last executing test programs:

2m35.639674555s ago: executing program 1 (id=97):
timer_create(0x1, &(0x7f00000000c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x9f9, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x3, 0x20002f7})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
open(&(0x7f0000000000)='./file0\x00', 0x4142, 0xba)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x29, 0x2, 0x80000}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="000000000000000000000000000000001f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000eeffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x20, 0x0, 0x0, {0x0, 0x3}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)

2m34.800652542s ago: executing program 1 (id=107):
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x24040084)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="5c00000002060108000000000000000000000000050005000a000000030001000700000005000400000000000900020073797a310000000015000300686173683a69702c706f72742c6e6574000000000c00078008"], 0x5c}}, 0x20084884)

2m34.740912574s ago: executing program 1 (id=109):
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x8000, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
rt_tgsigqueueinfo(0x0, 0x0, 0x400000a, &(0x7f0000000600)={0x81, 0x3, 0xfffff2bb})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
ptrace(0x10, 0x0)
ptrace$poke(0x4, 0x0, &(0x7f0000000080), 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r1, 0x0)

2m34.339188559s ago: executing program 1 (id=117):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
preadv(r0, &(0x7f0000003040)=[{&(0x7f00000002c0)=""/122, 0x7a}, {&(0x7f0000000380)=""/178, 0xb2}, {&(0x7f0000000440)=""/7, 0x7}, {&(0x7f0000000980)=""/224, 0xe0}, {&(0x7f0000000a80)=""/133, 0x85}, {&(0x7f0000002040)=""/4096, 0x1000}], 0x6, 0x10, 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000340)=[@text32={0x20, 0x0}], 0x1, 0x20, 0x0, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x4048aec9, &(0x7f0000000740)={0x1, 0x0, @ioapic={0x0, 0x296a, 0xf7c, 0xffffffff, 0x0, [{0x98, 0x27, 0x81, '\x00', 0x7f}, {0x5, 0xc, 0x81, '\x00', 0xf5}, {0xe9, 0x3, 0x9, '\x00', 0xe}, {0x6, 0x8, 0x3, '\x00', 0x8f}, {0xfc, 0x7c, 0xb1, '\x00', 0x7}, {0xf, 0x2, 0x28, '\x00', 0xaa}, {0x7f, 0x0, 0x1, '\x00', 0x8}, {0x1, 0x3, 0x3, '\x00', 0x2}, {0x2, 0x7, 0x91, '\x00', 0x8}, {0x8, 0x3, 0x43, '\x00', 0x80}, {0xfc, 0x8, 0x4, '\x00', 0x3}, {0x2, 0x3, 0x3, '\x00', 0x8}, {0x5, 0x6, 0x8, '\x00', 0xa6}, {0x8, 0x0, 0x8, '\x00', 0x9}, {0x4, 0x4e, 0xa}, {0x6, 0x5e, 0x4, '\x00', 0x3}, {0x5, 0x5, 0x5, '\x00', 0x5}, {0x0, 0x3, 0x3, '\x00', 0xff}, {0x5, 0x0, 0x8, '\x00', 0x3}, {0x4, 0x6, 0xb, '\x00', 0x3}, {0x6f, 0x5, 0x7, '\x00', 0x4}, {0x7, 0x40, 0x9, '\x00', 0x10}, {0x2, 0x2, 0x1, '\x00', 0x7}, {0x1, 0xc, 0x92, '\x00', 0x8}]}})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='htcp', 0x4)
sendmmsg$inet(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="f77d", 0x2}], 0x1}}], 0x1, 0x2090)
sendto$inet(r0, &(0x7f0000001e00)="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", 0x223, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f00000000c0)={0x0, 'netpci0\x00', {0x2}, 0x7})
mkdir(&(0x7f0000001a80)='./file0\x00', 0x1cb)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000200)='.\x00', 0x0, 0x8b7840, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x7)
setxattr$trusted_overlay_redirect(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0), &(0x7f0000000240)='./file0\x00', 0x8, 0x1)
ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000100))

2m33.360892721s ago: executing program 1 (id=134):
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000300)={0xa, 0x2, 0xfffffffc, @empty, 0x80000001}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
socket$kcm(0x11, 0xa, 0x300)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x9}}, 0x20)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000300)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="6000000010001fff03000000fdfffeff00000000", @ANYRES32=0x0, @ANYBLOB="0000000040cc0300380012800b03040067656e657665000028000280140007000000000000000000000000000000000105000c0000000000050009000100000008000a00", @ANYRES32=r3, @ANYBLOB="2f6469150156d2da0585b8d0f30a4913aef4c98ae16f491602c597a16275e4953fa0576c4832f23ef4acfb54e99be1ef74089881c016bf3b9f2eb77219a4aae579ffdfb199bbd2f8ea45b0c179aeb07d60f8df33ccca0b46da50366cb113d9d78da15305faa201eed731c28e5846700823ad1ea0577be1c3ff3096bf21f5f75f60c7e4fbd0"], 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

2m32.990836848s ago: executing program 1 (id=140):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=ANY=[@ANYBLOB="400000001000030400000000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="150200000000ff002000128008000100687372001400028008000100", @ANYRES32=r2, @ANYBLOB="08000200", @ANYRES32=r0], 0x40}, 0x1, 0xba01, 0x0, 0x4000044}, 0x10)

2m32.948204867s ago: executing program 32 (id=140):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=ANY=[@ANYBLOB="400000001000030400000000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="150200000000ff002000128008000100687372001400028008000100", @ANYRES32=r2, @ANYBLOB="08000200", @ANYRES32=r0], 0x40}, 0x1, 0xba01, 0x0, 0x4000044}, 0x10)

2.210141902s ago: executing program 0 (id=2935):
timer_create(0x1, &(0x7f00000000c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x9f9, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x3, 0x20002f7})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
open(&(0x7f0000000000)='./file0\x00', 0x4142, 0xba)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x29, 0x2, 0x80000}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="00000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000eeffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x20, 0x0, 0x0, {0x0, 0x3}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)

1.556058539s ago: executing program 3 (id=2955):
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x24040084)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="5c00000002060108000000000000000000000000050005000a0000000500010007000000050004000f0000000900020073797a310000000015000300686173683a69702c706f72742c6e6574000000000c00078008"], 0x5c}}, 0x20084884)

1.49026536s ago: executing program 3 (id=2956):
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="30000000100001000000000000000000000900e4", @ANYRES32=0x0, @ANYBLOB="000000000000000008000400000600000800410000"], 0x30}}, 0x0)

1.490035381s ago: executing program 3 (id=2957):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)={0x30, r2, 0x1, 0x20, 0x3, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r2, 0x4, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x4c27, 0x68}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f00001c9000/0x4000)=nil, 0x4000, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002cbd7000fddbdf252b000000180001801400020076657468305f746f5f626174616476"], 0x2c}, 0x1, 0x0, 0x0, 0x8800}, 0x4048040)
sendmsg$nl_generic(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001500010029bd7000008000000d000000"], 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x0)

1.389558721s ago: executing program 3 (id=2958):
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0xa8, &(0x7f0000000040)=ANY=[@ANYBLOB="6b0ee0b3d4"])
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd69010000001406fffe800000000000000000000039fe8000000000000000000000000000aa4e224e24000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="51c2"], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac9", 0x3}], 0x1}}], 0x1, 0x4000000)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00db6072000001ea89de2b4410000e60080b8785d96000010000000000000000000000000000000000052700000000000000000001200", "2809e8dbe108598948224ad44afac11d875397bdb22d0000b420a1a93c5240f45f819ef6167d3d458dd4992861ac00", "f4bd000000801900000000000000000000000000000000000000000100", [0x0, 0x2000000000001]}})

1.388914939s ago: executing program 0 (id=2960):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x41, &(0x7f0000000000)=0xff, 0x4) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r1)
r3 = getpid()
sched_setscheduler(r3, 0x5, &(0x7f0000000140)=0x5) (async)
gettid() (async)
r4 = signalfd4(r1, &(0x7f0000000100)={[0x3]}, 0x8, 0x1800) (async)
r5 = open(&(0x7f00000001c0)='./file1\x00', 0x14da7e, 0x20)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000240)=0x10) (async)
copy_file_range(r5, 0x0, r5, 0x0, 0xb51, 0x0)
r6 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)=ANY=[@ANYBLOB="d0000000", @ANYRES16=r2, @ANYBLOB="00028c000000fbdbdf2525000000080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r3, @ANYBLOB="0e007673696d0000000f000200816574cf870601d06da6cd0008008b0000000000000000", @ANYRES8=r5, @ANYBLOB="0e0001006e657464657673696d0000000f0002006e657464657673696d30000008008a00", @ANYRES32=r4, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008a00", @ANYRES32=r6, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008c0003000000"], 0xd0}, 0x1, 0x0, 0x0, 0x40000}, 0x200000c1) (async)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r7, 0x84, 0x81, &(0x7f0000000000)="ff09000000010002", 0x8) (async)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
dup2(r7, r8) (async)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r8, 0x84, 0x23, &(0x7f0000000400)={0x0, 0xfff9}, 0x8) (async)
r9 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) (async)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000003c0)={0x0, <r11=>0x0}, 0x8)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080)=r11, 0x4) (async)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_MPP(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x14, r12, 0x301, 0xfffffffd, 0xffffffff, {{0x11}, {@void, @void}}}, 0x14}}, 0x4a080) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r10) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r9, 0xc02064b2, &(0x7f0000000040)={0x9, 0x5, 0x20ffd})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r9, 0x100000000)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)

1.297345796s ago: executing program 0 (id=2962):
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000300)={0xa, 0x2, 0xfffffffc, @empty, 0x80000001}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
socket$kcm(0x11, 0xa, 0x300)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x9}}, 0x20)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000300)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="6000000010001fff03000000fdfffeff00000000", @ANYRES32=0x0, @ANYBLOB="0000000040cc0300380012800b00010067656e657665000028000280140007f5ffffff0000000000000000000000000105000c0000000000050009000100000008000a00", @ANYRES32=r3, @ANYBLOB="2f6469150156d2da0585b8d0f30a4913aef4c98ae16f491602c597a16275e4953fa0576c4832f23ef4acfb54e99be1ef74089881c016bf3b9f2eb77219a4aae579ffdfb199bbd2f8ea45b0c179aeb07d60f8df33ccca0b46da50366cb113d9d78da15305faa201eed731c28e5846700823ad1ea0577be1c3ff3096bf21f5f75f60c7e4fbd0"], 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.229962045s ago: executing program 0 (id=2967):
io_setup(0x1, &(0x7f0000000280))
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000005, 0x4c032, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32], 0x4c}}, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000010000108000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="b40200002000000008001b"], 0x28}}, 0x0)

1.020474094s ago: executing program 0 (id=2971):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000002a40)={0x0, 0x0, &(0x7f0000002a00)={&(0x7f0000002980)={0x4c, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @loopback}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @empty}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000080), r0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=<r3=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000100)=<r4=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000140)=<r5=>0x0)
sendmsg$NFC_CMD_ENABLE_SE(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x34, r2, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0xc0}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r3}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4000880)

819.210462ms ago: executing program 3 (id=2975):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x800, 0x70bd29, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0xfff1, 0xfff2}, {0x1, 0xc}, {0xfff3, 0x8}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_NAT={0x8, 0xb, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44045}, 0x10) (async, rerun: 64)
r0 = socket(0x10, 0x3, 0x0) (async, rerun: 64)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4084)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)={0x14, r2, 0x30d}, 0x14}}, 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)

817.485867ms ago: executing program 2 (id=2977):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=ANY=[@ANYBLOB="400000001000030400000000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1502000000000000200012800800010068737200140002800800017f", @ANYRES32=r2, @ANYBLOB="08000200", @ANYRES32=r0], 0x40}, 0x1, 0xba01, 0x0, 0x4000044}, 0x10)

719.552696ms ago: executing program 2 (id=2978):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x31, &(0x7f0000001600), 0x4)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r3, 0x0, 0x4000)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x403, 0x78bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r7}]}, 0x44}, 0x1, 0x0, 0x0, 0x600}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@newlink={0x58, 0x10, 0xffffff1f, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4408}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @loopback}, @IFLA_GENEVE_TTL_INHERIT={0x5, 0xc, 0x1}]}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

719.293756ms ago: executing program 0 (id=2979):
timer_create(0x1, &(0x7f00000000c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x9f9, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x3, 0x20002f7})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
open(&(0x7f0000000000)='./file0\x00', 0x4142, 0xba)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x29, 0x2, 0x80000}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="00000000000000000000000000000000000000000801010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000eeffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x20, 0x0, 0x0, {0x0, 0x3}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)

656.436069ms ago: executing program 3 (id=2981):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
syz_emit_ethernet(0x6a, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0008004503005c00000000022f907800000000e00000012480810000020000b09a7f4910000800000086dd86dd88be00000000100000000100000000000000080022eb00000001200000000200000000000000fffd000008006558000000001bca689a5432e2f98f7ab42f8d46e6864144"], 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x10, 0x0, 0x7fff7ffc}]})
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r2, &(0x7f0000000540)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x7}}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)="fb", 0x55)
r5 = accept(r4, 0x0, 0x0)
sendmsg$TEAM_CMD_PORT_LIST_GET(r5, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000100)=ANY=[], 0xfffffdcc}, 0x1, 0x0, 0x0, 0x4000}, 0x40881)
recvmmsg$unix(r5, &(0x7f00000028c0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000180)=""/185, 0xb9}], 0x1}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)=""/199, 0xc7}], 0x1}}], 0x2, 0x2121, 0x0)
bind$tipc(r3, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='sched\x00')
read$FUSE(r6, &(0x7f0000001300)={0x2020}, 0x2020)
r7 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r7, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@filter={'filter\x00', 0x4, 0x4, 0x3c0, 0xffffffff, 0xd0, 0x1f0, 0xd0, 0xfeffffff, 0xffffffff, 0x2f0, 0x2f0, 0x2f0, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x3}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@common=@eui64={{0x28}}, @common=@inet=@tos={{0x28}, {0x5, 0xff}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0xe9c, 0x7}}}, {{@ipv6={@empty, @dev={0xfe, 0x80, '\x00', 0x3a}, [0xff000000, 0x0, 0xff000000], [0x0, 0xffffff00, 0xff], 'team0\x00', 'batadv_slave_0\x00', {}, {}, 0x2e, 0x79, 0x4, 0x44}, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@ah={{0x30}, {[0x4d5, 0x4d6], 0xe, 0xab, 0x6}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x420)

589.785971ms ago: executing program 2 (id=2984):
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000100)={0x97, "5660359c3245d1c42317afadfd48ed5100000000000000608a00", <r2=>0xffffffffffffffff})
poll(&(0x7f0000000040)=[{r2, 0x4050}], 0x1, 0xffffffb3)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001140)='/proc/tty/ldiscs\x00', 0x0, 0x0)
read$watch_queue(r3, &(0x7f0000000140)=""/4096, 0x1000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00'})
r4 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc4c85512, &(0x7f0000000540)={{0x3, 0x3, 0x0, 0x462b, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x800000000000000, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0xa8, 0xfffffffffffffff7, 0x0, 0x91f5, 0x1f, 0x4000000000000000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x10001, 0xfffffffffffffffc, 0x10006, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0xfffffffffffffffc, 0x3, 0x0, 0x3, 0x9, 0x0, 0x0, 0xa9d5, 0x0, 0x0, 0x5, 0x20000000000000, 0x0, 0xf, 0x0, 0xfffffffffffffffd, 0xfeb7, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8, 0x2, 0x1000, 0xe0a5, 0x0, 0x7, 0x7, 0x1002, 0x400000, 0xff, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x80000000, 0x73fb, 0x0, 0x0, 0x0, 0x6, 0xb7a8, 0xff, 0x0, 0xfffffffffffffffc]})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r5=>0x0})
r6 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$mixer_OSS_GETVERSION(r6, 0x80044d76, &(0x7f0000000080))
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000140)=@newqdisc={0x434, 0x24, 0x3fe3aa0262d8c583, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x6, 0xa}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x408, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x2, 0xff, 0x7, 0x9, 0x9, 0x6, 0x3, 0x50c, 0x6, 0x0, 0x4, 0x45b1, 0x0, 0x7, 0x8, 0xa, 0x0, 0xa2, 0xffffffff, 0x3, 0xd, 0x1, 0x4, 0xe8, 0x2, 0x7, 0x1456, 0x7143, 0x52, 0xffff, 0xa, 0xf, 0x200, 0x6, 0xf1a, 0x7, 0x2, 0x26, 0x4, 0x703, 0x8b, 0x3, 0x2, 0x5, 0xfffffff5, 0xdaa, 0x1, 0xe6, 0x2, 0x7, 0x4, 0x9, 0x6, 0x1ff, 0x1, 0x3, 0x200, 0xd, 0x6df, 0x1, 0xb, 0x5, 0x0, 0x8, 0x0, 0x6, 0x6, 0x3, 0x2, 0x1ff, 0x190b, 0xe10, 0x10001, 0x1, 0x200, 0x0, 0xfb01, 0x74587f6b, 0x3, 0x100, 0x8001, 0x2, 0x10, 0x1000, 0x8c0, 0x800, 0x9, 0x0, 0x7, 0x1d, 0xfffffff8, 0xb84, 0xa, 0x8, 0x9, 0x7fffffff, 0x9, 0x4, 0x1, 0x2, 0x7, 0xffff, 0xa2, 0x5, 0x3ff, 0x70, 0x8, 0x6, 0x2, 0x0, 0x200, 0x7, 0xa, 0x8d, 0x4, 0x3, 0x0, 0x6, 0x6, 0x4, 0x0, 0x3, 0x1000, 0x6, 0x2, 0x7, 0x4, 0x884, 0x9c0, 0x5d928fea, 0x0, 0x5, 0x2, 0x0, 0x6, 0x79, 0x10, 0x8, 0xc251, 0x3, 0x200, 0x8, 0x4c, 0x0, 0x401, 0x2, 0x8, 0x1, 0xd67, 0xcb, 0x2, 0xfffffffd, 0x10001, 0x80, 0x0, 0x8, 0x80000001, 0xe, 0x3, 0x4, 0x6, 0xa, 0x8001, 0x800, 0x0, 0x0, 0x2, 0x8, 0x3, 0x16b8, 0x8000, 0x9, 0x6, 0x3, 0x5, 0x2, 0x0, 0x2, 0xa4b, 0xfffffff5, 0x60fa, 0x8, 0x1, 0x9, 0x9, 0x3, 0x6, 0x100, 0x6, 0x558e, 0x10, 0xfffffff9, 0xffffffff, 0x1, 0x8, 0x5, 0x7, 0x3, 0x0, 0x9, 0x7ff, 0x2, 0x0, 0x3, 0xf2c7, 0x5, 0x6, 0x16b2, 0xfffffff7, 0x9, 0x3, 0x1, 0x39, 0x4, 0x400, 0x4, 0x61, 0x8, 0x2, 0x8, 0x2, 0x90, 0x8, 0xb, 0xffffffff, 0x5118b90f, 0x4998bedd, 0xa1e, 0x97c5, 0x0, 0x3, 0x3c, 0x9, 0x4, 0x20a, 0x5, 0x456, 0x2a2c, 0xed5, 0x4, 0x7fff, 0x2, 0x8001, 0x9c74, 0x200, 0x0, 0xfffffffc, 0x8, 0xc39, 0x3, 0xd7, 0x401, 0x936, 0x1000, 0x3, 0xca]}]}}]}, 0x434}, 0x1, 0x0, 0x0, 0x24000000}, 0x20004000)
socket(0x10, 0x3, 0x0) (async)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (async)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000100)={0x97, "5660359c3245d1c42317afadfd48ed5100000000000000608a00"}) (async)
poll(&(0x7f0000000040)=[{r2, 0x4050}], 0x1, 0xffffffb3) (async)
close_range(r1, 0xffffffffffffffff, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000001140)='/proc/tty/ldiscs\x00', 0x0, 0x0) (async)
read$watch_queue(r3, &(0x7f0000000140)=""/4096, 0x1000) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00'}) (async)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc4c85512, &(0x7f0000000540)={{0x3, 0x3, 0x0, 0x462b, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x800000000000000, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0xa8, 0xfffffffffffffff7, 0x0, 0x91f5, 0x1f, 0x4000000000000000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x10001, 0xfffffffffffffffc, 0x10006, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0xfffffffffffffffc, 0x3, 0x0, 0x3, 0x9, 0x0, 0x0, 0xa9d5, 0x0, 0x0, 0x5, 0x20000000000000, 0x0, 0xf, 0x0, 0xfffffffffffffffd, 0xfeb7, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8, 0x2, 0x1000, 0xe0a5, 0x0, 0x7, 0x7, 0x1002, 0x400000, 0xff, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x80000000, 0x73fb, 0x0, 0x0, 0x0, 0x6, 0xb7a8, 0xff, 0x0, 0xfffffffffffffffc]}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'}) (async)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$mixer_OSS_GETVERSION(r6, 0x80044d76, &(0x7f0000000080)) (async)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000140)=@newqdisc={0x434, 0x24, 0x3fe3aa0262d8c583, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x6, 0xa}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x408, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x2, 0xff, 0x7, 0x9, 0x9, 0x6, 0x3, 0x50c, 0x6, 0x0, 0x4, 0x45b1, 0x0, 0x7, 0x8, 0xa, 0x0, 0xa2, 0xffffffff, 0x3, 0xd, 0x1, 0x4, 0xe8, 0x2, 0x7, 0x1456, 0x7143, 0x52, 0xffff, 0xa, 0xf, 0x200, 0x6, 0xf1a, 0x7, 0x2, 0x26, 0x4, 0x703, 0x8b, 0x3, 0x2, 0x5, 0xfffffff5, 0xdaa, 0x1, 0xe6, 0x2, 0x7, 0x4, 0x9, 0x6, 0x1ff, 0x1, 0x3, 0x200, 0xd, 0x6df, 0x1, 0xb, 0x5, 0x0, 0x8, 0x0, 0x6, 0x6, 0x3, 0x2, 0x1ff, 0x190b, 0xe10, 0x10001, 0x1, 0x200, 0x0, 0xfb01, 0x74587f6b, 0x3, 0x100, 0x8001, 0x2, 0x10, 0x1000, 0x8c0, 0x800, 0x9, 0x0, 0x7, 0x1d, 0xfffffff8, 0xb84, 0xa, 0x8, 0x9, 0x7fffffff, 0x9, 0x4, 0x1, 0x2, 0x7, 0xffff, 0xa2, 0x5, 0x3ff, 0x70, 0x8, 0x6, 0x2, 0x0, 0x200, 0x7, 0xa, 0x8d, 0x4, 0x3, 0x0, 0x6, 0x6, 0x4, 0x0, 0x3, 0x1000, 0x6, 0x2, 0x7, 0x4, 0x884, 0x9c0, 0x5d928fea, 0x0, 0x5, 0x2, 0x0, 0x6, 0x79, 0x10, 0x8, 0xc251, 0x3, 0x200, 0x8, 0x4c, 0x0, 0x401, 0x2, 0x8, 0x1, 0xd67, 0xcb, 0x2, 0xfffffffd, 0x10001, 0x80, 0x0, 0x8, 0x80000001, 0xe, 0x3, 0x4, 0x6, 0xa, 0x8001, 0x800, 0x0, 0x0, 0x2, 0x8, 0x3, 0x16b8, 0x8000, 0x9, 0x6, 0x3, 0x5, 0x2, 0x0, 0x2, 0xa4b, 0xfffffff5, 0x60fa, 0x8, 0x1, 0x9, 0x9, 0x3, 0x6, 0x100, 0x6, 0x558e, 0x10, 0xfffffff9, 0xffffffff, 0x1, 0x8, 0x5, 0x7, 0x3, 0x0, 0x9, 0x7ff, 0x2, 0x0, 0x3, 0xf2c7, 0x5, 0x6, 0x16b2, 0xfffffff7, 0x9, 0x3, 0x1, 0x39, 0x4, 0x400, 0x4, 0x61, 0x8, 0x2, 0x8, 0x2, 0x90, 0x8, 0xb, 0xffffffff, 0x5118b90f, 0x4998bedd, 0xa1e, 0x97c5, 0x0, 0x3, 0x3c, 0x9, 0x4, 0x20a, 0x5, 0x456, 0x2a2c, 0xed5, 0x4, 0x7fff, 0x2, 0x8001, 0x9c74, 0x200, 0x0, 0xfffffffc, 0x8, 0xc39, 0x3, 0xd7, 0x401, 0x936, 0x1000, 0x3, 0xca]}]}}]}, 0x434}, 0x1, 0x0, 0x0, 0x24000000}, 0x20004000) (async)

