ T5813] Bluetooth: hci0: command tx timeout
[   57.447522][ T5816] veth0_vlan: entered promiscuous mode
[   57.457370][ T5810] veth0_vlan: entered promiscuous mode
[   57.466840][ T5816] veth1_vlan: entered promiscuous mode
[   57.476517][ T5810] veth1_vlan: entered promiscuous mode
[   57.522037][ T5813] Bluetooth: hci2: command tx timeout
[   57.541161][ T5816] veth0_macvtap: entered promiscuous mode
[   57.558313][ T5816] veth1_macvtap: entered promiscuous mode
[   57.563558][ T5814] veth0_vlan: entered promiscuous mode
[   57.565989][ T5810] veth0_macvtap: entered promiscuous mode
[   57.578215][ T5814] veth1_vlan: entered promiscuous mode
[   57.584443][ T5810] veth1_macvtap: entered promiscuous mode
[   57.599382][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.619235][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.629725][ T5816] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.634812][ T5816] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.638159][ T5816] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.642204][ T5816] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.655477][ T5810] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.661278][ T5810] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.669193][ T5814] veth0_macvtap: entered promiscuous mode
[   57.674892][ T5810] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.677768][ T5810] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.680631][ T5810] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.685230][ T5810] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.707924][ T5814] veth1_macvtap: entered promiscuous mode
[   57.739828][ T5814] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.759766][ T5814] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.780176][ T5814] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.784627][ T5814] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.787372][ T5814] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.790054][ T5814] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.795540][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.798363][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.845817][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.848362][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.870993][ T1092] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.875712][ T1092] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.897767][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.900423][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.939485][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.946526][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.967471][ T5816] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   57.991231][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.995655][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.144942][ T5881] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2'.
[   58.543169][ T5897] team0 (unregistering): Port device team_slave_0 removed
[   58.563263][ T5897] team0 (unregistering): Port device team_slave_1 removed
[   58.837399][ T5928] syz.0.23 uses obsolete (PF_INET,SOCK_PACKET)
[   58.843215][ T5928] syzkaller1: entered promiscuous mode
[   58.845355][ T5928] syzkaller1: entered allmulticast mode
[   59.159990][ T5945] netlink: 'syz.1.32': attribute type 21 has an invalid length.
[   59.165169][ T5945] netlink: 132 bytes leftover after parsing attributes in process `syz.1.32'.
[   59.386559][ T5958] netlink: 28 bytes leftover after parsing attributes in process `syz.1.38'.
[   59.522879][ T5813] Bluetooth: hci1: command tx timeout
[   59.533841][ T5813] Bluetooth: hci0: command tx timeout
[   59.604495][ T5813] Bluetooth: hci2: command tx timeout
[   59.640666][ T5972] netlink: 4 bytes leftover after parsing attributes in process `syz.2.44'.
[   59.737824][ T5976] netlink: 12 bytes leftover after parsing attributes in process `syz.1.46'.
[   59.868746][ T5984] netlink: 8 bytes leftover after parsing attributes in process `syz.1.50'.
[   59.960460][ T5990] netlink: 8 bytes leftover after parsing attributes in process `syz.0.53'.
[   59.972950][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.0.53'.
