last executing test programs:

15.36797579s ago: executing program 0 (id=8345):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x268, 0x0, 0x5, 0x401, 0x0, 0x0, {}, [{{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x200, 'syz1\x00', "0a6bb88ed7cb25a61c63cb8086a719da0c4aae61a3d421a933203a8c4009bf4a", "7825a0d13670a6c274267e543d2774e64f2ec231e3d9ede42ee1bfb22d22b6cf", [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, {0x3}}]}}}]}, 0x268}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_HEADER(r1, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0xc, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}}, 0x14}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(0x0, 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000180)=""/193)
lseek(r2, 0x9, 0x0)

14.650799819s ago: executing program 0 (id=8356):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000280), 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000180), &(0x7f00000002c0)=0x8)
openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1d, 0x2, 0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_open_procfs(0x0, &(0x7f00000002c0)='net/ip6_tables_names\x00')
epoll_create1(0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfdcd}, 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x68, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="540000001000010400000080fefffffffe000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x54}}, 0x0)

14.484807373s ago: executing program 0 (id=8361):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe(&(0x7f0000000300)={<r0=>0xffffffffffffffff})
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00'})
bind$packet(r2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000140)=@framed, &(0x7f00000001c0)='syzkaller\x00'}, 0x80)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
getsockname$packet(r2, &(0x7f0000000240)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="2000000011000d04000000000000000010000000", @ANYRES32=r3, @ANYBLOB], 0x20}}, 0x0)

14.425603878s ago: executing program 0 (id=8362):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19}, 0x42)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = socket$isdn_base(0x22, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x7c, 0x30, 0xb, 0x0, 0x0, {}, [{0x68, 0x1, [@m_ct={0x64, 0x1, 0x0, 0x0, {{0x7}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CT_MARK={0x8, 0x5, 0x9}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @ipv4={'\x00', '\xff\xff', @loopback}}, @TCA_CT_LABELS_MASK={0x14, 0x8, "1c72f2d8dd5daaab9480cd26eefe7439"}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x7c}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newlink={0x54, 0x10, 0x581, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERIER={0x5}, @IFLA_BR_MCAST_HASH_ELASTICITY={0x8}]}}}, @IFLA_LINK={0x8}, @IFLA_OPERSTATE={0x5}]}, 0x54}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=@newtaction={0x14, 0x26}, 0x14}}, 0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000280)={0x0, 0x0, 0x2000}, &(0x7f0000000040), &(0x7f0000000180))
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000c40)=@mangle={'mangle\x00', 0x8, 0x6, 0x970, 0x278, 0x780, 0x480, 0x780, 0xf8, 0x8a0, 0x8a0, 0x8a0, 0x8a0, 0x8a0, 0x6, 0x0, {[{{@uncond, 0x0, 0xd0, 0xf8, 0x0, {0x7a00000000000000}, [@inet=@rpfilter={{0x28}}]}, @HL={0x28}}, {{@ipv6={@dev, @loopback, [], [], 'pimreg0\x00', 'veth1_macvtap\x00'}, 0x0, 0x148, 0x180, 0x0, {0x5002}, [@common=@unspec=@physdev={{0x68}, {'erspan0\x00', {}, 'netpci0\x00', {}, 0x14, 0x15}}, @common=@unspec=@connbytes={{0x38}}]}, @common=@inet=@SET3={0x38}}, {{@uncond, 0x0, 0x1e0, 0x208, 0x0, {}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, @ipv4={'\x00', '\xff\xff', @loopback}, @mcast2, @local, @private1, @local, @dev, @rand_addr=' \x01\x00', @private1, @mcast2, @dev, @private2, @private1, @mcast2, @loopback]}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0x2d8, 0x300, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x9}]}}]}, @common=@unspec=@MARK={0x28}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@eui64={{0x28}}]}, @inet=@TOS={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x9d0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x64, 0x0, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000}, 0x4000001)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xa3, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x4}, 0x48)
r8 = memfd_secret(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2}, 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r9=>0xffffffffffffffff}, './file0\x00'})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f00000001c0)=ANY=[], &(0x7f00000005c0)=""/115, 0x14, 0x73, 0x0, 0x14}, 0x20)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000940)=@o_path={&(0x7f0000000200)='\x00', 0x0, 0x4008}, 0x18)
ioctl$PERF_EVENT_IOC_PERIOD(r9, 0x40082404, 0x0)
r10 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r7)
sendmsg$NLBL_CALIPSO_C_REMOVE(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x1c, r10, 0x1, 0x0, 0x0, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}}, 0x0)
dup(r2)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000040)=@other={'lock', ' ', 'io+mem'}, 0xc)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r8, &(0x7f0000000a80)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000900)={&(0x7f0000000a00)={0x54, 0x0, 0x800, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_HOP_PENALTY={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x7}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x3}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x2800000}, @BATADV_ATTR_ELP_INTERVAL={0x8}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x10}, 0x10)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000980)=ANY=[@ANYBLOB="756e6c6f636b20696f2b6d656d000f9a99cbdb95b1d1e2ff76549ac0e5647f546a409c5f6b99481e1ff1ca3c9d9f6455d99a86045c6723f2e85f6442cd13b68beed7b786e4d81f17601b4141fe2e6a71bdd2d512165aeb7e13ca3b50c511004eecba4e8e5e6a"], 0xe)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000008c0)=r1, 0x4)

13.776485772s ago: executing program 0 (id=8368):
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
ptrace(0x10, 0x1)
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000040))
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000280))
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000002c0))
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r2 = inotify_init1(0x0)
fcntl$setown(r2, 0x8, 0xffffffffffffffff)
fcntl$getownex(r2, 0x10, &(0x7f0000000140)={0x0, <r3=>0x0})
r4 = getpgid(r3)
ptrace$setsig(0x4203, r4, 0x0, &(0x7f00000000c0)={0x40000, 0x0, 0x80})

11.064783336s ago: executing program 2 (id=8422):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_freezer_state(r1, &(0x7f00000000c0), 0x2, 0x0)
r3 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000001, 0x12, r3, 0x0)
write$cgroup_freezer_state(r2, &(0x7f0000000200)='THAWED\x00', 0x7)
r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000003200)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
ptrace(0x8, r0)

11.057713846s ago: executing program 2 (id=8423):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)=ANY=[@ANYBLOB="1400000010000100f0ff0000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c000380140001007465616d300000000000000000000000140001"], 0xfc}}, 0x0)

11.01665074s ago: executing program 2 (id=8424):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008009000000000001000000941900000fad413ec500000f00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x71, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x90)
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
iopl(0x3)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
socket(0x28, 0x1, 0x7)
madvise(&(0x7f00002f6000/0x2000)=nil, 0x2000, 0x15)
r1 = creat(&(0x7f0000000a00)='./file0\x00', 0x10)
write$cgroup_int(r1, &(0x7f0000000540), 0x12)
fchdir(0xffffffffffffffff)
inotify_init1(0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x111800a, &(0x7f0000000a40)={[{@nombcache}, {@data_ordered}, {@journal_checksum}, {@i_version}, {@usrquota}, {@usrquota}, {@data_err_abort}, {@data_err_abort}], [{@uid_eq}]}, 0x1, 0x5d8, &(0x7f0000001200)="$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")
chdir(&(0x7f0000000480)='./file1\x00')
lchown(&(0x7f0000000440)='./file1\x00', 0xee01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
open(&(0x7f0000000180)='./bus\x00', 0x4827e, 0xca)
mknod(0x0, 0x0, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r3, r2, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0xa02000000000000, 0x60, &(0x7f00000004c0)={'filter\x00', 0x1002, 0x4, 0x4a0, 0x2d0, 0x0, 0x0, 0x3b8, 0x3b8, 0x3b8, 0x4, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x2d0}}, {{@arp={@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'ip6tnl0\x00'}, 0xc0, 0x1e8}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:lib_t:s0\x00'}}}, {{@arp={@remote, @rand_addr, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'team_slave_1\x00', 'syz_tun\x00'}, 0xc0, 0xe8}, @unspec=@CONNSECMARK={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x4f0)
getsockopt$inet_tcp_buf(r2, 0x6, 0x0, &(0x7f0000000040)=""/114, &(0x7f00000000c0)=0x72)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x4, 0x4, 0x3e8, 0x200, 0x200, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local={0x2}}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x4}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x0, 0x2}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x3, @remote, 0x9}, 0x1c)

10.857926263s ago: executing program 2 (id=8428):
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x44, 0x0, 0x8, 0x301, 0x0, 0x0, {}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_ESTABLISHED={0x8}, @CTA_TIMEOUT_TCP_SYN_RECV={0x8}]}]}, 0x44}, 0x1, 0xfffffffffffffffc}, 0x0)

10.857738643s ago: executing program 2 (id=8429):
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000100)="1b0000001a005f38030000000000000080040000000000000b0000", 0x1b)

10.822380725s ago: executing program 2 (id=8431):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = syz_clone(0x0, &(0x7f0000000e00), 0x0, 0x0, 0x0, 0x0)
migrate_pages(r2, 0x8, 0x0, &(0x7f0000001fc0)=0x1)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(0xffffffffffffffff, r3)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = dup(r5)
pipe2$9p(&(0x7f00000001c0)={<r7=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r5}})
write$P9_RLERRORu(r6, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r6, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000006c0)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[], [], 0x6b}})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x400e, &(0x7f00000002c0)={[{@i_version}, {@nobh}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@nogrpid}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan1\x00'})
preadv2(r0, &(0x7f0000000740)=[{&(0x7f0000000d80)=""/4096, 0x1000}, {&(0x7f0000000500)=""/229, 0xe5}, {&(0x7f0000000480)=""/75, 0x4b}, {&(0x7f00000007c0)=""/219, 0xdb}, {&(0x7f0000000600)=""/247, 0xf7}, {&(0x7f0000001d80)=""/4096, 0x1000}, {&(0x7f0000000700)=""/31, 0x1f}], 0x7, 0x666, 0x6, 0x18)
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000900)=ANY=[], 0xfeeb, 0x0)
lchown(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

2.440644419s ago: executing program 1 (id=8546):
openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x8002, 0x0, 0x1}, 0x48)
close(r0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x40047452, 0x0)
syz_emit_ethernet(0xae, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "000210", 0x78, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, [{0x18, 0x1, '\x00\x00\x00\x00\x00\x00'}, {0x18, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "005ff9297d00001392000100"}]}}}}}}, 0x0)
r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000080)='.pending_reads\x00', 0x2, 0x4)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0x84, 0x2, 0x1, 0x401, 0x0, 0x0, {0x5, 0x0, 0x8}, [@CTA_TUPLE_ORIG={0x1c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @CTA_TUPLE_MASTER={0x4c, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6d}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x90000000}]}, 0x84}, 0x1, 0x0, 0x0, 0x4040030}, 0x41)
socket$nl_route(0x10, 0x3, 0x0)
r2 = perf_event_open$cgroup(&(0x7f00000004c0)={0x3, 0x80, 0xa0, 0x80, 0xff, 0x9, 0x0, 0x4, 0x88024, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, 0x5f4bec0e71ff81b7, @perf_bp={&(0x7f0000000480)}, 0x10041, 0x100, 0x6, 0x4, 0x94e0, 0x0, 0x762, 0x0, 0xffff0cf6, 0x0, 0x2}, r1, 0x0, r1, 0x5)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0x0, r2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000000}}}}}, 0x0)

2.373932663s ago: executing program 1 (id=8547):
lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100))
socket(0x10, 0x3, 0x0)
io_uring_setup(0x6f6, &(0x7f0000000040))
syz_io_uring_setup(0x5169, &(0x7f0000000200), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000200)=@framed={{}, [@printk={@s, {0x3, 0x3, 0x3, 0xa, 0x0}, {0x4}, {0x7, 0x0, 0x4, 0x1, 0x0, 0x0, 0xfffffff6}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0xb}, {}, {0x85, 0x0, 0x0, 0x5}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0xff8, &(0x7f0000001e00)=""/4088}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$gtp(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="0100000000000079060000000000080002"], 0x1c}}, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$SCSI_IOCTL_GET_PCI(r4, 0x2272, &(0x7f0000000000))
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000080)={0x18, 0x0, {0x1, @remote, 'nr0\x00'}}, 0x1e)
sendmmsg$sock(r5, &(0x7f0000001dc0), 0x213, 0x0)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$inet(r6, &(0x7f0000000040)={&(0x7f0000000000)={0x2, 0x4e21, @multicast2}, 0x10, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000024000000000000000007000000890704e0faf16a001c000000000000000000000008000000", @ANYRES64=r6], 0x38}, 0x0)

1.481635088s ago: executing program 3 (id=8551):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, 0x0, &(0x7f00000005c0)}, 0x20)

1.462570619s ago: executing program 4 (id=8552):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000001700)=0x4)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}]}, 0x3, 0x4de, &(0x7f0000000c40)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
open_by_handle_at(r2, &(0x7f0000000040)=@reiserfs_2={0x8, 0x2, {0xb}}, 0x0)
open_by_handle_at(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="4b000000020000000b00000000bd"], 0x0)
bind$can_raw(r0, &(0x7f00000000c0), 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(0x0, 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_ADDDEF(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYBLOB="01000006000000000000e0e8f87fad08d14d05001a000500ac1414000500010000000000"], 0x34}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="020023031000070060000000020000"])
socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(0xffffffffffffffff, 0x114, 0x3f, &(0x7f0000000780), 0x1)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0x8010550e, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0xa, 0x22, 0x2, 0x1, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000080)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)='%-010d \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000a40)={{r6}, &(0x7f0000000300), &(0x7f0000000a00)='%-010d \x00'}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
ioctl$USBDEVFS_RELEASEINTERFACE(0xffffffffffffffff, 0x8038550a, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r4}, &(0x7f0000000080), &(0x7f0000000180)='%pI4   \x00'}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@ptr]}, {0x0, [0x0, 0x61]}}, 0x0, 0x28}, 0x20)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000700)=@mangle={'mangle\x00', 0x64, 0x6, 0x750, 0xd0, 0x300, 0xd0, 0x1b8, 0xd0, 0x680, 0x680, 0x680, 0x680, 0x680, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0xfffe, 0x703}}}, {{@ipv6={@mcast1, @local, [], [0x0, 0x80060000], 'macvtap0\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@uncond, 0x0, 0x100, 0x148, 0x0, {}, [@common=@unspec=@connmark={{0x30}}, @common=@inet=@socket1={{0x28}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4=@private}}}, {{@uncond, 0x0, 0x108, 0x130, 0x0, {}, [@common=@frag={{0x30}}, @common=@frag={{0x30}}]}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0x228, 0x250, 0x0, {}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @ipv4={'\x00', '\xff\xff', @empty}, @remote, @ipv4={'\x00', '\xff\xff', @private}, @dev, @private0, @loopback, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @loopback, @private1, @remote, @private1, @mcast2, @private0, @private2]}}, @common=@dst={{0x48}}]}, @common=@inet=@TCPMSS={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x7b0)

1.370432727s ago: executing program 1 (id=8553):
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r0, 0x560f, &(0x7f0000000000))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x560f, &(0x7f0000000000))
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x25}, {0x6}]}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r3, &(0x7f0000000180)='\x00', 0x1, 0x0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)

1.370079667s ago: executing program 3 (id=8554):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000001400)={0x83, 0xfffffffd, 0xffffffff}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="95feffff4a00010000000000000000000a0047de", @ANYRES32=0x0, @ANYBLOB="000000000800020000000000"], 0x24}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040), 0x10)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="a00000001a006d8700000000000000001c00000000000000000000008400"], 0xa0}}, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000340)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x400}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x24, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000400000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018180000", @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES64=r1, @ANYBLOB="00000000000000001800000089000000000000000b040000180000000000000000000000030000009500000000000000180000000000000000000000a4090000186200000e00000000000000080000001856000006000000000000000000000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000000000000850000008600000018180000", @ANYRES32, @ANYBLOB="0000000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000040)=0x100000001, 0x4)
ioctl(0xffffffffffffffff, 0x5, &(0x7f00000004c0)="10f17bb60000db7f428ff9b83e223fd26500000000b2786052e4b7b69ee6548fd243205fcec20160f6f96201598af18218d815d88e90b5b6e71dda961a8ccc9b10615a60e3d3af9ec1bc7b4a7f1b786e607f6aeae619d0c38e5ea8d73285d9a2152033c4c3170814b32026b7fbaf4b039e5028f5434e6ea30d5d1c9b18a04aa584cabf51266e4e397f00618ca001278eaec1daa4e70c5bfed97ba348f4fd")
r5 = syz_usbip_server_init(0x1)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c0000000203010100000000065b03c9c8c66a000000000200ffff08"], 0x1c}, 0x1, 0x0, 0x0, 0x10001}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=ANY=[@ANYRESDEC=r3], 0x20}, 0x1, 0x0, 0x0, 0x20008854}, 0x0)
write(r5, &(0x7f0000000080)="0f", 0x1)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
getsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, 0xfffffffffffffffe, &(0x7f00000001c0))
ioctl$TCSETAF(r7, 0x5408, &(0x7f0000000080)={0x4e00, 0x0, 0x0, 0xbdff, 0x1, "ec28a1ba80a20507"})
write$binfmt_aout(r7, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r7, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0xffff, 0x2, 0x0, "00e2d97d8200000011eb00000000f7fffeff00"})
r8 = syz_open_pts(r7, 0x0)
r9 = dup3(r8, r7, 0x0)
ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000000)=0x17)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, &(0x7f0000000300)=ANY=[@ANYRES16=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x2d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
socket$inet6_sctp(0xa, 0x1, 0x84)