480.379524ms ago: executing program 2 (id=2985):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000080)={0x24, r1, 0x1, 0x70bd2c, 0x1200, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x2}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x3f}, 0x4)

478.639165ms ago: executing program 4 (id=2986):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="0c000280060001"], 0x24}}, 0xe000000)

420.435122ms ago: executing program 4 (id=2987):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff25, 0x0, 0x0, 0x0}, 0x94)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000600)=ANY=[@ANYBLOB="cce69c380e8149c135"], 0x10) (async)
r4 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r3, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x6], 0x0, 0x0, 0x1}}, 0x40) (async)
r5 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x1)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, r5)

420.285211ms ago: executing program 2 (id=2988):
io_setup(0x1, &(0x7f0000000280))
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000005, 0x4c032, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32], 0x4c}}, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000010000108000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="b40200006000000008001b"], 0x28}}, 0x0)

339.539172ms ago: executing program 4 (id=2989):
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x24040084)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="5c00000002060108000000000000000000000000050005000a0000000500010007000000050004005c0000000900020073797a310000000015000300686173683a69702c706f72742c6e6574000000000c00078008"], 0x5c}}, 0x20084884)

270.347396ms ago: executing program 4 (id=2990):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x3, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-aes-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r3 = accept4$alg(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r3, &(0x7f00000021c0)=[{0x0, 0x0, &(0x7f0000003240)=[{&(0x7f0000000100)="a92e81d0991808e33c2330164cf023df", 0x10}, {&(0x7f0000000480)="439dce3672b42d0ac56da6cfae9bbaa2bbb23fd219a88c55cfb134448890fd3aa11f6574a521422666d0ae8060999be0f9f8c88fa4cd808ff3f1a4a5f0f051b695e9dd25a112e1aff097823d825f94547f6e7783c87dd97a8eb2ecad4d97a561781b3e531157301bac971f273659c064e72603ffb832b8a94d3be8", 0x7b}, {&(0x7f0000000580)="69ec03397cf0ed32bbe95e7e45d7918307939da4b8f86f5733217ac61385d95befada2439a", 0x25}, {&(0x7f0000000680)="08e88d4de4594308ad8ecf5db5f83d72be47105ab5fd2fb7298dc4036dd6d448812651ac61b66c2362979a6bf8e64cf2d7ed9c81089a2c391ca57a6582731c1c81aadfe31838e48a832be9ecc9a94a1b68d17a00d091f39fd10d876e038437ae53cfd6f023194d61033b11dd600001c065ab80a76db7e1d9a26ae5e786a12e2ea88e5fa63bf276dd866724da678fb33f55f971554d9c4c51cdd9661d3db3a5d28823d3f977a45daccca53ab53e53719fd4b8c1b0b205c88caeffbe7ab7c6e2c6bdbab5b50f471f4e7aeae8a78270c29aaae19d351f6f", 0xd6}, {&(0x7f0000000980)="f1ed9f18c3e6655229989e1b55a4ed9be38fcaa1400b280d1d8e65b89e1051719ac4b6d2653a55945fd17ea51772b08749bb488ff980b5d33a560174a3da58f07b21ecd080bfc0ac405e10ceb2e1a7828b57ffc3ce8154000ba4558395985d156739b74b2ec79eb71ee6141487f2bb0e75910262fce0e339f70229d30d543d31ecf635218738d12ea114dee20e7bcdfd07bb34bc816d629bd09c526447c316db6e11262f9c473cc77842ac9926d51d0f", 0xb0}, {&(0x7f0000002200)="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", 0x6ae}], 0x6, &(0x7f0000000640)=ANY=[], 0x3, 0x880}], 0x1, 0x80001)
recvmmsg(r3, &(0x7f00000044c0)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000001040)=""/4096, 0x1000}], 0x1}, 0x8005}], 0x1, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000340)="f20f2338650f405a00f20f32670f2169f30f099a7c0000001e010fc79b060000000f01cf673e0f47d7c166bafbacac40", 0x30}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0, 0xf}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

270.174775ms ago: executing program 2 (id=2991):
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0xa8, &(0x7f0000000040)=ANY=[@ANYBLOB="6b0ee0b3d4"])
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd69010000001406fffe800000000000000000000039fe8000000000000000000000000000aa4e224e24000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="51c2"], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac9", 0x3}], 0x1}}], 0x1, 0x4000000)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00db6072000001ea89de2b4410000e60080b8785d96000010000000000000000000000000000000000052700000000000000000004000", "2809e8dbe108598948224ad44afac11d875397bdb22d0000b420a1a93c5240f45f819ef6167d3d458dd4992861ac00", "f4bd000000801900000000000000000000000000000000000000000100", [0x0, 0x2000000000001]}})

50.2334ms ago: executing program 4 (id=2992):
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="30000000100001000000000000000000000900e4", @ANYRES32=0x0, @ANYBLOB="0000000000000000080004000006000008001b6000"], 0x30}}, 0x0)

0s ago: executing program 4 (id=2993):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000200), r1)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f00000027c0)={0x0, 0x0, &(0x7f0000002780)={&(0x7f00000002c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd7000fbdbdf25010000000c00020000000000000000001c0007801800018008000100", @ANYBLOB="04"], 0x3c}, 0x1, 0x0, 0x0, 0x4000004}, 0x4000) (async)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), r1)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 32)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x3c, r5, 0x1, 0xffffbffe, 0x0, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r6}}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xfb2e77a8993c1937}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x10001}]}, 0x3c}}, 0x20000000)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r7=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r3, 0x8, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc001}, 0x14)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r8=>0x0}) (async)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r9, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x28, 0x0, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}]}, 0x28}}, 0x44021) (async)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100fdffffff000000001e00000008000300", @ANYRES32=r8, @ANYBLOB="40002f800c00020000000000000000000800010000000000280003801c0003800600010000000000080002000300000006000300a7aa0000080001"], 0x5c}, 0x1, 0x0, 0x0, 0x30ea32fe53398b3d}, 0x0)

kernel console output (not intermixed with test programs):

