last executing test programs:

18m26.90408269s ago: executing program 32 (id=129):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x21}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x801a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000280)="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", 0xe12}], 0x1)

17m36.061626641s ago: executing program 33 (id=364):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
mq_notify(r4, &(0x7f00000000c0)={0x0, 0xc, 0x0, @thr={0x0, 0x0}})
readv(r4, &(0x7f0000000000)=[{&(0x7f0000000100)=""/251}], 0x59)
fcntl$lock(r0, 0x40f, &(0x7f0000000000))
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000380)={0x0, 0x5}, 0x8)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000180)={0x28, 0x0, 0x2710, @host}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r6, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x6a, 0x4)
bind$inet(r6, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f0000000100)=0xb2f, 0x4)
connect$inet(r6, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x4, 0x0, 0xe4}]}, 0x10)
sendto(r6, &(0x7f0000000740)="50fbdf12a30d7a48b2c5c84948f3426077a9f0ca1475183db3bf52a6b2cdb77ef9af2a603a3e78adff59fbb22bae1b2443011fd801251bcef8f165533aac58c7556dd51edc5a6865", 0x48, 0x4008044, 0x0, 0x0)
sendto$inet(r6, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000b000000000c00147379793000"/34], 0x28}}, 0x0)

16m32.011875965s ago: executing program 34 (id=743):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000180), 0x802, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
r2 = epoll_create(0x4)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)={0xc})
close(0x3)