[   60.078102][ T5994] Zero length message leads to an empty skb
[   60.255815][ T6002] syzkaller1: entered promiscuous mode
[   60.257605][ T6002] syzkaller1: entered allmulticast mode
[   60.777565][ T5642] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.876531][ T5642] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.012689][ T5642] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.022558][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   61.027783][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   61.031792][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   61.043548][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   61.048465][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   61.130528][ T5642] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.198429][ T6033] pim6reg1: entered promiscuous mode
[   61.200350][ T6033] pim6reg1: entered allmulticast mode
[   61.366247][ T5642] bridge_slave_1: left allmulticast mode
[   61.368888][ T5642] bridge_slave_1: left promiscuous mode
[   61.374502][ T5642] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.382598][ T5642] bridge_slave_0: left allmulticast mode
[   61.384602][ T5642] bridge_slave_0: left promiscuous mode
[   61.387205][ T5642] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.591680][ T5642] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   61.596494][ T5642] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   61.600219][ T5642] bond0 (unregistering): Released all slaves
[   61.602465][ T5813] Bluetooth: hci0: command tx timeout
[   61.651223][ T6020] chnl_net:caif_netlink_parms(): no params data found
[   61.681729][ T5813] Bluetooth: hci2: command tx timeout
[   61.814249][ T6066] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   61.884770][ T6020] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.888151][ T6020] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.894065][ T6020] bridge_slave_0: entered allmulticast mode
[   61.898474][ T6020] bridge_slave_0: entered promiscuous mode
[   61.904930][ T6020] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.908736][ T6020] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.913378][ T6020] bridge_slave_1: entered allmulticast mode
[   61.916712][ T6020] bridge_slave_1: entered promiscuous mode
[   62.040153][ T6020] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.058687][ T6020] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.129694][ T6078] bridge0: port 3(syz_tun) entered blocking state
[   62.135464][ T6078] bridge0: port 3(syz_tun) entered disabled state
[   62.138893][ T6078] syz_tun: entered allmulticast mode
[   62.143963][ T6078] syz_tun: entered promiscuous mode
[   62.147409][ T6078] bridge0: port 3(syz_tun) entered blocking state
[   62.150199][ T6078] bridge0: port 3(syz_tun) entered forwarding state
[   62.162961][ T6020] team0: Port device team_slave_0 added
[   62.170791][ T6020] team0: Port device team_slave_1 added
[   62.221138][ T5642] hsr_slave_0: left promiscuous mode
[   62.223622][ T5642] hsr_slave_1: left promiscuous mode
[   62.225637][ T5642] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   62.228069][ T5642] batman_adv: batadv0: Removing interface: batadv_slave_0
[   62.231107][ T5642] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   62.235325][ T5642] batman_adv: batadv0: Removing interface: batadv_slave_1
[   62.245004][ T5642] veth1_macvtap: left promiscuous mode
[   62.247409][ T5642] veth0_macvtap: left promiscuous mode
[   62.250160][ T5642] veth1_vlan: left promiscuous mode
[   62.254176][ T5642] veth0_vlan: left promiscuous mode
[   62.486401][ T5642] team0 (unregistering): Port device team_slave_1 removed
[   62.504277][ T5642] team0 (unregistering): Port device team_slave_0 removed
[   62.685326][ T6020] batman_adv: batadv0: Adding interface: batadv_slave_0
[   62.687649][ T6020] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.696591][ T6020] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   62.701128][ T6020] batman_adv: batadv0: Adding interface: batadv_slave_1
[   62.705055][ T6020] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.715380][ T6020] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   62.865426][ T6020] hsr_slave_0: entered promiscuous mode
[   62.874504][ T6020] hsr_slave_1: entered promiscuous mode
[   62.878157][ T6020] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   62.880552][ T6020] Cannot create hsr debugfs directory
[   62.925353][ T6106] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   63.131490][ T5813] Bluetooth: hci1: command tx timeout
[   63.140071][ T6116] netlink: 'syz.0.98': attribute type 10 has an invalid length.
[   63.157144][ T6116] team0: Port device dummy0 added
[   63.161148][ T6116] netlink: 'syz.0.98': attribute type 10 has an invalid length.
[   63.165514][ T6116] 
[   63.166583][ T6116] ======================================================
[   63.169293][ T6116] WARNING: possible circular locking dependency detected
[   63.171976][ T6116] 6.16.0-rc3-syzkaller-00159-g223e2288f4b8-dirty #0 Not tainted
[   63.176082][ T6116] ------------------------------------------------------
[   63.179047][ T6116] syz.0.98/6116 is trying to acquire lock:
[   63.181539][ T6116] ffff88803b7b8e00 (team->team_lock_key#3){+.+.}-{4:4}, at: team_device_event+0x182/0xa20
[   63.185234][ T6116] 
[   63.185234][ T6116] but task is already holding lock:
[   63.187849][ T6116] ffff88801ced6d30 (&dev_instance_lock_key#3){+.+.}-{4:4}, at: do_setlink+0x388/0x41c0
[   63.191883][ T6116] 
[   63.191883][ T6116] which lock already depends on the new lock.