b: 14 callbacks suppressed
[  189.942672][   T40] audit: type=1400 audit(1776644747.980:4416): avc:  denied  { listen } for  pid=14006 comm="syz.0.2426" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  190.149846][T13705] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  190.165782][T13705] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  190.175449][T13705] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  190.185738][T13705] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  190.192050][T13705] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  190.233310][T14022] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  190.236336][T14022] overlayfs: overlapping lowerdir path
[  190.236574][T14020] 8021q: adding VLAN 0 to HW filter on device bond0
[  190.506177][T14041] 8021q: adding VLAN 0 to HW filter on device bond27
[  190.520501][T14033] nbd: socks must be embedded in a SOCK_ITEM attr
[  190.523452][T14033] block nbd101: shutting down sockets
[  190.592630][T14018] chnl_net:caif_netlink_parms(): no params data found
[  190.664365][T14018] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.667188][T14018] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.670189][T14018] bridge_slave_0: entered allmulticast mode
[  190.673694][T14018] bridge_slave_0: entered promiscuous mode
[  190.678230][T14018] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.681403][T14018] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.684014][T14018] bridge_slave_1: entered allmulticast mode
[  190.693461][T14018] bridge_slave_1: entered promiscuous mode
[  190.748407][T14075] vivid-007: =================  START STATUS  =================
[  190.752774][T14075] vivid-007: Generate PTS: true
[  190.758557][T14075] vivid-007: Generate SCR: true
[  190.760809][T14075] tpg source WxH: 320x240 (Y'CbCr)
[  190.762645][T14075] tpg field: 1
[  190.764113][T14075] tpg crop: (0,0)/320x240
[  190.765962][T14075] tpg compose: (0,0)/320x240
[  190.768265][T14075] tpg colorspace: 8
[  190.769867][T14075] tpg transfer function: 0/0
[  190.771793][T14075] tpg Y'CbCr encoding: 0/0
[  190.773614][T14075] tpg quantization: 0/0
[  190.775322][T14075] tpg RGB range: 0/2
[  190.776642][T14075] vivid-007: ==================  END STATUS  ==================
[  190.795969][T14018] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.806871][T14018] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.832377][T14018] team0: Port device team_slave_0 added
[  190.836946][T14018] team0: Port device team_slave_1 added
[  190.838519][   T40] audit: type=1400 audit(1776644748.880:4417): avc:  denied  { write } for  pid=14083 comm="syz.3.2453" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  190.840066][   T40] audit: type=1400 audit(1776644748.880:4418): avc:  denied  { ioctl } for  pid=14083 comm="syz.3.2453" path="/dev/ndctl0" dev="devtmpfs" ino=109 ioctlcmd=0x640a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  190.883006][T14018] batman_adv: batadv0: Adding interface: batadv_slave_0
[  190.885548][T14018] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  190.893586][T14018] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  190.898654][T14018] batman_adv: batadv0: Adding interface: batadv_slave_1
[  190.901000][T14018] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  190.909971][T14018] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  190.935419][T14018] hsr_slave_0: entered promiscuous mode
[  190.937792][T14018] hsr_slave_1: entered promiscuous mode
[  190.939994][T14018] debugfs: 'hsr0' already exists in 'hsr'
[  190.941809][T14018] Cannot create hsr debugfs directory
[  191.025415][T14093] x_tables: duplicate underflow at hook 1
[  191.028603][T14018] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.072465][T14095] batman_adv: batadv0: Interface deactivated: dummy0
[  191.079622][T14095] lo: left allmulticast mode
[  191.082249][T14095] tunl0: left allmulticast mode
[  191.084541][T14095] gre0: left allmulticast mode
[  191.088353][T14095] gretap0: left allmulticast mode
[  191.090832][T14095] erspan0: left allmulticast mode
[  191.093400][T14095] ip_vti0: left allmulticast mode
[  191.095695][T14095] ip6_vti0: left allmulticast mode
[  191.100063][T14095] sit0: left allmulticast mode
[  191.104117][T14095] ip6tnl0: left allmulticast mode
[  191.106454][T14095] ip6gre0: left allmulticast mode
[  191.108878][T14095] syz_tun: left allmulticast mode
[  191.111294][T14095] ip6gretap0: left allmulticast mode
[  191.114181][T14095] bridge0: left allmulticast mode
[  191.116463][T14095] vcan0: left allmulticast mode
[  191.119099][T14095] bond0: left allmulticast mode
[  191.121593][T14095] 8021q: adding VLAN 0 to HW filter on device bond0
[  191.124196][T14095] team0: left allmulticast mode
[  191.126355][T14095] 8021q: adding VLAN 0 to HW filter on device team0
[  191.129760][T14095] dummy0: left allmulticast mode
[  191.132064][T14095] batman_adv: batadv0: Interface activated: dummy0
[  191.153316][T14095] nlmon0: left allmulticast mode
[  191.156811][T14095] caif0: left allmulticast mode
[  191.186803][T14018] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.256265][T14018] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.354079][T14018] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.360121][T14101] loop2: detected capacity change from 0 to 7
[  191.365455][T14101] Dev loop2: unable to read RDB block 7
[  191.369313][T14101]  loop2: unable to read partition table
[  191.373557][T14101] loop2: partition table beyond EOD, truncated
[  191.375921][T14101] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  191.532128][T14018] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  191.539076][T14018] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  191.542723][T14018] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  191.549937][T14018] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  191.552641][T14018] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  191.560437][T14018] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  191.563860][T14018] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  191.569081][T14018] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  191.593725][T14105] validate_nla: 13 callbacks suppressed
[  191.593742][T14105] netlink: 'syz.4.2462': attribute type 30 has an invalid length.
[  191.612484][T14105] bond28: option arp_missed_max: invalid value (0)
[  191.615212][T14105] bond28: option arp_missed_max: allowed values 1 - 255
[  191.619135][T14105] bond28 (unregistering): Released all slaves
[  191.662899][T14018] 8021q: adding VLAN 0 to HW filter on device bond0
[  191.680313][T14018] 8021q: adding VLAN 0 to HW filter on device team0
[  191.686276][  T228] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.689307][  T228] bridge0: port 1(bridge_slave_0) entered forwarding state
[  191.709915][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.712987][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  191.763400][T14118] nbd: socks must be embedded in a SOCK_ITEM attr
[  191.766908][T14118] block nbd101: shutting down sockets
[  191.807175][T13702] Bluetooth: hci2: command 0x0406 tx timeout
[  191.879578][T14129] netlink: 'syz.4.2466': attribute type 1 has an invalid length.
[  191.914967][T14136] FAULT_INJECTION: forcing a failure.
[  191.914967][T14136] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  191.919462][T14136] CPU: 3 UID: 0 PID: 14136 Comm: syz.3.2469 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  191.919480][T14136] Tainted: [L]=SOFTLOCKUP
[  191.919484][T14136] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  191.919492][T14136] Call Trace:
[  191.919496][T14136]  <TASK>
[  191.919501][T14136]  dump_stack_lvl+0x100/0x190
[  191.919520][T14136]  should_fail_ex.cold+0x5/0xa
[  191.919537][T14136]  _copy_from_iter+0x1f4/0x1690
[  191.919553][T14136]  ? __asan_memset+0x23/0x50
[  191.919571][T14136]  ? __pfx__copy_from_iter+0x10/0x10
[  191.919584][T14136]  ? __pfx___alloc_skb+0x10/0x10
[  191.919596][T14136]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  191.919620][T14136]  netlink_sendmsg+0x808/0xda0
[  191.919639][T14136]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.919654][T14136]  ? __might_fault+0x50/0x140
[  191.919674][T14136]  ____sys_sendmsg+0x9e1/0xb70
[  191.919690][T14136]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.919706][T14136]  ? __pfx_____sys_sendmsg+0x10/0x10
[  191.919727][T14136]  ___sys_sendmsg+0x190/0x1e0
[  191.919744][T14136]  ? __pfx____sys_sendmsg+0x10/0x10
[  191.919775][T14136]  __sys_sendmsg+0x170/0x220
[  191.919787][T14136]  ? __pfx___sys_sendmsg+0x10/0x10
[  191.919805][T14136]  ? rcu_is_watching+0x12/0xc0
[  191.919825][T14136]  do_syscall_64+0x10b/0xf80
[  191.919857][T14136]  ? clear_bhb_loop+0x40/0x90
[  191.919871][T14136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.919883][T14136] RIP: 0033:0x7fd9b6f9c819
[  191.919893][T14136] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  191.919904][T14136] RSP: 002b:00007fd9b7e6c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  191.919916][T14136] RAX: ffffffffffffffda RBX: 00007fd9b7215fa0 RCX: 00007fd9b6f9c819
[  191.919923][T14136] RDX: 0000000000000000 RSI: 0000200000002a40 RDI: 0000000000000004
[  191.919930][T14136] RBP: 00007fd9b7e6c090 R08: 0000000000000000 R09: 0000000000000000
[  191.919937][T14136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.919943][T14136] R13: 00007fd9b7216038 R14: 00007fd9b7215fa0 R15: 00007ffced7565a8
[  191.919957][T14136]  </TASK>
[  191.926337][T14129] 8021q: adding VLAN 0 to HW filter on device bond28
[  192.035789][T14018] 8021q: adding VLAN 0 to HW filter on device batadv0
[  192.095953][T14018] veth0_vlan: entered promiscuous mode
[  192.109277][T14018] veth1_vlan: entered promiscuous mode
[  192.143959][T14018] veth0_macvtap: entered promiscuous mode
[  192.158845][T14018] veth1_macvtap: entered promiscuous mode
[  192.174509][T14018] batman_adv: batadv0: Interface activated: batadv_slave_0
[  192.183751][T14148] __nla_validate_parse: 17 callbacks suppressed
[  192.183769][T14148] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2473'.
[  192.190784][T14018] batman_adv: batadv0: Interface activated: batadv_slave_1
[  192.196128][ T1212] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  192.201548][ T1212] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  192.205281][T14148] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2473'.
[  192.205307][ T1212] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  192.212538][ T1212] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  192.290241][T13688] Bluetooth: hci0: command tx timeout
[  192.335603][ T1212] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.338435][ T1212] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.380858][  T228] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.385273][  T228] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.493709][T14164] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2429'.
[  192.635880][T14177] netlink: 'syz.2.2481': attribute type 13 has an invalid length.
[  192.639413][T14177] netlink: 'syz.2.2481': attribute type 17 has an invalid length.
[  192.654800][T14172] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.657898][T14172] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.750218][T14172] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  192.757370][T14172] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  193.234481][T14177] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.242535][T14177] 8021q: adding VLAN 0 to HW filter on device team0
[  193.255374][T14177] net_ratelimit: 58 callbacks suppressed
[  193.255381][T14177] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  193.280714][ T1162] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  193.288583][ T1162] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  193.291415][ T1162] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  193.295793][ T1162] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  193.517224][T14192] nbd: socks must be embedded in a SOCK_ITEM attr
[  193.519718][T14192] block nbd101: shutting down sockets
[  193.709760][T14201] loop2: detected capacity change from 0 to 7
[  193.715150][T14201] Dev loop2: unable to read RDB block 7
[  193.719647][T14201]  loop2: unable to read partition table
[  193.724485][T14201] loop2: partition table beyond EOD, truncated
[  193.731299][T14201] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  193.925850][T14208] FAULT_INJECTION: forcing a failure.
[  193.925850][T14208] name failslab, interval 1, probability 0, space 0, times 0
[  193.935098][T14208] CPU: 2 UID: 0 PID: 14208 Comm: syz.2.2493 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  193.935120][T14208] Tainted: [L]=SOFTLOCKUP
[  193.935125][T14208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  193.935132][T14208] Call Trace:
[  193.935136][T14208]  <TASK>
[  193.935142][T14208]  dump_stack_lvl+0x100/0x190
[  193.935530][T14208]  should_fail_ex.cold+0x5/0xa
[  193.935600][T14208]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x100/0x2f0
[  193.935757][T14208]  should_failslab+0xc2/0x120
[  193.935852][T14208]  __kmalloc_noprof+0xe0/0x850
[  193.935873][T14208]  genl_family_rcv_msg_attrs_parse.isra.0+0x100/0x2f0
[  193.935895][T14208]  genl_family_rcv_msg_doit+0xc7/0x300
[  193.935926][T14208]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  193.935950][T14208]  ? bpf_lsm_capable+0x9/0x10
[  193.936073][T14208]  ? security_capable+0x80/0x260
[  193.936213][T14208]  genl_rcv_msg+0x560/0x800
[  193.936233][T14208]  ? __pfx_genl_rcv_msg+0x10/0x10
[  193.936250][T14208]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  193.936492][T14208]  ? __lock_acquire+0x4a5/0x2630
[  193.936579][T14208]  netlink_rcv_skb+0x159/0x420
[  193.936595][T14208]  ? __pfx_genl_rcv_msg+0x10/0x10
[  193.936613][T14208]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  193.936634][T14208]  ? netlink_deliver_tap+0x1ae/0xcc0
[  193.936651][T14208]  genl_rcv+0x28/0x40
[  193.936666][T14208]  netlink_unicast+0x585/0x850
[  193.936683][T14208]  ? __pfx_netlink_unicast+0x10/0x10
[  193.936703][T14208]  netlink_sendmsg+0x8b0/0xda0
[  193.936721][T14208]  ? __pfx_netlink_sendmsg+0x10/0x10
[  193.936735][T14208]  ? __might_fault+0x50/0x140
[  193.936757][T14208]  ____sys_sendmsg+0x9e1/0xb70
[  193.936815][T14208]  ? __pfx_netlink_sendmsg+0x10/0x10
[  193.936832][T14208]  ? __pfx_____sys_sendmsg+0x10/0x10
[  193.936854][T14208]  ___sys_sendmsg+0x190/0x1e0
[  193.936871][T14208]  ? __pfx____sys_sendmsg+0x10/0x10
[  193.936903][T14208]  __sys_sendmsg+0x170/0x220
[  193.936916][T14208]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.936934][T14208]  ? rcu_is_watching+0x12/0xc0
[  193.936953][T14208]  do_syscall_64+0x10b/0xf80
[  193.937016][T14208]  ? clear_bhb_loop+0x40/0x90
[  193.937031][T14208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.937043][T14208] RIP: 0033:0x7f090c99c819
[  193.937055][T14208] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  193.937067][T14208] RSP: 002b:00007f090d7ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  193.937079][T14208] RAX: ffffffffffffffda RBX: 00007f090cc15fa0 RCX: 00007f090c99c819
[  193.937086][T14208] RDX: 0000000000000000 RSI: 0000200000002a40 RDI: 0000000000000004
[  193.937093][T14208] RBP: 00007f090d7ef090 R08: 0000000000000000 R09: 0000000000000000
[  193.937100][T14208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.937106][T14208] R13: 00007f090cc16038 R14: 00007f090cc15fa0 R15: 00007ffc84d68068
[  193.937121][T14208]  </TASK>
[  194.152461][T14210] xt_NFQUEUE: number of queues (5) out of range (got 65536)
[  194.246934][T14214] netlink: 'syz.4.2496': attribute type 1 has an invalid length.
[  194.280371][T14214] 8021q: adding VLAN 0 to HW filter on device bond29
[  194.324778][T14214] bond29: (slave geneve4): making interface the new active one
[  194.332547][T14214] bond29: (slave geneve4): Enslaving as an active interface with an up link
[  194.333612][T14221] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2499'.
[  194.343206][T14221] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2499'.
[  194.349256][  T228] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  194.351498][T14221] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2499'.
[  194.353052][  T228] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  194.357895][  T228] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  194.360809][  T228] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  194.367154][T13688] Bluetooth: hci0: command tx timeout
[  194.396173][T14224] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2500'.
[  194.403550][   T40] audit: type=1400 audit(1776644752.440:4419): avc:  denied  { connect } for  pid=14218 comm="syz.0.2498" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  194.413835][   T40] audit: type=1400 audit(1776644752.440:4420): avc:  denied  { bind } for  pid=14218 comm="syz.0.2498" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  194.420861][   T40] audit: type=1400 audit(1776644752.440:4421): avc:  denied  { ioctl } for  pid=14218 comm="syz.0.2498" path="socket:[62727]" dev="sockfs" ino=62727 ioctlcmd=0x8981 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  194.532886][T14228] bond27: entered allmulticast mode
[  194.538884][T14228] bond28: entered allmulticast mode
[  194.541009][T14228] bond29: entered allmulticast mode
[  194.542708][T14228] geneve4: entered allmulticast mode
[  194.773363][T14250] batman_adv: batadv0: Interface deactivated: dummy0
[  194.797622][T14250] netlink: 'syz.0.2508': attribute type 13 has an invalid length.
[  194.807964][T14250] netlink: 'syz.0.2508': attribute type 17 has an invalid length.
[  194.847543][T14250] 8021q: adding VLAN 0 to HW filter on device bond0
[  194.856567][T14250] 8021q: adding VLAN 0 to HW filter on device team0
[  194.863871][T14250] batman_adv: batadv0: Interface activated: dummy0
[  194.869410][T14250] batadv0: mtu less than device minimum
[  194.871696][T14250] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  194.875348][T14250] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  194.879094][T14250] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  194.882817][T14250] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  194.886495][T14250] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  194.890221][T14250] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  194.893857][T14250] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  194.897607][T14250] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  194.909146][T14258] nbd: socks must be embedded in a SOCK_ITEM attr
[  194.911555][T14258] block nbd101: shutting down sockets
[  194.980425][T14261] xt_hashlimit: invalid rate
[  194.991685][   T40] audit: type=1400 audit(1776644753.030:4422): avc:  denied  { read write } for  pid=14259 comm="syz.0.2513" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  195.003400][   T40] audit: type=1400 audit(1776644753.040:4423): avc:  denied  { open } for  pid=14259 comm="syz.0.2513" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  195.047398][T14268] FAULT_INJECTION: forcing a failure.
[  195.047398][T14268] name failslab, interval 1, probability 0, space 0, times 0
[  195.051411][T14268] CPU: 2 UID: 0 PID: 14268 Comm: syz.0.2515 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  195.051429][T14268] Tainted: [L]=SOFTLOCKUP
[  195.051434][T14268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  195.051440][T14268] Call Trace:
[  195.051445][T14268]  <TASK>
[  195.051451][T14268]  dump_stack_lvl+0x100/0x190
[  195.051470][T14268]  should_fail_ex.cold+0x5/0xa
[  195.051488][T14268]  should_failslab+0xc2/0x120
[  195.051501][T14268]  __kmalloc_cache_noprof+0x7a/0x6f0
[  195.051517][T14268]  ? netlbl_mgmt_add_common+0x53/0x1890
[  195.051537][T14268]  ? __pfx___nla_validate_parse+0x10/0x10
[  195.051779][T14268]  netlbl_mgmt_add_common+0x53/0x1890
[  195.051796][T14268]  ? trace_kmalloc+0xe3/0x110
[  195.051811][T14268]  netlbl_mgmt_adddef+0x212/0x370
[  195.051847][T14268]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  195.051869][T14268]  genl_family_rcv_msg_doit+0x214/0x300
[  195.051891][T14268]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  195.051913][T14268]  ? bpf_lsm_capable+0x9/0x10
[  195.051925][T14268]  ? security_capable+0x80/0x260
[  195.051945][T14268]  genl_rcv_msg+0x560/0x800
[  195.051964][T14268]  ? __pfx_genl_rcv_msg+0x10/0x10
[  195.051981][T14268]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  195.052000][T14268]  ? __lock_acquire+0x4a5/0x2630
[  195.052017][T14268]  netlink_rcv_skb+0x159/0x420
[  195.052033][T14268]  ? __pfx_genl_rcv_msg+0x10/0x10
[  195.052051][T14268]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  195.052072][T14268]  ? netlink_deliver_tap+0x1ae/0xcc0
[  195.052089][T14268]  genl_rcv+0x28/0x40
[  195.052104][T14268]  netlink_unicast+0x585/0x850
[  195.052122][T14268]  ? __pfx_netlink_unicast+0x10/0x10
[  195.052145][T14268]  netlink_sendmsg+0x8b0/0xda0
[  195.052162][T14268]  ? __pfx_netlink_sendmsg+0x10/0x10
[  195.052177][T14268]  ? __might_fault+0x50/0x140
[  195.052198][T14268]  ____sys_sendmsg+0x9e1/0xb70
[  195.052214][T14268]  ? __pfx_netlink_sendmsg+0x10/0x10
[  195.052230][T14268]  ? __pfx_____sys_sendmsg+0x10/0x10
[  195.052252][T14268]  ___sys_sendmsg+0x190/0x1e0
[  195.052269][T14268]  ? __pfx____sys_sendmsg+0x10/0x10
[  195.052301][T14268]  __sys_sendmsg+0x170/0x220
[  195.052314][T14268]  ? __pfx___sys_sendmsg+0x10/0x10
[  195.052332][T14268]  ? rcu_is_watching+0x12/0xc0
[  195.052351][T14268]  do_syscall_64+0x10b/0xf80
[  195.052362][T14268]  ? clear_bhb_loop+0x40/0x90
[  195.052377][T14268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.052388][T14268] RIP: 0033:0x7fd2cb39c819
[  195.052398][T14268] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  195.052409][T14268] RSP: 002b:00007fd2cc2b1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  195.052420][T14268] RAX: ffffffffffffffda RBX: 00007fd2cb615fa0 RCX: 00007fd2cb39c819
[  195.052427][T14268] RDX: 0000000000000000 RSI: 0000200000002a40 RDI: 0000000000000004
[  195.052434][T14268] RBP: 00007fd2cc2b1090 R08: 0000000000000000 R09: 0000000000000000
[  195.052451][T14268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.052458][T14268] R13: 00007fd2cb616038 R14: 00007fd2cb615fa0 R15: 00007fff85daadd8
[  195.052473][T14268]  </TASK>
[  195.116295][T14270] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2514'.