15m39.643839033s ago: executing program 35 (id=1150):
memfd_create(&(0x7f0000000a00)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t;\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8,Z\x00\x00\xb9\x12\x96\xde:0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\x1c)5\x98\xa3\xfa\a\xf9\x98\xbb=\xeb\x86P=\xe51\x9d,\xb7\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\xd3\xb7\xa95W\xac\rP\xf42\xf9\x1d\xb0\t\x11\xd9\xa5\x8dZ\x03\xb7\xc8\xaajn\xd7\n\r\x802\x92\x17$|tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\x00'/192, 0x0)
fanotify_init(0x8, 0x0)
r0 = syz_mount_image$btrfs(&(0x7f0000000200), &(0x7f0000005600)='./file0\x00', 0x800, &(0x7f0000000740), 0x0, 0x559e, &(0x7f0000005680)="$eJzs3X9sVeX9B/BzWwoN+C39jhUYfxAgBoMkyJYtjqB4MQa24eKlgsKcCEQlBivYRDcYqUWSZcaghU4EF5GQaDJjscM/FMywy7CMZfzY5hZjs4JSaZZsAzVrHDG69N77XO49l9tembNOXy/SnvPcz3me+9yT88d9X/qcGwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAURUcSc9+d0f3i0ZE1X77/Hz+e+OjGn4zfvX/roVvu23T/gjMjbto5a1nf+mlN8zdsbDjS/PS+ObdGUSLdL5Htf9u136q/88bbvlsdBly+MLOtrS31lJmuJzON4QUP9vcr/FkRRVFVbIDK7PbV7E5FwQC53cbiAQf0Tuui6O7J8ya1dT01bklyYU/xS6df9VBPYKhkr6ue89dSMv27InZErp136SUKLtFM//gF96m8CADgY5mZSm9yb0ezb3Fz7eZ4PdZOxtotsXZ4h9CS37gYmXGHl5rnpHh9iOaZzESFESXnGatnz3+unYr3j7VjUeNjzLPw0GykqS41z7Wx+lDNEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCzZOzxo2tWtD2y575fdtQceff9OVc+8KWOw22LT4y8eunKHWum/HTWsr7105rmb9jYcKT56X1zbo2i2nS/RKZ74kTL5b9NjZ3fvXfcG427n6vpq8yOG7bD8g6OXg87s0ZH0cq8Sk8Y9q81UZQqLKSb0Y7iwl3pnW+HAgAAAJ8nX0n/rsi1M3GwqqCdSKfJRPpfkAmL77Quiu6ePG9SW9dT45YkF/Zc/HipEuMlLzherl17/ieRF4xD/I2Pd74eDm0sGmdg8RHjef7SMWPefmty/eSvT5v7xA3PjOru+r8nZ2xJ/bGu5oUrru+tf/a6ovxfO3D+D2dO/gcAAOA/If/HxxnYYPn/jqVTt7z+i2Grft3a8MTB+h1/bv3OMzsXneq54Ud9L09N3v7o1UX5f1LBUxbl/zDjkP8roovL/wAAAPBZ9t/O/8micQY2WP5vONM3+wcHX6vr+PucxXt+9dAVi8+e/tv8U7t3DV9zR8v6uoeuLMr/M8vL/8Pypx0e/F2Y8OrRUTSz/JMKAAAAFAj/737+o4WQ1zOfHMTz+rX/vKp5380ffPMbD97zpzff/s2xA7MnrdteN/PgyzfVf1j5ve3dRfk/WV7+r/p0Xi4AAABQhuePrpw773jPucfPvtB18vDu3pMznjyzrqnvdOslLatXbTr2WlH+T5WX/0cMzcsBAAAALuDeO59bsfnVl/oe2H/X2Ck9FVc1XpK4ZduOqU0TPuq8tPfy7VuL8v/y8vL/yOw2u/Ih06kz/BVC6+goqu7fWZspHIparskVAAAAgE9IyOlbP1ixbOzOsb3jj59+rObQG4dn/2Vt55yN13RXdW/uXNZ4WdH9AkJiL3X//3Cng7D+v+D+f0Xr//MKmbv+zXZjAAAAAL6Iitfzh9vjZ765oNT375e7/n9J3cQTiba33lv11XMHzo1ZsP/7129aV9/be8+El37/wz9M/6i6KP83l5f/K/O3n+T3/wEAAMBF+F/7/r+lReMMbLD7/zdV9DWsWrd3+uota7csTCw7UH3qwdV731+w5l9Tb36+qea6A0X5v6W8/B+2o/JfXkc4P5tGR9H4/p3s3QR/Hqa7OlZor8orZE58rMeNoUe20D4ir5C2Ntbja6OjaHL/TnOs8P+h0BIrnK3JFnbFCsdCIXs95Ap7YoWOcKVtq8lON154MRSyCyzawwqKUbklEbEe75Xq0V+4YI+u3JMDAAB8oYTwnM2yVYXNKB5l2xODHTBysAMqBjugcrADhsUOiB9Y6vFoeWEhPH575yMbNjVMSb7y8NzHfvbms40T9j1+WV3v5g9f2XbvxJ3TW6YW5f9d5eX/cCqGZzal1v9HYf1/9nsNc+v/l4dCbazQHgqp+B0DUuE5MmH34fActalsj7PjcwUAAAD4XAufC1QO8TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/s3evcdJVd0JAj/d9INumqaNE9GMk3TUgGakaWwNw+AoaoxGRZpZddxkNBBoEGmE8FgFURtQZxziZ3ztrJnoCAoiu+qHGFeDwUhcxIw6iWLiA/Cxjq7r+h6VGM2E/XTfOkXVrS67EFDa+X7/6DpVv/O89eg69946FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