[   63.191883][ T6116] 
[   63.196170][ T6116] 
[   63.196170][ T6116] the existing dependency chain (in reverse order) is:
[   63.199886][ T6116] 
[   63.199886][ T6116] -> #1 (&dev_instance_lock_key#3){+.+.}-{4:4}:
[   63.203458][ T6116]        lock_acquire+0x120/0x360
[   63.205618][ T6116]        __mutex_lock+0x182/0xe80
[   63.207379][ T6116]        dev_set_mtu+0x10e/0x260
[   63.209229][ T6116]        team_add_slave+0x8b8/0x2840
[   63.211523][ T6116]        do_set_master+0x533/0x6d0
[   63.213720][ T6116]        do_setlink+0xcf0/0x41c0
[   63.215829][ T6116]        rtnl_newlink+0x160b/0x1c70
[   63.217969][ T6116]        rtnetlink_rcv_msg+0x7cf/0xb70
[   63.220229][ T6116]        netlink_rcv_skb+0x208/0x470
[   63.222556][ T6116]        netlink_unicast+0x75b/0x8d0
[   63.224920][ T6116]        netlink_sendmsg+0x805/0xb30
[   63.227215][ T6116]        __sock_sendmsg+0x21c/0x270
[   63.229077][ T6116]        ____sys_sendmsg+0x505/0x830
[   63.230769][ T6116]        ___sys_sendmsg+0x21f/0x2a0
[   63.232735][ T6116]        __x64_sys_sendmsg+0x19b/0x260
[   63.235064][ T6116]        do_syscall_64+0xfa/0x3b0
[   63.237239][ T6116]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.239899][ T6116] 
[   63.239899][ T6116] -> #0 (team->team_lock_key#3){+.+.}-{4:4}:
[   63.243344][ T6116]        validate_chain+0xb9b/0x2140
[   63.245607][ T6116]        __lock_acquire+0xab9/0xd20
[   63.247716][ T6116]        lock_acquire+0x120/0x360
[   63.249786][ T6116]        __mutex_lock+0x182/0xe80
[   63.251900][ T6116]        team_device_event+0x182/0xa20
[   63.254243][ T6116]        notifier_call_chain+0x1b6/0x3e0
[   63.256642][ T6116]        __dev_notify_flags+0x18d/0x2e0
[   63.259051][ T6116]        netif_change_flags+0xe8/0x1a0
[   63.261254][ T6116]        do_setlink+0xc55/0x41c0
[   63.263334][ T6116]        rtnl_newlink+0x160b/0x1c70
[   63.265444][ T6116]        rtnetlink_rcv_msg+0x7cf/0xb70
[   63.267664][ T6116]        netlink_rcv_skb+0x208/0x470
[   63.269821][ T6116]        netlink_unicast+0x75b/0x8d0
[   63.272001][ T6116]        netlink_sendmsg+0x805/0xb30
[   63.274241][ T6116]        __sock_sendmsg+0x21c/0x270
[   63.276444][ T6116]        ____sys_sendmsg+0x505/0x830
[   63.278659][ T6116]        ___sys_sendmsg+0x21f/0x2a0
[   63.280897][ T6116]        __x64_sys_sendmsg+0x19b/0x260
[   63.283150][ T6116]        do_syscall_64+0xfa/0x3b0
[   63.285161][ T6116]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.287830][ T6116] 
[   63.287830][ T6116] other info that might help us debug this:
[   63.287830][ T6116] 
[   63.292130][ T6116]  Possible unsafe locking scenario:
[   63.292130][ T6116] 
[   63.295244][ T6116]        CPU0                    CPU1
[   63.297512][ T6116]        ----                    ----
[   63.299745][ T6116]   lock(&dev_instance_lock_key#3);
[   63.301967][ T6116]                                lock(team->team_lock_key#3);
[   63.305125][ T6116]                                lock(&dev_instance_lock_key#3);
[   63.308242][ T6116]   lock(team->team_lock_key#3);
[   63.310320][ T6116] 
[   63.310320][ T6116]  *** DEADLOCK ***
[   63.310320][ T6116] 
[   63.313365][ T6116] 2 locks held by syz.0.98/6116:
[   63.314971][ T6116]  #0: ffffffff8f5100c8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[   63.317796][ T6116]  #1: ffff88801ced6d30 (&dev_instance_lock_key#3){+.+.}-{4:4}, at: do_setlink+0x388/0x41c0
[   63.320949][ T6116] 
[   63.320949][ T6116] stack backtrace:
[   63.322887][ T6116] CPU: 0 UID: 0 PID: 6116 Comm: syz.0.98 Not tainted 6.16.0-rc3-syzkaller-00159-g223e2288f4b8-dirty #0 PREEMPT(full) 
[   63.322897][ T6116] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   63.322903][ T6116] Call Trace:
[   63.322908][ T6116]  <TASK>
[   63.322914][ T6116]  dump_stack_lvl+0x189/0x250
[   63.322929][ T6116]  ? __pfx_dump_stack_lvl+0x10/0x10
[   63.322940][ T6116]  ? __pfx__printk+0x10/0x10
[   63.322948][ T6116]  ? print_lock_name+0xde/0x100
[   63.322956][ T6116]  print_circular_bug+0x2ee/0x310
[   63.322965][ T6116]  check_noncircular+0x134/0x160