[  195.240577][T13688] block nbd101: Receive control failed (result -107)
[  195.502006][T14280] netlink: 'syz.0.2519': attribute type 1 has an invalid length.
[  195.582767][T14280] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  195.702350][T13702] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  195.720219][T13702] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  195.723586][T13702] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  195.728258][T13702] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  195.732249][T13702] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  195.793885][T14288] loop2: detected capacity change from 0 to 7
[  195.811253][T14288] Dev loop2: unable to read RDB block 7
[  195.813081][T14288]  loop2: unable to read partition table
[  195.831422][T14288] loop2: partition table beyond EOD, truncated
[  195.836827][T14288] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  196.004122][T14292] CIFS mount error: No usable UNC path provided in device string!
[  196.004122][T14292] 
[  196.017591][T14292] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  196.103424][T14294] netlink: 'syz.4.2523': attribute type 1 has an invalid length.
[  196.142220][T14294] 8021q: adding VLAN 0 to HW filter on device bond30
[  196.162734][T14294] bond30: (slave geneve5): making interface the new active one
[  196.166233][T14294] bond30: (slave geneve5): Enslaving as an active interface with an up link
[  196.228984][T14299] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2524'.
[  196.250336][T14299] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2524'.
[  196.284441][T14285] chnl_net:caif_netlink_parms(): no params data found
[  196.364031][T14285] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.367212][T14285] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.370437][T14285] bridge_slave_0: entered allmulticast mode
[  196.373781][T14285] bridge_slave_0: entered promiscuous mode
[  196.381748][T14285] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.384808][T14285] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.388471][T14285] bridge_slave_1: entered allmulticast mode
[  196.393503][T14285] bridge_slave_1: entered promiscuous mode
[  196.413214][T14285] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  196.418550][T14285] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  196.442937][T14285] team0: Port device team_slave_0 added
[  196.446749][T14285] team0: Port device team_slave_1 added
[  196.447054][T13688] Bluetooth: hci0: command tx timeout
[  196.463636][T14285] batman_adv: batadv0: Adding interface: batadv_slave_0
[  196.466386][T14285] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  196.476674][T14285] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  196.481597][T14285] batman_adv: batadv0: Adding interface: batadv_slave_1
[  196.484382][T14285] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  196.494493][T14285] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  196.545261][T14285] hsr_slave_0: entered promiscuous mode
[  196.547985][T14285] hsr_slave_1: entered promiscuous mode
[  196.550313][T14285] debugfs: 'hsr0' already exists in 'hsr'
[  196.552242][T14285] Cannot create hsr debugfs directory
[  196.747341][   T24] usb 9-1: new low-speed USB device number 9 using dummy_hcd
[  196.859158][T14332] nbd: socks must be embedded in a SOCK_ITEM attr
[  196.861994][T14332] block nbd102: shutting down sockets
[  196.887082][   T24] usb 9-1: device descriptor read/64, error -71
[  196.950514][T14334] batman_adv: batadv0: Interface deactivated: dummy0
[  196.958251][T14334] netlink: 'syz.0.2536': attribute type 13 has an invalid length.
[  196.961650][T14334] netlink: 'syz.0.2536': attribute type 17 has an invalid length.
[  196.993453][T14334] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.000813][T14334] 8021q: adding VLAN 0 to HW filter on device team0
[  197.004530][T14334] batman_adv: batadv0: Interface activated: dummy0
[  197.148401][   T24] usb 9-1: new low-speed USB device number 10 using dummy_hcd
[  197.181120][T14340] FAULT_INJECTION: forcing a failure.
[  197.181120][T14340] name failslab, interval 1, probability 0, space 0, times 0
[  197.187655][T14340] CPU: 0 UID: 0 PID: 14340 Comm: syz.0.2539 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  197.187686][T14340] Tainted: [L]=SOFTLOCKUP
[  197.187694][T14340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  197.187705][T14340] Call Trace:
[  197.187712][T14340]  <TASK>
[  197.187720][T14340]  dump_stack_lvl+0x100/0x190
[  197.187752][T14340]  should_fail_ex.cold+0x5/0xa
[  197.187780][T14340]  should_failslab+0xc2/0x120
[  197.187802][T14340]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  197.187855][T14340]  ? __alloc_skb+0x140/0x710
[  197.187881][T14340]  __alloc_skb+0x140/0x710
[  197.187899][T14340]  ? __alloc_skb+0x5b7/0x710
[  197.187914][T14340]  ? __pfx___alloc_skb+0x10/0x10
[  197.187930][T14340]  ? genl_rcv_msg+0x4be/0x800
[  197.187967][T14340]  netlink_ack+0x117/0xb80
[  197.187999][T14340]  netlink_rcv_skb+0x333/0x420
[  197.188024][T14340]  ? __pfx_genl_rcv_msg+0x10/0x10
[  197.188053][T14340]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  197.188088][T14340]  ? netlink_deliver_tap+0x1ae/0xcc0
[  197.188116][T14340]  genl_rcv+0x28/0x40
[  197.188141][T14340]  netlink_unicast+0x585/0x850
[  197.188176][T14340]  ? __pfx_netlink_unicast+0x10/0x10
[  197.188209][T14340]  netlink_sendmsg+0x8b0/0xda0
[  197.188239][T14340]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.188262][T14340]  ? __might_fault+0x50/0x140
[  197.188297][T14340]  ____sys_sendmsg+0x9e1/0xb70
[  197.188321][T14340]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.188346][T14340]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.188384][T14340]  ___sys_sendmsg+0x190/0x1e0
[  197.188411][T14340]  ? __pfx____sys_sendmsg+0x10/0x10
[  197.188466][T14340]  __sys_sendmsg+0x170/0x220
[  197.188488][T14340]  ? __pfx___sys_sendmsg+0x10/0x10
[  197.188517][T14340]  ? rcu_is_watching+0x12/0xc0
[  197.188550][T14340]  do_syscall_64+0x10b/0xf80
[  197.188570][T14340]  ? clear_bhb_loop+0x40/0x90
[  197.188595][T14340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.188614][T14340] RIP: 0033:0x7fd2cb39c819
[  197.188631][T14340] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  197.188650][T14340] RSP: 002b:00007fd2cc2b1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.188669][T14340] RAX: ffffffffffffffda RBX: 00007fd2cb615fa0 RCX: 00007fd2cb39c819
[  197.188680][T14340] RDX: 0000000000000000 RSI: 0000200000002a40 RDI: 0000000000000004
[  197.188688][T14340] RBP: 00007fd2cc2b1090 R08: 0000000000000000 R09: 0000000000000000
[  197.188698][T14340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  197.188710][T14340] R13: 00007fd2cb616038 R14: 00007fd2cb615fa0 R15: 00007fff85daadd8
[  197.188735][T14340]  </TASK>
[  197.221453][T14285] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  197.249564][T14342] fuse: Unknown parameter '0000000000000000000300000000000000000004'
[  197.290778][T14285] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  197.297663][   T24] usb 9-1: device descriptor read/64, error -71
[  197.299675][T14285] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  197.310825][T14285] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  197.315597][T14285] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  197.355991][T14285] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  197.358875][T14285] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  197.366914][T14285] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  197.417462][   T24] usb usb9-port1: attempt power cycle
[  197.417712][T14285] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.428837][T14285] 8021q: adding VLAN 0 to HW filter on device team0
[  197.434677][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.437061][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.445069][ T1162] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.447448][ T1162] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.464840][T14361] netlink: 'syz.2.2544': attribute type 1 has an invalid length.
[  197.467616][   T40] audit: type=1400 audit(1776644755.500:4424): avc:  denied  { setattr } for  pid=14341 comm="syz.0.2540" name="[userfaultfd]" dev="anon_inodefs" ino=61767 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  197.584986][T14285] 8021q: adding VLAN 0 to HW filter on device batadv0
[  197.611419][T14285] veth0_vlan: entered promiscuous mode
[  197.616915][T14285] veth1_vlan: entered promiscuous mode
[  197.632314][T14285] veth0_macvtap: entered promiscuous mode
[  197.636744][T14285] veth1_macvtap: entered promiscuous mode
[  197.645423][T14285] batman_adv: batadv0: Interface activated: batadv_slave_0
[  197.652020][T14285] batman_adv: batadv0: Interface activated: batadv_slave_1
[  197.660670][ T1212] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  197.663545][ T1212] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  197.666746][ T1212] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.670262][ T1212] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  197.747117][ T1162] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.751965][ T1162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.783621][ T1162] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.786491][ T1162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.799209][   T24] usb 9-1: new low-speed USB device number 11 using dummy_hcd
[  197.811569][T13688] Bluetooth: hci2: command tx timeout
[  197.827948][   T24] usb 9-1: device descriptor read/8, error -71
[  197.929980][T14376] binder: BINDER_SET_CONTEXT_MGR already set
[  197.937112][T14376] binder: 14375:14376 ioctl 4018620d 2000000000c0 returned -16
[  197.941826][T14376] binder: BINDER_SET_CONTEXT_MGR already set
[  197.944500][T14376] binder: 14375:14376 ioctl 4018620d 2000000000c0 returned -16
[  197.948791][T14378] binder: BINDER_SET_CONTEXT_MGR already set
[  197.951076][T14378] binder: 14375:14378 ioctl 4018620d 200000000040 returned -16
[  197.952793][T14376] binder: BINDER_SET_CONTEXT_MGR already set
[  197.958615][T14376] binder: 14375:14376 ioctl 4018620d 2000000000c0 returned -16
[  197.962075][T14376] binder: BINDER_SET_CONTEXT_MGR already set
[  197.966753][T14376] binder: 14375:14376 ioctl 4018620d 2000000000c0 returned -16
[  197.968357][T14377] binder: 14375:14377 ioctl c0306201 2000000003c0 returned -22
[  198.007473][T14381] __nla_validate_parse: 2 callbacks suppressed
[  198.007486][T14381] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2547'.
[  198.012254][T14381] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2547'.
[  198.015169][T14381] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2547'.
[  198.046145][T14383] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2548'.
[  198.087070][   T24] usb 9-1: new low-speed USB device number 12 using dummy_hcd
[  198.107790][   T24] usb 9-1: device descriptor read/8, error -71
[  198.138205][T14389] loop2: detected capacity change from 0 to 7
[  198.140824][T14389] Dev loop2: unable to read RDB block 7
[  198.142747][T14389]  loop2: unable to read partition table
[  198.144886][T14389] loop2: partition table beyond EOD, truncated
[  198.147353][T14389] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  198.232319][   T24] usb usb9-port1: unable to enumerate USB device
[  198.322420][   T40] audit: type=1400 audit(1776644756.360:4425): avc:  denied  { name_bind } for  pid=14397 comm="syz.3.2554" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  198.527165][T13688] Bluetooth: hci0: command tx timeout
[  198.528683][T14411] bridge0: port 2(bridge_slave_1) entered disabled state
[  198.533009][T14411] bridge0: port 1(bridge_slave_0) entered disabled state
[  198.539163][T14409] nbd: socks must be embedded in a SOCK_ITEM attr
[  198.543114][T14409] block nbd102: shutting down sockets
[  198.554154][T14412] netlink: 'syz.3.2560': attribute type 13 has an invalid length.
[  198.556715][T14412] netlink: 'syz.3.2560': attribute type 17 has an invalid length.
[  198.578231][T14414] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  198.582676][T14414] Error validating options; rc = [-22]
[  198.603607][T14411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  198.615657][T14411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  198.805797][T14412] 8021q: adding VLAN 0 to HW filter on device bond0
[  198.809081][T14412] 8021q: adding VLAN 0 to HW filter on device team0
[  198.813666][T14412] net_ratelimit: 33 callbacks suppressed
[  198.813672][T14412] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  198.820821][ T1212] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.825622][ T1212] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.832932][ T1212] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.835800][ T1212] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.858744][T14432] netlink: 'syz.3.2568': attribute type 1 has an invalid length.
[  199.043464][T14440] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2571'.
[  199.048730][T14440] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2571'.
[  199.052249][T14440] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2571'.
[  199.092465][T14438] kvm: emulating exchange as write
[  199.183130][T14443] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2572'.
[  199.363191][T14450] lo: entered allmulticast mode
[  199.365327][T14450] tunl0: entered allmulticast mode
[  199.368009][T14450] gre0: entered allmulticast mode
[  199.370231][T14450] gretap0: entered allmulticast mode
[  199.372159][T14450] erspan0: entered allmulticast mode
[  199.374092][T14450] ip_vti0: entered allmulticast mode
[  199.378830][T14450] ip6_vti0: entered allmulticast mode
[  199.381731][T14450] sit0: entered allmulticast mode
[  199.384246][T14450] ip6tnl0: entered allmulticast mode
[  199.386796][T14450] ip6gre0: entered allmulticast mode
[  199.390183][T14450] syz_tun: entered allmulticast mode
[  199.392908][T14450] ip6gretap0: entered allmulticast mode
[  199.395314][T14450] bridge0: entered allmulticast mode
[  199.398990][T14450] vcan0: entered allmulticast mode
[  199.401547][T14450] bond0: entered allmulticast mode
[  199.403337][T14450] bond_slave_0: entered allmulticast mode
[  199.405161][T14450] bond_slave_1: entered allmulticast mode
[  199.408300][T14450] team0: entered allmulticast mode
[  199.410034][T14450] team_slave_0: entered allmulticast mode
[  199.411996][T14450] team_slave_1: entered allmulticast mode
[  199.414265][T14450] dummy0: entered allmulticast mode
[  199.416409][T14450] nlmon0: entered allmulticast mode
[  199.419674][T14450] caif0: entered allmulticast mode
[  199.421697][T14450] batadv0: entered allmulticast mode
[  199.423518][T14450] vxcan0: entered allmulticast mode
[  199.425405][T14450] vxcan1: entered allmulticast mode
[  199.427493][T14450] veth0: entered allmulticast mode
[  199.429452][T14450] veth1: entered allmulticast mode
[  199.431260][T14450] wg0: entered allmulticast mode
[  199.432935][T14450] wg1: entered allmulticast mode
[  199.434635][T14450] wg2: entered allmulticast mode
[  199.436341][T14450] veth0_to_bridge: entered allmulticast mode
[  199.439913][T14450] veth1_to_bridge: entered allmulticast mode
[  199.442566][T14450] veth0_to_bond: entered allmulticast mode
[  199.444662][T14450] veth1_to_bond: entered allmulticast mode
[  199.446717][T14450] veth0_to_team: entered allmulticast mode
[  199.449783][T14450] veth1_to_team: entered allmulticast mode
[  199.452482][T14450] veth0_to_batadv: entered allmulticast mode
[  199.454648][T14450] batadv_slave_0: entered allmulticast mode
[  199.456638][T14450] veth1_to_batadv: entered allmulticast mode
[  199.459351][T14450] batadv_slave_1: entered allmulticast mode
[  199.461832][T14450] xfrm0: entered allmulticast mode
[  199.463558][T14450] veth0_to_hsr: entered allmulticast mode
[  199.465953][T14450] hsr_slave_0: entered allmulticast mode
[  199.468149][T14450] veth1_to_hsr: entered allmulticast mode
[  199.470598][T14450] hsr_slave_1: entered allmulticast mode
[  199.472644][T14450] hsr0: entered allmulticast mode
[  199.474411][T14450] veth1_virt_wifi: entered allmulticast mode
[  199.476494][T14450] veth0_virt_wifi: entered allmulticast mode
[  199.479222][T14450] virt_wifi0: entered allmulticast mode
[  199.481224][T14450] veth1_vlan: entered allmulticast mode
[  199.483293][T14450] veth0_vlan: entered allmulticast mode
[  199.485403][T14450] vlan0: entered allmulticast mode
[  199.487323][T14450] vlan1: entered allmulticast mode
[  199.489246][T14450] macvlan0: entered allmulticast mode
[  199.491184][T14450] macvlan1: entered allmulticast mode
[  199.493076][T14450] ipvlan0: entered allmulticast mode
[  199.495204][T14450] ipvlan1: entered allmulticast mode
[  199.502561][T14450] veth1_macvtap: entered allmulticast mode
[  199.504915][T14450] veth0_macvtap: entered allmulticast mode
[  199.507148][T14450] macvtap0: entered allmulticast mode
[  199.509323][T14450] macsec0: entered allmulticast mode
[  199.511464][T14450] geneve0: entered allmulticast mode
[  199.513386][T14450] geneve1: entered allmulticast mode
[  199.515205][T14450] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  199.517979][T14450] netdevsim netdevsim3 netdevsim1: entered allmulticast mode
[  199.521236][T14450] netdevsim netdevsim3 netdevsim2: entered allmulticast mode
[  199.524550][T14450] netdevsim netdevsim3 netdevsim3: entered allmulticast mode
[  199.528343][T14450] mac80211_hwsim hwsim19 wlan0: entered allmulticast mode
[  199.531588][T14450] mac80211_hwsim hwsim20 wlan1: entered allmulticast mode
[  199.534778][T14450] ip6tnl1: entered allmulticast mode
[  199.547313][   T10] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  199.581259][T14452] bond31: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  199.585880][T14452] bond31 (unregistering): Released all slaves
[  199.708450][   T10] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  199.713014][   T10] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  199.716634][   T10] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  199.719921][   T10] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  199.723758][   T10] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  199.728462][   T10] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  199.731411][   T10] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  199.733996][   T10] usb 5-1: Product: syz
[  199.735328][   T10] usb 5-1: Manufacturer: syz
[  199.761718][   T10] cdc_wdm 5-1:1.0: skipping garbage
[  199.765787][   T10] cdc_wdm 5-1:1.0: skipping garbage
[  199.787297][   T10] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  199.789312][   T10] cdc_wdm 5-1:1.0: Unknown control protocol
[  199.837734][T14465] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  199.887182][T13688] Bluetooth: hci2: command tx timeout
[  199.981961][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  200.032939][T14473] cdc_wdm 5-1:1.0: Error submitting int urb - -90
[  200.100412][   T53] usb 5-1: USB disconnect, device number 3
[  200.235374][T14478] loop2: detected capacity change from 0 to 7
[  200.241014][T14478] Dev loop2: unable to read RDB block 7
[  200.242880][T14478]  loop2: unable to read partition table
[  200.244806][T14478] loop2: partition table beyond EOD, truncated
[  200.247041][T14478] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  200.346857][T14481] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.2585'.
[  200.576715][T14485] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2587'.
[  200.653570][T13650] block nbd103: Receive control failed (result -107)
[  200.730715][   T40] audit: type=1400 audit(1776644758.770:4426): avc:  denied  { wake_alarm } for  pid=14494 comm="syz.3.2591" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  200.754544][T14493] batman_adv: batadv0: Interface deactivated: dummy0
[  200.763833][T14495] geneve2: entered promiscuous mode
[  200.765562][T14495] geneve2: entered allmulticast mode
[  200.768037][T14493] netlink: 'syz.0.2590': attribute type 13 has an invalid length.
[  200.768209][ T3769] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.771435][T14493] netlink: 'syz.0.2590': attribute type 17 has an invalid length.
[  200.774390][ T3769] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.792718][T14497] netlink: 'syz.4.2592': attribute type 1 has an invalid length.
[  200.804427][T14493] 8021q: adding VLAN 0 to HW filter on device bond0
[  200.809577][T14493] 8021q: adding VLAN 0 to HW filter on device team0
[  200.812360][T14493] batman_adv: batadv0: Interface activated: dummy0
[  200.815022][T14493] batadv0: mtu less than device minimum
[  200.817653][T14493] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.821379][T14493] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.825125][T14493] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.829348][T14493] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.833593][T14493] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.837539][T14493] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.841468][T14493] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.845357][T14493] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.856822][ T3769] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.861765][ T3769] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.863361][T14501] loop2: detected capacity change from 0 to 7
[  200.874434][T14501] Dev loop2: unable to read RDB block 7
[  200.879281][T14501]  loop2: AHDI p1 p2 p3
[  200.881110][T14501] loop2: partition table partially beyond EOD, truncated
[  200.887294][T14501] loop2: p1 start 1818582900 is beyond EOD, truncated
[  200.892331][T14497] 8021q: adding VLAN 0 to HW filter on device bond31
[  200.895411][T14501] loop2: p3 start 335544320 is beyond EOD, truncated
[  200.927381][T14500] bond31: (slave geneve6): making interface the new active one
[  200.938660][T14500] bond31: (slave geneve6): Enslaving as an active interface with an up link
[  201.040534][T14516] overlayfs: conflicting options: userxattr,redirect_dir=on
[  201.043765][T14516] exfat: Unknown parameter 'diVSʯd'
[  201.045972][T14516] program syz.0.2600 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  201.171683][   T40] audit: type=1400 audit(1776644759.210:4427): avc:  denied  { read } for  pid=14524 comm="syz.4.2606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  201.313589][T14538] IPv6: NLM_F_REPLACE set, but no existing node found!