1.365462067s ago: executing program 4 (id=8555):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r1=>0x0})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x11, 0x1, 0x0, @broadcast}}]}]}, 0x5c}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x38, 0x10, 0x1, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, 0x0, 0x800}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_LINK_STATE={0xc, 0x5, {0xffffffc1}}]}]}, @IFLA_IFALIASn={0x4}]}, 0x38}}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r3) (async)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), r5)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r5, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000080)={0x28, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x28}}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_DEV(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r6, 0x4, 0x70bd2d, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008810}, 0x40041) (async)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x40, r4, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x80}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x40}}, 0x0)

1.274434494s ago: executing program 4 (id=8556):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x10, 0xffffffffffffffff, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
creat(&(0x7f00000006c0)='./bus\x00', 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r0 = socket$kcm(0xa, 0x6, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000007c0)='memory.events\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10d, 0xb, &(0x7f0000000000)=r1, 0x4)

1.148498705s ago: executing program 4 (id=8557):
r0 = inotify_init1(0x0)
syz_io_uring_setup(0xed0, 0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xff39)
readv(r0, &(0x7f0000001300)=[{&(0x7f0000000180)=""/32, 0x20}], 0x1)
inotify_add_watch(r0, &(0x7f0000000080)='.\x00', 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000000000500010007"], 0x1c}}, 0x0)
open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f00000002c0)={r1, 0xffffffff, 0xa, 0xb})
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}}, 0x1c)

458.267762ms ago: executing program 3 (id=8558):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000020000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x0, 0x0, 0x3}, 0x10}, 0x90)

425.931895ms ago: executing program 1 (id=8559):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_TIME_STAMP(r1, 0x0, 0x3, &(0x7f0000000000)=0x1, 0x4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00'})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100000000000c0002000c0000000d00000008000500", @ANYRES64=r2], 0x50}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="500000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100030000000c0002001c0000000f00000008000500", @ANYRES32=r5], 0x50}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$bt_sco_SCO_OPTIONS(r4, 0x11, 0x1, &(0x7f00000015c0)=""/4096, &(0x7f0000000300)=0x1000)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$packet(0x11, 0x2, 0x300)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x0, 0x0, 0x100}, 0x48)
bind$inet(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
getsockname$packet(r4, &(0x7f0000000040)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x1b)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
write$binfmt_elf32(r8, &(0x7f0000000340)={{0x7f, 0x45, 0x4c, 0x46, 0xb, 0x2, 0x9, 0x0, 0xbb, 0x1, 0x3e, 0x8, 0x1fe, 0x38, 0x276, 0x10, 0x1, 0x20, 0x2, 0x9, 0xffff, 0x6}, [{0x3, 0xeeea, 0x0, 0xd01c, 0xc11, 0x8, 0xfffffffe, 0xf4}, {0x6474e551, 0x4eff, 0x5, 0x7, 0x2, 0xfffffe01, 0x2, 0x1}], "1fb43a6c7a3f0adbfa19351c4d5cf9116b22c49fc941fac17da4cec8f8e3ac23b2d1e1aee927bf98538dd323068b6626dda4a1d12c2e5c1053135b1464ef4cedd467e508736d4a8c4edc6db2bd031f747f333071d54d33811ddfabeef8d949dd9c", ['\x00', '\x00']}, 0x2d9)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)=ANY=[@ANYBLOB="2000000011000d04000000000800000000000000", @ANYRES32=r7], 0x20}, 0x1, 0x6}, 0x0)

416.170276ms ago: executing program 3 (id=8560):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x0)
syz_emit_ethernet(0x176, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaa48847000000000000000000000000603f599001340600fe8000000000000000000000000000aafe8000000000000000000000000000000000000000000000c204000000000000000c000000000000fc02000000000000000000000000000000000000000000000000ffff00000000fe800000000000000000000000000000fe80000000000000000000000000000000000000000000000000000000000000fc00"/190, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB], 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a00000000000000000000000000000900010073797a30000000002c000000160a00000000000000000000000000000900010073797a30000000000900020073797a30000000002c000000180a0000000b000000000000000000000900010073797a30000000000c000540000000000000000014000000101c010000000000000000000000000a"], 0xa0}}, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chdir(&(0x7f0000000540)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)

238.82571ms ago: executing program 3 (id=8561):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r2, 0x0, 0xfffffe5d)
getsockname$packet(r2, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYBLOB="01ff00e1c2ed00001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
getsockname$packet(r2, &(0x7f0000000440)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000004c0)=0x14)
r4 = socket(0x10, 0x80002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0xcf0a, &(0x7f0000000140)={&(0x7f0000000240)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x48100}, [@IFLA_MASTER={0x8, 0xa, r3}]}, 0x28}}, 0x0)

218.123481ms ago: executing program 4 (id=8562):
getresgid(&(0x7f0000000140), &(0x7f0000000580), &(0x7f0000000180)=<r0=>0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x10814, &(0x7f00000005c0)=ANY=[@ANYBLOB='umask=00000000000000000000000,flush,nodots,dots,gid=', @ANYRESHEX=r0, @ANYBLOB="00006b746769643d0092", @ANYRESOCT, @ANYRES64, @ANYRESOCT], 0x1, 0x1fe, &(0x7f0000000240)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
clock_gettime(0x0, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x80)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={0x0}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
gettid()
rt_sigqueueinfo(0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES32=r4], 0x20}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x192}}, 0x20}}, 0x0)

142.687148ms ago: executing program 1 (id=8563):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x0, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, 0x0, &(0x7f00000005c0)}, 0x20)

125.099659ms ago: executing program 4 (id=8565):
r0 = getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
pipe2(&(0x7f0000000080)={<r1=>0xffffffffffffffff}, 0x0)
r2 = syz_clone3(&(0x7f0000000340)={0x42907480, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r3 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000003140)=""/4095, &(0x7f0000000000)=0xfff)
getsockopt$bt_hci(r5, 0x84, 0x75, &(0x7f0000000000)=""/4071, &(0x7f0000001080)=0xfe7)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xfe, 0x0, &(0x7f0000000000))
ioperm(0x0, 0x5, 0x8)
lsetxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100), &(0x7f0000000000)='system_u:object_r:apt_var_lib_t:s0\x00', 0x62, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r6)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000001000))
ptrace$setregs(0xd, r2, 0xd26e, &(0x7f00000003c0)="24530e663f8ad6de4bf95431d51ec6c5266663")
setsockopt(r7, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r8 = syz_io_uring_setup(0x6225, &(0x7f00000001c0), &(0x7f0000000180), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r8, 0xd, &(0x7f0000000840)={0x3, 0x0, 0x0, 0x0, 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000401000010080000000000000000000000a20000000000a01080000c2b492c489a2a45eb5c4d5000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a40000000000900020073797a31000000000900010073797a300040000008000540000000212c0011800a0001006c696d69740000001c0002800c00024000000000000000000c000140fffffffffffffffc0852d841bed61c3d20"], 0xb0}}, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r7, 0x84, 0x17, &(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYBLOB="05"], 0x9)
sendto$inet6(r7, &(0x7f0000000100)="ea", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_clone3(&(0x7f0000000500)={0x500, 0x0, &(0x7f0000000240), 0x0, {}, &(0x7f0000000100)=""/211, 0xd3, &(0x7f00000002c0)=""/122, &(0x7f00000004c0)=[r0], 0x1, {r1}}, 0x58)

71.443224ms ago: executing program 1 (id=8566):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000480), 0x0, 0x8)
prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0)
r1 = gettid()
readv(0xffffffffffffffff, 0x0, 0x0) (async)
readv(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x101080e, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES16=r1, @ANYRESOCT=r1], 0x1, 0x67e, &(0x7f0000001600)="$eJzs3V1v29Ydx/Ef5SfFHYJiG4IgSJOTZAUcLFMouXFgZMCqUZTNTRIFUh5sYECRNXYRRE63JAMW3xS+2BPQvYHd9WK72IsYsOu9iu1uA4rtbsBuWPCQsiVbD1btJG3y/QStKPLPc/4kFf7BSDwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQ49Vct+yoEbQ2Ns1oXi0Km2OWZ63N6WY2cXNiv5KT/qdiURezWRe/fbj4Qvq/67qcvbusYvpS1N5bF96+963ZQm/9MQl9GZq2wafP9x7d73a3n5wgdkZTN/8qqXCCoDW/FcRh0Kyu+SaIQ7O6suLeXq/Hph40/Hgr7vhN40V+oRNGZsm7acqrq8vGL22FG621WrXh92be/V7FdVfMjxayAy2pFHvrQaMRtNZsTLo4jblrPv1pFuBXm8bsPOxuL09KMg0qnySoMimo4lYq5XKlUl65s3rnruvOHpvhphz3gI5FnPmHFl8zZ3fyBk6pkNb/fzpSQ0W1tKFNmaF/PNUUKVRzxPJcr/6/e9sf229//e9V+YvSD/LFl2Tr/5Xs3ZVR9X9ELkbGrjBsiTNi/nR/5vJWnuq59vRI99VVV9t6cgZtG5mrp23h12eSxz+SzOiINflqKVCsUIGaqto5Jp9jtKoVrcjVB1pXXbGM6grUkK9YW4rVkW8/UZ4i+aqqo1CRjJbk6aaMylrVqpZl5KukLYXaUEtrqqmq/yVJsqOHdr8vj9kK9YLKIwIW+oMqY1oaVf9/9kn2Oc3rv0v9f1Nln4OF/Cw2Lgb4Ckjy6/8pXX0x2QAAAAAAgBfBsf/67tjv7t+RlKgeNHz3VacFAAAAAADOkKNkQZflyP6kTe/I4fofAAAAAIDXjWPvsXMkLdof9TuHd0Kd5B8BZl5CigAAAAAA4JTsnf9X5qXEDlpxVc5U1/8AAAAAAOBr4Hd9Y+zP9sbYTXpf6xckxe0F56//WVA05+y3N7/j7FbTJdXdPObYLwA69UvO+XygXvsyL8m+8/zLTt5bPgjmwbiDn+9MGuvfiY4kMD/T38CIBJy055XZ/J0+1bVslWv5OPMP9gqyS7JeFutBwy95YeNeWdXq+ULH3+z88vHDX0nRwXbuPOxulz78uPvA5rKfztrfTRv9ZCCdwvCdcZjLMzvegr3nYtgWn1O91+XvW81Fx/br9rZ/RtXdQn9H4w7AYZ+/0fXsmF1fzGIX9w5G3E+3v5huf7lkD9nA1kdzzmEW5aNbPuxAjMiiaLO4kcXcWLqRvfTyS9spOMXvzkiV0vFjMJBFpT+LyfvC+e+xfTEui3xfLKdZ/C1taEQWy9NlceyIAMCrsnNYhewg5sfqbq889E5qX6ruTK7u7w9W92d/TBK7wow0m383MbaXotIz+pJj69C87Il19tKQM7qb15WiRpzR3VNUt7Svvxw+AylP+1gW/0+S5F7Z9vuHI1X1s3SFz0b2GzcqM+kuvP1s9+d2APzUR9sfbT+uVJZX3Pdc905Fc3Yz8pcZHc2U32wCAE7wjJ2JEc57upZFXHvw73ezqYGK982DnxSU9KE+VlcPdKv3CIGrw1td7PsZwq3sqlV9V63mwtv3zklHY8u6NfKqztbSvtjKQeyceqsMVurD2OUXfBQAAHi5rk+ow8Prf3Gg/t/SUhaxdGnodfdgLT/6hOBRseXJyb9/1nsDAIA3gx997ix2futEUdD+oLy6Wq521n0Thd6PTRTU1nwTtDp+5K1XW2u+aUdhJ/TChmlHWghqfmzijXY7jDqmHkamHcbBpn3yu8kf/R77zWqrE3hxu+FXY994YatTnZGpBbFn2hs/bATxuh/ZleO27wX1wKt2grBl4nAj8vySMbHv9wUGNb/VCepBOtky7ShoVqMt85OwsdH0Tc2PvShod8KsQduX1zFBqx5GTdtsScnUDzoEAOB19PT53qP73e72kzET+5ock0/MD2mQ75sBAPiKOSzXU6xUfIEJAQAAAAAAAAAAAAAAAAAAAACAY05y/99UE3PDbhaUDub84vyRtf6kYe04OuvEppkoTLtW75aIvUd/HxN87mBOb/f3x+y/tA381zekt+wcZXNmz76vc3ZvvLwD9/2dbI+OjEkXDl20cHAsZs/+r0M68fjPIxYlSZKMX31hcB/Oj9vAwYlZSU/mT3EIBk4TjJsBvIa+CAAA//9z/kFZ")
open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
r3 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x5, &(0x7f0000000000)=@framed={{}, [@map_idx={0x18, 0x0, 0x5, 0x0, 0x1000000}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)}, 0x90)
mmap(&(0x7f0000268000/0x4000)=nil, 0x4000, 0x1000002, 0x4016012, r3, 0x0)
process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) (async)
process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4) (async)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4)
r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
write$tcp_mem(0xffffffffffffffff, &(0x7f0000000400)={0x7ff, 0x20, 0x1000000000000000}, 0x48)
write$cgroup_subtree(r6, &(0x7f0000000440)=ANY=[@ANYBLOB='-'], 0x7)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00 ', @ANYRES16=r5, @ANYBLOB="010000000000000000000100000008000200030000001c0004800500030001000000050003000000000005000300050000000800010003000000"], 0x40}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000f200000700000000000000c30200000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xfa, &(0x7f0000000140)=""/250}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
pwritev(r2, 0x0, 0x0, 0x0, 0xff) (async)
pwritev(r2, 0x0, 0x0, 0x0, 0xff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)

71.116254ms ago: executing program 3 (id=8567):
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x58, &(0x7f0000000a00)={[{@inode_readahead_blks}, {@grpid}, {@nomblk_io_submit}, {@stripe={'stripe', 0x3d, 0x4ffff}}, {@norecovery}, {@errors_remount}, {}]}, 0xfe, 0x799, &(0x7f00000001c0)="$eJzs3c1rHGUYAPBnNp+m1UYQbL00Jy2UbtoaWwWh8SSChYKebcNmG2I22ZLdlCbkYBFBEEGLB0Evnv2oN28ievZv8CIiLVXTYsWDrMx+JJtukm7TTdI2vx9M8r4zs/PMs7Pzvu/uDLsB7FpD6Z9MxIGI+CiJ2Fefn0RET7XUHTFaW+/20mIunZKoVN74M6muc2tpMRdNj0ntqVf2R8SP70UczrTGLc0vTI0VCvnZen24PH1huDS/cGRyemwiP5GfOXFsZOT4yRdOnuhcrn//vLD3+sevPvfN6L/vPn31w5+SGI299WXNeXTKUAzVn5Oe9Cms+b7TUR4MyU7vAJuSnppdtbM8DsS+6KqWAIBHWdr/VwCAXSbR/wPALtP4HODW0mKuMe3sJxLb68YrEdFfy79xfbO2pLt+za6/eh104Fay6spIEhGDHYi/PyI+/+6tr9Iptug6JMBa3rkcEecGh1rb/2TlnoVNOtrGOkN31LV/sH1+SMc/L641/sssj39ijfFP3xrn7mYMRfTWN1fVev5nrq0K2nCqA8Hr47+Xa/e2pYk2jf+Wb1ob7KrXHk8rByNispBP27YnIuJQ9PSdnyzkj20Q49DN/26ut2yoafz315W3v0zjp/9X1shc6+5b/ZjxsfLY/eTc7MbliGe6V+7tu93S/jeOeuv498xGGz64Unztpfc/W2+1NP8038bUmv/WqnwR8WysnX9DsuH9icPp4T9a+7t2jG9//XRgvfjNxz+d0viN9wLbIT3+AxvnP5g0369Z6mz8u+e//Ppf3qH09d+bvFkt99bnXRorl2ePRfQmr7fOP76ytUa9sX6af23Di72xKv+V9i9Zo/1L3xOeazPH7ut/fL35/LdWmv/4PR3/ey9cvT3VtV789o7/SLV0qD6nnfav3R28n+cOAAAAAAAAAAAAAAAAAAAAAAAAANqViYi9kWSyy+VMJput/Yb3UzGQKRRL5cPni3Mz41H9rezB6Mk0vupyX62eNL7/dLCpfvyO+vMR8WREfNL3WLWezRUL4zudPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADU7Vnn9/9Tv/ft9N4BAFumv2VOpVKpNNdv5jdcDAA8dFr7fwDgUaf/B4DdR/8PALuP/h8Adh/9PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFvszOnT6VT5Z2kxl9bHL87PTRUvHhnPl6ay03O5bK44eyE7USxOFPLZXHH6btsrFIsXRmJm7tJwOV8qD5fmF85OF+dmymcnp8dOxdl8z7ZkBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3pjS/MDVWKORnH4nCBxHxAOyGQmcLvx35Zf9G61y5y8t4tI1Y/fUT4gFJeecLO9wwAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwk/g8AAP//Ez0kyA==")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x28}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)=@newqdisc={0x24, 0x25, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x2}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700)
fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140))
write$cgroup_int(r5, &(0x7f0000000200), 0x42400)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r6, 0x8)
syz_emit_ethernet(0x8e, &(0x7f0000000b00)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x58, 0x6, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x16, 0xc2, 0x7, 0x0, 0x0, {[@fastopen={0x22, 0x2}, @generic={0x8, 0x2}, @md5sig={0x13, 0x12, "8897ccf62824004b39391b45370b371a"}, @sack={0x5, 0x16, [0x0, 0x0, 0x0, 0x0, 0x0]}, @exp_fastopen={0xfe, 0x7, 0xf989, "d463e2"}, @sack={0x5, 0x6, [0x0]}, @sack_perm={0x4, 0x2}, @fastopen={0x22, 0x8, "53a8ffc2ec23"}]}}}}}}}}, 0x0)
getdents64(r0, &(0x7f0000000400)=""/258, 0x102)