/xjuPfjlk4YunP0PHzace8nqqqmL/kfH6Mv+cNW3vvjUPy5b9G9h/i9GnLll3kEXHjd/wbR/6Vi++ogzQmjtKleWFC977oqvPtS613HP3jFw48wbb63fUpWpNxMP/Tr/lGfuXBxbfbF/CHeXhVCRDgypSwKVmft1sb5960LYI2wLZEu01SYl0g2HB2pCWBK2BbJVra4JoS4ncMqG+++7vDNxTU0IXwkhVKfbeKY6aaMmHRhUlQRq04HpFUngt1sT2cBPypMA7LD4Zsi+6Fe15mdo6L5ckddf5U7r2KcrPbw+MdFQPN/rR+3iTuWoSj/QukNPW0F17BIFb4+13m294N1WsJ2v8LTlfpHKfEPZui1UHcontk0aP6d9dnykPDQ19SlW0y56np9+e/6E7Un3mtdh7EDDTnkdXvrYiun9lo2+9OrNvxqz4ayaA3a0m0/lbNLc9K5WHTKvuV7zPEajfJ70grdfwbekRl+6Qghbzz17xtfnTDz7iD63PLnu1QcfrNty9pwFvzhz4nmLLj55w7/Pf6lg/t/w0fP/+HKOt+V5uWOrH9Ync/P4SF1MvFmfzM0BAACg1+gNe01Xnv/6X73+/bWtMxed/u23Dj73w71afz3i/gFVB7yxrqn1/I2ff6Vg/t9Y2vH/eMi/Lne0a0MY1ZVYNCCEvbseTwIrY3e+OyCEL3elWvMDR6UCa0PYpytxULaqVIm+sURjKvByfSYwKhVYHwOtqcDyGLgiFbg4BlalAhNiYG0qcHQMhCn54/hqfWYcJQdqYmBcshFXxbMQ3qmPraW21aZsVQAAADtJZnZYmX8351yHHc0Qp5eranrKEM/ALpqhOlVDegabnVYVraGipxrKe6ohO+6Ojx5+Qc1lPdVccBpGWX6GG9f85X2LXjzsC2P3mvj5xUMvmPKz8eGst++uerx5yYtv7XvEzesK5v/NHz3/r+6mI2UFx/9DGNv1N+Yuz0Tas/FxrXkZAAAAgB1w0R//xR61Lw85oGHT+2X3zl/7xKMrfrl5j1NOf3/c8a//8PCaxnsL5v+jSjv/P+4T6ZOTOTwSd0NMHRBCc34gqXZkYSA56t0vEwAAAIDeIHs8PnssfErmNjlFOz2fLszfup3544H/Ud3m//09/7P2jq3/+mLZBd89d0TNgKX/9GrHhBNOPvqW47/1zj4VB/yyvGD+31ra+f+1+bdJJ9bHXlw9IIS+OYEHYy87A10aY+D5I/MDmfGvjxtgcawqc2JCtqrFscS4GGhOBZYUK/FotsTe+YHMk5VtfFF2HFMyJXICAAAA8ImLuwPicfl4/n/LGSNO++vvzfrbha88eN7qCy75q+Ed80eedP/THzbMvXJp2PTmEQXz/3Hbd/5/1zy44PT+9n4hDK0IoU/6hwGP1CYLA8ZAXVkmcW9tUlefdFULa0MY2TmwdFUvZNb/r0ivMfh4TVJVDOy93y1vD+pMLKsJYWhu4IlvLz2sMzEnFcg2flpNCF/qHG268bv6Jo1Xphu/tm8IX8wJZKua0DeEzsaq0lX9r+rMdQzSVa2qDmHPnEC2quHVIcwNAPRW8X/pxNwHZ82dN3V8e3vbzF2YiDvxa8KkKe1tTROmt0+sLtKniak+561jtKBwTKVe+mZTZo2ixSsnV5aSzv5QsDm3rcyO/IIzBzP345ehyq5xHlKZd7clPeQD9y9sIuR8lSo25PJdPOTa3Eq2PYkF9cf8VaFf6DtnVtvMpvPGz549c1jyt9TshyR/43GmZFsNS2+r2u76VsLLo+hyWSkfd1sNyq1k6OxpM4bOmjtvyJRp4ye3TW47p+XQP2sZMXz410YM7RxUc/K3h5EO6q7m1Ei3Li1xWDtxpF+oyKnkk/jQkJCQ6G2J/f7L5odH77n+nOt/9tqPz+/3zdPu3fvImT889KqpD1Xve/ji24ccWDD/n/HR8//4qRM/+DPrMxQ7/t8QD/Mnj287zD8uBpaUevy/odjR/OyJAY2pQEcMdDjMDwAAwGdD3B0Z92bGndKbb1m/buOSlrk/aHin5dY17Utvuum+U39y58ATvjQ47LXhuhM+VzD/7yjt9/87af3/7NL1JxRb5v+gWKK52Pr/6WX+s+v/dxRb/z+9zH92/f8ln8L6/3OygdQmecf6/wAAwGfBJ7f+f4/L+6cvEFCQocfl/dMXCCjI0OMy/qVeIGC71/9f8+Bff6Wq35g7/qTlN/WXvPZ39xzWeuS6zTP/5Etb10+877qxt6wpmP9fUdr838L9AAAAsPv4z5ddU3H02Xff0bJu6sZxbw5+98m3lgzq80HF0Q+3j3xh4Bu3nlcw/19S2vz/k1//LxQ7/7+xWKC12MKA1v8DAACglyq2/t89Q1sa/zCm/x+eHvab5Q/ePPqnj/z898v3+/mJPyvfZ8Gxz8+8bFLB/H9VafP/eNpFeV7u2JsP65M17UJ6Tbs367M/GQAAAIDeoTw0NVWWmDdvYdSjPn6bT2eWAv2odK7vvXLt2ZtfmH7c46ev+7uaEwbvOWHaBasa/2b4gXd+ftQley7ddGrB/H9tafP/vN9lXPrYiun9lo2+9MOrN/9qzIazag7YdvwfAAAA2HVK3S8BAAAAAAAAAAAAAAB8+s7tWHzhI8uOfe+bt//F/kcseXXwbXcd+Lsh/V664qoHJq1648zJXy/4/X8Y21Wu2O//43X/4u8L/igvd2y15/X/MvdPOfH2uV1LFj5SH8L+uYGpC6fuETLX5h+cG7jvjIMGdiYWpkusefbolzoT30kHjh/yuS2dicNTgXFxkcR90oF4VcUt/VOBuLzi4+lA3B6r0oGqTOCy/sk4ytLb6pW6ZFuVpbfVxroQBuQEstvq7rqkjbL0AK9JBbID/F46EAd4ciZQnu7V7f2SXsVAXSx6Q7+kVwAA7Lbit8DKMGlKe1tz/Aofb79QkX8b5S1ZtqCw2rISm9+UWZps8crJlaWk+6S/i2