[   63.322973][ T6116]  validate_chain+0xb9b/0x2140
[   63.322982][ T6116]  ? __lock_acquire+0xab9/0xd20
[   63.322995][ T6116]  __lock_acquire+0xab9/0xd20
[   63.323005][ T6116]  ? team_device_event+0x182/0xa20
[   63.323014][ T6116]  lock_acquire+0x120/0x360
[   63.323023][ T6116]  ? team_device_event+0x182/0xa20
[   63.323031][ T6116]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[   63.323047][ T6116]  __mutex_lock+0x182/0xe80
[   63.323060][ T6116]  ? team_device_event+0x182/0xa20
[   63.323068][ T6116]  ? __try_to_del_timer_sync+0x34a/0x3a0
[   63.323079][ T6116]  ? team_device_event+0x182/0xa20
[   63.323088][ T6116]  ? __pfx___mutex_lock+0x10/0x10
[   63.323098][ T6116]  ? __timer_delete_sync+0x218/0x2d0
[   63.323110][ T6116]  team_device_event+0x182/0xa20
[   63.323119][ T6116]  notifier_call_chain+0x1b6/0x3e0
[   63.323132][ T6116]  __dev_notify_flags+0x18d/0x2e0
[   63.323142][ T6116]  ? __pfx___dev_notify_flags+0x10/0x10
[   63.323149][ T6116]  ? __dev_change_flags+0x4cc/0x6d0
[   63.323157][ T6116]  ? __pfx___dev_change_flags+0x10/0x10
[   63.323164][ T6116]  ? __pfx_console_unlock+0x10/0x10
[   63.323172][ T6116]  ? irq_work_queue+0xbc/0x140
[   63.323181][ T6116]  netif_change_flags+0xe8/0x1a0
[   63.323190][ T6116]  do_setlink+0xc55/0x41c0
[   63.323200][ T6116]  ? __pfx_do_setlink+0x10/0x10
[   63.323207][ T6116]  ? _printk+0xcf/0x120
[   63.323214][ T6116]  ? __pfx____ratelimit+0x10/0x10
[   63.323225][ T6116]  ? __lock_acquire+0xab9/0xd20
[   63.323235][ T6116]  ? __mutex_trylock_common+0x153/0x260
[   63.323242][ T6116]  ? __pfx___mutex_trylock_common+0x10/0x10
[   63.323249][ T6116]  ? rcu_is_watching+0x15/0xb0
[   63.323260][ T6116]  ? trace_contention_end+0x39/0x120
[   63.323267][ T6116]  ? __mutex_lock+0x330/0xe80
[   63.323277][ T6116]  ? __pfx_aa_get_newest_label+0x10/0x10
[   63.323286][ T6116]  ? rtnl_newlink+0x8db/0x1c70
[   63.323292][ T6116]  ? rcu_is_watching+0x15/0xb0
[   63.323302][ T6116]  ? __pfx___mutex_lock+0x10/0x10
[   63.323313][ T6116]  ? ns_capable+0x8a/0xf0
[   63.323323][ T6116]  ? rtnl_link_get_net_capable+0x16a/0x350
[   63.323331][ T6116]  rtnl_newlink+0x160b/0x1c70
[   63.323338][ T6116]  ? netlink_sendmsg+0x805/0xb30
[   63.323348][ T6116]  ? __pfx_rtnl_newlink+0x10/0x10
[   63.323358][ T6116]  ? kasan_quarantine_put+0xdd/0x220
[   63.323368][ T6116]  ? lockdep_hardirqs_on+0x9c/0x150
[   63.323379][ T6116]  ? nlmon_xmit+0xb0/0x100
[   63.323389][ T6116]  ? kmem_cache_free+0x18f/0x400
[   63.323397][ T6116]  ? __local_bh_enable_ip+0x12d/0x1c0
[   63.323407][ T6116]  ? lockdep_hardirqs_on+0x9c/0x150
[   63.323417][ T6116]  ? __local_bh_enable_ip+0x12d/0x1c0
[   63.323426][ T6116]  ? __pfx___local_bh_enable_ip+0x10/0x10
[   63.323436][ T6116]  ? __dev_queue_xmit+0x27e/0x3a70
[   63.323446][ T6116]  ? __lock_acquire+0xab9/0xd20
[   63.323458][ T6116]  ? __pfx_rtnl_newlink+0x10/0x10
[   63.323464][ T6116]  rtnetlink_rcv_msg+0x7cf/0xb70
[   63.323471][ T6116]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[   63.323478][ T6116]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   63.323484][ T6116]  ? ref_tracker_free+0x63a/0x7d0
[   63.323493][ T6116]  ? __copy_skb_header+0xa7/0x550
[   63.323501][ T6116]  ? __pfx_ref_tracker_free+0x10/0x10
[   63.323509][ T6116]  ? __skb_clone+0x63/0x7a0
[   63.323518][ T6116]  netlink_rcv_skb+0x208/0x470
[   63.323526][ T6116]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   63.323532][ T6116]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   63.323541][ T6116]  ? netlink_deliver_tap+0x2e/0x1b0
[   63.323548][ T6116]  ? netlink_deliver_tap+0x2e/0x1b0
[   63.323555][ T6116]  netlink_unicast+0x75b/0x8d0
[   63.323563][ T6116]  netlink_sendmsg+0x805/0xb30
[   63.323572][ T6116]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.323580][ T6116]  ? aa_sock_msg_perm+0x94/0x160
[   63.323588][ T6116]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   63.323597][ T6116]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.323604][ T6116]  __sock_sendmsg+0x21c/0x270