0s ago: executing program 0 (id=8533):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe(&(0x7f0000000300))
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @remote}, 0x14)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18}, './file0\x00'})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="2000000011000d04000000000000000010000000", @ANYRES32=r3, @ANYBLOB], 0x20}}, 0x0)

kernel console output (not intermixed with test programs):

adv_slave_1
[  437.070746][T28616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.081203][T28616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.091793][T28616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.102070][T28616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.113131][T28616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.123301][T28616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.133940][T28616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.144323][T28616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.154790][T28616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.164736][T28616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.175980][T28616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.210311][T28616] batman_adv: batadv0: Interface activated: batadv_slave_1
[  437.235123][   T50] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.253208][T28616] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  437.262267][T28616] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  437.271187][T28616] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  437.280817][T28616] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  437.339430][   T50] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.444543][T28905] loop3: detected capacity change from 0 to 512
[  437.451365][T28900] hsr_slave_1 (unregistering): left promiscuous mode
[  437.474949][   T50] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.492264][T28905] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  437.687899][   T50] bridge_slave_1: left allmulticast mode
[  437.693750][   T50] bridge_slave_1: left promiscuous mode
[  437.700080][   T50] bridge0: port 2(bridge_slave_1) entered disabled state
[  437.736644][   T50] bridge_slave_0: left allmulticast mode
[  437.742324][   T50] bridge_slave_0: left promiscuous mode
[  437.748140][   T50] bridge0: port 1(bridge_slave_0) entered disabled state
[  437.809266][T28927] __nla_validate_parse: 1 callbacks suppressed
[  437.809281][T28927] netlink: 320 bytes leftover after parsing attributes in process `syz.1.7940'.
[  437.911048][   T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  437.921806][   T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  437.932099][   T50] bond0 (unregistering): Released all slaves
[  438.006591][T28883] chnl_net:caif_netlink_parms(): no params data found
[  438.018841][T28927] infiniband syz0: set down
[  438.023385][T28927] infiniband syz0: added ipvlan0
[  438.052592][T28927] RDS/IB: syz0: added
[  438.069144][T28927] smc: adding ib device syz0 with port count 1
[  438.075454][T28927] smc:    ib device syz0 port 1 has pnetid 
[  438.111828][T28883] bridge0: port 1(bridge_slave_0) entered blocking state
[  438.119660][T28883] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.128212][T28883] bridge_slave_0: entered allmulticast mode
[  438.134831][T28883] bridge_slave_0: entered promiscuous mode
[  438.142804][T28883] bridge0: port 2(bridge_slave_1) entered blocking state
[  438.150557][T28883] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.158469][T28883] bridge_slave_1: entered allmulticast mode
[  438.166331][T28883] bridge_slave_1: entered promiscuous mode
[  438.196502][T28883] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  438.219192][T28883] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  438.279001][T28883] team0: Port device team_slave_0 added
[  438.298283][T28883] team0: Port device team_slave_1 added
[  438.348453][T28943] loop4: detected capacity change from 0 to 512
[  438.360869][T28883] batman_adv: batadv0: Adding interface: batadv_slave_0
[  438.367921][T28883] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.394495][T28883] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  438.408048][T28943] ext4 filesystem being mounted at /394/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  438.450708][T28943] syz.4.7945: attempt to access beyond end of device
[  438.450708][T28943] loop9: rw=0, sector=0, nr_sectors = 1 limit=0
[  438.505128][T28943] FAT-fs (loop9): unable to read boot sector
[  438.514746][T28883] batman_adv: batadv0: Adding interface: batadv_slave_1
[  438.522463][T28883] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.549206][T28883] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  438.648630][T28883] hsr_slave_0: entered promiscuous mode
[  438.686531][T28883] hsr_slave_1: entered promiscuous mode
[  438.692703][T28883] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  438.725449][T28883] Cannot create hsr debugfs directory
[  438.850416][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  438.850430][   T29] audit: type=1326 audit(2000000412.346:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28962 comm="syz.4.7951" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5e95a53bd9 code=0x0
[  439.143441][T28883] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  439.162809][T28883] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  439.184247][T28883] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  439.209112][T28883] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  439.234211][   T50] hsr_slave_0: left promiscuous mode
[  439.244004][   T50] hsr_slave_1: left promiscuous mode
[  439.275934][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  439.284110][   T50] batman_adv: batadv0: Removing interface: batadv_slave_0
[  439.315193][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  439.323616][   T50] batman_adv: batadv0: Removing interface: batadv_slave_1
[  439.360121][   T29] audit: type=1326 audit(2000000412.856:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28969 comm="syz.1.7952" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x0
[  439.561301][   T50] team0 (unregistering): Port device team_slave_1 removed
[  439.589966][   T50] team0 (unregistering): Port device team_slave_0 removed
[  439.778669][T28883] 8021q: adding VLAN 0 to HW filter on device bond0
[  439.794508][T28883] 8021q: adding VLAN 0 to HW filter on device team0
[  439.806911][ T3162] bridge0: port 1(bridge_slave_0) entered blocking state
[  439.814012][ T3162] bridge0: port 1(bridge_slave_0) entered forwarding state
[  439.833844][ T2748] bridge0: port 2(bridge_slave_1) entered blocking state
[  439.841006][ T2748] bridge0: port 2(bridge_slave_1) entered forwarding state
[  439.874091][T28883] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  439.885309][T28883] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  439.988755][T28970] Cannot find add_set index 0 as target
[  440.009076][T28883] 8021q: adding VLAN 0 to HW filter on device batadv0
[  440.020612][T28987] loop4: detected capacity change from 0 to 512
[  440.028492][   T50] IPVS: stop unused estimator thread 0...
[  440.056029][T28959] syz.0.7950 (28959) used greatest stack depth: 6408 bytes left
[  440.069417][T28987] EXT4-fs mount: 26 callbacks suppressed
[  440.069431][T28987] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.090700][T28987] ext4 filesystem being mounted at /398/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  440.111183][T28987] syz.4.7956: attempt to access beyond end of device
[  440.111183][T28987] loop9: rw=0, sector=0, nr_sectors = 1 limit=0
[  440.124857][T28987] FAT-fs (loop9): unable to read boot sector
[  440.175395][T23834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.283843][   T29] audit: type=1400 audit(2000000413.776:3702): avc:  denied  { read } for  pid=28992 comm="syz.1.7958" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  440.309090][   T29] audit: type=1400 audit(2000000413.776:3703): avc:  denied  { open } for  pid=28992 comm="syz.1.7958" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  440.333854][   T29] audit: type=1400 audit(2000000413.776:3704): avc:  denied  { ioctl } for  pid=28992 comm="syz.1.7958" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  440.508556][T29009] 9pnet_fd: Insufficient options for proto=fd
[  440.655429][T29012] loop4: detected capacity change from 0 to 164
[  440.767856][T28883] veth0_vlan: entered promiscuous mode
[  440.852709][T29012] syz.4.7959: attempt to access beyond end of device
[  440.852709][T29012] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  440.914073][T28883] veth1_vlan: entered promiscuous mode
[  440.964690][T29015] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7963'.
[  440.992514][T29012] syz.4.7959: attempt to access beyond end of device
[  440.992514][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.059519][T28883] veth0_macvtap: entered promiscuous mode
[  441.079957][T29012] syz.4.7959: attempt to access beyond end of device
[  441.079957][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.123802][   T29] audit: type=1400 audit(2000000413.996:3705): avc:  denied  { getopt } for  pid=29008 comm="syz.3.7961" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  441.128526][T28883] veth1_macvtap: entered promiscuous mode
[  441.169589][   T29] audit: type=1326 audit(2000000414.666:3706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29020 comm="syz.0.7965" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc0fccdabd9 code=0x0
[  441.193723][T29012] syz.4.7959: attempt to access beyond end of device
[  441.193723][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.227935][T29012] syz.4.7959: attempt to access beyond end of device
[  441.227935][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.245812][T29012] syz.4.7959: attempt to access beyond end of device
[  441.245812][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.268314][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.279216][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.289452][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.299673][T29012] syz.4.7959: attempt to access beyond end of device
[  441.299673][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.300534][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.323303][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.332005][T29012] syz.4.7959: attempt to access beyond end of device
[  441.332005][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.334334][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.357855][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.362724][T29012] syz.4.7959: attempt to access beyond end of device
[  441.362724][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.368296][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.368316][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.368329][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.368360][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.368371][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.368385][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.368395][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.388711][T29012] syz.4.7959: attempt to access beyond end of device
[  441.388711][T29012] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  441.392264][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.460060][T29032] loop3: detected capacity change from 0 to 1024
[  441.467801][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.467842][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.467856][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.470587][T28883] batman_adv: batadv0: Interface activated: batadv_slave_0
[  441.488966][T29032] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[  441.523769][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.546460][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.556361][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.567409][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.577412][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.582202][T29032] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  441.587877][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.587897][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.587913][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.587927][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.588002][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.588017][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.588029][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.588123][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.588136][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.588153][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.588166][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.588181][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.588306][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.588319][T28883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.588333][T28883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.604646][T28883] batman_adv: batadv0: Interface activated: batadv_slave_1
[  441.627027][T29032] EXT4-fs (loop3): invalid journal inode
[  441.692178][T28883] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  441.775200][T28883] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  441.784697][T28883] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  441.793459][T28883] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  441.989669][T29028] loop3: detected capacity change from 0 to 128
[  442.009825][   T29] audit: type=1400 audit(2000000415.506:3707): avc:  denied  { lock } for  pid=29049 comm="syz.1.7976" path="socket:[114910]" dev="sockfs" ino=114910 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  442.036316][T29028] FAT-fs (loop3): Unrecognized mount option "./bus" or missing value
[  442.064029][T29053] loop4: detected capacity change from 0 to 128
[  442.112015][T29055] bond5: (slave lo): Releasing active interface
[  442.124310][T29055] bond5: (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  442.144327][T29058] loop4: detected capacity change from 0 to 512
[  442.163074][T29060] netlink: 56 bytes leftover after parsing attributes in process `syz.1.7980'.
[  442.188659][T29062] 9pnet_fd: Insufficient options for proto=fd
[  442.204270][T29067] netlink: 100 bytes leftover after parsing attributes in process `syz.2.7937'.
[  442.206246][T29058] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.236710][T29058] ext4 filesystem being mounted at /402/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  442.272607][T29058] FAT-fs (loop9): unable to read boot sector
[  442.317357][T23834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.471274][T29079] loop4: detected capacity change from 0 to 128
[  442.498534][T29073] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7984'.
[  442.549184][T29085] FAULT_INJECTION: forcing a failure.
[  442.549184][T29085] name failslab, interval 1, probability 0, space 0, times 0
[  442.562635][T29085] CPU: 0 PID: 29085 Comm: syz.1.7988 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  442.572790][T29085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  442.582839][T29085] Call Trace:
[  442.586121][T29085]  <TASK>
[  442.589043][T29085]  dump_stack_lvl+0xf2/0x150
[  442.593668][T29085]  dump_stack+0x15/0x20
[  442.597900][T29085]  should_fail_ex+0x229/0x230
[  442.602569][T29085]  ? io_drain_req+0x1e6/0x500
[  442.607307][T29085]  __should_failslab+0x92/0xa0
[  442.612093][T29085]  should_failslab+0x9/0x20
[  442.616651][T29085]  kmalloc_trace_noprof+0x4b/0x2a0
[  442.621777][T29085]  io_drain_req+0x1e6/0x500
[  442.626368][T29085]  io_queue_sqe_fallback+0xb8/0xc0
[  442.631483][T29085]  io_submit_sqes+0xc39/0x1080
[  442.636254][T29085]  __se_sys_io_uring_enter+0x1c6/0x15a0
[  442.641801][T29085]  ? __fget_files+0x1da/0x210
[  442.646485][T29085]  ? fput+0x13b/0x180
[  442.650487][T29085]  ? ksys_write+0x178/0x1b0
[  442.655069][T29085]  __x64_sys_io_uring_enter+0x78/0x90
[  442.660440][T29085]  x64_sys_call+0x25ab/0x2d70
[  442.665140][T29085]  do_syscall_64+0xc9/0x1c0
[  442.669638][T29085]  ? clear_bhb_loop+0x55/0xb0
[  442.674308][T29085]  ? clear_bhb_loop+0x55/0xb0
[  442.679037][T29085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.684950][T29085] RIP: 0033:0x7f5245f3cbd9
[  442.689387][T29085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.708991][T29085] RSP: 002b:00007f52451be048 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  442.717398][T29085] RAX: ffffffffffffffda RBX: 00007f52460caf60 RCX: 00007f5245f3cbd9
[  442.725456][T29085] RDX: 0000000000000000 RSI: 0000000000006256 RDI: 0000000000000003
[  442.733535][T29085] RBP: 00007f52451be0a0 R08: 0000000000000000 R09: 0000000000000000
[  442.741491][T29085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  442.749625][T29085] R13: 000000000000000b R14: 00007f52460caf60 R15: 00007ffda71c6698
[  442.757602][T29085]  </TASK>
[  442.762181][T29025] Cannot find add_set index 0 as target
[  442.914660][T29105] block device autoloading is deprecated and will be removed.
[  442.914799][T29105] FAT-fs (loop1): unable to read boot sector
[  442.921259][T29109] bridge0: entered allmulticast mode
[  442.933299][   T29] audit: type=1400 audit(2000000416.426:3708): avc:  denied  { read write } for  pid=24380 comm="syz-executor" name="loop1" dev="devtmpfs" ino=4785 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  442.943665][T29109] bridge0: left allmulticast mode
[  442.978216][T29113] dccp_invalid_packet: P.type (RESET) not Data || [Data]Ack, while P.X == 0
[  442.981298][   T29] audit: type=1400 audit(2000000416.456:3709): avc:  denied  { open } for  pid=24380 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=4785 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  443.018834][T29114] Cannot find add_set index 0 as target
[  443.071090][T29113] netlink: 256 bytes leftover after parsing attributes in process `syz.0.8001'.
[  443.081141][T29113] unsupported nlmsg_type 40
[  443.109580][T29127] netlink: 116 bytes leftover after parsing attributes in process `syz.4.8005'.
[  443.126542][T29127] netlink: 44 bytes leftover after parsing attributes in process `syz.4.8005'.
[  443.142972][T29130] loop3: detected capacity change from 0 to 512