671nhlqO4cwrCCr6u5Wcq6Rrlzaulh0/1RkSH3tNpbeZFyadu76aqKj6gmGVHThOntEyt7HHhLz1kOqegxy7CCyU5ulvKuTVpCLSX0pYQRlbhtSuhyvF8empr6pHL9eQw2hDw9vSJK/b1+7jp/xV4FuXluO/TKt758zE+f++CfP/9E/2+cVnP7rO+/e+KvX7//wEOOuG5C05otBfP/htLm/9W549qSuRhAR7yy3sgBIYwrcUQAAADw2XfbRbfecfr09a9MWlvx5GOPTS0fc3rl1vl3zp93ycZ7Fx9/2cErdjR+2Fm//f5vBu//b89e9dJPR+7zwA03/58nD3v8z3//8I8eeqduZZ+x7xXM/xtLm//HPViZQ8HJ3o618fr/iwaE0HVp/YYksDIO97sDQvhyV6o1lkguqH9CLNGcBFbGHSYHxRLjWvOr6hsDq1KBl+szgbWpwPoYyOyluCVkduVcWR/CYV2psfklZsQSDanAmBhoTAWaYqA5FegfA6NSgdf6ZwKtqcDDMRCm5G+rH/fPbCsAAIDtkZlnVebfDel53qqKnjKU9ZShtqcM5T1lqO4pQ7FRxPt3xAyVqZNXynIyVaZrrUnVUpAhXgx/u/tVkCE8mp8zXbCg6Xj+QfZ8g7L8DFf+4NlT1w+e/tDqzcd8beBt/zhkz4Obp9e9t+CGp3475pzrnv/TQQXz/+bS5v+1+bdJ6+vj/H/b9f+SwIOxe1fHU8cbY+D5I/MDmR0D6+Nkd3G2qtZMicykfXEsMSoGGlOBGTEwKhUYNzYTWDIwP5CZaWcbX5RtfEqmRE4AAAAAPnFxB0HcTRPn/zce9YOr3x8wccuyeTPvH9vyxMmjv3H1XT+6d/9ld767YvCAce99p2D+P6q0+X9sr19uYxfH3rzYP4S7y7b1JhsYUpcE4n6Muvjz+H3rQtgjZwdHtkRbbVKiKtVweKAm+YV6Vbqq1TXJGgPx/ikb7r/v8s7ENTUhfCVn70u2jWeqkzZq0oFBVUmgNh2YXpEE4p6fbOAn5UkAdlh2r2B8QWVOdclq6L5ckdffZ+WaoOnhFewD7SZfd7+52lWq0w9k9qlmbd/TVlAdu0TB22Otd1tvfLc1eLflfpHKfEPZui1UHcontk0aP6d9dnwk95esBXbR85z7K9VS0jvhddjx8Xvbs+p0B5pTHx/N3Zfr/nVYFqu79LEV0/stG33p1Zt/NWbDWTUHlNyNIuIPhX+05X9XPpWzeXe16pB5zfW6z5NWnye98d9Ao6cthHDZ9cfsu+TdX+/33A3Pnbqu7Maxr/7lrHs2Lf+bysNHrXv/yaGjLy+Y/7eWNv+vSN12+V3cmLMGhHBgzsZ9JG7+YwYkn4M5geRTcs/CQHLI/V/ri35yAgAAwM6W3d2R3V8wJXObnBCenicX5m/dzvxxf8WobvOX2u9j121cedLQN6474G8vOPGNv7/28Kceuv6ysnXL//vYD1avuXzxe08UzP/HffT8v2+qm47/O/7PLuL4f7d2913RfdMPdOzQruiC6tglHP/v1u7+bnP8v1uO/zv+3x3H/3vg+H+3dvenreBb0gxfujonwdff+fPfTbzpg7mN+x180lPPHDrxun+6quXuu0555b+de9601761uWD+P6O0+b/1/7pftC+7/t+4Yuv/zSi2/l+H9f8AAIBdqshCc+l5XsHqfQUZ0qv3FWTocYHAHpcYtP7fdq//t3Dkv1904Q+fb7n2nTvHXb5m07Fnvvr0utXPzFpx3Lnnv9V6112tBfP/jtLm//Hl0C+39d6y/l/j2CJVXREDMywMCAAAwO6o2A4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPl2HnvbO+5d8/R/aBv1ixc1/f+v/+7/P1q594JvfuGn4L6f86RllazZcM+LMLfMOuvC4+Qum/UvH8tVHnBHClK5yZUnxsueu+OpDrXsd9+wdAzfOvPHW+i3VmXorM7d/nJc7tvphfQhLch6pi4k36zvvbAuccuLtcys6E4/Uh7B/bmDqwql7dCaW14cwODdw3xkHDexMLEyXWPPs0S91Jr6TDhw/5HNbOhOHZwJl6e5e1z/pblm6u5f3D2FATiDb3bP751eVbeO4TKA83caKuqSNGKiLRa+tS9qIgfZYYkrfEIZWhNAnXdU/VydV9UlXdU91UlWfdFUXVYcwMoRQka7quaqkqor0yB+tSqqKgb33u+XtQZ2JpVUhDM0NPPHtpYd1JmamAtnG/1NVCF/qfMmkG/9xZdJ4Zbrx/1oZwhdDCFXpEu9VJCWq0iVeqAhhz5zAto1YEcLcwGdD/PSZmPvgrLnzpo5vb2+buQsTVZm2asKkKe1tTROmt0+sTvWpmLKc9NYFH3/sm96eP6HzdvHKyZWlpCsy5Sq7unxIZd7dlt2997FftbmVbHs+CuqP+atCv9B3zqy2mU3njZ89e+aw5G+p2Q9J/vbJRJNtNay3bKtBuZUMnT1txtBZc+cNmTJt/OS2yW3ntBz6Zy0jhg//2oihnYNqTv7ujJEu/eRH+oWKnEo+ife/hIREb0uU5326Ne/un+MFX/S3dbQyVHd9QBdMK3KzlHWNcmcM+qiPOeKP8zWlxxENK5g4FGQ5pOcsLQWTiW1ZapIsXV/rCiaHuTWVd23SeL88NDX1KbYdGvLv5m7e13dg8z6d2XSlpgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4FAAA//8fSxmR")
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0xce, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000080)=0x2)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, &(0x7f00000000c0)={{}, 0x0, 0x0})