[  201.558502][T14548] loop2: detected capacity change from 0 to 7
[  201.563315][T14548] Dev loop2: unable to read RDB block 7
[  201.565564][T14548]  loop2: unable to read partition table
[  201.576566][T14548] loop2: partition table beyond EOD, truncated
[  201.579111][T14548] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  201.636453][T14542] block nbd105: Receive control failed (result -107)
[  201.655910][T14552] netlink: 'syz.2.2613': attribute type 13 has an invalid length.
[  201.681330][T14552] 8021q: adding VLAN 0 to HW filter on device bond0
[  201.685129][T14552] 8021q: adding VLAN 0 to HW filter on device team0
[  201.773009][T14560] 8021q: adding VLAN 0 to HW filter on device bond32
[  201.793390][T14560] bond32: (slave geneve7): making interface the new active one
[  201.797944][T14560] bond32: (slave geneve7): Enslaving as an active interface with an up link
[  201.872733][T14565] macvtap1: entered promiscuous mode
[  201.874564][T14565] macvtap1: entered allmulticast mode
[  201.879592][T14565] syz_tun: entered promiscuous mode
[  201.886621][T14565] syz_tun: entered allmulticast mode
[  201.896505][T14565] team0: Device macvtap1 failed to register rx_handler
[  201.942511][T14565] syz_tun: left allmulticast mode
[  201.946957][T14565] syz_tun: left promiscuous mode
[  201.969881][T14542] Bluetooth: hci2: command tx timeout
[  201.982523][T14568] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  201.993713][T14568] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  202.000073][T14568] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  202.004422][T14568] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  202.010156][T14568] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  202.344440][T14567] chnl_net:caif_netlink_parms(): no params data found
[  202.429183][T14567] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.432424][T14567] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.435680][T14567] bridge_slave_0: entered allmulticast mode
[  202.439621][T14567] bridge_slave_0: entered promiscuous mode
[  202.443294][T14567] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.445872][T14567] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.448536][T14567] bridge_slave_1: entered allmulticast mode
[  202.451577][T14567] bridge_slave_1: entered promiscuous mode
[  202.494631][T14605] validate_nla: 2 callbacks suppressed
[  202.494648][T14605] netlink: 'syz.3.2632': attribute type 13 has an invalid length.
[  202.498258][T14567] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  202.502765][T14605] netlink: 'syz.3.2632': attribute type 17 has an invalid length.
[  202.503405][ T1212] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.509770][ T1212] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.514304][T14567] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  202.524121][T14605] lo: left allmulticast mode
[  202.527626][T14605] tunl0: left allmulticast mode
[  202.530738][T14605] gre0: left allmulticast mode
[  202.535062][T14605] gretap0: left allmulticast mode
[  202.540897][T14605] erspan0: left allmulticast mode
[  202.544419][T14605] ip_vti0: left allmulticast mode
[  202.547321][T14605] ip6_vti0: left allmulticast mode
[  202.550016][T14605] sit0: left allmulticast mode
[  202.554328][T14605] ip6tnl0: left allmulticast mode
[  202.558054][T14605] ip6gre0: left allmulticast mode
[  202.561484][T14605] syz_tun: left allmulticast mode
[  202.565968][T14605] ip6gretap0: left allmulticast mode
[  202.570337][T14605] bridge0: left allmulticast mode
[  202.573194][T14605] vcan0: left allmulticast mode
[  202.575688][T14605] bond0: left allmulticast mode
[  202.578337][T14605] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.581161][T14605] team0: left allmulticast mode
[  202.583247][T14605] 8021q: adding VLAN 0 to HW filter on device team0
[  202.585835][T14605] dummy0: left allmulticast mode
[  202.589495][T14605] nlmon0: left allmulticast mode
[  202.591931][T14605] caif0: left allmulticast mode
[  202.593606][ T1212] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.596614][ T1212] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.609786][T14567] team0: Port device team_slave_0 added
[  202.613480][T14567] team0: Port device team_slave_1 added
[  202.630592][T14567] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.632950][T14567] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  202.637174][   T40] audit: type=1400 audit(1776644760.670:4428): avc:  denied  { append } for  pid=14607 comm="syz.3.2633" name="001" dev="devtmpfs" ino=742 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  202.641622][T14567] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.654859][T14567] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.658596][T14567] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  202.668154][T14567] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.695951][T14567] hsr_slave_0: entered promiscuous mode
[  202.698894][T14567] hsr_slave_1: entered promiscuous mode
[  202.701132][T14567] debugfs: 'hsr0' already exists in 'hsr'
[  202.702923][T14567] Cannot create hsr debugfs directory
[  202.801076][   T40] audit: type=1800 audit(1776644760.840:4429): pid=14615 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2634" name="bus" dev="overlay" ino=179 res=0 errno=0
[  202.804433][T14567] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.809772][T14619] netlink: 'syz.2.2635': attribute type 1 has an invalid length.
[  202.838478][T14619] 8021q: adding VLAN 0 to HW filter on device bond1
[  202.857971][T14619] bond1: (slave geneve2): making interface the new active one
[  202.861867][T14619] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  202.865808][ T3769] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  202.871668][ T3769] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  202.889801][ T3769] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  202.941085][T14567] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.952736][ T3769] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  202.997957][T14632] loop2: detected capacity change from 0 to 7
[  203.000576][T14632] Dev loop2: unable to read RDB block 7
[  203.002383][T14632]  loop2: unable to read partition table
[  203.004347][T14632] loop2: partition table beyond EOD, truncated
[  203.007392][T14632] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  203.043405][T14567] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.111844][T14567] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.269038][T14567] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  203.274431][T14567] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  203.278264][T14567] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  203.293648][T14567] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  203.297067][T14567] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  203.300991][T14567] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  203.303630][T14567] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  203.309203][T14567] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  203.357878][T14567] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.369769][T14567] 8021q: adding VLAN 0 to HW filter on device team0
[  203.377647][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.380590][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.390857][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.393195][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  203.511831][T14567] 8021q: adding VLAN 0 to HW filter on device batadv0
[  203.595727][T14654] __nla_validate_parse: 8 callbacks suppressed
[  203.595740][T14654] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2645'.
[  203.652701][T14567] veth0_vlan: entered promiscuous mode
[  203.658029][T14567] veth1_vlan: entered promiscuous mode
[  203.683762][T14567] veth0_macvtap: entered promiscuous mode
[  203.693767][T14567] veth1_macvtap: entered promiscuous mode
[  203.705515][T14567] batman_adv: batadv0: Interface activated: batadv_slave_0
[  203.715443][T14567] batman_adv: batadv0: Interface activated: batadv_slave_1
[  203.730131][ T3769] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.733861][ T3769] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.745162][ T3769] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.748515][ T3769] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.833308][ T1162] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.835940][ T1162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  203.884547][T14668] lo: entered allmulticast mode
[  203.887499][T14668] tunl0: entered allmulticast mode
[  203.889865][T14668] gre0: entered allmulticast mode
[  203.892855][T14668] gretap0: entered allmulticast mode
[  203.895518][T14668] erspan0: entered allmulticast mode
[  203.899650][T14668] ip_vti0: entered allmulticast mode
[  203.902666][T14668] ip6_vti0: entered allmulticast mode
[  203.905389][T14668] sit0: entered allmulticast mode
[  203.909292][T14668] ip6tnl0: entered allmulticast mode
[  203.911850][T14668] ip6gre0: entered allmulticast mode
[  203.914623][T14668] syz_tun: entered allmulticast mode
[  203.917642][T14668] ip6gretap0: entered allmulticast mode
[  203.920460][T14668] bridge0: entered allmulticast mode
[  203.922862][T14668] vcan0: entered allmulticast mode
[  203.925011][T14668] bond0: entered allmulticast mode
[  203.926677][T14668] bond_slave_0: entered allmulticast mode
[  203.928636][T14668] bond_slave_1: entered allmulticast mode
[  203.931370][T14668] team0: entered allmulticast mode
[  203.933065][T14668] team_slave_0: entered allmulticast mode
[  203.934979][T14668] team_slave_1: entered allmulticast mode
[  203.938688][T14668] dummy0: entered allmulticast mode
[  203.944122][T14668] nlmon0: entered allmulticast mode
[  203.946434][T14668] caif0: entered allmulticast mode
[  203.949247][T14668] batadv0: entered allmulticast mode
[  203.951060][T14668] vxcan0: entered allmulticast mode
[  203.952825][T14668] vxcan1: entered allmulticast mode
[  203.954607][T14668] veth0: entered allmulticast mode
[  203.956424][T14668] veth1: entered allmulticast mode
[  203.958845][T14668] wg0: entered allmulticast mode
[  203.960604][T14668] wg1: entered allmulticast mode
[  203.962240][T14668] wg2: entered allmulticast mode
[  203.963893][T14668] veth0_to_bridge: entered allmulticast mode
[  203.965985][T14668] veth1_to_bridge: entered allmulticast mode
[  203.972994][T14668] veth0_to_bond: entered allmulticast mode
[  203.975083][T14668] veth1_to_bond: entered allmulticast mode
[  203.977685][T14668] veth0_to_team: entered allmulticast mode
[  203.979808][T14668] veth1_to_team: entered allmulticast mode
[  203.981825][T14668] veth0_to_batadv: entered allmulticast mode
[  203.983874][T14668] batadv_slave_0: entered allmulticast mode
[  203.986016][T14668] veth1_to_batadv: entered allmulticast mode
[  203.988374][T14668] batadv_slave_1: entered allmulticast mode
[  203.990346][T14668] xfrm0: entered allmulticast mode
[  203.992394][T14668] veth0_to_hsr: entered allmulticast mode
[  203.994529][T14668] hsr_slave_0: entered allmulticast mode
[  203.996377][T14668] veth1_to_hsr: entered allmulticast mode
[  203.998346][T14668] hsr_slave_1: entered allmulticast mode
[  204.000212][T14668] hsr0: entered allmulticast mode
[  204.001894][T14668] veth1_virt_wifi: entered allmulticast mode
[  204.003891][T14668] veth0_virt_wifi: entered allmulticast mode
[  204.005941][T14668] virt_wifi0: entered allmulticast mode
[  204.008050][T14668] veth1_vlan: entered allmulticast mode
[  204.009904][T14668] veth0_vlan: entered allmulticast mode
[  204.011712][T14668] vlan0: entered allmulticast mode
[  204.013442][T14668] vlan1: entered allmulticast mode
[  204.015179][T14668] macvlan0: entered allmulticast mode
[  204.016951][T14668] macvlan1: entered allmulticast mode
[  204.018784][T14668] ipvlan0: entered allmulticast mode
[  204.020560][T14668] ipvlan1: entered allmulticast mode
[  204.022389][T14668] veth1_macvtap: entered allmulticast mode
[  204.024642][T14668] veth0_macvtap: entered allmulticast mode
[  204.026679][T14668] macvtap0: entered allmulticast mode
[  204.028843][T14668] macsec0: entered allmulticast mode
[  204.030600][T14668] geneve0: entered allmulticast mode
[  204.032403][T14668] geneve1: entered allmulticast mode
[  204.034172][T14668] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  204.036581][T14668] netdevsim netdevsim2 netdevsim1: entered allmulticast mode
[  204.038996][T14668] netdevsim netdevsim2 netdevsim2: entered allmulticast mode
[  204.041414][T14668] netdevsim netdevsim2 netdevsim3: entered allmulticast mode
[  204.043834][T14668] mac80211_hwsim hwsim17 wlan0: entered allmulticast mode
[  204.046152][T14668] mac80211_hwsim hwsim18 wlan1: entered allmulticast mode
[  204.048714][T14668] syztnl1: entered allmulticast mode
[  204.050499][T14668] syztnl0: entered allmulticast mode
[  204.052663][T14668] bond1: entered allmulticast mode
[  204.054324][T14668] geneve2: entered allmulticast mode
[  204.057341][T14666] Bluetooth: hci2: command tx timeout
[  204.061277][T14668] bond2: entered allmulticast mode
[  204.071031][ T1162] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.075634][ T1162] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.081702][ T1162] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.084772][ T1162] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.097429][ T1162] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  204.100064][ T1162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  204.127162][T14666] Bluetooth: hci3: command tx timeout
[  204.136620][T14671] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2619'.
[  204.139818][T14671] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2619'.
[  204.142706][T14671] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2619'.
[  204.192446][T14675] IPVS: set_ctl: invalid protocol: 1 0.0.0.0:0
[  204.194083][T14673] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.197876][T14675] deleting an unspecified loop device is not supported.
[  204.198587][T14673] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.204482][   T40] audit: type=1400 audit(1776644762.240:4430): avc:  denied  { read } for  pid=14674 comm="syz.2.2651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  204.222302][T14676] netlink: 'syz.4.2650': attribute type 13 has an invalid length.
[  204.225136][T14676] netlink: 'syz.4.2650': attribute type 17 has an invalid length.
[  204.272952][T14673] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  204.279696][T14673] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  204.445681][T14676] 8021q: adding VLAN 0 to HW filter on device bond0
[  204.449440][T14676] 8021q: adding VLAN 0 to HW filter on device team0
[  204.458905][T14676] net_ratelimit: 15 callbacks suppressed
[  204.458913][T14676] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  204.467956][   T12] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.472220][   T12] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.476084][   T12] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.479317][   T12] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.657503][   T40] audit: type=1400 audit(1776644762.690:4431): avc:  denied  { bind } for  pid=14694 comm="syz.3.2656" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  204.675227][T14696] gfs2: error -5 reading superblock
[  204.722834][T14703] netlink: 'syz.2.2658': attribute type 1 has an invalid length.
[  204.726063][T14705] loop2: detected capacity change from 0 to 7
[  204.731813][T14705] Dev loop2: unable to read RDB block 7
[  204.733652][T14705]  loop2: unable to read partition table
[  204.735517][T14705] loop2: partition table beyond EOD, truncated
[  204.739643][T14705] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  204.753659][T14703] 8021q: adding VLAN 0 to HW filter on device bond3
[  204.771799][T14703] bond3: (slave geneve3): making interface the new active one
[  204.775548][T14703] bond3: (slave geneve3): Enslaving as an active interface with an up link
[  204.779298][  T216] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  204.782315][  T216] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  204.786554][  T216] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  204.790450][  T216] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  204.800244][   T40] audit: type=1400 audit(1776644762.840:4432): avc:  denied  { remount } for  pid=14706 comm="syz.3.2660" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  205.538964][T14735] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2670'.
[  205.544395][T14735] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2670'.
[  205.549649][T14735] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2670'.
[  205.614857][   T40] audit: type=1400 audit(1776644763.650:4433): avc:  denied  { write } for  pid=14738 comm="syz.3.2672" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  205.639915][T14739] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2672'.
[  205.642960][T14739] chnl_net:caif_netlink_parms(): no params data found
[  205.774841][T14746] netlink: 'syz.3.2673': attribute type 13 has an invalid length.
[  205.778550][T14746] netlink: 'syz.3.2673': attribute type 17 has an invalid length.
[  205.803930][T14746] 8021q: adding VLAN 0 to HW filter on device bond0
[  205.807379][T14746] 8021q: adding VLAN 0 to HW filter on device team0
[  205.812209][T14746] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  205.906584][T14753] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14753 comm=syz.3.2675
[  205.914864][T14753] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2675'.
[  205.918938][T14753] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2675'.
[  206.218032][T14760] Bluetooth: hci3: command tx timeout
[  206.229116][T14765] netlink: 'syz.4.2680': attribute type 1 has an invalid length.
[  206.267738][   T40] audit: type=1400 audit(1776644764.310:4434): avc:  denied  { load_policy } for  pid=14766 comm="syz.2.2681" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  206.268903][T14767] SELinux:  policydb version 1402900228 does not match my version range 15-35
[  206.280571][T14767] SELinux: failed to load policy
[  206.339814][   T40] audit: type=1400 audit(1776644764.380:4435): avc:  denied  { getopt } for  pid=14772 comm="syz.2.2684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  206.353558][T14777] loop2: detected capacity change from 0 to 7
[  206.361454][T14777] Dev loop2: unable to read RDB block 7
[  206.363307][T14777]  loop2: unable to read partition table
[  206.365688][T14777] loop2: partition table beyond EOD, truncated
[  206.368876][T14777] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  206.601912][T14795] bond3: entered allmulticast mode
[  206.603787][T14795] geneve3: entered allmulticast mode
[  206.608050][T14795] bridge1: entered allmulticast mode
[  206.609844][T14795] bridge2: entered allmulticast mode
[  206.611743][   T12] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.616090][   T12] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.620838][   T12] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.623666][   T12] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.750884][T14802] netlink: 'syz.2.2692': attribute type 13 has an invalid length.
[  206.753851][T14802] lo: left allmulticast mode
[  206.756489][T14802] tunl0: left allmulticast mode
[  206.759139][T14802] gre0: left allmulticast mode
[  206.762328][T14802] gretap0: left allmulticast mode
[  206.764861][T14802] erspan0: left allmulticast mode
[  206.767502][T14802] ip_vti0: left allmulticast mode
[  206.770659][T14802] ip6_vti0: left allmulticast mode
[  206.773261][T14802] sit0: left allmulticast mode
[  206.779337][T14802] ip6tnl0: left allmulticast mode
[  206.781873][T14802] ip6gre0: left allmulticast mode
[  206.784354][T14802] syz_tun: left allmulticast mode
[  206.786840][T14802] ip6gretap0: left allmulticast mode
[  206.789833][T14802] bridge0: left allmulticast mode
[  206.792104][T14802] vcan0: left allmulticast mode
[  206.794325][T14802] bond0: left allmulticast mode
[  206.796602][T14802] 8021q: adding VLAN 0 to HW filter on device bond0
[  206.800331][T14802] team0: left allmulticast mode
[  206.802267][T14802] 8021q: adding VLAN 0 to HW filter on device team0
[  206.804852][T14802] dummy0: left allmulticast mode
[  206.807476][T14802] nlmon0: left allmulticast mode
[  206.809846][T14802] caif0: left allmulticast mode
[  206.811408][T14802] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  207.671023][T14839] validate_nla: 1 callbacks suppressed
[  207.671265][T14839] netlink: 'syz.4.2704': attribute type 1 has an invalid length.
[  207.871828][T14853] kAFS: unable to lookup cell '1'
[  207.951088][T14859] lo: entered allmulticast mode
[  207.955410][T14859] tunl0: entered allmulticast mode
[  207.959642][T14859] gre0: entered allmulticast mode
[  207.964383][T14859] gretap0: entered allmulticast mode
[  207.968663][T14859] erspan0: entered allmulticast mode
[  207.972515][T14859] ip_vti0: entered allmulticast mode
[  207.975908][T14859] ip6_vti0: entered allmulticast mode
[  207.981725][T14859] sit0: entered allmulticast mode
[  207.987685][T14859] ip6tnl0: entered allmulticast mode
[  207.991433][T14859] ip6gre0: entered allmulticast mode
[  207.995077][T14859] syz_tun: entered allmulticast mode
[  207.999452][T14859] ip6gretap0: entered allmulticast mode
[  208.004107][T14859] bridge0: entered allmulticast mode
[  208.007583][T14859] vcan0: entered allmulticast mode
[  208.011054][T14859] bond0: entered allmulticast mode
[  208.014020][T14869] netlink: 'syz.4.2712': attribute type 13 has an invalid length.
[  208.017212][T14869] netlink: 'syz.4.2712': attribute type 17 has an invalid length.
[  208.017693][T14859] team0: entered allmulticast mode
[  208.026068][T14859] dummy0: entered allmulticast mode
[  208.030397][T14859] nlmon0: entered allmulticast mode
[  208.033525][T14859] caif0: entered allmulticast mode
[  208.134549][T14869] 8021q: adding VLAN 0 to HW filter on device bond0
[  208.140737][T14869] 8021q: adding VLAN 0 to HW filter on device team0
[  208.147539][T14869] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  208.165547][T14877] loop2: detected capacity change from 0 to 7
[  208.169749][T14877] Dev loop2: unable to read RDB block 7
[  208.172353][T14877]  loop2: unable to read partition table
[  208.174992][T14877] loop2: partition table beyond EOD, truncated