[  443.172499][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.181114][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.188893][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.196603][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.203984][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.212175][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.219613][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.227090][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.234533][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.242617][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.250169][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.257645][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.265030][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.273081][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.280603][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.288026][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.295395][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.303612][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.311063][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.317765][T29135] Invalid architecture in ELF header: 0
[  443.318465][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.332193][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.339673][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.339827][T29137] 9pnet: p9_errstr2errno: server reported unknown error 
[  443.347180][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347276][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347310][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347334][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347355][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347436][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347459][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347482][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347506][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347527][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347550][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347613][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347697][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347721][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.347742][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.469300][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.477289][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.484691][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.492589][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.500039][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.508052][ T3158] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  443.518450][ T3158] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  443.533413][T29135] (unnamed net_device) (uninitialized): down delay (65535) is not a multiple of miimon (100), value rounded to 65500 ms
[  443.593769][T29152] netlink: 48 bytes leftover after parsing attributes in process `syz.3.8012'.
[  443.690640][T29152] bond0: (slave bond_slave_1): Releasing backup interface
[  443.742733][ T3260] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.778896][T29164] loop2: detected capacity change from 0 to 512
[  443.801160][T29164] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  443.839623][T29164] EXT4-fs error (device loop2): ext4_orphan_get:1394: inode #15: comm syz.2.8018: iget: bad i_size value: -67835469387268086
[  443.858116][ T3260] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.871404][T29164] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz.2.8018: couldn't read orphan inode 15 (err -117)
[  443.887015][T29177] netlink: 40 bytes leftover after parsing attributes in process `syz.1.8021'.
[  443.893280][T29164] EXT4-fs (loop2): mounted filesystem f7ff0000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.911259][T29177] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  443.911495][T29170] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8020'.
[  443.923956][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  443.923968][   T29] audit: type=1400 audit(2000000417.416:3717): avc:  denied  { connect } for  pid=29184 comm="syz.3.8023" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  443.967510][T29164] ext2 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.982573][T29170] wireguard1: entered promiscuous mode
[  443.988824][T29170] wireguard1: entered allmulticast mode
[  444.013336][T29190] netlink: 32 bytes leftover after parsing attributes in process `syz.3.8025'.
[  444.044887][T29177] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8021'.
[  444.058534][   T29] audit: type=1400 audit(2000000417.556:3718): avc:  denied  { setopt } for  pid=29189 comm="syz.3.8025" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  444.080533][ T3260] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.096409][T29164] netlink: 'syz.2.8018': attribute type 10 has an invalid length.
[  444.109257][T29164] veth0_macvtap: left promiscuous mode
[  444.131123][T29164] veth0_macvtap: entered promiscuous mode
[  444.145407][T29164] team0: Device macvtap0 failed to register rx_handler
[  444.154023][T29164] veth0_macvtap: left promiscuous mode
[  444.217613][ T3260] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.257621][T28883] EXT4-fs (loop2): unmounting filesystem f7ff0000-0000-0000-0000-000000000000.
[  444.271196][T29200] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8028'.
[  444.281033][T29200] hsr0: entered promiscuous mode
[  444.286089][T29200] hsr0: entered allmulticast mode
[  444.287077][T29202] Cannot find add_set index 0 as target
[  444.291106][T29200] hsr_slave_0: entered allmulticast mode
[  444.302361][T29200] hsr_slave_1: entered allmulticast mode
[  444.315241][T29204] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0
[  444.317504][T29206] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8028'.
[  444.343437][   T29] audit: type=1326 audit(2000000417.836:3719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29201 comm="syz.1.8030" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x0
[  444.369737][T29206] hsr0: left promiscuous mode
[  444.374444][T29206] hsr0: left allmulticast mode
[  444.379843][T29206] hsr_slave_0: left allmulticast mode
[  444.385238][T29206] hsr_slave_1: left allmulticast mode
[  444.464881][ T3158] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  444.511324][ T3158] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  444.892989][ T3260] bridge_slave_1: left allmulticast mode
[  444.898769][ T3260] bridge_slave_1: left promiscuous mode
[  444.904417][ T3260] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.120896][ T3260] bridge_slave_0: left allmulticast mode
[  445.126794][ T3260] bridge_slave_0: left promiscuous mode
[  445.132779][ T3260] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.451941][T29236] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  445.507290][T29238] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  445.611096][ T3260] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  445.623124][ T3260] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  445.638121][ T3260] bond0 (unregistering): Released all slaves
[  445.664394][T29163] chnl_net:caif_netlink_parms(): no params data found
[  445.835648][   T29] audit: type=1400 audit(2000000419.326:3720): avc:  denied  { mount } for  pid=29249 comm="syz.1.8043" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  445.886391][   T29] audit: type=1400 audit(2000000419.336:3721): avc:  denied  { read } for  pid=29249 comm="syz.1.8043" dev="sockfs" ino=116010 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  445.943081][   T29] audit: type=1400 audit(2000000419.436:3722): avc:  denied  { unmount } for  pid=24380 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  445.953643][T29268] loop4: detected capacity change from 0 to 512
[  445.974950][ T3260] hsr_slave_0: left promiscuous mode
[  445.988234][ T3260] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  445.996608][ T3260] batman_adv: batadv0: Removing interface: batadv_slave_0
[  446.019609][T29268] EXT4-fs: Ignoring removed i_version option
[  446.031221][ T3260] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  446.038714][ T3260] batman_adv: batadv0: Removing interface: batadv_slave_1
[  446.053424][T29268] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  446.075384][ T3260] veth1_vlan: left promiscuous mode
[  446.080698][ T3260] veth0_vlan: left promiscuous mode
[  446.101997][T29268] EXT4-fs (loop4): 1 truncate cleaned up
[  446.108872][T29268] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  446.262044][ T3260] team0 (unregistering): Port device team_slave_1 removed
[  446.289914][ T3260] team0 (unregistering): Port device team_slave_0 removed
[  446.365915][T29163] bridge0: port 1(bridge_slave_0) entered blocking state
[  446.373105][T29163] bridge0: port 1(bridge_slave_0) entered disabled state
[  446.394034][T29163] bridge_slave_0: entered allmulticast mode
[  446.400722][T29163] bridge_slave_0: entered promiscuous mode
[  446.417566][T29163] bridge0: port 2(bridge_slave_1) entered blocking state
[  446.424653][T29163] bridge0: port 2(bridge_slave_1) entered disabled state
[  446.451522][T29163] bridge_slave_1: entered allmulticast mode
[  446.459066][T29163] bridge_slave_1: entered promiscuous mode
[  446.507199][T29284] loop3: detected capacity change from 0 to 512
[  446.517020][T29163] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  446.537642][T29284] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.8053: invalid block
[  446.552285][T29163] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  446.595034][T29284] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.8053: invalid indirect mapped block 4294967295 (level 1)
[  446.624571][T29163] team0: Port device team_slave_0 added
[  446.638184][T29163] team0: Port device team_slave_1 added
[  446.659831][T29284] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.8053: invalid indirect mapped block 4294967295 (level 1)
[  446.724102][T29284] EXT4-fs (loop3): 2 truncates cleaned up
[  446.732070][T29163] batman_adv: batadv0: Adding interface: batadv_slave_0
[  446.739205][T29163] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.766073][T29163] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  446.766695][T29284] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  446.806740][T29163] batman_adv: batadv0: Adding interface: batadv_slave_1
[  446.813858][T29163] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.840552][T29163] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  446.860451][T23834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.903689][T28616] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.940198][T29163] hsr_slave_0: entered promiscuous mode
[  446.941888][   T29] audit: type=1400 audit(2000000420.436:3723): avc:  denied  { read } for  pid=29295 comm="syz.1.8059" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  446.946202][T29300] FAULT_INJECTION: forcing a failure.
[  446.946202][T29300] name failslab, interval 1, probability 0, space 0, times 0
[  446.946224][T29300] CPU: 1 PID: 29300 Comm: syz.3.8060 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  446.946321][T29300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  446.946344][T29300] Call Trace:
[  446.946351][T29300]  <TASK>
[  446.946358][T29300]  dump_stack_lvl+0xf2/0x150
[  446.946430][T29300]  dump_stack+0x15/0x20
[  446.971474][   T29] audit: type=1400 audit(2000000420.436:3724): avc:  denied  { open } for  pid=29295 comm="syz.1.8059" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  446.983301][T29300]  should_fail_ex+0x229/0x230
[  446.983333][T29300]  ? getname_flags+0x86/0x360
[  446.983352][T29300]  __should_failslab+0x92/0xa0
[  446.983376][T29300]  should_failslab+0x9/0x20
[  446.983461][T29300]  kmem_cache_alloc_noprof+0x4c/0x290
[  446.983492][T29300]  getname_flags+0x86/0x360
[  446.983580][T29300]  getname+0x19/0x20
[  446.983634][T29300]  do_sys_openat2+0x67/0x120
[  446.983657][T29300]  __x64_sys_openat+0xf3/0x120
[  446.983680][T29300]  x64_sys_call+0x1057/0x2d70
[  446.983767][T29300]  do_syscall_64+0xc9/0x1c0
[  446.983797][T29300]  ? clear_bhb_loop+0x55/0xb0
[  446.983825][T29300]  ? clear_bhb_loop+0x55/0xb0
[  446.983852][T29300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.983970][T29300] RIP: 0033:0x7f00fa85f610
[  446.983985][T29300] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 79 8d 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 cc 8d 02 00 8b 44
[  447.134114][T29300] RSP: 002b:00007f00f9ae1b80 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  447.142531][T29300] RAX: ffffffffffffffda RBX: 000000000000c641 RCX: 00007f00fa85f610
[  447.150595][T29300] RDX: 000000000000c641 RSI: 00007f00f9ae1c20 RDI: 00000000ffffff9c
[  447.158658][T29300] RBP: 00007f00f9ae1c20 R08: 0000000000000000 R09: 0000000000000000
[  447.166889][T29300] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  447.174882][T29300] R13: 000000000000000b R14: 00007f00fa9eef60 R15: 00007ffcbddc60e8
[  447.182905][T29300]  </TASK>
[  447.189185][T29163] hsr_slave_1: entered promiscuous mode
[  447.195231][T29163] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  447.202881][T29163] Cannot create hsr debugfs directory
[  447.258458][T29308] 8021q: adding VLAN 0 to HW filter on device batadv1
[  447.289866][T29308] batman_adv: batadv1: Adding interface: netdevsim0
[  447.297199][T29308] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  447.326288][T29308] batman_adv: batadv1: Interface activated: netdevsim0
[  447.529003][T29331] loop4: detected capacity change from 0 to 512
[  447.547087][T29331] EXT4-fs (loop4): 1 truncate cleaned up
[  447.555400][T29331] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  447.570094][   T29] audit: type=1400 audit(2000000421.046:3725): avc:  denied  { connect } for  pid=29327 comm="syz.3.8071" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  447.625277][T29163] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  447.634856][T29163] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  447.652602][T29163] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  447.670411][T29163] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  447.758721][T29339] 8021q: adding VLAN 0 to HW filter on device batadv1
[  447.796372][T29339] batman_adv: batadv1: Adding interface: netdevsim0
[  447.802250][T29342] 9pnet_fd: Insufficient options for proto=fd
[  447.803014][T29339] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  447.842630][T23834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.852374][T29339] batman_adv: batadv1: Interface activated: netdevsim0
[  447.933005][T29346] loop4: detected capacity change from 0 to 764
[  447.936669][T29163] 8021q: adding VLAN 0 to HW filter on device bond0
[  447.964359][T29163] 8021q: adding VLAN 0 to HW filter on device team0
[  447.968373][  T971] bridge0: port 1(bridge_slave_0) entered blocking state
[  447.978458][  T971] bridge0: port 1(bridge_slave_0) entered forwarding state
[  448.019403][  T971] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.026568][  T971] bridge0: port 2(bridge_slave_1) entered forwarding state
[  448.086194][   T29] audit: type=1400 audit(2000000421.576:3726): avc:  denied  { map } for  pid=29352 comm="syz.3.8080" path="socket:[116766]" dev="sockfs" ino=116766 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  448.159584][T29358] loop3: detected capacity change from 0 to 256
[  448.180328][T29358] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  448.195350][T29358] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  448.216036][T29358] batadv_slave_0: entered promiscuous mode
[  448.242723][T29163] 8021q: adding VLAN 0 to HW filter on device batadv0
[  448.339639][T29163] veth0_vlan: entered promiscuous mode
[  448.360502][T29163] veth1_vlan: entered promiscuous mode
[  448.392143][T29163] veth0_macvtap: entered promiscuous mode
[  448.400781][T29163] veth1_macvtap: entered promiscuous mode
[  448.413915][T29370] __nla_validate_parse: 9 callbacks suppressed
[  448.413930][T29370] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8083'.
[  448.434729][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.446501][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.456635][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.467104][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.478166][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.488678][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.498681][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.510324][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.520239][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.530770][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.541913][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.552596][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.562566][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.574321][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.584198][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.594662][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.614073][T29375] loop3: detected capacity change from 0 to 164
[  448.631939][T29163] batman_adv: batadv0: Interface activated: batadv_slave_0
[  448.649848][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.661243][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.671863][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.682362][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.692963][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.704233][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.714577][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.725118][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.736415][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.747284][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.757121][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.769023][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.769050][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.769062][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.769148][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.769162][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.769178][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.769191][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.769206][T29163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.769288][T29163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.813906][T29163] batman_adv: batadv0: Interface activated: batadv_slave_1