15m30.641627521s ago: executing program 36 (id=1250):
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x80000}, &(0x7f0000000340), 0x0, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x400)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000040)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setrlimit(0x7, &(0x7f0000000400))
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[<r3=>0x0, 0x0, <r4=>0x0], &(0x7f0000000040), 0x3, r2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000580)={0x0, 0x1, &(0x7f0000000180)=[r2], &(0x7f00000000c0)=[0x3], &(0x7f0000000640)=[r4, r3, r3], &(0x7f0000000340), 0x0, 0xffffffffffffffff})

15m25.575424065s ago: executing program 37 (id=1286):
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000100)=0x2000)
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000100)=0x17, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
syz_emit_ethernet(0x83, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000001ff02000000000000000000000000000104004e200023b0"], 0x0)

15m11.191077771s ago: executing program 38 (id=1379):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffe3, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r3, r2, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfc0, &(0x7f0000000000)=ANY=[], 0x0)

15m8.130328374s ago: executing program 4 (id=1404):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x22048854, &(0x7f0000000200)={0x2, 0x4e23, @empty}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'})
syz_emit_ethernet(0x86, &(0x7f00000010c0)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @redirect={0x3, 0x4, 0x0, @broadcast=0x1000000, {0x17, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @empty, {[@timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{@remote, 0x4e210000}]}, @timestamp_addr={0x44, 0x3c, 0x0, 0x1, 0x0, [{@local}, {}, {@dev}, {@private}, {@empty}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@dev}]}]}}}}}}}, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0xd000, 0x11, 0x0, 0x27)

15m7.785984688s ago: executing program 4 (id=1406):
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$cgroup_devices(r0, &(0x7f0000000000)=ANY=[], 0x9)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
getdents(r1, &(0x7f00000005c0)=""/156, 0x9c)
getdents64(r1, 0x0, 0x0)

15m7.646104259s ago: executing program 4 (id=1409):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x4e, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f00000024c0)=""/4127, 0x101f}], 0x1, 0x2de, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15m7.213449764s ago: executing program 4 (id=1410):
fsopen(0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000000000)={[{@discard}, {@nolazytime}, {@quota}, {@stripe={'stripe', 0x3d, 0x10}}, {@abort}, {@lazytime}, {@errors_remount}, {@init_itable}, {@bh}, {@dioread_lock}]}, 0xfc, 0x57b, &(0x7f0000000700)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x8005, 0x0, 0x0, 0x12, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