[  208.180550][T14877] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  208.287894][T14893] Bluetooth: hci3: command tx timeout
[  208.320089][   T40] audit: type=1400 audit(1776644766.360:4436): avc:  denied  { shutdown } for  pid=14885 comm="syz.4.2717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  208.643660][T14887] tipc: Enabling <eth:lo> not permitted
[  208.645493][T14887] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  208.719240][T14927] dummy0: entered promiscuous mode
[  208.727136][T14927] dummy0: left promiscuous mode
[  208.777928][T14938] netlink: 'syz.0.2725': attribute type 1 has an invalid length.
[  208.802703][T14938] 8021q: adding VLAN 0 to HW filter on device bond2
[  208.825793][T14942] JFS: discard option not supported on device
[  208.831456][T14942] Mount JFS Failure: -5
[  208.836428][T14938] bond2: (slave geneve3): making interface the new active one
[  208.840264][T14942] JFS: discard option not supported on device
[  208.844666][T14942] Mount JFS Failure: -5
[  208.846207][T14938] bond2: (slave geneve3): Enslaving as an active interface with an up link
[  208.849491][ T1212] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  208.853771][ T1212] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  208.856725][ T1212] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  208.859814][ T1212] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  208.996878][T14956] __nla_validate_parse: 7 callbacks suppressed
[  208.996893][T14956] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2730'.
[  209.002712][T14956] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2730'.
[  209.006020][T14956] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2730'.
[  209.025338][T14955] lo: entered allmulticast mode
[  209.028252][T14955] tunl0: entered allmulticast mode
[  209.030551][T14955] gre0: entered allmulticast mode
[  209.036240][T14955] gretap0: entered allmulticast mode
[  209.041221][T14955] erspan0: entered allmulticast mode
[  209.045435][T14955] ip_vti0: entered allmulticast mode
[  209.049356][T14955] ip6_vti0: entered allmulticast mode
[  209.053102][T14955] sit0: entered allmulticast mode
[  209.059360][T14955] ip6tnl0: entered allmulticast mode
[  209.063055][T14955] ip6gre0: entered allmulticast mode
[  209.067200][T14955] syz_tun: entered allmulticast mode
[  209.071527][T14955] ip6gretap0: entered allmulticast mode
[  209.076338][T14955] bridge0: entered allmulticast mode
[  209.080827][T14955] vcan0: entered allmulticast mode
[  209.084346][T14955] bond0: entered allmulticast mode
[  209.092922][T14955] team0: entered allmulticast mode
[  209.098436][T14955] batman_adv: batadv0: Interface deactivated: dummy0
[  209.103684][T14955] dummy0: entered allmulticast mode
[  209.109751][T14955] nlmon0: entered allmulticast mode
[  209.113036][T14955] caif0: entered allmulticast mode
[  209.124819][T14955] syztnl0: entered allmulticast mode
[  209.127829][T14955] bond2: entered allmulticast mode
[  209.130198][T14955] geneve3: entered allmulticast mode
[  209.135550][   T59] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.138887][   T59] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.142542][   T59] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.146024][   T59] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.249185][T14962] netlink: 'syz.0.2733': attribute type 13 has an invalid length.
[  209.251795][T14962] netlink: 'syz.0.2733': attribute type 17 has an invalid length.
[  209.254564][T14962] lo: left allmulticast mode
[  209.257415][T14962] tunl0: left allmulticast mode
[  209.259829][T14962] gre0: left allmulticast mode
[  209.262856][T14962] gretap0: left allmulticast mode
[  209.265411][T14962] erspan0: left allmulticast mode
[  209.268043][T14962] ip_vti0: left allmulticast mode
[  209.270392][T14962] ip6_vti0: left allmulticast mode
[  209.272807][T14962] sit0: left allmulticast mode
[  209.276597][T14962] ip6tnl0: left allmulticast mode
[  209.280423][T14962] ip6gre0: left allmulticast mode
[  209.282859][T14962] syz_tun: left allmulticast mode
[  209.285754][T14962] ip6gretap0: left allmulticast mode
[  209.289245][T14962] bridge0: left allmulticast mode
[  209.292120][T14962] vcan0: left allmulticast mode
[  209.294348][T14962] bond0: left allmulticast mode
[  209.296678][T14962] 8021q: adding VLAN 0 to HW filter on device bond0
[  209.300144][T14962] team0: left allmulticast mode
[  209.302128][T14962] 8021q: adding VLAN 0 to HW filter on device team0
[  209.304639][T14962] dummy0: left allmulticast mode
[  209.306369][T14962] batman_adv: batadv0: Interface activated: dummy0
[  209.309209][T14962] batadv0: mtu less than device minimum
[  209.311529][T14962] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.315175][T14962] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.319040][T14962] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.322708][T14962] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.326361][T14962] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.337073][T14962] nlmon0: left allmulticast mode
[  209.339469][T14962] caif0: left allmulticast mode
[  209.537394][T14968] netlink: 'syz.0.2736': attribute type 1 has an invalid length.
[  209.542148][T14968] block nbd111: shutting down sockets
[  209.667910][T14982] loop2: detected capacity change from 0 to 7
[  209.678651][T14982] Dev loop2: unable to read RDB block 7
[  209.681341][T14982]  loop2: unable to read partition table
[  209.686224][T14982] loop2: partition table beyond EOD, truncated
[  209.692096][T14982] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  209.755976][T14985] lo: entered allmulticast mode
[  209.760695][T14985] tunl0: entered allmulticast mode
[  209.764029][T14985] gre0: entered allmulticast mode
[  209.768994][T14985] gretap0: entered allmulticast mode
[  209.772635][T14985] erspan0: entered allmulticast mode
[  209.776597][T14985] ip_vti0: entered allmulticast mode
[  209.780043][T14985] ip6_vti0: entered allmulticast mode
[  209.783921][T14985] sit0: entered allmulticast mode
[  209.789879][T14985] ip6tnl0: entered allmulticast mode
[  209.792781][T14985] ip6gre0: entered allmulticast mode
[  209.795561][T14985] syz_tun: entered allmulticast mode
[  209.798680][T14985] ip6gretap0: entered allmulticast mode
[  209.801672][T14985] bridge0: entered allmulticast mode
[  209.803966][T14985] vcan0: entered allmulticast mode
[  209.806417][T14985] bond0: entered allmulticast mode
[  209.808335][T14985] bond_slave_0: entered allmulticast mode
[  209.810214][T14985] bond_slave_1: entered allmulticast mode
[  209.813217][T14985] team0: entered allmulticast mode
[  209.815018][T14985] team_slave_0: entered allmulticast mode
[  209.816948][T14985] team_slave_1: entered allmulticast mode
[  209.822511][T14985] dummy0: entered allmulticast mode
[  209.825768][T14985] nlmon0: entered allmulticast mode
[  209.828570][T14985] caif0: entered allmulticast mode
[  209.830511][T14985] batadv0: entered allmulticast mode
[  209.832372][T14985] vxcan0: entered allmulticast mode
[  209.834131][T14985] vxcan1: entered allmulticast mode
[  209.835936][T14985] veth0: entered allmulticast mode
[  209.838119][T14985] veth1: entered allmulticast mode
[  209.839952][T14985] wg0: entered allmulticast mode
[  209.841731][T14985] wg1: entered allmulticast mode
[  209.843474][T14985] wg2: entered allmulticast mode
[  209.845318][T14985] veth0_to_bridge: entered allmulticast mode
[  209.848023][T14985] veth1_to_bridge: entered allmulticast mode
[  209.850175][T14985] veth0_to_bond: entered allmulticast mode
[  209.852349][T14985] veth1_to_bond: entered allmulticast mode
[  209.854547][T14985] veth0_to_team: entered allmulticast mode
[  209.856691][T14985] veth1_to_team: entered allmulticast mode
[  209.859168][T14985] veth0_to_batadv: entered allmulticast mode
[  209.861367][T14985] batadv_slave_0: entered allmulticast mode
[  209.863501][T14985] veth1_to_batadv: entered allmulticast mode
[  209.865660][T14985] batadv_slave_1: entered allmulticast mode
[  209.868304][T14985] xfrm0: entered allmulticast mode
[  209.870148][T14985] veth0_to_hsr: entered allmulticast mode
[  209.872553][T14985] hsr_slave_0: entered allmulticast mode
[  209.874613][T14985] veth1_to_hsr: entered allmulticast mode
[  209.876549][T14985] hsr_slave_1: entered allmulticast mode
[  209.879384][T14985] hsr0: entered allmulticast mode
[  209.881741][T14985] veth1_virt_wifi: entered allmulticast mode
[  209.884473][T14985] veth0_virt_wifi: entered allmulticast mode
[  209.885091][T14990] netlink: 'syz.0.2743': attribute type 27 has an invalid length.
[  209.886716][T14985] virt_wifi0: entered allmulticast mode
[  209.892886][T14985] veth1_vlan: entered allmulticast mode
[  209.894871][T14985] veth0_vlan: entered allmulticast mode
[  209.896885][T14985] vlan0: entered allmulticast mode
[  209.898665][T14985] vlan1: entered allmulticast mode
[  209.900446][T14985] macvlan0: entered allmulticast mode
[  209.902239][T14985] macvlan1: entered allmulticast mode
[  209.906311][T14985] ipvlan0: entered allmulticast mode
[  209.908237][T14985] ipvlan1: entered allmulticast mode
[  209.910042][T14985] veth1_macvtap: entered allmulticast mode
[  209.911992][T14985] veth0_macvtap: entered allmulticast mode
[  209.913962][T14985] macvtap0: entered allmulticast mode
[  209.915840][T14985] macsec0: entered allmulticast mode
[  209.917910][T14985] geneve0: entered allmulticast mode
[  209.920158][T14985] geneve1: entered allmulticast mode
[  209.921936][T14985] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  209.924341][T14985] netdevsim netdevsim4 netdevsim1: entered allmulticast mode
[  209.926740][T14985] netdevsim netdevsim4 netdevsim2: entered allmulticast mode
[  209.929392][T14985] netdevsim netdevsim4 netdevsim3: entered allmulticast mode
[  209.931872][T14985] mac80211_hwsim hwsim21 wlan0: entered allmulticast mode
[  209.934535][T14985] mac80211_hwsim hwsim22 wlan1: entered allmulticast mode
[  209.975654][T14999] netlink: 'syz.0.2746': attribute type 1 has an invalid length.
[  210.000609][T14999] 8021q: adding VLAN 0 to HW filter on device bond3
[  210.016768][T14999] bond3: (slave geneve4): making interface the new active one
[  210.020535][T14999] bond3: (slave geneve4): Enslaving as an active interface with an up link
[  210.023558][   T59] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.026960][   T59] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.029938][   T59] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.032671][   T59] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  210.041182][T15004] fuse: Unknown parameter '000000000000000000040x0000000000000005'
[  210.098879][T15010] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2750'.
[  210.102869][T15010] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2750'.
[  210.106847][T15010] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2750'.
[  210.112477][T15011] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2751'.
[  210.166402][T15018] netlink: 'syz.4.2753': attribute type 13 has an invalid length.
[  210.169313][T15018] lo: left allmulticast mode
[  210.171916][T15018] tunl0: left allmulticast mode
[  210.174270][T15018] gre0: left allmulticast mode
[  210.178127][T15018] gretap0: left allmulticast mode
[  210.180744][T15018] erspan0: left allmulticast mode
[  210.183248][T15018] ip_vti0: left allmulticast mode
[  210.185620][T15018] ip6_vti0: left allmulticast mode
[  210.188265][T15018] sit0: left allmulticast mode
[  210.192204][T15018] ip6tnl0: left allmulticast mode
[  210.194531][T15018] ip6gre0: left allmulticast mode
[  210.196956][T15018] syz_tun: left allmulticast mode
[  210.199793][T15018] ip6gretap0: left allmulticast mode
[  210.202456][T15018] bridge0: left allmulticast mode
[  210.204705][T15018] vcan0: left allmulticast mode
[  210.206912][T15018] bond0: left allmulticast mode
[  210.209909][T15018] 8021q: adding VLAN 0 to HW filter on device bond0
[  210.213143][T15018] team0: left allmulticast mode
[  210.215111][T15018] 8021q: adding VLAN 0 to HW filter on device team0
[  210.218202][T15018] dummy0: left allmulticast mode
[  210.220793][T15018] nlmon0: left allmulticast mode
[  210.224648][T15018] caif0: left allmulticast mode
[  210.226204][T15018] net_ratelimit: 15 callbacks suppressed
[  210.226212][T15018] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  210.235392][T15016] lo: entered allmulticast mode
[  210.238123][T15016] tunl0: entered allmulticast mode
[  210.240699][T15016] gre0: entered allmulticast mode
[  210.244191][T15016] gretap0: entered allmulticast mode
[  210.249491][T15016] erspan0: entered allmulticast mode
[  210.252758][T15016] ip_vti0: entered allmulticast mode
[  210.255320][T15016] ip6_vti0: entered allmulticast mode
[  210.258426][T15016] sit0: entered allmulticast mode
[  210.262094][T15016] ip6tnl0: entered allmulticast mode
[  210.264726][T15016] ip6gre0: entered allmulticast mode
[  210.267562][T15016] syz_tun: entered allmulticast mode
[  210.273109][T15016] ip6gretap0: entered allmulticast mode
[  210.276150][T15016] bridge0: entered allmulticast mode
[  210.279311][T15016] vcan0: entered allmulticast mode
[  210.281599][T15016] bond0: entered allmulticast mode
[  210.287565][T15016] team0: entered allmulticast mode
[  210.291676][T15016] batman_adv: batadv0: Interface deactivated: dummy0
[  210.293920][T15016] dummy0: entered allmulticast mode
[  210.296068][T15016] nlmon0: entered allmulticast mode
[  210.298519][T15016] caif0: entered allmulticast mode
[  210.304081][T15016] bond3: entered allmulticast mode
[  210.305721][T15016] geneve4: entered allmulticast mode
[  210.307969][   T40] audit: type=1400 audit(1776644768.350:4437): avc:  denied  { ioctl } for  pid=15019 comm="syz.2.2754" path="socket:[68211]" dev="sockfs" ino=68211 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  210.318033][T15025] binder: 15019:15025 ioctl c0306201 0 returned -14
[  210.321184][ T3769] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  210.327206][ T3769] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  210.331664][ T3769] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  210.335434][ T3769] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  210.367095][T14970] Bluetooth: hci3: command tx timeout
[  210.397985][T15024] block nbd111: shutting down sockets
[  210.419886][T15027] netlink: 100 bytes leftover after parsing attributes in process `syz.2.2757'.
[  210.533111][T15036] 8021q: adding VLAN 0 to HW filter on device bond4
[  210.544009][T15036] bond4: (slave geneve5): making interface the new active one
[  210.548189][T15036] bond4: (slave geneve5): Enslaving as an active interface with an up link
[  210.551811][ T1212] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.556106][ T1212] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.560381][ T1212] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.563400][ T1212] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  210.676591][T15049] dummy0: entered promiscuous mode
[  210.683774][T15049] dummy0: left promiscuous mode
[  210.789109][T15053] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  210.795497][T15053] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  210.886658][T15059] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2771'.
[  210.889706][T15059] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2771'.
[  210.923571][T15061] loop2: detected capacity change from 0 to 7
[  210.927039][T15061] Dev loop2: unable to read RDB block 7
[  210.928956][T15061]  loop2: unable to read partition table
[  210.931115][T15061] loop2: partition table beyond EOD, truncated
[  210.935688][T15061] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  210.947435][T15063] random: crng reseeded on system resumption
[  210.994967][   T40] audit: type=1400 audit(1776644769.030:4438): avc:  denied  { ioctl } for  pid=15062 comm="syz.2.2773" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x330d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  211.038970][T15065] 8021q: adding VLAN 0 to HW filter on device bond0
[  211.043032][T15065] 8021q: adding VLAN 0 to HW filter on device team0
[  211.049502][T15065] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  211.090486][T15068] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64 sclass=netlink_route_socket pid=15068 comm=syz.2.2783
[  211.140172][T15070] lo: entered allmulticast mode
[  211.145023][T15070] tunl0: entered allmulticast mode
[  211.148013][T15070] gre0: entered allmulticast mode
[  211.154476][T15070] gretap0: entered allmulticast mode
[  211.157603][T15070] erspan0: entered allmulticast mode
[  211.161504][T15070] ip_vti0: entered allmulticast mode
[  211.166565][T15070] ip6_vti0: entered allmulticast mode
[  211.170111][T15070] sit0: entered allmulticast mode
[  211.175381][T15070] ip6tnl0: entered allmulticast mode
[  211.179266][T15070] ip6gre0: entered allmulticast mode
[  211.182896][T15070] ip6gretap0: entered allmulticast mode
[  211.187737][T15070] bridge0: entered allmulticast mode
[  211.190097][T15070] vcan0: entered allmulticast mode
[  211.193149][T15070] bond0: entered allmulticast mode
[  211.197805][T15070] team0: entered allmulticast mode
[  211.200520][T15070] dummy0: entered allmulticast mode
[  211.203444][T15070] nlmon0: entered allmulticast mode
[  211.206148][T15070] caif0: entered allmulticast mode
[  211.214677][T15070] geneve2: left promiscuous mode
[  211.330889][T15079] lo: entered allmulticast mode
[  211.334398][T15079] tunl0: entered allmulticast mode
[  211.337996][T15079] gre0: entered allmulticast mode
[  211.342888][T15079] gretap0: entered allmulticast mode
[  211.349210][T15079] erspan0: entered allmulticast mode
[  211.353487][T15079] ip_vti0: entered allmulticast mode
[  211.357069][T15079] ip6_vti0: entered allmulticast mode
[  211.360805][T15079] sit0: entered allmulticast mode
[  211.366338][T15079] ip6tnl0: entered allmulticast mode
[  211.370241][T15079] ip6gre0: entered allmulticast mode
[  211.377294][T15079] syz_tun: entered allmulticast mode
[  211.380991][T15079] ip6gretap0: entered allmulticast mode
[  211.384991][T15079] bridge0: entered allmulticast mode
[  211.389217][T15079] vcan0: entered allmulticast mode
[  211.392370][T15079] bond0: entered allmulticast mode
[  211.397662][T15079] team0: entered allmulticast mode
[  211.400620][T15079] dummy0: entered allmulticast mode
[  211.405574][T15079] nlmon0: entered allmulticast mode
[  211.410430][T15079] caif0: entered allmulticast mode
[  211.413143][T15081] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  211.489510][T14970] block nbd111: Receive control failed (result -32)
[  211.494518][T14825] block nbd111: Receive control failed (result -32)
[  211.614665][T15090] 8021q: adding VLAN 0 to HW filter on device bond5
[  211.638776][T15081] kvm: kvm [15080]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[  211.646958][T15081] kvm: kvm [15080]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[  211.687321][T15094] bond5: (slave geneve6): making interface the new active one
[  211.693494][T15094] bond5: (slave geneve6): Enslaving as an active interface with an up link
[  211.767954][T15104] dummy0: entered promiscuous mode
[  211.773302][T15104] dummy0: left promiscuous mode
[  211.815357][T15107] openvswitch: netlink: IPv4 frag type 127 is out of range max 2
[  211.845104][T15106] smbdirect: ib_dev[sy‡1] renamed to [syz1]
[  211.994473][T15118] lo: left allmulticast mode
[  212.001473][T15118] tunl0: left allmulticast mode
[  212.006015][T15118] gre0: left allmulticast mode
[  212.010406][T15118] gretap0: left allmulticast mode
[  212.013483][T15118] erspan0: left allmulticast mode
[  212.017912][T15118] ip_vti0: left allmulticast mode
[  212.020383][T15118] ip6_vti0: left allmulticast mode
[  212.022928][T15118] sit0: left allmulticast mode
[  212.029296][T15118] ip6tnl0: left allmulticast mode
[  212.031814][T15118] ip6gre0: left allmulticast mode
[  212.034283][T15118] syz_tun: left allmulticast mode
[  212.037260][T15118] ip6gretap0: left allmulticast mode
[  212.041128][T15118] bridge0: left allmulticast mode
[  212.044382][T15118] vcan0: left allmulticast mode
[  212.046790][T15118] bond0: left allmulticast mode
[  212.050297][T15118] 8021q: adding VLAN 0 to HW filter on device bond0
[  212.053364][T15118] team0: left allmulticast mode
[  212.055407][T15118] 8021q: adding VLAN 0 to HW filter on device team0
[  212.058158][T15118] dummy0: left allmulticast mode
[  212.060958][T15118] nlmon0: left allmulticast mode
[  212.063928][T15118] caif0: left allmulticast mode
[  212.065768][T15118] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  212.611071][T15133] loop2: detected capacity change from 0 to 7
[  212.627301][T15133] Dev loop2: unable to read RDB block 7
[  212.631088][T15133]  loop2: unable to read partition table
[  212.637693][T15133] loop2: partition table beyond EOD, truncated
[  212.640107][T15133] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  212.796546][T15136] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048)
[  212.801886][   T40] audit: type=1804 audit(1776644770.840:4439): pid=15136 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.0.2798" name="/newroot/148/file1" dev="fuse" ino=1 res=1 errno=0
[  212.810421][   T40] audit: type=1800 audit(1776644770.840:4440): pid=15136 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2798" name="/" dev="fuse" ino=1 res=0 errno=0
[  212.819231][   T40] audit: type=1800 audit(1776644770.850:4441): pid=15135 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2798" name="/" dev="fuse" ino=1 res=0 errno=0
[  213.131942][T15146] bond4: entered allmulticast mode
[  213.134150][T15146] geneve5: entered allmulticast mode
[  213.143733][T15146] bond5: entered allmulticast mode
[  213.145457][T15146] geneve6: entered allmulticast mode
[  213.153208][ T3769] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  213.156358][ T3769] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  213.159402][ T3769] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  213.162262][ T3769] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  213.220391][T15151] syzkaller1: entered promiscuous mode
[  213.222429][T15151] syzkaller1: entered allmulticast mode
[  213.300062][T15156] validate_nla: 9 callbacks suppressed
[  213.300075][T15156] netlink: 'syz.0.2806': attribute type 1 has an invalid length.
[  213.319803][T15156] 8021q: adding VLAN 0 to HW filter on device bond6
[  213.378698][T14970] block nbd112: Receive control failed (result -32)