[  448.913366][T29163] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  448.922279][T29163] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  448.932291][T29163] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  448.941790][T29163] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  448.952411][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  448.952423][   T29] audit: type=1326 audit(2000000422.446:3728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  448.983389][   T29] audit: type=1326 audit(2000000422.446:3729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.003919][T29391] loop2: detected capacity change from 0 to 256
[  449.012818][   T29] audit: type=1326 audit(2000000422.446:3730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.038839][   T29] audit: type=1326 audit(2000000422.446:3731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.062452][   T29] audit: type=1326 audit(2000000422.446:3732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.118349][T29391] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  449.124297][   T29] audit: type=1326 audit(2000000422.616:3733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.153155][   T29] audit: type=1326 audit(2000000422.616:3734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.189104][   T29] audit: type=1326 audit(2000000422.656:3735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.213671][   T29] audit: type=1326 audit(2000000422.656:3736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.237403][   T29] audit: type=1326 audit(2000000422.656:3737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29382 comm="syz.3.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x7ffc0000
[  449.470270][T29413] loop3: detected capacity change from 0 to 2048
[  449.653341][T29413] Alternate GPT is invalid, using primary GPT.
[  449.660517][T29413]  loop3: p2 p3 p7
[  449.980991][T29431] netlink: 172 bytes leftover after parsing attributes in process `syz.0.8106'.
[  450.037381][T29432] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8100'.
[  450.493317][T29441] loop4: detected capacity change from 0 to 2048
[  450.508982][T29436] hsr_slave_0 (unregistering): left promiscuous mode
[  450.543248][T29441] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  450.617760][T29457] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  450.634819][T29457] batadv_slave_0: entered promiscuous mode
[  450.641670][T29460] loop3: detected capacity change from 0 to 1024
[  450.689993][T29460] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  450.704454][T29441] ip6tnl0: entered allmulticast mode
[  450.716275][ T5564] IPVS: starting estimator thread 0...
[  450.725233][T29441] syzkaller0: entered allmulticast mode
[  450.736207][T29460] JBD2: no valid journal superblock found
[  450.741971][T29460] EXT4-fs (loop3): Could not load journal inode
[  450.752000][T29472] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  450.758517][T29472] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  450.766611][T29472] vhci_hcd vhci_hcd.0: Device attached
[  450.784397][T29473] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(7)
[  450.786102][T29441] syzkaller0 (unregistering): left allmulticast mode
[  450.790907][T29473] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  450.791005][T29473] vhci_hcd vhci_hcd.0: Device attached
[  450.811469][T29468] IPVS: using max 2832 ests per chain, 141600 per kthread
[  450.845112][T29445] dccp_close: ABORT with 60 bytes unread
[  450.886843][T29472] vhci_hcd vhci_hcd.0: pdev(0) rhport(2) sockfd(11)
[  450.887478][T29488] netlink: 'syz.1.8125': attribute type 74 has an invalid length.
[  450.893448][T29472] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  450.893495][T29472] vhci_hcd vhci_hcd.0: Device attached
[  450.911743][T29492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8126'.
[  450.925129][T29439] ip6tnl0: left allmulticast mode
[  450.943022][T29488] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  450.965819][  T971] vhci_hcd: vhci_device speed not set
[  450.973793][T29494] loop2: detected capacity change from 0 to 512
[  450.988693][T29494] EXT4-fs: Mount option(s) incompatible with ext2
[  450.996346][T23834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.029757][T29496] Cannot find add_set index 0 as target
[  451.045658][T29489] vhci_hcd: connection closed
[  451.046458][  T971] usb 1-1: new full-speed USB device number 4 using vhci_hcd
[  451.058795][T29474] vhci_hcd: connection closed
[  451.058928][T29475] vhci_hcd: connection closed
[  451.064100][   T50] vhci_hcd: stop threads
[  451.066158][T29494] loop2: detected capacity change from 0 to 1024
[  451.069486][   T50] vhci_hcd: release socket
[  451.083907][   T50] vhci_hcd: disconnect device
[  451.085793][T29494] EXT4-fs: Ignoring removed nobh option
[  451.088689][T29476] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  451.103266][   T50] vhci_hcd: stop threads
[  451.108182][   T50] vhci_hcd: release socket
[  451.112678][   T50] vhci_hcd: disconnect device
[  451.123107][   T50] vhci_hcd: stop threads
[  451.127440][   T50] vhci_hcd: release socket
[  451.131891][   T50] vhci_hcd: disconnect device
[  451.150036][T29504] loop3: detected capacity change from 0 to 1764
[  451.156746][T29494] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  451.166946][T29504] grow_buffers: requested out-of-range block 18446744072509557520 for device loop3
[  451.178663][T29504] isofs_fill_super: bread failed, dev=loop3, iso_blknum=1547486600, block=-1199994096
[  451.199801][T29494] netlink: 'syz.2.8127': attribute type 10 has an invalid length.
[  451.216896][T29494] veth0_macvtap: entered promiscuous mode
[  451.230849][T29494] team0: Device macvtap0 failed to register rx_handler
[  451.246136][T29494] veth0_macvtap: left promiscuous mode
[  451.277336][T29504] tmpfs: Bad value for 'nr_inodes'
[  451.310266][T28883] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.443223][T29527] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8138'.
[  451.464700][T29529] netlink: 100 bytes leftover after parsing attributes in process `syz.2.8139'.
[  451.572301][T29538] Cannot find add_set index 0 as target
[  451.607191][T29541] bio_check_eod: 658 callbacks suppressed
[  451.607206][T29541] syz.2.8144: attempt to access beyond end of device
[  451.607206][T29541] loop5: rw=0, sector=0, nr_sectors = 1 limit=0
[  451.626067][T29541] FAT-fs (loop5): unable to read boot sector
[  451.653024][T29545] loop2: detected capacity change from 0 to 256
[  451.673339][T29545] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  451.702379][T29547] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8147'.
[  451.728967][T29547] 8021q: adding VLAN 0 to HW filter on device batadv2
[  451.739585][T29551] FAULT_INJECTION: forcing a failure.
[  451.739585][T29551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  451.746662][T29545] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  451.752670][T29551] CPU: 1 PID: 29551 Comm: syz.1.8149 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  451.770181][T29551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  451.780236][T29551] Call Trace:
[  451.783578][T29551]  <TASK>
[  451.786509][T29551]  dump_stack_lvl+0xf2/0x150
[  451.791194][T29551]  dump_stack+0x15/0x20
[  451.795423][T29551]  should_fail_ex+0x229/0x230
[  451.800156][T29551]  should_fail+0xb/0x10
[  451.804384][T29551]  should_fail_usercopy+0x1a/0x20
[  451.809609][T29551]  _copy_from_user+0x1e/0xd0
[  451.814201][T29551]  copy_msghdr_from_user+0x54/0x2a0
[  451.819406][T29551]  __sys_sendmsg+0x17d/0x280
[  451.824045][T29551]  __x64_sys_sendmsg+0x46/0x50
[  451.828834][T29551]  x64_sys_call+0xb25/0x2d70
[  451.833470][T29551]  do_syscall_64+0xc9/0x1c0
[  451.837987][T29551]  ? clear_bhb_loop+0x55/0xb0
[  451.842720][T29551]  ? clear_bhb_loop+0x55/0xb0
[  451.847399][T29551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.853298][T29551] RIP: 0033:0x7f5245f3cbd9
[  451.857707][T29551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.877360][T29551] RSP: 002b:00007f52451be048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  451.885855][T29551] RAX: ffffffffffffffda RBX: 00007f52460caf60 RCX: 00007f5245f3cbd9
[  451.893835][T29551] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000004
[  451.901994][T29551] RBP: 00007f52451be0a0 R08: 0000000000000000 R09: 0000000000000000
[  451.909953][T29551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  451.917989][T29551] R13: 000000000000000b R14: 00007f52460caf60 R15: 00007ffda71c6698
[  451.925964][T29551]  </TASK>
[  451.933985][T29545] batadv_slave_0: entered promiscuous mode
[  451.941831][T29547] 9pnet_fd: Insufficient options for proto=fd
[  451.973583][T29547] batman_adv: batadv1: Interface deactivated: netdevsim0
[  451.980865][T29547] batman_adv: batadv1: Removing interface: netdevsim0
[  451.996340][T29547] batman_adv: batadv2: Adding interface: netdevsim0
[  452.002955][T29547] batman_adv: batadv2: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  452.033010][T29547] batman_adv: batadv2: Interface activated: netdevsim0
[  452.091033][T29558] bridge0: port 1(bridge_slave_0) entered disabled state
[  452.131283][T29558] bridge0: port 2(bridge_slave_1) entered disabled state
[  452.198279][T29564] lo: left promiscuous mode
[  452.230772][T29564] wg2: left allmulticast mode
[  452.237494][T29564] bridge0: port 1(bridge_slave_0) entered blocking state
[  452.244558][T29564] bridge0: port 1(bridge_slave_0) entered forwarding state
[  452.261328][T29564] bridge0: port 2(bridge_slave_1) entered blocking state
[  452.268547][T29564] bridge0: port 2(bridge_slave_1) entered forwarding state
[  452.290273][T29564] batadv_slave_0: left promiscuous mode
[  452.321982][T29564] bond2: left promiscuous mode
[  452.330572][T29564] bond4: left promiscuous mode
[  452.338721][T29564] bond5: left promiscuous mode
[  452.436878][T29593] batadv_slave_0: entered promiscuous mode
[  452.473239][T29602] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8166'.
[  452.490460][T29602] 8021q: adding VLAN 0 to HW filter on device batadv2
[  452.500753][T29601] netlink: 'syz.1.8168': attribute type 16 has an invalid length.
[  452.511401][T29602] 9pnet_fd: Insufficient options for proto=fd
[  452.519155][T29600] loop3: detected capacity change from 0 to 2048
[  452.541503][T29602] batman_adv: batadv1: Interface deactivated: netdevsim0
[  452.549414][T29602] batman_adv: batadv1: Removing interface: netdevsim0
[  452.562009][T29602] batman_adv: batadv2: Adding interface: netdevsim0
[  452.569343][T29602] batman_adv: batadv2: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  452.606214][T29600] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  452.643344][T29602] batman_adv: batadv2: Interface activated: netdevsim0
[  452.743746][T29600] ip6tnl0: entered allmulticast mode
[  452.779160][T29600] syzkaller0: entered allmulticast mode
[  452.799302][T29600] syzkaller0 (unregistering): left allmulticast mode
[  452.882618][T29599] ip6tnl0: left allmulticast mode
[  452.908466][T28616] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.081918][T29632] loop3: detected capacity change from 0 to 256
[  453.091284][T29632] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  453.138494][T29635] bond2: (slave lo): Releasing active interface
[  453.146390][T29635] bond2: (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  453.262713][T29643] loop4: detected capacity change from 0 to 2048
[  453.279381][T29647] loop3: detected capacity change from 0 to 256
[  453.300258][T29647] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  453.313950][T29643] Alternate GPT is invalid, using primary GPT.
[  453.320344][T29643]  loop4: p1 p2 p3
[  453.801048][T29656] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8188'.
[  454.099925][T29666] Cannot find add_set index 0 as target
[  454.172369][   T29] kauditd_printk_skb: 25 callbacks suppressed
[  454.172384][   T29] audit: type=1326 audit(2000000427.666:3763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29661 comm="syz.1.8191" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x0
[  454.472532][T29681] loop3: detected capacity change from 0 to 2048
[  454.498099][T29681] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.562368][   T28] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  454.607876][T28616] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.631858][   T28] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  454.670136][T29701] loop4: detected capacity change from 0 to 2048
[  454.677857][T29701] EXT4-fs (loop4): cluster size (2048) smaller than block size (4096)
[  454.707022][   T28] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  454.793485][   T28] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  455.390045][   T28] bridge_slave_1: left allmulticast mode
[  455.396420][   T28] bridge_slave_1: left promiscuous mode
[  455.402151][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.606670][   T28] bridge_slave_0: left allmulticast mode
[  455.612388][   T28] bridge_slave_0: left promiscuous mode
[  455.618274][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  455.892343][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  455.918481][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  455.938398][   T28] bond0 (unregistering): Released all slaves
[  455.960011][T29719] ip6tnl0: entered allmulticast mode
[  455.986533][T29725] ip6tnl0: left allmulticast mode
[  456.069894][T29748] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8214'.
[  456.135775][  T971] usb 1-1: enqueue for inactive port 0
[  456.143690][  T971] usb 1-1: enqueue for inactive port 0
[  456.179665][   T28] hsr_slave_0: left promiscuous mode
[  456.197533][   T28] hsr_slave_1: left promiscuous mode
[  456.218130][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  456.226264][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  456.234127][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  456.237130][  T971] vhci_hcd: vhci_device speed not set
[  456.241845][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  456.263085][   T28] veth1_macvtap: left promiscuous mode
[  456.269400][   T28] veth0_macvtap: left promiscuous mode
[  456.274915][   T28] veth1_vlan: left promiscuous mode
[  456.280215][   T28] veth0_vlan: left promiscuous mode
[  456.440772][   T28] team0 (unregistering): Port device team_slave_1 removed
[  456.463838][   T28] team0 (unregistering): Port device team_slave_0 removed
[  456.564687][T29772] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8222'.
[  456.656594][T29699] chnl_net:caif_netlink_parms(): no params data found
[  456.752629][T29779] ip6tnl0: entered allmulticast mode
[  456.788839][T29779] syzkaller0: entered allmulticast mode
[  456.801038][T29699] bridge0: port 1(bridge_slave_0) entered blocking state
[  456.808918][T29699] bridge0: port 1(bridge_slave_0) entered disabled state
[  456.826388][T29789] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8228'.
[  456.846363][T29699] bridge_slave_0: entered allmulticast mode
[  456.869821][T29699] bridge_slave_0: entered promiscuous mode
[  456.893352][T29699] bridge0: port 2(bridge_slave_1) entered blocking state
[  456.901128][T29699] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.941357][T29699] bridge_slave_1: entered allmulticast mode
[  456.958215][T29699] bridge_slave_1: entered promiscuous mode
[  456.969485][T29792] loop4: detected capacity change from 0 to 1024
[  456.975902][T29778] syzkaller0: left allmulticast mode
[  456.981191][T29778] ip6tnl0: left allmulticast mode
[  457.019867][T29699] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  457.050595][T29792] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[  457.071146][T29699] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  457.080957][T29792] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  457.094359][   T29] audit: type=1400 audit(2000000430.586:3764): avc:  denied  { lock } for  pid=29799 comm="syz.2.8232" path="socket:[118195]" dev="sockfs" ino=118195 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  457.104778][T29800] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=20 sclass=netlink_audit_socket pid=29800 comm=syz.2.8232
[  457.141680][T29792] EXT4-fs (loop4): invalid journal inode
[  457.150170][T29699] team0: Port device team_slave_0 added
[  457.160110][T29699] team0: Port device team_slave_1 added
[  457.173201][T29805] 9pnet_fd: Insufficient options for proto=fd
[  457.182470][T29802] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8233'.
[  457.207556][T29699] batman_adv: batadv0: Adding interface: batadv_slave_0
[  457.214503][T29699] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  457.223753][ T2748] IPVS: starting estimator thread 0...
[  457.241268][T29699] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  457.257502][T29780] loop4: detected capacity change from 0 to 128
[  457.257703][T29780] FAT-fs (loop4): Unrecognized mount option "./bus" or missing value
[  457.322738][T29699] batman_adv: batadv0: Adding interface: batadv_slave_1
[  457.330420][T29699] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  457.357033][T29699] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  457.366293][T29808] IPVS: using max 2880 ests per chain, 144000 per kthread
[  457.420265][T29699] hsr_slave_0: entered promiscuous mode
[  457.437549][T29699] hsr_slave_1: entered promiscuous mode
[  457.449543][T29699] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  457.468828][T29699] Cannot create hsr debugfs directory
[  457.567139][T29832] netlink: 48 bytes leftover after parsing attributes in process `syz.1.8245'.
[  457.610596][T29836] ip6tnl0: entered allmulticast mode
[  457.630955][T29816] syzkaller0: entered allmulticast mode
[  457.692439][T29815] syzkaller0: left allmulticast mode
[  457.697851][T29815] ip6tnl0: left allmulticast mode
[  457.853649][T29699] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  457.873295][T29699] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  457.889738][T29699] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  457.916281][T29699] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  457.964290][T29777] syz.4.8225 (29777) used greatest stack depth: 6280 bytes left
[  458.006949][T29699] 8021q: adding VLAN 0 to HW filter on device bond0
[  458.023438][T29881] netlink: 48 bytes leftover after parsing attributes in process `syz.4.8257'.
[  458.041871][T29699] 8021q: adding VLAN 0 to HW filter on device team0
[  458.053887][  T971] bridge0: port 1(bridge_slave_0) entered blocking state
[  458.060991][  T971] bridge0: port 1(bridge_slave_0) entered forwarding state
[  458.146695][ T3158] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.153842][ T3158] bridge0: port 2(bridge_slave_1) entered forwarding state