15m6.643132541s ago: executing program 4 (id=1415):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4000, &(0x7f00000004c0)=ANY=[@ANYBLOB='mode=00000000000000000000177,mode=00000000000000000000005,shortad,utf8,shortad,shortad,session=00000000000016777223,umask=00000000000000000000250,uid=ignore,shortad,dmode=00000000000000000170430,gid=ignore,adinicb,gid=forget,mode=00000000000000000002000,lastblock=00000000000000001024,shortad,euid>', @ANYBLOB="2c66736d616769633d3078303030303030303030303030303030322c736d61636b6673665e6f6f723d736d61636b66737472616e732d7574652c666f776e65723ee913b6e7858b459aea76a61374d95a5ba0ea131492042d59ca3669979b6c1e1ec7d9bb6c99ec974795d51b342596c4a62342a4d28a02f68f2ee922c8041f11fad6b3d4a0518253955e447f57f4d4dc2acad3457c75d1861af156d552fb5c05e042d5b09427d15fea177d488b", @ANYRES64, @ANYRESDEC=0x0, @ANYBLOB="10af9b9320e74f2badb1d4f1bf657d6e613c701d8c5846d8803fc0d4f31e0c79e44ce9044721ca748ec42f07aea4364f36ff75c213c05cfcae7d9a22289f08efffb486ace97445aaf1541ba1fc8a8f20a31dfd675975db1599d3b57a2c97d8598d7729eddf33ea3504f1779e77a3ac0655cd593e710b8f5b076c38a60ee40c06bb60956c6bd72b80348f70ccb438f549f555d0567cbbf840569f1102d47be18af8b21f48c88dcc9ad10e24f851a3642197ab2acbb330d969d01a7bc3977faf2c369f47a693654742ab", @ANYBLOB="f9c1eb3e827127e08d98faa9d0c71b0e9140cd349baa"], 0xa, 0xc35, &(0x7f0000001c40)="$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")
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xb3a4, 0x8000})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[], 0x118)

15m3.708063062s ago: executing program 4 (id=1430):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000340)={0x1d, r2, 0x0, {0x1, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmmsg(r1, &(0x7f0000000640)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000005c0)="e009bc297d2688e0261e51095c9e380c5899e11a13bb51af7906f13b751f624f675cf5fed4f3a3a4979f6a", 0x2b}], 0x1}}], 0x1, 0x41)
connect$can_j1939(r1, &(0x7f0000000140)={0x1d, r2, 0x20000000000000, {0x2, 0xf0, 0x4}, 0xfe}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@newtfilter={0x24, 0x11, 0x1, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x74, r2, {0xb, 0xfff2}, {0xfff1, 0xffff}, {0x2, 0xe}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x20000050)

15m3.312424816s ago: executing program 39 (id=1430):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000340)={0x1d, r2, 0x0, {0x1, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmmsg(r1, &(0x7f0000000640)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000005c0)="e009bc297d2688e0261e51095c9e380c5899e11a13bb51af7906f13b751f624f675cf5fed4f3a3a4979f6a", 0x2b}], 0x1}}], 0x1, 0x41)
connect$can_j1939(r1, &(0x7f0000000140)={0x1d, r2, 0x20000000000000, {0x2, 0xf0, 0x4}, 0xfe}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@newtfilter={0x24, 0x11, 0x1, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x74, r2, {0xb, 0xfff2}, {0xfff1, 0xffff}, {0x2, 0xe}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x20000050)

13m22.793022646s ago: executing program 6 (id=2093):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x400a8, &(0x7f0000000380)=ANY=[], 0x5, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0/../file0\x00', &(0x7f0000000340)='./file0/file0/../file0\x00', 0x0, 0xa1c08, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x88000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000280)='./file0/file0/../file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x2125099, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)

13m22.575920569s ago: executing program 6 (id=2095):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000100)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x3, &(0x7f0000000000)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfff}, 0x94)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

13m22.227654762s ago: executing program 6 (id=2098):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close(0x3)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmmsg(r1, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000a00)='E', 0x1}], 0x1}}], 0x1, 0x4000045)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000003c0)={0x14, 0x0, 0x405, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4000431}, 0x4064094)

13m22.008653225s ago: executing program 6 (id=2100):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000001240)='./file0\x00', 0x1014552, &(0x7f0000000b40)=ANY=[], 0x1, 0x121f, &(0x7f0000002280)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0xc8)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESOCT=r1])
chdir(&(0x7f0000000240)='./file0\x00')
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)

13m21.49838933s ago: executing program 6 (id=2105):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendto(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x4000080, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x8488, &(0x7f0000000140), 0xfd, 0x10fd, &(0x7f0000001140)="$eJzs2T9rFEEYBvBnds8/3cqmXwQtLCQknF8ghcK1ttqIpDJVrlL8OH4cTWUf0msRsF9Zb/dO5UTwTm1+PzjmvYd9Z2fKmQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMZsmnkhxUSTtlVZKSdN3F4ipJN+V33tdVSp6eLpaPz+dPlknqb4+XZ0kZuoa2tMf3brfzdt4et48OTu5/WL5+8+rF2dnp+ThNSZfL6/1vpYzrAQAAAH7U76z5z+8HAAAAfmdvFwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf6hvNnU7FVWSknTdxeIqSbel78Y/Wh8AAACwu5Iqz5tt+eoaYONhPjZlnQ/jlzLUR3m3pR8AAAD4pf7WWHz/fb3c3JzHH2S2PpcP2d3Mcni4+j8O+XyS1EmOfpr88vrty+lX+vpv7wUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAAAAAPYKAAD///F61s8=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x183341, 0x0)
pwrite64(r1, &(0x7f0000005c80)="a9", 0x1, 0xc00000)