[  213.381118][T14825] block nbd112: Receive control failed (result -32)
[  213.458663][T15164] dummy0: entered promiscuous mode
[  213.464880][T15164] dummy0: left promiscuous mode
[  213.553535][T15178] netlink: 'syz.3.2815': attribute type 13 has an invalid length.
[  213.557279][T15178] netlink: 'syz.3.2815': attribute type 17 has an invalid length.
[  213.562746][T15178] lo: left allmulticast mode
[  213.567926][T15178] tunl0: left allmulticast mode
[  213.568542][   T40] audit: type=1326 audit(1776644771.610:4442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15181 comm="syz.2.2816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f090c99c819 code=0x7ffc0000
[  213.573208][T15178] gre0: left allmulticast mode
[  213.580900][T15178] gretap0: left allmulticast mode
[  213.580974][   T40] audit: type=1326 audit(1776644771.610:4443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15181 comm="syz.2.2816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f090c99c819 code=0x7ffc0000
[  213.584547][T15178] erspan0: left allmulticast mode
[  213.590097][   T40] audit: type=1326 audit(1776644771.610:4444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15181 comm="syz.2.2816" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f090c99c819 code=0x7ffc0000
[  213.593567][T15178] ip_vti0: left allmulticast mode
[  213.600316][   T40] audit: type=1326 audit(1776644771.610:4445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15181 comm="syz.2.2816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f090c99c819 code=0x7ffc0000
[  213.604252][T15178] ip6_vti0: left allmulticast mode
[  213.609197][   T40] audit: type=1326 audit(1776644771.610:4446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15181 comm="syz.2.2816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f090c99c819 code=0x7ffc0000
[  213.612514][T15178] sit0: left allmulticast mode
[  213.618458][   T40] audit: type=1326 audit(1776644771.610:4447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15181 comm="syz.2.2816" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f090c99c819 code=0x7ffc0000
[  213.618482][   T40] audit: type=1326 audit(1776644771.610:4448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15181 comm="syz.2.2816" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f090c99c819 code=0x7ffc0000
[  213.624316][T15178] ip6tnl0: left allmulticast mode
[  213.639375][T15178] ip6gre0: left allmulticast mode
[  213.644845][T15178] ip6gretap0: left allmulticast mode
[  213.649206][T15178] bridge0: left allmulticast mode
[  213.652178][T15178] vcan0: left allmulticast mode
[  213.655017][T15178] bond0: left allmulticast mode
[  213.658063][T15178] 8021q: adding VLAN 0 to HW filter on device bond0
[  213.661205][T15178] team0: left allmulticast mode
[  213.663569][T15178] 8021q: adding VLAN 0 to HW filter on device team0
[  213.666664][T15178] dummy0: left allmulticast mode
[  213.670067][T15178] nlmon0: left allmulticast mode
[  213.672991][T15178] caif0: left allmulticast mode
[  213.674735][T15178] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  213.709927][T15192] loop2: detected capacity change from 0 to 7
[  213.721736][T15192] Dev loop2: unable to read RDB block 7
[  213.723050][T15193] lo: entered allmulticast mode
[  213.723661][T15192]  loop2: unable to read partition table
[  213.726670][T15193] tunl0: entered allmulticast mode
[  213.728845][T15192] loop2: partition table beyond EOD, truncated
[  213.729876][T15193] gre0: entered allmulticast mode
[  213.733437][T15192] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  213.739136][T15193] gretap0: entered allmulticast mode
[  213.742393][T15193] erspan0: entered allmulticast mode
[  213.753667][T15193] ip_vti0: entered allmulticast mode
[  213.758931][T15193] ip6_vti0: entered allmulticast mode
[  213.761534][T15193] sit0: entered allmulticast mode
[  213.765073][T15193] ip6tnl0: entered allmulticast mode
[  213.767608][T15193] ip6gre0: entered allmulticast mode
[  213.770568][T15193] syz_tun: entered allmulticast mode
[  213.773522][T15193] ip6gretap0: entered allmulticast mode
[  213.776707][T15193] bridge0: entered allmulticast mode
[  213.779150][T15193] vcan0: entered allmulticast mode
[  213.781582][T15193] bond0: entered allmulticast mode
[  213.784862][T15193] team0: entered allmulticast mode
[  213.787500][T15193] dummy0: entered allmulticast mode
[  213.790442][T15193] nlmon0: entered allmulticast mode
[  213.792679][T15193] caif0: entered allmulticast mode
[  213.860564][T15201] netlink: 'syz.3.2824': attribute type 1 has an invalid length.
[  213.878715][T15201] 8021q: adding VLAN 0 to HW filter on device bond1
[  213.902262][T15201] bond1: (slave geneve3): making interface the new active one
[  213.906595][T15201] bond1: (slave geneve3): Enslaving as an active interface with an up link
[  213.910145][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.913051][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.916598][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.919641][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.028213][T15215] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0
[  214.245403][T14970] block nbd113: Receive control failed (result -32)
[  214.248290][T14825] block nbd113: Receive control failed (result -32)
[  214.345134][T15226] __nla_validate_parse: 11 callbacks suppressed
[  214.345149][T15226] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2832'.
[  214.350297][T15226] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2832'.
[  214.353158][T15226] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2832'.
[  214.393110][T15228] dummy0: entered promiscuous mode
[  214.396553][T15228] dummy0: left promiscuous mode
[  214.516741][T15239] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2839'.
[  214.525107][ T3769] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  214.529708][T15237] netlink: 'syz.3.2838': attribute type 13 has an invalid length.
[  214.530226][ T3769] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  214.532162][T15237] netlink: 'syz.3.2838': attribute type 17 has an invalid length.
[  214.545768][ T3769] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  214.564935][T15237] 8021q: adding VLAN 0 to HW filter on device bond0
[  214.568580][T15237] 8021q: adding VLAN 0 to HW filter on device team0
[  214.574151][T15237] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  214.579824][ T3769] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  214.633349][T15244] lo: entered allmulticast mode
[  214.635848][T15244] tunl0: entered allmulticast mode
[  214.639407][T15244] gre0: entered allmulticast mode
[  214.643881][T15244] gretap0: entered allmulticast mode
[  214.648412][T15244] erspan0: entered allmulticast mode
[  214.651074][T15244] ip_vti0: entered allmulticast mode
[  214.653480][T15244] ip6_vti0: entered allmulticast mode
[  214.656103][T15244] sit0: entered allmulticast mode
[  214.661307][T15244] ip6tnl0: entered allmulticast mode
[  214.663832][T15244] ip6gre0: entered allmulticast mode
[  214.666362][T15244] ip6gretap0: entered allmulticast mode
[  214.669448][T15244] bridge0: entered allmulticast mode
[  214.672663][T15244] vcan0: entered allmulticast mode
[  214.676349][T15244] bond0: entered allmulticast mode
[  214.680965][T15244] team0: entered allmulticast mode
[  214.684011][T15244] dummy0: entered allmulticast mode
[  214.691319][T15244] nlmon0: entered allmulticast mode
[  214.694357][T15244] caif0: entered allmulticast mode
[  214.703321][T15244] bond1: entered allmulticast mode
[  214.705318][T15244] geneve3: entered allmulticast mode
[  214.726473][T15249] netlink: 'syz.0.2842': attribute type 1 has an invalid length.
[  214.740938][T15249] 8021q: adding VLAN 0 to HW filter on device bond7
[  214.752276][T15249] bond7: (slave geneve7): making interface the new active one
[  214.755919][T15249] bond7: (slave geneve7): Enslaving as an active interface with an up link
[  214.759572][   T59] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  214.764195][   T59] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  214.768213][   T59] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  214.771412][   T59] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.833510][T15256] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  214.853681][T15261] loop2: detected capacity change from 0 to 7
[  214.858796][T15261] Dev loop2: unable to read RDB block 7
[  214.861177][T15261]  loop2: unable to read partition table
[  214.863560][T15261] loop2: partition table beyond EOD, truncated
[  214.868577][T15261] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  214.977203][T15258] nbd: socks must be embedded in a SOCK_ITEM attr
[  214.979621][T15258] block nbd114: shutting down sockets
[  215.025806][T15269] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2850'.
[  215.029035][T15269] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2850'.
[  215.032125][T15269] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2850'.
[  215.054399][T15267] syzkaller0: entered promiscuous mode
[  215.056167][T15267] syzkaller0: entered allmulticast mode
[  215.171575][T15267] usb usb7: usbfs: process 15267 (syz.0.2849) did not claim interface 0 before use
[  216.672184][T15282] dummy0: entered promiscuous mode
[  216.674616][T15282] dummy0: left promiscuous mode
[  216.775438][T15286] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2856'.
[  216.804327][T15290] netlink: 'syz.2.2857': attribute type 13 has an invalid length.
[  216.807054][T15290] netlink: 'syz.2.2857': attribute type 17 has an invalid length.
[  216.809990][T15290] lo: left allmulticast mode
[  216.812888][T15290] tunl0: left allmulticast mode
[  216.815272][T15290] gre0: left allmulticast mode
[  216.824906][T15290] gretap0: left allmulticast mode
[  216.828358][T15290] erspan0: left allmulticast mode
[  216.830822][T15290] ip_vti0: left allmulticast mode
[  216.833074][T15290] ip6_vti0: left allmulticast mode
[  216.836359][T15290] sit0: left allmulticast mode
[  216.840773][T15290] ip6tnl0: left allmulticast mode
[  216.843142][T15290] ip6gre0: left allmulticast mode
[  216.844185][T15296] netlink: 'syz.0.2860': attribute type 1 has an invalid length.
[  216.845643][T15290] syz_tun: left allmulticast mode
[  216.850115][T15290] ip6gretap0: left allmulticast mode
[  216.852811][T15290] bridge0: left allmulticast mode
[  216.855549][T15290] vcan0: left allmulticast mode
[  216.860534][T15290] bond0: left allmulticast mode
[  216.862904][T15290] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.865580][T15290] team0: left allmulticast mode
[  216.868780][T15290] 8021q: adding VLAN 0 to HW filter on device team0
[  216.871371][T15290] dummy0: left allmulticast mode
[  216.874373][T15290] nlmon0: left allmulticast mode
[  216.876768][T15290] caif0: left allmulticast mode
[  216.878797][T15290] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  216.905438][T15294] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3884349121 (248598343744 ns) > initial count (137821783104 ns). Using initial count to start timer.
[  216.917447][T15296] 8021q: adding VLAN 0 to HW filter on device bond8
[  216.989259][T15308] lo: entered allmulticast mode
[  216.991816][T15308] tunl0: entered allmulticast mode
[  216.994091][T15308] gre0: entered allmulticast mode
[  216.999749][T15308] gretap0: entered allmulticast mode
[  217.003867][T15308] erspan0: entered allmulticast mode
[  217.006380][T15308] ip_vti0: entered allmulticast mode
[  217.009196][T15308] ip6_vti0: entered allmulticast mode
[  217.011777][T15308] sit0: entered allmulticast mode
[  217.015481][T15308] ip6tnl0: entered allmulticast mode
[  217.018588][T15308] ip6gre0: entered allmulticast mode
[  217.021318][T15308] syz_tun: entered allmulticast mode
[  217.025304][T15308] ip6gretap0: entered allmulticast mode
[  217.028449][T15308] bridge0: entered allmulticast mode
[  217.030665][T15308] vcan0: entered allmulticast mode
[  217.033068][T15308] bond0: entered allmulticast mode
[  217.036013][T15308] team0: entered allmulticast mode
[  217.037290][   T24] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  217.038916][T15308] dummy0: entered allmulticast mode
[  217.043364][T15308] nlmon0: entered allmulticast mode
[  217.045622][T15308] caif0: entered allmulticast mode
[  217.147180][T15317] nbd: socks must be embedded in a SOCK_ITEM attr
[  217.149636][T15317] block nbd114: shutting down sockets
[  217.197048][   T24] usb 9-1: Using ep0 maxpacket: 8
[  217.201124][   T24] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  217.203894][   T24] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  217.206941][   T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  217.210892][   T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  217.214075][   T24] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  217.218274][   T24] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  217.221448][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.222525][T15323] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2869'.
[  217.228255][T15323] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2869'.
[  217.242418][T15325] macsec1: entered promiscuous mode
[  217.245647][T15325] batadv_slave_1: entered promiscuous mode
[  217.251139][T15325] batadv_slave_1: left promiscuous mode
[  217.261074][T15327] loop2: detected capacity change from 0 to 7
[  217.265752][T15327] Dev loop2: unable to read RDB block 7
[  217.268485][T15327]  loop2: unable to read partition table
[  217.271161][T15327] loop2: partition table beyond EOD, truncated
[  217.278154][T15327] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  217.437501][   T24] usb 9-1: GET_CAPABILITIES returned 0
[  217.439482][   T24] usbtmc 9-1:16.0: can't read capabilities
[  217.654196][ T1039] usb 9-1: USB disconnect, device number 13
[  217.888656][T15339] dummy0: entered promiscuous mode
[  217.890405][T15339] dummy0: left promiscuous mode
[  218.030392][T15341] kvm: user requested TSC rate below hardware speed
[  218.138007][T15342] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  218.143025][T15342] block device autoloading is deprecated and will be removed.
[  218.145383][T15343] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  218.149762][T15343] block device autoloading is deprecated and will be removed.
[  218.253244][T15351] lo: left allmulticast mode
[  218.256089][T15351] tunl0: left allmulticast mode
[  218.258608][T15351] gre0: left allmulticast mode
[  218.264201][T15351] gretap0: left allmulticast mode
[  218.265633][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  218.265644][   T40] audit: type=1400 audit(1776644776.300:4465): avc:  denied  { ioctl } for  pid=15352 comm="syz.0.2879" path="/dev/fb0" dev="devtmpfs" ino=637 ioctlcmd=0x4601 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  218.268801][T15351] erspan0: left allmulticast mode
[  218.281331][T15351] ip_vti0: left allmulticast mode
[  218.284734][T15351] ip6_vti0: left allmulticast mode
[  218.288365][T15351] sit0: left allmulticast mode
[  218.298694][T15351] ip6tnl0: left allmulticast mode
[  218.301170][T15351] ip6gre0: left allmulticast mode
[  218.303709][T15351] syz_tun: left allmulticast mode
[  218.306343][T15351] ip6gretap0: left allmulticast mode
[  218.309153][T15351] bridge0: left allmulticast mode
[  218.311464][T15351] vcan0: left allmulticast mode
[  218.313625][T15351] bond0: left allmulticast mode
[  218.315953][T15351] 8021q: adding VLAN 0 to HW filter on device bond0
[  218.318904][T15351] team0: left allmulticast mode
[  218.321012][T15351] 8021q: adding VLAN 0 to HW filter on device team0
[  218.324012][T15351] dummy0: left allmulticast mode
[  218.326518][T15351] nlmon0: left allmulticast mode
[  218.329065][T15351] caif0: left allmulticast mode
[  218.330710][T15351] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  218.353502][T15355] 8021q: adding VLAN 0 to HW filter on device bond4
[  218.372177][T15358] bond4: (slave geneve4): making interface the new active one
[  218.382213][T15358] bond4: (slave geneve4): Enslaving as an active interface with an up link
[  218.387609][   T59] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  218.392046][   T59] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.398673][   T59] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.402948][   T59] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  218.664002][T15375] bond6: entered allmulticast mode
[  218.666508][T15375] bond7: entered allmulticast mode
[  218.668433][T15375] geneve7: entered allmulticast mode
[  218.672187][T15375] bond8: entered allmulticast mode
[  218.674361][ T3769] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  218.677480][ T3769] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  218.680564][ T3769] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  218.683441][ T3769] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  219.877772][T15383] __nla_validate_parse: 7 callbacks suppressed
[  219.877788][T15383] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2890'.
[  219.882538][T15383] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2890'.
[  219.885368][T15383] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2890'.
[  221.364207][T15363] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  221.420925][T15389] loop2: detected capacity change from 0 to 7
[  221.423353][T15389] Dev loop2: unable to read RDB block 7
[  221.425569][T15389]  loop2: unable to read partition table
[  221.428148][T15389] loop2: partition table beyond EOD, truncated
[  221.434341][T15389] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  221.516457][T15403] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2898'.
[  221.604578][T15410] validate_nla: 5 callbacks suppressed
[  221.604598][T15410] netlink: 'syz.4.2901': attribute type 13 has an invalid length.
[  221.610422][T15410] netlink: 'syz.4.2901': attribute type 17 has an invalid length.
[  221.635456][T15410] 8021q: adding VLAN 0 to HW filter on device bond0
[  221.641721][T15410] 8021q: adding VLAN 0 to HW filter on device team0
[  221.647728][T15410] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  221.750993][T15416] netlink: 'syz.4.2904': attribute type 1 has an invalid length.
[  221.776434][T15416] 8021q: adding VLAN 0 to HW filter on device bond1
[  221.788782][T15416] bond1: (slave geneve2): making interface the new active one
[  221.792588][T15416] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  221.795693][ T1162] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.800810][ T1162] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.805269][ T1162] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.808408][ T1162] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.837183][   T24] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  221.983114][T15423] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2907'.
[  221.986697][T15423] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2907'.
[  221.991885][T15423] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2907'.
[  221.996208][   T24] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  222.006041][   T24] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  222.010030][   T24] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  222.015137][   T24] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  222.019106][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.030217][   T24] usb 8-1: config 0 descriptor??
[  222.207243][T15429] nbd: socks must be embedded in a SOCK_ITEM attr
[  222.210444][T15429] block nbd114: shutting down sockets
[  222.249119][T15439] netlink: 188 bytes leftover after parsing attributes in process `syz.4.2912'.
[  222.335904][T15450] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2916'.
[  222.366297][T15452] netlink: 'syz.0.2919': attribute type 13 has an invalid length.
[  222.372509][T15452] netlink: 'syz.0.2919': attribute type 17 has an invalid length.
[  222.375175][T15452] lo: left allmulticast mode
[  222.380378][T15452] tunl0: left allmulticast mode
[  222.382683][T15452] gre0: left allmulticast mode
[  222.385833][T15452] gretap0: left allmulticast mode
[  222.388561][T15452] erspan0: left allmulticast mode
[  222.391128][T15452] ip_vti0: left allmulticast mode
[  222.393344][T15452] ip6_vti0: left allmulticast mode
[  222.395689][T15452] sit0: left allmulticast mode
[  222.399828][T15452] ip6tnl0: left allmulticast mode
[  222.402198][T15452] ip6gre0: left allmulticast mode
[  222.404643][T15452] syz_tun: left allmulticast mode
[  222.407166][T15452] ip6gretap0: left allmulticast mode
[  222.409793][T15452] bridge0: left allmulticast mode
[  222.412006][T15452] vcan0: left allmulticast mode
[  222.414133][T15452] bond0: left allmulticast mode
[  222.416564][T15452] 8021q: adding VLAN 0 to HW filter on device bond0
[  222.422084][T15452] team0: left allmulticast mode
[  222.425364][T15452] 8021q: adding VLAN 0 to HW filter on device team0
[  222.428474][T15452] dummy0: left allmulticast mode
[  222.429574][T15461] netlink: 'syz.4.2922': attribute type 1 has an invalid length.
[  222.430295][T15452] batman_adv: batadv0: Interface activated: dummy0
[  222.434578][T15452] batadv0: mtu less than device minimum
[  222.436749][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.440405][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.444045][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.447608][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.451206][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.454459][   T24] plantronics 0003:047F:FFFF.0006: reserved main item tag 0xd
[  222.454662][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.460534][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.464251][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.468005][T15452] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  222.474386][   T24] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  222.485877][T15452] nlmon0: left allmulticast mode
[  222.488605][T15452] caif0: left allmulticast mode
[  222.513330][T15461] 8021q: adding VLAN 0 to HW filter on device bond2
[  222.521504][T15467] bond2: (slave geneve3): making interface the new active one
[  222.524825][T15467] bond2: (slave geneve3): Enslaving as an active interface with an up link
[  222.590411][T15475] loop2: detected capacity change from 0 to 7
[  222.593125][T15475] Dev loop2: unable to read RDB block 7
[  222.594936][T15475]  loop2: unable to read partition table
[  222.596826][T15475] loop2: partition table beyond EOD, truncated