[  458.191679][T29699] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  458.202786][T29699] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  458.300970][T29699] 8021q: adding VLAN 0 to HW filter on device batadv0
[  458.433599][   T29] audit: type=1400 audit(2000000431.926:3765): avc:  denied  { setattr } for  pid=29909 comm="syz.2.8266" name="001" dev="devtmpfs" ino=134 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  458.442315][T29699] veth0_vlan: entered promiscuous mode
[  458.478492][   T29] audit: type=1400 audit(2000000431.976:3766): avc:  denied  { listen } for  pid=29896 comm="syz.4.8263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  458.485152][T29699] veth1_vlan: entered promiscuous mode
[  458.544072][T29699] veth0_macvtap: entered promiscuous mode
[  458.553288][T29699] veth1_macvtap: entered promiscuous mode
[  458.577796][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.589141][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.599157][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.609706][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.620216][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.630767][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.640601][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.651807][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.661702][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.672183][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.682804][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.693266][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.704665][T29699] batman_adv: batadv0: Interface activated: batadv_slave_0
[  458.716497][T29921] netlink: 48 bytes leftover after parsing attributes in process `syz.4.8269'.
[  458.754781][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.765507][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.775666][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.787043][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.797122][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.807600][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.818178][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.828840][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.839010][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.850110][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.860149][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.870744][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.881214][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.891666][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.901643][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.912735][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.922824][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.933617][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.944142][T29699] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.954807][T29699] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.975405][T29936] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0
[  458.990251][T29699] batman_adv: batadv0: Interface activated: batadv_slave_1
[  459.047992][T29699] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  459.057599][T29699] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  459.066603][T29699] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  459.075500][T29699] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  459.095484][T29939] dccp_close: ABORT with 82 bytes unread
[  459.381322][T29956] smc: net device lo applied user defined pnetid SYZ2
[  459.420066][T29957] FAULT_INJECTION: forcing a failure.
[  459.420066][T29957] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  459.433239][T29957] CPU: 1 PID: 29957 Comm: syz.0.8203 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  459.443421][T29957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  459.453484][T29957] Call Trace:
[  459.456768][T29957]  <TASK>
[  459.459688][T29957]  dump_stack_lvl+0xf2/0x150
[  459.464284][T29957]  dump_stack+0x15/0x20
[  459.468502][T29957]  should_fail_ex+0x229/0x230
[  459.473174][T29957]  should_fail+0xb/0x10
[  459.477317][T29957]  should_fail_usercopy+0x1a/0x20
[  459.482448][T29957]  _copy_to_user+0x1e/0xa0
[  459.486873][T29957]  simple_read_from_buffer+0xa0/0x110
[  459.492330][T29957]  proc_fail_nth_read+0xfc/0x140
[  459.497326][T29957]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  459.502900][T29957]  vfs_read+0x1a2/0x6e0
[  459.507143][T29957]  ? __rcu_read_unlock+0x4e/0x70
[  459.512087][T29957]  ? __fget_files+0x1da/0x210
[  459.516783][T29957]  ksys_read+0xeb/0x1b0
[  459.520949][T29957]  __x64_sys_read+0x42/0x50
[  459.526000][T29957]  x64_sys_call+0x27e5/0x2d70
[  459.530785][T29957]  do_syscall_64+0xc9/0x1c0
[  459.535350][T29957]  ? clear_bhb_loop+0x55/0xb0
[  459.540041][T29957]  ? clear_bhb_loop+0x55/0xb0
[  459.544813][T29957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.550754][T29957] RIP: 0033:0x7f35ed18d6bc
[  459.555245][T29957] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  459.574887][T29957] RSP: 002b:00007f35ec410040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  459.583318][T29957] RAX: ffffffffffffffda RBX: 00007f35ed31cf60 RCX: 00007f35ed18d6bc
[  459.591290][T29957] RDX: 000000000000000f RSI: 00007f35ec4100b0 RDI: 0000000000000004
[  459.599254][T29957] RBP: 00007f35ec4100a0 R08: 0000000000000000 R09: 0000000000000000
[  459.607219][T29957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  459.615192][T29957] R13: 000000000000000b R14: 00007f35ed31cf60 R15: 00007fff461a8d18
[  459.623225][T29957]  </TASK>
[  459.688104][T29956] smc: net device lo erased user defined pnetid SYZ2
[  460.183976][   T29] audit: type=1400 audit(2000000433.676:3767): avc:  denied  { read } for  pid=29973 comm="syz.0.8288" path="socket:[118765]" dev="sockfs" ino=118765 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  460.258774][T29982] 9pnet: Could not find request transport: f€
[  460.449005][T30002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:24) already exists on: macsec0
[  460.459063][T30002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  460.477668][T30002] vlan3: entered promiscuous mode
[  460.488612][T30002] dummy0: entered promiscuous mode
[  460.500408][T30002] team0: Port device vlan3 added
[  460.579292][T30009] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  460.646683][T30014] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8297'.
[  461.162229][T30032] SELinux:  Context system_u:object_r:apt_var_lib_t:s0 is not valid (left unmapped).
[  461.172403][   T29] audit: type=1400 audit(2000000434.666:3768): avc:  denied  { relabelto } for  pid=30026 comm="syz.2.8304" name="file0" dev="tmpfs" ino=372 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:apt_var_lib_t:s0"
[  461.199789][   T29] audit: type=1400 audit(2000000434.666:3769): avc:  denied  { associate } for  pid=30026 comm="syz.2.8304" name="file0" dev="tmpfs" ino=372 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:apt_var_lib_t:s0"
[  461.281809][T30040] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  461.343169][   T29] audit: type=1400 audit(2000000434.836:3770): avc:  denied  { checkpoint_restore } for  pid=30026 comm="syz.2.8304" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  461.374449][T30053] IPVS: set_ctl: invalid protocol: 43 172.30.0.2:20000
[  461.377974][T30049] ip6t_srh: unknown srh match flags  7402
[  461.389719][T30055] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8310'.
[  461.423517][   T29] audit: type=1400 audit(2000000434.866:3771): avc:  denied  { ioctl } for  pid=30050 comm="syz.1.8313" path="socket:[119930]" dev="sockfs" ino=119930 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  461.556425][T30061] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  461.688832][   T29] audit: type=1400 audit(2000000435.176:3772): avc:  denied  { rmdir } for  pid=28883 comm="syz-executor" name="file0" dev="tmpfs" ino=372 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:apt_var_lib_t:s0"
[  462.071185][T30084] netlink: 72 bytes leftover after parsing attributes in process `syz.2.8324'.
[  462.343775][T30099] ip6tnl0: entered allmulticast mode
[  462.479784][T30098] ip6tnl0: left allmulticast mode
[  462.910255][T30133] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  462.946607][T30130] ip6tnl0: entered allmulticast mode
[  463.050422][T30129] ip6tnl0: left allmulticast mode
[  463.645183][   T29] audit: type=1326 audit(2000000437.136:3773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30149 comm="syz.3.8349" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x0
[  463.722469][T30165] FAULT_INJECTION: forcing a failure.
[  463.722469][T30165] name failslab, interval 1, probability 0, space 0, times 0
[  463.735158][T30165] CPU: 0 PID: 30165 Comm: syz.4.8353 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  463.745417][T30165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  463.755576][T30165] Call Trace:
[  463.758846][T30165]  <TASK>
[  463.761767][T30165]  dump_stack_lvl+0xf2/0x150
[  463.766461][T30165]  dump_stack+0x15/0x20
[  463.770619][T30165]  should_fail_ex+0x229/0x230
[  463.775373][T30165]  ? __alloc_skb+0x10b/0x300
[  463.779966][T30165]  __should_failslab+0x92/0xa0
[  463.784821][T30165]  should_failslab+0x9/0x20
[  463.789336][T30165]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  463.795242][T30165]  __alloc_skb+0x10b/0x300
[  463.799717][T30165]  netlink_alloc_large_skb+0xad/0xe0
[  463.805027][T30165]  netlink_sendmsg+0x3b4/0x6e0
[  463.809853][T30165]  ? __pfx_netlink_sendmsg+0x10/0x10
[  463.815139][T30165]  __sock_sendmsg+0x140/0x180
[  463.819882][T30165]  ____sys_sendmsg+0x312/0x410
[  463.824661][T30165]  __sys_sendmmsg+0x269/0x500
[  463.829368][T30165]  __x64_sys_sendmmsg+0x57/0x70
[  463.834271][T30165]  x64_sys_call+0xa87/0x2d70
[  463.838988][T30165]  do_syscall_64+0xc9/0x1c0
[  463.843659][T30165]  ? clear_bhb_loop+0x55/0xb0
[  463.848344][T30165]  ? clear_bhb_loop+0x55/0xb0
[  463.853110][T30165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.859092][T30165] RIP: 0033:0x7f5e95a53bd9
[  463.863580][T30165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  463.883194][T30165] RSP: 002b:00007f5e94cd5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  463.891723][T30165] RAX: ffffffffffffffda RBX: 00007f5e95be1f60 RCX: 00007f5e95a53bd9
[  463.899825][T30165] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000005
[  463.907877][T30165] RBP: 00007f5e94cd50a0 R08: 0000000000000000 R09: 0000000000000000
[  463.915932][T30165] R10: 1901000000000000 R11: 0000000000000246 R12: 0000000000000002
[  463.923985][T30165] R13: 000000000000000b R14: 00007f5e95be1f60 R15: 00007fff2658a0a8
[  463.931963][T30165]  </TASK>
[  464.018537][T30152] Cannot find add_set index 0 as target
[  464.052205][   T29] audit: type=1400 audit(2000000437.546:3774): avc:  denied  { getopt } for  pid=30173 comm="syz.4.8358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  464.085949][T30178] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8357'.
[  464.101838][T30172] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  464.284696][   T29] audit: type=1400 audit(2000000437.776:3775): avc:  denied  { create } for  pid=30189 comm="syz.0.8362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  464.323925][T30191] bridge1: the hash_elasticity option has been deprecated and is always 16
[  464.380677][T30191] xt_connbytes: Forcing CT accounting to be enabled
[  464.873851][T30191] Cannot find add_set index 0 as target
[  465.003101][T30215] xt_time: invalid argument - start or stop time greater than 23:59:59
[  465.049177][T30216] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8369'.
[  465.141121][T30235] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8377'.
[  465.172504][   T29] audit: type=1400 audit(2000000438.666:3776): avc:  denied  { getopt } for  pid=30237 comm="syz.2.8379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  465.272101][T30245] usb usb5: usbfs: process 30245 (syz.1.8382) did not claim interface 0 before use
[  465.473222][   T29] audit: type=1400 audit(2000000438.966:3777): avc:  denied  { read } for  pid=30259 comm="syz.4.8387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  465.559026][T30266] FAULT_INJECTION: forcing a failure.
[  465.559026][T30266] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  465.572334][T30266] CPU: 1 PID: 30266 Comm: syz.1.8390 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  465.582552][T30266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  465.592603][T30266] Call Trace:
[  465.595870][T30266]  <TASK>
[  465.598786][T30266]  dump_stack_lvl+0xf2/0x150
[  465.603474][T30266]  dump_stack+0x15/0x20
[  465.607634][T30266]  should_fail_ex+0x229/0x230
[  465.612350][T30266]  should_fail+0xb/0x10
[  465.616495][T30266]  should_fail_usercopy+0x1a/0x20
[  465.621541][T30266]  _copy_to_user+0x1e/0xa0
[  465.625956][T30266]  simple_read_from_buffer+0xa0/0x110
[  465.631430][T30266]  proc_fail_nth_read+0xfc/0x140
[  465.636360][T30266]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  465.641895][T30266]  vfs_read+0x1a2/0x6e0
[  465.646202][T30266]  ? __rcu_read_unlock+0x4e/0x70
[  465.651213][T30266]  ? __fget_files+0x1da/0x210
[  465.655919][T30266]  ksys_read+0xeb/0x1b0
[  465.660118][T30266]  __x64_sys_read+0x42/0x50
[  465.664726][T30266]  x64_sys_call+0x27e5/0x2d70
[  465.669417][T30266]  do_syscall_64+0xc9/0x1c0
[  465.673962][T30266]  ? clear_bhb_loop+0x55/0xb0
[  465.678700][T30266]  ? clear_bhb_loop+0x55/0xb0
[  465.683375][T30266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  465.689317][T30266] RIP: 0033:0x7f5245f3b6bc
[  465.693786][T30266] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  465.713655][T30266] RSP: 002b:00007f52451be040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  465.722074][T30266] RAX: ffffffffffffffda RBX: 00007f52460caf60 RCX: 00007f5245f3b6bc
[  465.730141][T30266] RDX: 000000000000000f RSI: 00007f52451be0b0 RDI: 0000000000000004
[  465.738128][T30266] RBP: 00007f52451be0a0 R08: 0000000000000000 R09: 0000000000000000
[  465.746091][T30266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  465.754052][T30266] R13: 000000000000000b R14: 00007f52460caf60 R15: 00007ffda71c6698
[  465.762027][T30266]  </TASK>
[  465.816342][T30272] vlan4: entered allmulticast mode
[  465.821484][T30272] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  465.834500][T30272] netdevsim netdevsim1 netdevsim0: left allmulticast mode
[  465.899122][T30277] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8395'.
[  465.917458][T30279] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8396'.
[  465.920294][T30277] netdevsim netdevsim3 netdevsim0: Unsupported IPsec algorithm
[  465.973532][T30281] usb usb5: usbfs: process 30281 (syz.3.8398) did not claim interface 0 before use
[  466.334098][   T29] audit: type=1326 audit(2000000439.826:3778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30307 comm="syz.1.8407" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x0
[  466.887215][   T29] audit: type=1400 audit(2000000440.386:3779): avc:  denied  { relabelfrom } for  pid=30328 comm="syz.4.8415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  466.907870][   T29] audit: type=1400 audit(2000000440.386:3780): avc:  denied  { relabelto } for  pid=30328 comm="syz.4.8415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  466.949812][   T29] audit: type=1400 audit(2000000440.446:3781): avc:  denied  { accept } for  pid=30330 comm="syz.2.8416" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  467.122395][T30333] syzkaller0: entered allmulticast mode
[  467.138222][T30333] syzkaller0 (unregistering): left allmulticast mode
[  467.169245][   T29] audit: type=1326 audit(2000000440.666:3782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30334 comm="syz.4.8418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e95a53bd9 code=0x7fc00000
[  467.219697][   T29] audit: type=1326 audit(2000000440.696:3783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30334 comm="syz.4.8418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f5e95a53bd9 code=0x7fc00000
[  467.306435][T30338] FAULT_INJECTION: forcing a failure.
[  467.306435][T30338] name failslab, interval 1, probability 0, space 0, times 0
[  467.319130][T30338] CPU: 0 PID: 30338 Comm: syz.2.8419 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  467.329362][T30338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  467.339470][T30338] Call Trace:
[  467.342804][T30338]  <TASK>
[  467.345727][T30338]  dump_stack_lvl+0xf2/0x150
[  467.350440][T30338]  dump_stack+0x15/0x20
[  467.354629][T30338]  should_fail_ex+0x229/0x230
[  467.357006][T30341] netlink: 'syz.3.8421': attribute type 1 has an invalid length.
[  467.359354][T30338]  ? bpf_prog_array_copy+0x152/0x2a0
[  467.359386][T30338]  __should_failslab+0x92/0xa0
[  467.377114][T30338]  should_failslab+0x9/0x20
[  467.381696][T30338]  __kmalloc_noprof+0xa5/0x370
[  467.386261][T30341] bond1: entered promiscuous mode
[  467.386453][T30338]  bpf_prog_array_copy+0x152/0x2a0
[  467.397168][T30338]  perf_event_attach_bpf_prog+0x11c/0x1d0
[  467.402909][T30338]  perf_event_set_bpf_prog+0x46f/0x490
[  467.408428][T30338]  perf_ioctl+0x6a3/0x15b0
[  467.412856][T30338]  ? ioctl_has_perm+0x2bd/0x2e0
[  467.417724][T30338]  ? do_vfs_ioctl+0x99e/0x1560
[  467.422567][T30338]  ? selinux_file_ioctl+0x2f7/0x380
[  467.427922][T30338]  ? __fget_files+0x1da/0x210
[  467.432657][T30338]  ? __pfx_perf_ioctl+0x10/0x10
[  467.437672][T30338]  __se_sys_ioctl+0xd3/0x150
[  467.442345][T30338]  __x64_sys_ioctl+0x43/0x50
[  467.447105][T30338]  x64_sys_call+0x1581/0x2d70
[  467.451785][T30338]  do_syscall_64+0xc9/0x1c0
[  467.456324][T30338]  ? clear_bhb_loop+0x55/0xb0
[  467.461005][T30338]  ? clear_bhb_loop+0x55/0xb0
[  467.465690][T30338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.471619][T30338] RIP: 0033:0x7f4553d63bd9
[  467.476027][T30338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.495829][T30338] RSP: 002b:00007f4552fe5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  467.504229][T30338] RAX: ffffffffffffffda RBX: 00007f4553ef1f60 RCX: 00007f4553d63bd9
[  467.512186][T30338] RDX: 0000000000000005 RSI: 0000000040042408 RDI: 0000000000000003
[  467.520164][T30338] RBP: 00007f4552fe50a0 R08: 0000000000000000 R09: 0000000000000000
[  467.528125][T30338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.536082][T30338] R13: 000000000000000b R14: 00007f4553ef1f60 R15: 00007ffc3d285af8
[  467.544098][T30338]  </TASK>