[   63.323614][ T6116]  ____sys_sendmsg+0x505/0x830
[   63.323623][ T6116]  ? __pfx_____sys_sendmsg+0x10/0x10
[   63.323632][ T6116]  ? import_iovec+0x74/0xa0
[   63.323639][ T6116]  ___sys_sendmsg+0x21f/0x2a0
[   63.323647][ T6116]  ? __pfx____sys_sendmsg+0x10/0x10
[   63.323660][ T6116]  ? __fget_files+0x2a/0x420
[   63.323667][ T6116]  ? __fget_files+0x3a0/0x420
[   63.323676][ T6116]  __x64_sys_sendmsg+0x19b/0x260
[   63.323684][ T6116]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   63.323693][ T6116]  ? rcu_is_watching+0x15/0xb0
[   63.323704][ T6116]  ? do_syscall_64+0xbe/0x3b0
[   63.323710][ T6116]  do_syscall_64+0xfa/0x3b0
[   63.323715][ T6116]  ? lockdep_hardirqs_on+0x9c/0x150
[   63.323724][ T6116]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.323731][ T6116]  ? exc_page_fault+0x9f/0xf0
[   63.323740][ T6116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.323748][ T6116] RIP: 0033:0x7f58d1f8e929
[   63.323756][ T6116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.323763][ T6116] RSP: 002b:00007f58d2d15038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.323771][ T6116] RAX: ffffffffffffffda RBX: 00007f58d21b6080 RCX: 00007f58d1f8e929
[   63.323776][ T6116] RDX: 0000000000000000 RSI: 0000200000000600 RDI: 0000000000000007
[   63.323780][ T6116] RBP: 00007f58d2010b39 R08: 0000000000000000 R09: 0000000000000000
[   63.323784][ T6116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   63.323788][ T6116] R13: 0000000000000000 R14: 00007f58d21b6080 R15: 00007ffec4151738
[   63.323795][ T6116]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   63.603219][ T6116] team0: Port device dummy0 removed
[   63.607306][ T6116] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   63.726355][ T6116] bridge0: port 3(syz_tun) entered disabled state
[   63.729913][ T6116] syz_tun (unregistering): left allmulticast mode
[   63.732998][ T6116] syz_tun (unregistering): left promiscuous mode
[   63.735189][ T6116] bridge0: port 3(syz_tun) entered disabled state
[   63.799482][   T14] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.875569][   T14] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.891973][ T6116] syz.0.98 (6116) used greatest stack depth: 19992 bytes left
[   63.909181][   T14] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.966235][   T14] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.064610][   T14] bridge_slave_1: left allmulticast mode
[   64.066842][   T14] bridge_slave_1: left promiscuous mode
[   64.068763][   T14] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.072310][   T14] bridge_slave_0: left allmulticast mode
[   64.074124][   T14] bridge_slave_0: left promiscuous mode
[   64.075910][   T14] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.128615][   T14] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   64.133570][   T14] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   64.137002][   T14] bond0 (unregistering): Released all slaves
[   64.340983][   T14] hsr_slave_0: left promiscuous mode
[   64.343167][   T14] hsr_slave_1: left promiscuous mode
[   64.345167][   T14] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.347691][   T14] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.351571][   T14] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.354603][   T14] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.359194][   T14] veth1_macvtap: left promiscuous mode
[   64.361224][   T14] veth0_macvtap: left promiscuous mode
[   64.363945][   T14] veth1_vlan: left promiscuous mode
[   64.365877][   T14] veth0_vlan: left promiscuous mode
[   64.770409][   T14] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.833180][   T14] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.883690][   T14] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.914558][   T14] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.978451][   T14] bridge_slave_1: left allmulticast mode
[   64.980890][   T14] bridge_slave_1: left promiscuous mode