13m20.701362779s ago: executing program 6 (id=2114):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f00000001c0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000000)=@gcm_128={{0x303}, "cfc85eb51b0ace6a", "0517a9f6040839040000008d776dd8dc", "3f4051c4", "a44a889722b66244"}, 0x28)
recvmmsg(r1, &(0x7f0000000f00)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000b00)=""/81, 0x51}], 0x1}}], 0x1, 0x0, 0x0)
recvfrom$inet6(r1, 0x0, 0x0, 0x87b0cc373e1cda89, 0x0, 0x0)

13m20.455595462s ago: executing program 40 (id=2114):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f00000001c0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000000)=@gcm_128={{0x303}, "cfc85eb51b0ace6a", "0517a9f6040839040000008d776dd8dc", "3f4051c4", "a44a889722b66244"}, 0x28)
recvmmsg(r1, &(0x7f0000000f00)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000b00)=""/81, 0x51}], 0x1}}], 0x1, 0x0, 0x0)
recvfrom$inet6(r1, 0x0, 0x0, 0x87b0cc373e1cda89, 0x0, 0x0)

13m17.197238777s ago: executing program 9 (id=2149):
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, 0x0, 0x4080)
syz_open_dev$ttys(0xc, 0x2, 0x1)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000100))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$inet(r0, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x1e1730a30afb6559, 0x8014)
listen(r0, 0x0)
accept4$llc(r0, 0x0, 0x0, 0x0)

13m15.936017701s ago: executing program 9 (id=2154):
timer_create(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x300f401, 0x0, 0x2, 0x0, 0x0)
r0 = inotify_init1(0x80800)
inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0x610003d5)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f00000027c0), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r1, 0x6000000)
copy_file_range(r1, 0x0, r1, &(0x7f00000004c0)=0x100, 0x9, 0x0)

13m15.670283404s ago: executing program 9 (id=2158):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@empty}, 0x14)
ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x3e, &(0x7f0000000140)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2f}, @void, {@ipv6={0x86dd, @icmpv6={0x6, 0x6, "4e4106", 0x8, 0x3a, 0x1, @remote, @empty, {[], @echo_request={0x80, 0x0, 0x0, 0x3, 0x8001}}}}}}, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0xc840)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)

13m14.581745005s ago: executing program 9 (id=2162):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000001240)='./file0\x00', 0x1014552, &(0x7f0000000b40)=ANY=[], 0x1, 0x121f, &(0x7f0000002280)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0xc8)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESOCT=r1])
chdir(&(0x7f0000000240)='./file0\x00')
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)

13m13.883059083s ago: executing program 9 (id=2171):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
semtimedop(0x0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)

13m12.442626479s ago: executing program 9 (id=2178):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc8)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESOCT=r1])
chdir(&(0x7f0000000240)='./file0\x00')
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
newfstatat(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', 0x0, 0x6000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)

13m11.168431972s ago: executing program 41 (id=2178):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc8)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESOCT=r1])
chdir(&(0x7f0000000240)='./file0\x00')
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
newfstatat(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', 0x0, 0x6000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)

11m14.944199392s ago: executing program 3 (id=2647):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_mount_image$hfs(&(0x7f0000000280), &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1214080, &(0x7f0000000a00)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee01, @ANYBLOB="2c636f6465706167653d6370373337a8f0643d", @ANYRESHEX=0x0, @ANYBLOB=',dir_umask=00000000000000000000004,iocharset=cp869,part=0x00000000000007ff,gid=', @ANYRESHEX=0x0, @ANYBLOB=',\x00'], 0x1, 0x32e, &(0x7f0000000b00)="$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")
sync()
sync()
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, 0x0)
mmap(&(0x7f0000a78000/0x4000)=nil, 0x4000, 0x27ffff1, 0x11, 0xffffffffffffffff, 0x20446000)
read$dsp(0xffffffffffffffff, &(0x7f0000001140)=""/4107, 0x100b)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, 0x0, 0x0)

11m13.505021548s ago: executing program 3 (id=2650):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000), 0x4)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$SG_SET_RESERVED_SIZE(r3, 0x2275, &(0x7f0000000100)=0x2c0000)
ioctl$SG_IO(r3, 0x2285, &(0x7f00000005c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x20000, 0x0}, &(0x7f0000000240)="948d7acda0b2", 0x0, 0x0, 0x0, 0x0, 0x0})