[  467.561265][T30341] lo: entered promiscuous mode
[  467.570084][   T29] audit: type=1400 audit(2000000441.066:3784): avc:  denied  { map } for  pid=30345 comm="syz.2.8422" path="/dev/usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  467.570096][T30341] bond1: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  467.629120][T30341] bond1: (slave lo): making interface the new active one
[  467.642148][T30341] bond1: (slave lo): Enslaving as an active interface with an up link
[  467.693540][T30357] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8426'.
[  467.703332][T30354] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  467.721199][T30357] bond2: entered promiscuous mode
[  467.724720][   T29] audit: type=1400 audit(2000000441.216:3785): avc:  denied  { name_bind } for  pid=30353 comm="syz.2.8424" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  467.748487][T30357] bond1: (slave lo): Releasing active interface
[  467.755543][T30357] bond1: (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  467.786760][T30357] bond2: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  467.814710][T30357] bond2: (slave lo): Enslaving as an active interface with an up link
[  467.873423][T30367] Cannot find add_set index 0 as target
[  467.884610][   T29] audit: type=1326 audit(2000000441.376:3786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30366 comm="syz.3.8430" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f00fa860bd9 code=0x0
[  468.708423][T30369] syz.2.8431 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  468.720106][T30369] CPU: 0 PID: 30369 Comm: syz.2.8431 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  468.730368][T30369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  468.740431][T30369] Call Trace:
[  468.743712][T30369]  <TASK>
[  468.746691][T30369]  dump_stack_lvl+0xf2/0x150
[  468.751290][T30369]  dump_stack+0x15/0x20
[  468.755460][T30369]  dump_header+0x83/0x2d0
[  468.759798][T30369]  oom_kill_process+0x33e/0x4c0
[  468.764652][T30369]  out_of_memory+0x9af/0xbe0
[  468.769247][T30369]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  468.775323][T30369]  mem_cgroup_out_of_memory+0x13e/0x190
[  468.781008][T30369]  try_charge_memcg+0x745/0xcd0
[  468.785869][T30369]  ? _raw_spin_unlock+0x26/0x50
[  468.790828][T30369]  ? radix_tree_lookup+0xf9/0x150
[  468.795879][T30369]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  468.801994][T30369]  __read_swap_cache_async+0x2b9/0x520
[  468.807523][T30369]  swap_cluster_readahead+0x276/0x3f0
[  468.812983][T30369]  swapin_readahead+0xe2/0x7a0
[  468.817800][T30369]  ? __filemap_get_folio+0x420/0x5b0
[  468.823099][T30369]  ? swap_cache_get_folio+0x6e/0x210
[  468.828370][T30369]  do_swap_page+0x3bc/0x1840
[  468.833042][T30369]  ? cgroup_rstat_updated+0x99/0x550
[  468.838320][T30369]  ? __rcu_read_lock+0x36/0x50
[  468.843201][T30369]  handle_mm_fault+0x8b9/0x2ac0
[  468.848079][T30369]  exc_page_fault+0x3b9/0x650
[  468.852746][T30369]  asm_exc_page_fault+0x26/0x30
[  468.857675][T30369] RIP: 0033:0x7f4553c38564
[  468.862081][T30369] Code: 00 69 3d 53 b1 de 00 e8 03 00 00 48 8d 1d 14 9a 2b 00 e8 df b5 12 00 eb 11 0f 1f 44 00 00 48 81 c3 d8 00 00 00 48 39 dd 74 bc <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 87 ee ff ff eb
[  468.881773][T30369] RSP: 002b:00007ffc3d285be0 EFLAGS: 00010216
[  468.887826][T30369] RAX: 0000000000000000 RBX: 00007f4553ef2038 RCX: 0000000000000000
[  468.895785][T30369] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055558cc6f808
[  468.903916][T30369] RBP: 00007f4553ef3a60 R08: 0000000000000000 R09: 7fffffffffffffff
[  468.911950][T30369] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000726dc
[  468.919977][T30369] R13: 0000000000000032 R14: 00007f4553ef3a60 R15: 00007f4553ef2110
[  468.928092][T30369]  </TASK>
[  468.932533][T30369] memory: usage 307200kB, limit 307200kB, failcnt 302
[  468.939730][T30369] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[  468.947882][T30369] kmem: usage 307012kB, limit 9007199254740988kB, failcnt 0
[  468.955162][T30369] Memory cgroup stats for /syz2:
[  468.956942][T30369] cache 184320
[  468.965313][T30369] rss 0
[  468.968426][T30369] shmem 0
[  468.971432][T30369] mapped_file 184320
[  468.975311][T30369] dirty 184320
[  468.978769][T30369] writeback 0
[  468.982048][T30369] workingset_refault_anon 296
[  468.987453][T30369] workingset_refault_file 2401
[  468.992206][T30369] swap 724992
[  468.995473][T30369] swapcached 8192
[  468.999195][T30369] pgpgin 414672
[  469.002644][T30369] pgpgout 414625
[  469.006196][T30369] pgfault 429845
[  469.009815][T30369] pgmajfault 145
[  469.013345][T30369] inactive_anon 0
[  469.017717][T30369] active_anon 8192
[  469.021426][T30369] inactive_file 0
[  469.025123][T30369] active_file 184320
[  469.029032][T30369] unevictable 0
[  469.032485][T30369] hierarchical_memory_limit 314572800
[  469.037886][T30369] hierarchical_memsw_limit 9223372036854771712
[  469.044029][T30369] total_cache 184320
[  469.048533][T30369] total_rss 0
[  469.051806][T30369] total_shmem 0
[  469.055251][T30369] total_mapped_file 184320
[  469.059674][T30369] total_dirty 184320
[  469.063555][T30369] total_writeback 0
[  469.067509][T30369] total_workingset_refault_anon 296
[  469.072690][T30369] total_workingset_refault_file 2401
[  469.078720][T30369] total_swap 724992
[  469.082512][T30369] total_swapcached 8192
[  469.086704][T30369] total_pgpgin 414672
[  469.090735][T30369] total_pgpgout 414625
[  469.094791][T30369] total_pgfault 429845
[  469.098946][T30369] total_pgmajfault 145
[  469.103002][T30369] total_inactive_anon 0
[  469.107865][T30369] total_active_anon 8192
[  469.112094][T30369] total_inactive_file 0
[  469.116297][T30369] total_active_file 184320
[  469.120709][T30369] total_unevictable 0
[  469.124753][T30369] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.8431,pid=30369,uid=0
[  469.140815][T30369] Memory cgroup out of memory: Killed process 30369 (syz.2.8431) total-vm:82932kB, anon-rss:452kB, file-rss:10060kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  469.295187][T30399] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=30399 comm=syz.4.8439
[  469.448287][T30409] FAULT_INJECTION: forcing a failure.
[  469.448287][T30409] name failslab, interval 1, probability 0, space 0, times 0
[  469.461176][T30409] CPU: 0 PID: 30409 Comm: syz.1.8441 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  469.471462][T30409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  469.481518][T30409] Call Trace:
[  469.484795][T30409]  <TASK>
[  469.487722][T30409]  dump_stack_lvl+0xf2/0x150
[  469.492327][T30409]  dump_stack+0x15/0x20
[  469.496489][T30409]  should_fail_ex+0x229/0x230
[  469.501176][T30409]  ? resv_map_alloc+0x57/0x190
[  469.506033][T30409]  __should_failslab+0x92/0xa0
[  469.510889][T30409]  should_failslab+0x9/0x20
[  469.515460][T30409]  kmalloc_trace_noprof+0x4b/0x2a0
[  469.520640][T30409]  resv_map_alloc+0x57/0x190
[  469.525233][T30409]  hugetlbfs_get_inode+0x6e/0x2b0
[  469.530301][T30409]  hugetlb_file_setup+0x188/0x3c0
[  469.535324][T30409]  ksys_mmap_pgoff+0x172/0x340
[  469.540146][T30409]  x64_sys_call+0x1835/0x2d70
[  469.544833][T30409]  do_syscall_64+0xc9/0x1c0
[  469.549366][T30409]  ? clear_bhb_loop+0x55/0xb0
[  469.554084][T30409]  ? clear_bhb_loop+0x55/0xb0
[  469.558842][T30409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.564754][T30409] RIP: 0033:0x7f5245f3cbd9
[  469.569168][T30409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.589042][T30409] RSP: 002b:00007f52451be048 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  469.597460][T30409] RAX: ffffffffffffffda RBX: 00007f52460caf60 RCX: 00007f5245f3cbd9
[  469.605479][T30409] RDX: 0000000006000003 RSI: 0000000000800000 RDI: 0000000020800000
[  469.613451][T30409] RBP: 00007f52451be0a0 R08: ffffffffffffffff R09: 0000000000000000
[  469.621422][T30409] R10: 0000000000042031 R11: 0000000000000246 R12: 0000000000000001
[  469.629466][T30409] R13: 000000000000000b R14: 00007f52460caf60 R15: 00007ffda71c6698
[  469.637453][T30409]  </TASK>
[  469.688690][T30411] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8442'.
[  470.434824][T30464] FAULT_INJECTION: forcing a failure.
[  470.434824][T30464] name failslab, interval 1, probability 0, space 0, times 0
[  470.448333][T30464] CPU: 0 PID: 30464 Comm: syz.4.8461 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  470.458484][T30464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  470.468539][T30464] Call Trace:
[  470.471815][T30464]  <TASK>
[  470.474741][T30464]  dump_stack_lvl+0xf2/0x150
[  470.479345][T30464]  dump_stack+0x15/0x20
[  470.483599][T30464]  should_fail_ex+0x229/0x230
[  470.488273][T30464]  ? __alloc_skb+0x10b/0x300
[  470.492869][T30464]  __should_failslab+0x92/0xa0
[  470.497666][T30464]  should_failslab+0x9/0x20
[  470.502184][T30464]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  470.508006][T30464]  __alloc_skb+0x10b/0x300
[  470.512480][T30464]  netlink_alloc_large_skb+0xad/0xe0
[  470.517781][T30464]  netlink_sendmsg+0x3b4/0x6e0
[  470.522543][T30464]  ? __pfx_netlink_sendmsg+0x10/0x10
[  470.527877][T30464]  __sock_sendmsg+0x140/0x180
[  470.532548][T30464]  ____sys_sendmsg+0x312/0x410
[  470.537435][T30464]  __sys_sendmsg+0x1e9/0x280
[  470.542037][T30464]  __x64_sys_sendmsg+0x46/0x50
[  470.546831][T30464]  x64_sys_call+0xb25/0x2d70
[  470.551424][T30464]  do_syscall_64+0xc9/0x1c0
[  470.556024][T30464]  ? clear_bhb_loop+0x55/0xb0
[  470.560764][T30464]  ? clear_bhb_loop+0x55/0xb0
[  470.565444][T30464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.571389][T30464] RIP: 0033:0x7f5e95a53bd9
[  470.575922][T30464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  470.595531][T30464] RSP: 002b:00007f5e94cd5048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  470.603935][T30464] RAX: ffffffffffffffda RBX: 00007f5e95be1f60 RCX: 00007f5e95a53bd9
[  470.611911][T30464] RDX: 0000000000000000 RSI: 00000000200037c0 RDI: 0000000000000005
[  470.619877][T30464] RBP: 00007f5e94cd50a0 R08: 0000000000000000 R09: 0000000000000000
[  470.627835][T30464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  470.635790][T30464] R13: 000000000000000b R14: 00007f5e95be1f60 R15: 00007fff2658a0a8
[  470.643748][T30464]  </TASK>
[  470.948542][T30490] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8470'.
[  471.017571][T30492] x_tables: duplicate underflow at hook 1
[  471.059802][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  471.059830][   T29] audit: type=1326 audit(2000000444.486:3792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.096568][   T29] audit: type=1326 audit(2000000444.514:3793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.120258][   T29] audit: type=1326 audit(2000000444.514:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.144843][   T29] audit: type=1326 audit(2000000444.514:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.168415][   T29] audit: type=1326 audit(2000000444.514:3796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.192624][   T29] audit: type=1326 audit(2000000444.514:3797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.216203][   T29] audit: type=1326 audit(2000000444.514:3798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.239864][   T29] audit: type=1326 audit(2000000444.514:3799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.263993][   T29] audit: type=1326 audit(2000000444.514:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.265929][   T30] oom_reaper: reaped process 30369 (syz.2.8431), now anon-rss:100kB, file-rss:9048kB, shmem-rss:0kB
[  471.287461][   T29] audit: type=1326 audit(2000000444.514:3801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30499 comm="syz.1.8475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5245f3cbd9 code=0x7ffc0000
[  471.661635][T30527] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8481'.
[  471.670720][T30527] FAULT_INJECTION: forcing a failure.
[  471.670720][T30527] name failslab, interval 1, probability 0, space 0, times 0
[  471.683336][T30527] CPU: 0 PID: 30527 Comm: syz.1.8481 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  471.693488][T30527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  471.703635][T30527] Call Trace:
[  471.706968][T30527]  <TASK>
[  471.709942][T30527]  dump_stack_lvl+0xf2/0x150
[  471.714556][T30527]  dump_stack+0x15/0x20
[  471.718715][T30527]  should_fail_ex+0x229/0x230
[  471.723466][T30527]  ? __hw_addr_add_ex+0x13d/0x360
[  471.728502][T30527]  __should_failslab+0x92/0xa0
[  471.733296][T30527]  should_failslab+0x9/0x20
[  471.737795][T30527]  kmalloc_trace_noprof+0x4b/0x2a0
[  471.742950][T30527]  __hw_addr_add_ex+0x13d/0x360
[  471.747841][T30527]  dev_uc_add_excl+0x66/0xb0
[  471.752501][T30527]  ndo_dflt_fdb_add+0xfa/0x190
[  471.757295][T30527]  rtnl_fdb_add+0x520/0x5e0
[  471.762461][T30527]  ? selinux_capable+0x1f2/0x260
[  471.767464][T30527]  ? __pfx_rtnl_fdb_add+0x10/0x10
[  471.772476][T30527]  rtnetlink_rcv_msg+0x85e/0x910
[  471.777493][T30527]  ? __pfx_bpf_ringbuf_output+0x10/0x10
[  471.783028][T30527]  ? bpf_ringbuf_output+0x111/0x150
[  471.788254][T30527]  ? __memcg_slab_free_hook+0xc9/0x1e0
[  471.793724][T30527]  ? xas_load+0x3ae/0x3d0
[  471.798300][T30527]  ? kmem_cache_free+0xd8/0x280
[  471.803177][T30527]  ? nlmon_xmit+0x51/0x60
[  471.807568][T30527]  ? __kfree_skb+0x102/0x150
[  471.812202][T30527]  ? consume_skb+0x57/0x180
[  471.816693][T30527]  ? nlmon_xmit+0x51/0x60
[  471.821008][T30527]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  471.826305][T30527]  ? __dev_queue_xmit+0xb21/0x1e50
[  471.831490][T30527]  ? ref_tracker_free+0x3a5/0x410
[  471.836501][T30527]  netlink_rcv_skb+0x12c/0x230
[  471.841306][T30527]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  471.846758][T30527]  rtnetlink_rcv+0x1c/0x30
[  471.851164][T30527]  netlink_unicast+0x58d/0x660
[  471.856007][T30527]  netlink_sendmsg+0x5ca/0x6e0
[  471.860836][T30527]  ? __pfx_netlink_sendmsg+0x10/0x10
[  471.866175][T30527]  __sock_sendmsg+0x140/0x180
[  471.870974][T30527]  ____sys_sendmsg+0x312/0x410
[  471.875737][T30527]  __sys_sendmsg+0x1e9/0x280
[  471.880400][T30527]  __x64_sys_sendmsg+0x46/0x50
[  471.885176][T30527]  x64_sys_call+0xb25/0x2d70
[  471.889810][T30527]  do_syscall_64+0xc9/0x1c0
[  471.894392][T30527]  ? clear_bhb_loop+0x55/0xb0
[  471.899059][T30527]  ? clear_bhb_loop+0x55/0xb0
[  471.903773][T30527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.909705][T30527] RIP: 0033:0x7f5245f3cbd9
[  471.914103][T30527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  471.933743][T30527] RSP: 002b:00007f5245193048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  471.942147][T30527] RAX: ffffffffffffffda RBX: 00007f52460cb038 RCX: 00007f5245f3cbd9
[  471.950184][T30527] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 000000000000000f
[  471.958139][T30527] RBP: 00007f52451930a0 R08: 0000000000000000 R09: 0000000000000000
[  471.966093][T30527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  471.974073][T30527] R13: 000000000000006e R14: 00007f52460cb038 R15: 00007ffda71c6698
[  471.982034][T30527]  </TASK>
[  471.999827][T30528] FAULT_INJECTION: forcing a failure.
[  471.999827][T30528] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.013655][T30528] CPU: 0 PID: 30528 Comm: syz.4.8484 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  472.023885][T30528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  472.033935][T30528] Call Trace:
[  472.037256][T30528]  <TASK>
[  472.040181][T30528]  dump_stack_lvl+0xf2/0x150
[  472.044781][T30528]  dump_stack+0x15/0x20
[  472.049018][T30528]  should_fail_ex+0x229/0x230
[  472.053739][T30528]  should_fail+0xb/0x10
[  472.057896][T30528]  should_fail_usercopy+0x1a/0x20
[  472.062976][T30528]  _copy_from_user+0x1e/0xd0
[  472.067675][T30528]  copy_msghdr_from_user+0x54/0x2a0
[  472.072874][T30528]  __sys_sendmsg+0x17d/0x280
[  472.077474][T30528]  __x64_sys_sendmsg+0x46/0x50
[  472.082326][T30528]  x64_sys_call+0xb25/0x2d70
[  472.086939][T30528]  do_syscall_64+0xc9/0x1c0
[  472.091530][T30528]  ? clear_bhb_loop+0x55/0xb0
[  472.096308][T30528]  ? clear_bhb_loop+0x55/0xb0
[  472.101052][T30528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.107043][T30528] RIP: 0033:0x7f5e95a53bd9
[  472.111454][T30528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.131088][T30528] RSP: 002b:00007f5e94cd5048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  472.139491][T30528] RAX: ffffffffffffffda RBX: 00007f5e95be1f60 RCX: 00007f5e95a53bd9
[  472.147501][T30528] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[  472.155637][T30528] RBP: 00007f5e94cd50a0 R08: 0000000000000000 R09: 0000000000000000
[  472.163650][T30528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  472.171614][T30528] R13: 000000000000000b R14: 00007f5e95be1f60 R15: 00007fff2658a0a8
[  472.179589][T30528]  </TASK>
[  472.211322][T30532] 9pnet: p9_errstr2errno: server reported unknown error 
[  472.366490][T30542] bridge0: port 2(bridge_slave_1) entered disabled state
[  472.373744][T30542] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.395686][T30542] bridge0: entered allmulticast mode
[  472.433787][T30542] bridge0: port 2(bridge_slave_1) entered blocking state
[  472.440947][T30542] bridge0: port 2(bridge_slave_1) entered forwarding state
[  472.448413][T30542] bridge0: port 1(bridge_slave_0) entered blocking state
[  472.455957][T30542] bridge0: port 1(bridge_slave_0) entered forwarding state
[  472.473207][T30542] bridge0: entered promiscuous mode
[  472.638271][T30553] netlink: 'syz.4.8493': attribute type 8 has an invalid length.
[  472.674828][T30557] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8495'.
[  472.684588][T30557] netlink: 104 bytes leftover after parsing attributes in process `syz.4.8495'.
[  472.721404][T30559] program syz.4.8496 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  473.267107][T30566] netlink: 'syz.3.8499': attribute type 13 has an invalid length.
[  473.275085][T30566] netlink: 152 bytes leftover after parsing attributes in process `syz.3.8499'.
[  473.296595][T30566] erspan0: refused to change device tx_queue_len
[  473.303711][T30566] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  473.550755][T30580] FAULT_INJECTION: forcing a failure.
[  473.550755][T30580] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  473.564054][T30580] CPU: 1 PID: 30580 Comm: syz.3.8505 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  473.574209][T30580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  473.584781][T30580] Call Trace:
[  473.588066][T30580]  <TASK>
[  473.591063][T30580]  dump_stack_lvl+0xf2/0x150