[   64.985508][   T14] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.990517][   T14] bridge_slave_0: left allmulticast mode
[   64.996091][   T14] bridge_slave_0: left promiscuous mode
[   64.998834][   T14] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.003666][   T14] bridge_slave_1: left allmulticast mode
[   65.005925][   T14] bridge_slave_1: left promiscuous mode
[   65.008296][   T14] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.013399][   T14] bridge_slave_0: left allmulticast mode
[   65.015754][   T14] bridge_slave_0: left promiscuous mode
[   65.018166][   T14] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.086816][   T14] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   65.093242][   T14] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   65.098338][   T14] bond0 (unregistering): Released all slaves
[   65.186198][   T14] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   65.189981][   T14] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   65.196636][   T14] bond0 (unregistering): (slave dummy0): Releasing backup interface
[   65.200219][   T14] bond0 (unregistering): Released all slaves
[   65.405550][   T14] hsr_slave_0: left promiscuous mode
[   65.408196][   T14] hsr_slave_1: left promiscuous mode
[   65.410916][   T14] batman_adv: batadv0: Removing interface: batadv_slave_0
[   65.415843][   T14] batman_adv: batadv0: Removing interface: batadv_slave_1
[   65.421917][   T14] hsr_slave_0: left promiscuous mode
[   65.424518][   T14] hsr_slave_1: left promiscuous mode
[   65.427051][   T14] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   65.430147][   T14] batman_adv: batadv0: Removing interface: batadv_slave_0
[   65.435722][   T14] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   65.438729][   T14] batman_adv: batadv0: Removing interface: batadv_slave_1
[   65.446579][   T14] veth1_macvtap: left promiscuous mode
[   65.448927][   T14] veth0_macvtap: left promiscuous mode
[   65.451897][   T14] veth1_vlan: left promiscuous mode
[   65.454141][   T14] veth0_vlan: left promiscuous mode
[   65.558946][   T14] team0 (unregistering): Port device team_slave_1 removed
[   65.567433][   T14] team0 (unregistering): Port device team_slave_0 removed
[   65.663331][   T14] team0 (unregistering): Port device team_slave_1 removed
[   65.674978][   T14] team0 (unregistering): Port device team_slave_0 removed
[   70.963085][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[   70.965967][ T1362] ieee802154 phy1 wpan1: encryption failed: -22

VM DIAGNOSIS:
02:03:01  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000002d RBX=000000000000002d RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000002d64 RDI=0000000000002d65 RBP=00000000000003f8 RSP=ffffc90004f05f10
R8 =ffff888106e08237 R9 =1ffff11020dc1046 R10=dffffc0000000000 R11=ffffffff85474610
R12=dffffc0000000000 R13=ffffffff99ac48e2 R14=ffffffff99dc9760 R15=0000000000000000
RIP=ffffffff8547468c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f58d2d156c0 ffffffff 00c00000
GS =0000 ffff8880b8650000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c3253fb CR3=00000000286c8000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 000000ffff0000ff XMM01=0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 000000ffff0000ff XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=65f169fefc51e300 RBX=ffffffff81974d58 RCX=65f169fefc51e300 RDX=0000000000000001
RSI=ffffffff8be28d20 RDI=ffffffff81974d58 RBP=ffffc90000177f20 RSP=ffffc90000177de0
R8 =ffff888136632f5b R9 =1ffff11026cc65eb R10=dffffc0000000000 R11=ffffed1026cc65ec
R12=ffffffff8fa10df0 R13=0000000000000001 R14=0000000000000001 R15=1ffff110200d3000
RIP=ffffffff8b66b4a3 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c50000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3ae4fb9440 CR3=000000000df38000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 00000000000000ff XMM01=2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c
XMM02=6f2064696c61766e 69203a7325002d2d XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