[  222.598968][T15475] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  222.665967][T15478] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2926'.
[  222.721785][   T24] usb 8-1: USB disconnect, device number 10
[  222.797203][T15484] nbd: socks must be embedded in a SOCK_ITEM attr
[  222.799477][T15484] block nbd114: shutting down sockets
[  223.172990][ T1162] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.175964][T15515] netlink: 'syz.4.2941': attribute type 13 has an invalid length.
[  223.175980][T15515] netlink: 'syz.4.2941': attribute type 17 has an invalid length.
[  223.181902][ T1162] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.186908][T15517] netlink: 'syz.2.2943': attribute type 1 has an invalid length.
[  223.211118][T15515] 8021q: adding VLAN 0 to HW filter on device bond0
[  223.215138][T15515] 8021q: adding VLAN 0 to HW filter on device team0
[  223.223905][ T1162] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.227919][ T1162] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.267381][T15517] 8021q: adding VLAN 0 to HW filter on device bond5
[  223.276864][T15519] bond5: (slave geneve5): Opening slave failed
[  223.343832][T15523] program syz.3.2945 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  223.517995][T15531] nbd: socks must be embedded in a SOCK_ITEM attr
[  223.520803][T15531] block nbd114: shutting down sockets
[  223.568309][T15538] dummy0: entered promiscuous mode
[  223.573102][T15538] dummy0: left promiscuous mode
[  223.729498][T15552] loop2: detected capacity change from 0 to 7
[  223.734860][T15552] Dev loop2: unable to read RDB block 7
[  223.741684][T15552]  loop2: unable to read partition table
[  223.744152][T15552] loop2: partition table beyond EOD, truncated
[  223.746561][T15552] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  223.773506][T15555] netlink: 'syz.4.2961': attribute type 13 has an invalid length.
[  223.801038][T15555] 8021q: adding VLAN 0 to HW filter on device bond0
[  223.804037][T15555] 8021q: adding VLAN 0 to HW filter on device team0
[  223.867934][T15562] 8021q: adding VLAN 0 to HW filter on device bond9
[  223.893379][T15569] trusted_key: encrypted_key: insufficient parameters specified
[  224.185954][T15587] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  224.464782][T15608] 8021q: adding VLAN 0 to HW filter on device bond6
[  224.467773][T15611] "syz.3.2981" (15611) uses obsolete ecb(arc4) skcipher
[  224.493615][T15608] vlan2: entered allmulticast mode
[  224.496684][T15608] bond6: entered allmulticast mode
[  224.512355][T15608] bond6: (slave geneve5): making interface the new active one
[  224.514981][T15608] geneve5: entered allmulticast mode
[  224.518700][T15608] bond6: (slave geneve5): Enslaving as an active interface with an up link
[  224.552925][T15619] 8021q: adding VLAN 0 to HW filter on device bond3
[  224.568471][T15619] bond3: (slave geneve4): Opening slave failed
[  224.860722][T15643] loop2: detected capacity change from 0 to 7
[  224.866129][T15643] Dev loop2: unable to read RDB block 7
[  224.868477][T15643]  loop2: unable to read partition table
[  224.870372][T15643] loop2: partition table beyond EOD, truncated
[  224.872494][T15643] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[  225.133630][T15650] __nla_validate_parse: 16 callbacks suppressed
[  225.133842][T15650] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2993'.
[  225.140965][T15650] block nbd115: Unsupported socket: should be TCP or UNIX.
[  225.270304][T15649] nbd115: detected capacity change from 0 to 128
[  225.275651][ T5952] 
[  225.276671][ T5952] ======================================================
[  225.279567][ T5952] WARNING: possible circular locking dependency detected
[  225.282406][ T5952] syzkaller #0 Tainted: G             L     
[  225.284914][ T5952] ------------------------------------------------------
[  225.287707][ T5952] udevd/5952 is trying to acquire lock:
[  225.289954][ T5952] ffff8880273c0e68 (&nsock->tx_lock){+.+.}-{4:4}, at: nbd_queue_rq+0x428/0x1080
[  225.294252][ T5952] 
[  225.294252][ T5952] but task is already holding lock:
[  225.297083][ T5952] ffff888048abe178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xba/0x1080
[  225.300571][ T5952] 
[  225.300571][ T5952] which lock already depends on the new lock.
[  225.300571][ T5952] 
[  225.304704][ T5952] 
[  225.304704][ T5952] the existing dependency chain (in reverse order) is:
[  225.308280][ T5952] 
[  225.308280][ T5952] -> #6 (&cmd->lock){+.+.}-{4:4}:
[  225.311146][ T5952]        __mutex_lock+0x1a4/0x1b10
[  225.313730][ T5952]        nbd_queue_rq+0xba/0x1080
[  225.315785][ T5952]        blk_mq_dispatch_rq_list+0x422/0x1e70
[  225.318966][ T5952]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[  225.321741][ T5952]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[  225.324348][ T5952]        blk_mq_run_hw_queue+0x23c/0x670
[  225.326575][ T5952]        blk_mq_dispatch_list+0x51d/0x1360
[  225.329043][ T5952]        blk_mq_flush_plug_list+0x130/0x600
[  225.329781][   T40] audit: type=1401 audit(1776644783.370:4466): op=fscreate invalid_context=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  225.331530][ T5952]        __blk_flush_plug+0x2c4/0x4b0
[  225.331555][ T5952]        __submit_bio+0x584/0x6c0
[  225.363521][ T5952]        submit_bio_noacct_nocheck+0x543/0xbf0
[  225.366146][ T5952]        submit_bio_noacct+0xd18/0x2000
[  225.368461][ T5952]        submit_bh_wbc+0x681/0x890
[  225.371020][ T5952]        block_read_full_folio+0x4c8/0x8e0
[  225.373485][ T5952]        filemap_read_folio+0xfc/0x3b0
[  225.375407][ T5952]        do_read_cache_folio+0x2d7/0x6b0
[  225.377293][ T5952]        read_part_sector+0xd1/0x370
[  225.378996][ T5952]        adfspart_check_ICS+0x91/0x7d0
[  225.380833][ T5952]        bdev_disk_changed+0x7a3/0x1250
[  225.382638][ T5952]        blkdev_get_whole+0x187/0x290
[  225.384328][ T5952]        bdev_open+0x2c7/0xe40
[  225.385811][ T5952]        blkdev_open+0x34e/0x4f0
[  225.387475][ T5952]        do_dentry_open+0x6d8/0x1660
[  225.389232][ T5952]        vfs_open+0x82/0x3f0
[  225.390841][ T5952]        path_openat+0x208c/0x31a0
[  225.392985][ T5952]        do_file_open+0x20e/0x430
[  225.395104][ T5952]        do_sys_openat2+0x10d/0x1e0
[  225.397133][ T5952]        __x64_sys_openat+0x12d/0x210
[  225.398802][ T5952]        do_syscall_64+0x10b/0xf80
[  225.400453][ T5952]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.402474][ T5952] 
[  225.402474][ T5952] -> #5 (set->srcu){.+.+}-{0:0}:
[  225.404749][ T5952]        __synchronize_srcu+0xa2/0x300
[  225.406714][ T5952]        blk_mq_quiesce_queue+0x149/0x1c0
[  225.408485][ T5952]        elevator_switch+0x17b/0x7e0
[  225.410190][ T5952]        elevator_change+0x352/0x530
[  225.411911][ T5952]        elevator_set_default+0x29e/0x360
[  225.413708][ T5952]        blk_register_queue+0x48e/0x630
[  225.415414][ T5952]        __add_disk+0x73f/0xe40
[  225.417004][ T5952]        add_disk_fwnode+0x118/0x5c0
[  225.418624][ T5952]        nbd_dev_add+0x77a/0xb10
[  225.420191][ T5952]        nbd_init+0x291/0x2b0
[  225.422400][ T5952]        do_one_initcall+0x121/0x750
[  225.424705][ T5952]        kernel_init_freeable+0x6ea/0x7b0
[  225.427155][ T5952]        kernel_init+0x1f/0x1e0
[  225.429172][ T5952]        ret_from_fork+0x72b/0xd50
[  225.430990][ T5952]        ret_from_fork_asm+0x1a/0x30
[  225.432667][ T5952] 
[  225.432667][ T5952] -> #4 (&q->elevator_lock){+.+.}-{4:4}:
[  225.435107][ T5952]        __mutex_lock+0x1a4/0x1b10
[  225.436703][ T5952]        elevator_change+0x1bc/0x530
[  225.438420][ T5952]        elevator_set_none+0x92/0xf0
[  225.440084][ T5952]        blk_mq_update_nr_hw_queues+0x4c1/0x15f0
[  225.442034][ T5952]        nbd_start_device+0x1a6/0xbd0
[  225.443725][ T5952]        nbd_genl_connect+0xff2/0x1a40
[  225.445398][ T5952]        genl_family_rcv_msg_doit+0x214/0x300
[  225.447527][ T5952]        genl_rcv_msg+0x560/0x800
[  225.449169][ T5952]        netlink_rcv_skb+0x159/0x420
[  225.450907][ T5952]        genl_rcv+0x28/0x40
[  225.452327][ T5952]        netlink_unicast+0x585/0x850
[  225.453961][ T5952]        netlink_sendmsg+0x8b0/0xda0
[  225.455606][ T5952]        ____sys_sendmsg+0x9e1/0xb70
[  225.457343][ T5952]        ___sys_sendmsg+0x190/0x1e0
[  225.459022][ T5952]        __sys_sendmsg+0x170/0x220
[  225.460805][ T5952]        do_syscall_64+0x10b/0xf80
[  225.462629][ T5952]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.464652][ T5952] 
[  225.464652][ T5952] -> #3 (&q->q_usage_counter(io)#49){++++}-{0:0}:
[  225.467303][ T5952]        blk_alloc_queue+0x610/0x790
[  225.469036][ T5952]        blk_mq_alloc_queue+0x174/0x290
[  225.470830][ T5952]        __blk_mq_alloc_disk+0x29/0x120
[  225.472573][ T5952]        nbd_dev_add+0x492/0xb10
[  225.474133][ T5952]        nbd_init+0x291/0x2b0
[  225.475590][ T5952]        do_one_initcall+0x121/0x750
[  225.477568][ T5952]        kernel_init_freeable+0x6ea/0x7b0
[  225.479579][ T5952]        kernel_init+0x1f/0x1e0
[  225.481330][ T5952]        ret_from_fork+0x72b/0xd50
[  225.482869][ T5952]        ret_from_fork_asm+0x1a/0x30
[  225.484512][ T5952] 
[  225.484512][ T5952] -> #2 (fs_reclaim){+.+.}-{0:0}:
[  225.486697][ T5952]        fs_reclaim_acquire+0xc4/0x100
[  225.488395][ T5952]        kmem_cache_alloc_node_noprof+0x53/0x6f0
[  225.490446][ T5952]        __alloc_skb+0x140/0x710
[  225.492049][ T5952]        tcp_stream_alloc_skb+0x34/0x660
[  225.493902][ T5952]        tcp_sendmsg_locked+0x13cd/0x4500
[  225.495650][ T5952]        tcp_sendmsg+0x2e/0x50
[  225.497120][ T5952]        inet_sendmsg+0xb9/0x140
[  225.498702][ T5952]        sock_write_iter+0x4ea/0x5a0
[  225.500509][ T5952]        vfs_write+0x6ac/0x1070
[  225.502025][ T5952]        ksys_write+0x1f8/0x250
[  225.503462][ T5952]        do_syscall_64+0x10b/0xf80
[  225.504995][ T5952]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.506881][ T5952] 
[  225.506881][ T5952] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}:
[  225.509197][ T5952]        lock_sock_nested+0x41/0xf0
[  225.510953][ T5952]        inet_shutdown+0x67/0x410
[  225.512526][ T5952]        nbd_mark_nsock_dead+0xae/0x5c0
[  225.514189][ T5952]        recv_work+0x5fb/0x8c0
[  225.515629][ T5952]        process_one_work+0xa0e/0x1980
[  225.517316][ T5952]        worker_thread+0x5ef/0xe50
[  225.518813][ T5952]        kthread+0x370/0x450
[  225.520445][ T5952]        ret_from_fork+0x72b/0xd50
[  225.522018][ T5952]        ret_from_fork_asm+0x1a/0x30
[  225.523608][ T5952] 
[  225.523608][ T5952] -> #0 (&nsock->tx_lock){+.+.}-{4:4}:
[  225.526270][ T5952]        __lock_acquire+0x14b8/0x2630
[  225.527989][ T5952]        lock_acquire+0x1b1/0x370
[  225.529605][ T5952]        __mutex_lock+0x1a4/0x1b10
[  225.531246][ T5952]        nbd_queue_rq+0x428/0x1080
[  225.532857][ T5952]        blk_mq_dispatch_rq_list+0x422/0x1e70
[  225.535140][ T5952]        __blk_mq_sched_dispatch_requests+0xcea/0x1620
[  225.537304][ T5952]        blk_mq_sched_dispatch_requests+0xd7/0x1c0
[  225.539265][ T5952]        blk_mq_run_hw_queue+0x23c/0x670
[  225.541054][ T5952]        blk_mq_dispatch_list+0x51d/0x1360
[  225.542796][ T5952]        blk_mq_flush_plug_list+0x130/0x600
[  225.544667][ T5952]        __blk_flush_plug+0x2c4/0x4b0
[  225.546274][ T5952]        __submit_bio+0x584/0x6c0
[  225.547821][ T5952]        submit_bio_noacct_nocheck+0x543/0xbf0
[  225.549668][ T5952]        submit_bio_noacct+0xd18/0x2000
[  225.551390][ T5952]        submit_bh_wbc+0x681/0x890
[  225.552974][ T5952]        block_read_full_folio+0x4c8/0x8e0
[  225.554954][ T5952]        filemap_read_folio+0xfc/0x3b0
[  225.556671][ T5952]        do_read_cache_folio+0x2d7/0x6b0
[  225.558390][ T5952]        read_part_sector+0xd1/0x370
[  225.560045][ T5952]        adfspart_check_ICS+0x91/0x7d0
[  225.561724][ T5952]        bdev_disk_changed+0x7a3/0x1250
[  225.563433][ T5952]        blkdev_get_whole+0x187/0x290
[  225.565123][ T5952]        bdev_open+0x2c7/0xe40
[  225.566578][ T5952]        blkdev_open+0x34e/0x4f0
[  225.568156][ T5952]        do_dentry_open+0x6d8/0x1660
[  225.569771][ T5952]        vfs_open+0x82/0x3f0
[  225.571321][ T5952]        path_openat+0x208c/0x31a0
[  225.572915][ T5952]        do_file_open+0x20e/0x430
[  225.574656][ T5952]        do_sys_openat2+0x10d/0x1e0
[  225.576249][ T5952]        __x64_sys_openat+0x12d/0x210
[  225.577878][ T5952]        do_syscall_64+0x10b/0xf80
[  225.579452][ T5952]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.581474][ T5952] 
[  225.581474][ T5952] other info that might help us debug this:
[  225.581474][ T5952] 
[  225.584621][ T5952] Chain exists of:
[  225.584621][ T5952]   &nsock->tx_lock --> set->srcu --> &cmd->lock
[  225.584621][ T5952] 
[  225.588193][ T5952]  Possible unsafe locking scenario:
[  225.588193][ T5952] 
[  225.590512][ T5952]        CPU0                    CPU1
[  225.592222][ T5952]        ----                    ----
[  225.593942][ T5952]   lock(&cmd->lock);
[  225.595172][ T5952]                                lock(set->srcu);
[  225.597106][ T5952]                                lock(&cmd->lock);
[  225.599081][ T5952]   lock(&nsock->tx_lock);
[  225.600487][ T5952] 
[  225.600487][ T5952]  *** DEADLOCK ***
[  225.600487][ T5952] 
[  225.602954][ T5952] 3 locks held by udevd/5952:
[  225.604643][ T5952]  #0: ffff888025b95350 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[  225.607465][ T5952]  #1: ffff888053eada98 (set->srcu){.+.+}-{0:0}, at: blk_mq_run_hw_queue+0x22e/0x670
[  225.610329][ T5952]  #2: ffff888048abe178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xba/0x1080
[  225.613054][ T5952] 
[  225.613054][ T5952] stack backtrace:
[  225.614969][ T5952] CPU: 1 UID: 0 PID: 5952 Comm: udevd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  225.614986][ T5952] Tainted: [L]=SOFTLOCKUP
[  225.614991][ T5952] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  225.614999][ T5952] Call Trace:
[  225.615005][ T5952]  <TASK>
[  225.615014][ T5952]  dump_stack_lvl+0x100/0x190
[  225.615031][ T5952]  print_circular_bug.cold+0x178/0x1c7
[  225.615051][ T5952]  check_noncircular+0x146/0x160
[  225.615067][ T5952]  __lock_acquire+0x14b8/0x2630
[  225.615083][ T5952]  lock_acquire+0x1b1/0x370
[  225.615096][ T5952]  ? nbd_queue_rq+0x428/0x1080
[  225.615112][ T5952]  ? __pfx___might_resched+0x10/0x10
[  225.615129][ T5952]  ? rcu_is_watching+0x12/0xc0
[  225.615147][ T5952]  __mutex_lock+0x1a4/0x1b10
[  225.615160][ T5952]  ? nbd_queue_rq+0x428/0x1080
[  225.615175][ T5952]  ? nbd_queue_rq+0x428/0x1080
[  225.615190][ T5952]  ? is_bpf_text_address+0x8a/0x1a0
[  225.615244][ T5952]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  225.615257][ T5952]  ? rcu_is_watching+0x12/0xc0
[  225.615274][ T5952]  ? __pfx___mutex_lock+0x10/0x10
[  225.615284][ T5952]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  225.615295][ T5952]  ? is_bpf_text_address+0x94/0x1a0
[  225.615309][ T5952]  ? kernel_text_address+0x8d/0x100
[  225.615325][ T5952]  ? arch_stack_walk+0xa6/0xf0
[  225.615343][ T5952]  ? nbd_queue_rq+0x428/0x1080
[  225.615358][ T5952]  nbd_queue_rq+0x428/0x1080
[  225.615373][ T5952]  ? stack_trace_save+0x8e/0xc0
[  225.615385][ T5952]  ? __pfx_nbd_queue_rq+0x10/0x10
[  225.615401][ T5952]  ? add_lock_to_list+0x99/0x110
[  225.615412][ T5952]  ? lockdep_unlock+0x5a/0xc0
[  225.615421][ T5952]  ? __lock_acquire+0xd73/0x2630
[  225.615435][ T5952]  blk_mq_dispatch_rq_list+0x422/0x1e70
[  225.615455][ T5952]  ? sbitmap_get+0x1d7/0x360
[  225.615515][ T5952]  ? __pfx_blk_mq_dispatch_rq_list+0x10/0x10
[  225.615531][ T5952]  ? __blk_mq_alloc_driver_tag+0x27a/0x7a0
[  225.615547][ T5952]  __blk_mq_sched_dispatch_requests+0xcea/0x1620
[  225.615564][ T5952]  ? __pfx___blk_mq_sched_dispatch_requests+0x10/0x10
[  225.615582][ T5952]  blk_mq_sched_dispatch_requests+0xd7/0x1c0
[  225.615596][ T5952]  blk_mq_run_hw_queue+0x23c/0x670
[  225.615609][ T5952]  ? blk_mq_run_hw_queue+0x22e/0x670
[  225.615622][ T5952]  blk_mq_dispatch_list+0x51d/0x1360
[  225.615639][ T5952]  ? __pfx_blk_mq_dispatch_list+0x10/0x10
[  225.615653][ T5952]  ? blk_add_trace_plug+0xf5/0x290
[  225.615725][ T5952]  blk_mq_flush_plug_list+0x130/0x600
[  225.615741][ T5952]  ? trace_block_plug+0x70/0x220
[  225.615759][ T5952]  ? blk_add_rq_to_plug+0x30a/0x540
[  225.615773][ T5952]  ? __pfx_wbt_track+0x10/0x10
[  225.615829][ T5952]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  225.615845][ T5952]  ? blk_mq_submit_bio+0x9aa/0x2dd0
[  225.615861][ T5952]  __blk_flush_plug+0x2c4/0x4b0
[  225.615877][ T5952]  ? __pfx___blk_flush_plug+0x10/0x10
[  225.615892][ T5952]  __submit_bio+0x584/0x6c0
[  225.615906][ T5952]  ? __pfx___submit_bio+0x10/0x10
[  225.615923][ T5952]  ? submit_bio_noacct_nocheck+0x543/0xbf0
[  225.615937][ T5952]  submit_bio_noacct_nocheck+0x543/0xbf0
[  225.615952][ T5952]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  225.615967][ T5952]  ? __pfx___might_resched+0x10/0x10
[  225.615983][ T5952]  submit_bio_noacct+0xd18/0x2000
[  225.615998][ T5952]  submit_bh_wbc+0x681/0x890
[  225.616021][ T5952]  block_read_full_folio+0x4c8/0x8e0
[  225.616033][ T5952]  ? __pfx_blkdev_get_block+0x10/0x10
[  225.616048][ T5952]  ? __pfx_blkdev_read_folio+0x10/0x10
[  225.616062][ T5952]  filemap_read_folio+0xfc/0x3b0
[  225.616080][ T5952]  ? __pfx_filemap_read_folio+0x10/0x10
[  225.616097][ T5952]  do_read_cache_folio+0x2d7/0x6b0
[  225.616113][ T5952]  ? __pfx_blkdev_read_folio+0x10/0x10
[  225.616128][ T5952]  read_part_sector+0xd1/0x370
[  225.616141][ T5952]  ? __pfx_adfspart_check_ICS+0x10/0x10
[  225.616154][ T5952]  adfspart_check_ICS+0x91/0x7d0
[  225.616167][ T5952]  ? __pfx_seq_buf_printf+0x10/0x10
[  225.616186][ T5952]  ? __pfx_adfspart_check_ICS+0x10/0x10
[  225.616200][ T5952]  ? __pfx_adfspart_check_ICS+0x10/0x10
[  225.616213][ T5952]  bdev_disk_changed+0x7a3/0x1250
[  225.616227][ T5952]  ? nbd_open+0x320/0x700
[  225.616241][ T5952]  ? __pfx_bdev_disk_changed+0x10/0x10
[  225.616256][ T5952]  blkdev_get_whole+0x187/0x290
[  225.616269][ T5952]  bdev_open+0x2c7/0xe40
[  225.616283][ T5952]  blkdev_open+0x34e/0x4f0
[  225.616297][ T5952]  do_dentry_open+0x6d8/0x1660
[  225.616310][ T5952]  ? __pfx_blkdev_open+0x10/0x10
[  225.616326][ T5952]  vfs_open+0x82/0x3f0
[  225.616341][ T5952]  path_openat+0x208c/0x31a0
[  225.616400][ T5952]  ? __pfx_path_openat+0x10/0x10
[  225.616416][ T5952]  do_file_open+0x20e/0x430
[  225.616429][ T5952]  ? __pfx_do_file_open+0x10/0x10
[  225.616446][ T5952]  ? alloc_fd+0x476/0x790
[  225.616461][ T5952]  ? do_getname+0x191/0x390
[  225.616478][ T5952]  do_sys_openat2+0x10d/0x1e0
[  225.616493][ T5952]  ? __pfx_do_sys_openat2+0x10/0x10
[  225.616508][ T5952]  ? __sys_recvmsg+0x18c/0x220
[  225.616523][ T5952]  ? __pfx___sys_recvmsg+0x10/0x10
[  225.616535][ T5952]  __x64_sys_openat+0x12d/0x210
[  225.616550][ T5952]  ? __pfx___x64_sys_openat+0x10/0x10
[  225.616567][ T5952]  ? rcu_is_watching+0x12/0xc0
[  225.616583][ T5952]  do_syscall_64+0x10b/0xf80
[  225.616593][ T5952]  ? clear_bhb_loop+0x40/0x90
[  225.616606][ T5952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.616617][ T5952] RIP: 0033:0x7fe0ed0a7407
[  225.616627][ T5952] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  225.616639][ T5952] RSP: 002b:00007ffdb104abd0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  225.616693][ T5952] RAX: ffffffffffffffda RBX: 00007fe0ed81a880 RCX: 00007fe0ed0a7407
[  225.616700][ T5952] RDX: 00000000000a0800 RSI: 000055bc69013c80 RDI: ffffffffffffff9c
[  225.616708][ T5952] RBP: 000055bc68d952c0 R08: 0000000000000000 R09: 0000000000000000
[  225.616715][ T5952] R10: 0000000000000000 R11: 0000000000000202 R12: 000055bc68fd70c0
[  225.616722][ T5952] R13: 000055bc68fd08d0 R14: 0000000000000000 R15: 000055bc68fd70c0
[  225.616731][ T5952]  </TASK>
[  225.619000][T15645] block nbd115: Receive control failed (result -32)
[  225.626040][ T5952] block nbd115: Send control failed (result -32)
[  225.645866][T15670] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3000'.
[  225.646300][ T5952] block nbd115: Request send failed, requeueing
[  225.648343][T15670] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3000'.
[  225.650560][ T2207] block nbd115: Dead connection, failed to find a fallback
[  225.652291][T15670] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3000'.
[  225.677428][ T2207] block nbd115: shutting down sockets
[  225.844480][ T2207] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.847532][ T2207] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.850713][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.854456][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.857280][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.860118][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.862678][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.866126][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.869340][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.872869][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.876027][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.880578][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.883255][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.886238][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.888970][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.890974][T15677] 8021q: adding VLAN 0 to HW filter on device bond4
[  225.891836][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.891869][ T5952] ldm_validate_partition_table(): Disk read failed.
[  225.899588][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.903570][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.906872][ T5952] I/O error, dev nbd115, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  225.906922][T15679] bond4: (slave geneve4): Opening slave failed
[  225.910723][ T5952] Buffer I/O error on dev nbd115, logical block 0, async page read
[  225.910914][ T5952] Dev nbd115: unable to read RDB block 0
[  225.918556][ T5952]  nbd115: unable to read partition table
[  225.922530][   T59] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.927854][ T3769] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.931195][ T3769] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.932143][ T5952] ldm_validate_partition_table(): Disk read failed.
[  225.933976][ T3769] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.936129][ T5952] Dev nbd115: unable to read RDB block 0
[  225.940760][ T5952]  nbd115: unable to read partition table