[  473.595678][T30580]  dump_stack+0x15/0x20
[  473.599964][T30580]  should_fail_ex+0x229/0x230
[  473.604669][T30580]  should_fail+0xb/0x10
[  473.609465][T30580]  should_fail_usercopy+0x1a/0x20
[  473.614576][T30580]  _copy_from_user+0x1e/0xd0
[  473.619495][T30580]  move_addr_to_kernel+0x82/0x120
[  473.624545][T30580]  copy_msghdr_from_user+0x271/0x2a0
[  473.629858][T30580]  __sys_sendmsg+0x17d/0x280
[  473.634556][T30580]  __x64_sys_sendmsg+0x46/0x50
[  473.639321][T30580]  x64_sys_call+0xb25/0x2d70
[  473.643926][T30580]  do_syscall_64+0xc9/0x1c0
[  473.648543][T30580]  ? clear_bhb_loop+0x55/0xb0
[  473.649085][T30577] netlink: 'syz.1.8504': attribute type 13 has an invalid length.
[  473.653220][T30580]  ? clear_bhb_loop+0x55/0xb0
[  473.665808][T30580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.671760][T30580] RIP: 0033:0x7f00fa860bd9
[  473.676248][T30580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  473.695955][T30580] RSP: 002b:00007f00f9ae2048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  473.704471][T30580] RAX: ffffffffffffffda RBX: 00007f00fa9eef60 RCX: 00007f00fa860bd9
[  473.712523][T30580] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[  473.720522][T30580] RBP: 00007f00f9ae20a0 R08: 0000000000000000 R09: 0000000000000000
[  473.728528][T30580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  473.736509][T30580] R13: 000000000000000b R14: 00007f00fa9eef60 R15: 00007ffcbddc60e8
[  473.744728][T30580]  </TASK>
[  473.758234][T30583] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8506'.
[  473.896848][T30596] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  474.288747][T30615] bridge0: port 1(bridge_slave_0) entered disabled state
[  474.303601][T30615] bridge0: port 2(bridge_slave_1) entered disabled state
[  474.408107][T30617] bridge0: port 1(bridge_slave_0) entered blocking state
[  474.415410][T30617] bridge0: port 1(bridge_slave_0) entered forwarding state
[  474.429375][T30617] bridge0: port 2(bridge_slave_1) entered blocking state
[  474.436649][T30617] bridge0: port 2(bridge_slave_1) entered forwarding state
[  474.462603][T30617] batadv_slave_0: left promiscuous mode
[  474.521520][T30617] bond1: left promiscuous mode
[  474.526473][T30617] bond2: left promiscuous mode
[  474.531234][T30617] lo: left promiscuous mode
[  474.826339][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  475.292194][T30651] bridge0: port 1(bridge_slave_0) entered disabled state
[  475.302601][T30651] bridge0: port 2(bridge_slave_1) entered disabled state
[  475.371288][T30654] lo: left promiscuous mode
[  475.391698][T30654] bridge0: left promiscuous mode
[  475.396673][T30654] bridge0: left allmulticast mode
[  475.427830][T30654] bridge0: port 1(bridge_slave_0) entered blocking state
[  475.434945][T30654] bridge0: port 1(bridge_slave_0) entered forwarding state
[  475.447171][T30654] bridge0: port 2(bridge_slave_1) entered blocking state
[  475.454593][T30654] bridge0: port 2(bridge_slave_1) entered forwarding state
[  475.475812][T30654] batadv_slave_0: left promiscuous mode
[  475.511795][T30654] macvtap0: left promiscuous mode
[  475.517037][T30654] bond0: left promiscuous mode
[  475.522535][T30654] macvtap0: left allmulticast mode
[  475.527785][T30654] bond0: left allmulticast mode
[  475.533344][T30654] bond_slave_0: left allmulticast mode
[  475.538894][T30654] bond_slave_1: left allmulticast mode
[  475.544514][T30654] netdevsim netdevsim4 netdevsim1: left allmulticast mode
[  475.559159][T30654] bond1: left promiscuous mode
[  475.565077][T30654] bond2: left promiscuous mode
[  475.569942][T30654] bond3: left promiscuous mode
[  475.755215][T30669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8535'.
[  475.764320][T30669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8535'.
[  475.775553][T30668] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8535'.
[  475.784585][T30668] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8535'.
[  475.872142][   T28] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.898520][T30678] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8539'.
[  475.924260][T30678] lo: entered promiscuous mode
[  475.963518][T30681] batadv_slave_0: entered promiscuous mode
[  475.984582][   T28] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.028684][T30658] chnl_net:caif_netlink_parms(): no params data found
[  476.082322][   T28] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.132220][T30658] bridge0: port 1(bridge_slave_0) entered blocking state
[  476.139510][T30658] bridge0: port 1(bridge_slave_0) entered disabled state
[  476.148932][T30658] bridge_slave_0: entered allmulticast mode
[  476.155504][T30658] bridge_slave_0: entered promiscuous mode
[  476.168303][   T28] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.184515][T30658] bridge0: port 2(bridge_slave_1) entered blocking state
[  476.192725][T30658] bridge0: port 2(bridge_slave_1) entered disabled state
[  476.203924][T30658] bridge_slave_1: entered allmulticast mode
[  476.212772][T30658] bridge_slave_1: entered promiscuous mode
[  476.257603][T30658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  476.279216][   T28] bridge_slave_1: left allmulticast mode
[  476.284958][   T28] bridge_slave_1: left promiscuous mode
[  476.290684][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  476.309492][   T28] bridge_slave_0: left allmulticast mode
[  476.315759][   T28] bridge_slave_0: left promiscuous mode
[  476.321429][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  476.510335][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  476.526529][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  476.537766][   T28] bond0 (unregistering): Released all slaves
[  476.553326][T30658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  476.580058][T30658] team0: Port device team_slave_0 added
[  476.591317][T30658] team0: Port device team_slave_1 added
[  476.624422][T30658] batman_adv: batadv0: Adding interface: batadv_slave_0
[  476.631546][T30658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  476.658232][T30658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  476.674682][T30658] batman_adv: batadv0: Adding interface: batadv_slave_1
[  476.681784][T30658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  476.708454][T30658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  476.774423][T30658] hsr_slave_0: entered promiscuous mode
[  476.798820][T30658] hsr_slave_1: entered promiscuous mode
[  476.810289][T30658] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  476.818258][T30658] Cannot create hsr debugfs directory
[  476.828525][   T28] hsr_slave_0: left promiscuous mode
[  476.856890][   T28] hsr_slave_1: left promiscuous mode
[  476.868390][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  476.876594][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  476.886740][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  476.894224][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  476.909900][   T28] veth1_macvtap: left promiscuous mode
[  476.915408][   T28] veth0_macvtap: left promiscuous mode
[  476.921112][   T28] veth1_vlan: left promiscuous mode
[  476.926388][   T28] veth0_vlan: left promiscuous mode
[  477.045629][   T28] team0 (unregistering): Port device team_slave_1 removed
[  477.057319][   T28] team0 (unregistering): Port device team_slave_0 removed
[  477.119881][T30709] __nla_validate_parse: 1 callbacks suppressed
[  477.119899][T30709] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8549'.
[  477.140528][T30710] lo: entered promiscuous mode
[  477.152621][T30710] bond2: (slave lo): Releasing backup interface
[  477.164180][T30710] bond2: (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  477.289589][T30722] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  477.296151][T30722] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  477.304409][T30722] vhci_hcd vhci_hcd.0: Device attached
[  477.335192][T30726] netlink: 36 bytes leftover after parsing attributes in process `syz.4.8555'.
[  477.349732][T30727] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  477.366646][T30722] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8554'.
[  477.600086][ T3158] usb 7-1: new low-speed USB device number 5 using vhci_hcd
[  477.601706][T30723] vhci_hcd: connection closed
[  477.607734][T30724] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  477.618647][   T28] vhci_hcd: stop threads
[  477.623528][   T28] vhci_hcd: release socket
[  477.627951][   T28] vhci_hcd: disconnect device
[  477.651908][T30658] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  477.666281][T30658] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  477.675594][T30658] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  477.692030][T30658] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  477.757815][T30658] 8021q: adding VLAN 0 to HW filter on device bond0
[  477.778983][T30658] 8021q: adding VLAN 0 to HW filter on device team0
[  477.794625][T26230] bridge0: port 1(bridge_slave_0) entered blocking state
[  477.801727][T26230] bridge0: port 1(bridge_slave_0) entered forwarding state
[  477.828137][T30658] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  477.838770][T30658] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  477.858835][T26230] bridge0: port 2(bridge_slave_1) entered blocking state
[  477.866109][T26230] bridge0: port 2(bridge_slave_1) entered forwarding state
[  477.940673][T30658] 8021q: adding VLAN 0 to HW filter on device batadv0
[  478.041570][T30658] veth0_vlan: entered promiscuous mode
[  478.056518][T30658] veth1_vlan: entered promiscuous mode
[  478.084863][T30658] veth0_macvtap: entered promiscuous mode
[  478.095950][T30658] veth1_macvtap: entered promiscuous mode
[  478.117790][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  478.128473][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.138461][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  478.149595][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.159459][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  478.169950][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.180410][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  478.191141][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.201029][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  478.212149][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.222212][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  478.232802][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.256544][T30658] batman_adv: batadv0: Interface activated: batadv_slave_0
[  478.273020][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.283809][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.293672][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.304178][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.314752][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.325293][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.333656][T30752] 9pnet_fd: Insufficient options for proto=fd
[  478.335138][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.352251][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.361618][T30752] 9pnet_fd: Insufficient options for proto=fd
[  478.362206][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.379245][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.389098][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.399542][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.409991][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.420486][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.430424][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.441547][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.451483][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.462142][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.472702][T30658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  478.483354][T30658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  478.495816][T30658] batman_adv: batadv0: Interface activated: batadv_slave_1
[  478.504752][T30754] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8561'.
[  478.566660][T30658] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  478.575698][T30658] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  478.584571][T30658] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  478.593335][T30658] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  478.725318][T30764] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8567'.
[  478.770105][T30767] ==================================================================
[  478.778209][T30767] BUG: KCSAN: data-race in _copy_from_iter / _copy_from_iter
[  478.785694][T30767] 
[  478.788019][T30767] write to 0xffff88813758c000 of 4096 bytes by task 30769 on cpu 1:
[  478.796049][T30767]  _copy_from_iter+0x129/0xb00
[  478.800814][T30767]  copy_page_from_iter+0x14f/0x280
[  478.806010][T30767]  process_vm_rw+0x5d6/0x8c0
[  478.810595][T30767]  __x64_sys_process_vm_writev+0x7a/0x90
[  478.816232][T30767]  x64_sys_call+0x206/0x2d70
[  478.820830][T30767]  do_syscall_64+0xc9/0x1c0
[  478.825339][T30767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.831236][T30767] 
[  478.833555][T30767] write to 0xffff88813758c000 of 4096 bytes by task 30767 on cpu 0:
[  478.841526][T30767]  _copy_from_iter+0x129/0xb00
[  478.846279][T30767]  copy_page_from_iter+0x14f/0x280
[  478.851379][T30767]  process_vm_rw+0x5d6/0x8c0
[  478.855964][T30767]  __x64_sys_process_vm_writev+0x7a/0x90
[  478.861592][T30767]  x64_sys_call+0x206/0x2d70
[  478.866183][T30767]  do_syscall_64+0xc9/0x1c0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  478.870687][T30767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.876578][T30767] 
[  478.878889][T30767] Reported by Kernel Concurrency Sanitizer on:
[  478.885031][T30767] CPU: 0 PID: 30767 Comm: syz.1.8566 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  478.895202][T30767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  478.905252][T30767] ==================================================================
[  478.921676][   T29] kauditd_printk_skb: 62 callbacks suppressed
[  478.921721][   T29] audit: type=1400 audit(2000000451.741:3864): avc:  denied  { write } for  pid=3068 comm="syz-executor" path="pipe:[1648]" dev="pipefs" ino=1648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  478.952016][   T29] audit: type=1400 audit(2000000451.741:3865): avc:  denied  { recv } for  pid=40 comm="kworker/u8:2" saddr=10.128.0.163 src=40610 daddr=10.128.1.135 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  480.041951][   T28] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.131775][   T28] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.214180][   T28] bond0: (slave netdevsim1): Releasing backup interface
[  480.226956][   T28] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.319815][   T28] batman_adv: batadv2: Interface deactivated: netdevsim0
[  480.333048][   T28] batman_adv: batadv2: Removing interface: netdevsim0
[  480.340217][   T28] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.400975][   T28] bridge_slave_1: left allmulticast mode
[  480.407463][   T28] bridge_slave_1: left promiscuous mode
[  480.413154][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  480.424344][   T28] bridge_slave_0: left allmulticast mode
[  480.430017][   T28] bridge_slave_0: left promiscuous mode
[  480.435680][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.449194][   T28] bond_slave_0: left promiscuous mode
[  480.455443][   T28] bond_slave_1: left promiscuous mode
[  480.597447][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  480.611736][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  480.622211][   T28] bond0 (unregistering): Released all slaves
[  480.635208][   T28] bond1 (unregistering): Released all slaves
[  480.644284][   T28] bond2 (unregistering): Released all slaves
[  480.653435][   T28] bond3 (unregistering): Released all slaves
[  480.662341][   T28] bond4 (unregistering): Released all slaves
[  480.798208][   T28] hsr_slave_0: left promiscuous mode
[  480.803840][   T28] hsr_slave_1: left promiscuous mode
[  480.812706][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  480.821620][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  480.830018][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  480.841549][   T28] batman_adv: batadv0: Interface deactivated: macsec0
[  480.848398][   T28] batman_adv: batadv0: Removing interface: macsec0
[  480.860159][   T28] dummy0: left promiscuous mode
[  480.866940][   T28] veth1_vlan: left promiscuous mode
[  480.872281][   T28] veth0_vlan: left promiscuous mode
[  480.960065][   T28] team0 (unregistering): Port device team_slave_1 removed
[  480.973297][   T28] team0 (unregistering): Port device team_slave_0 removed
[  481.555970][   T28] IPVS: stop unused estimator thread 0...
[  483.049735][ T3158] usb 7-1: enqueue for inactive port 0
[  483.055408][ T3158] usb 7-1: enqueue for inactive port 0
[  483.147251][ T3158] vhci_hcd: vhci_device speed not set
[  484.700808][ T3120] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.786662][ T3120] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.895203][ T3120] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  485.025436][ T3120] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  485.135673][ T3120] bridge_slave_1: left allmulticast mode
[  485.141377][ T3120] bridge_slave_1: left promiscuous mode
[  485.147147][ T3120] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.158351][ T3120] bridge_slave_0: left allmulticast mode
[  485.164620][ T3120] bridge_slave_0: left promiscuous mode
[  485.170305][ T3120] bridge0: port 1(bridge_slave_0) entered disabled state
[  485.372548][ T3120] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  485.385697][ T3120] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  485.397311][ T3120] bond0 (unregistering): Released all slaves
[  485.735019][ T3120] hsr_slave_0: left promiscuous mode
[  485.741393][ T3120] hsr_slave_1: left promiscuous mode
[  485.747257][ T3120] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  485.755341][ T3120] batman_adv: batadv0: Removing interface: batadv_slave_0
[  485.767185][ T3120] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  485.774673][ T3120] batman_adv: batadv0: Removing interface: batadv_slave_1
[  485.788878][ T3120] veth1_vlan: left promiscuous mode
[  485.794207][ T3120] veth0_vlan: left promiscuous mode
[  485.883733][ T3120] team0 (unregistering): Port device team_slave_1 removed
[  485.896667][ T3120] team0 (unregistering): Port device team_slave_0 removed