11m12.232021411s ago: executing program 3 (id=2653):
socket$inet6_sctp(0xa, 0x801, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/current\x00')
preadv(r3, &(0x7f00000003c0)=[{&(0x7f0000000000)=""/35, 0x23}], 0x1, 0x0, 0x0)

11m10.960575965s ago: executing program 3 (id=2658):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000022c0)=@newtfilter={0x90, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0xffff, 0x5}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x5c, 0x2, [@TCA_MATCHALL_ACT={0x58, 0x2, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x57f}, @TCA_VLAN_PARMS={0x1c, 0x2, {{0x4e3, 0xca0b, 0x6, 0x3}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}]}}]}, 0x90}, 0x1, 0x0, 0x0, 0x40000}, 0x44000)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r6 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$kcm(r6, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)

11m9.040003366s ago: executing program 3 (id=2663):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r1, 0x6)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = accept(r0, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r5, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)

11m7.7262178s ago: executing program 3 (id=2667):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x0, 0x2b8, 0xb0000010, 0x290, 0x5c8f0200, 0x388, 0x3a8, 0x3a8, 0x388, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x248, 0x290, 0x700, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve1\x00', {0xf1, 0x0, 0x33, 0x0, 0x0, 0x1, 0x7fffffff}}}, @common=@unspec=@limit={{0x48}, {0x10000000, 0x8000001}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x206, 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)

10m52.656445294s ago: executing program 42 (id=2667):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x0, 0x2b8, 0xb0000010, 0x290, 0x5c8f0200, 0x388, 0x3a8, 0x3a8, 0x388, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x248, 0x290, 0x700, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve1\x00', {0xf1, 0x0, 0x33, 0x0, 0x0, 0x1, 0x7fffffff}}}, @common=@unspec=@limit={{0x48}, {0x10000000, 0x8000001}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x206, 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)

1m54.674521257s ago: executing program 7 (id=4219):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000040)=0x200000000)
r1 = dup2(r0, r0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x1, 0x0, &(0x7f0000000300)=""/107, 0x0, 0xeeef0000})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, 0x0)
read$FUSE(r1, &(0x7f00000016c0)={0x2020}, 0x2020)
write$vhost_msg_v2(r1, &(0x7f0000000200)={0x2, 0xff80, {&(0x7f0000000280)=""/128, 0x80, 0x0, 0x1, 0x2}}, 0x48)

1m53.50190468s ago: executing program 7 (id=4225):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000640)=@allocspi={0xf8, 0x16, 0x401, 0x0, 0x0, {{{@in=@local, @in6=@mcast1, 0x0, 0xfd1, 0x0, 0x2, 0x2, 0x0, 0x0, 0xc}, {@in=@broadcast, 0x0, 0x33}, @in6=@loopback, {0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x80000001}, {0x101, 0x0, 0x0, 0x800}, {0x4, 0x6, 0x400}, 0x0, 0x0, 0xa, 0x0, 0x0, 0x94}, 0x0, 0x4ad}}, 0xf8}, 0x1, 0x0, 0x0, 0x20040080}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m53.141572654s ago: executing program 7 (id=4229):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xd}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x64086)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x70, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xf, 0xf}, {}, {0x7, 0xfff1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x40, 0x2, [@TCA_CGROUP_EMATCHES={0x3c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x800, 0x7, 0x20}, {{0x0, 0x0, 0x1}, {0x3, 0x1, 0x1}}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xe85, 0x6e4, 0xc}, {0x4, 0x80000000, 0x3, 0x1, 0xf, 0x1}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6e4}}]}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1m52.767386058s ago: executing program 7 (id=4234):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xa10852, &(0x7f0000000400)=ANY=[@ANYBLOB='dmask=00000000000000000002621,utf8,umask=00000000000000000200000,namecase=1,discard,errors=remount-ro,umask=00000000000000000200004,umask=00000000000000000003377,namecase=1,utf8,iocharset=iso8859-4,iocharset=cp874,dmask=01777777777777777777770,errors=remount-ro,uid=', @ANYBLOB, @ANYBLOB="d9b2de1a2f0751da7120c88a88f0955139afd5c85d409cd57977db7b7c40ade28a33a618636ff400fb97e6caf4db25c1ccd8fee922c9ca87d19e19bed2941af9fc3561a936e805795a9965b5eb669fb143b894f24dbf2cd930f3967172749732bead8f13f18ad0a6d2451810d29d7c5e9dbda0be77473bb0431e71cfa02a873d927ec49990e8ac2bb9469d53e0420e67beaa46cb9850de015b11ed84f357d67ae57d156d5a089f321ec719835c6eeb76ad4a79ca0a80f230d9110b57272d24eb8d5effb24faddf3ffcb309d9a27c57181780f56a1b34", @ANYRESDEC=0x0, @ANYRES8=0x0, @ANYRESDEC=0x0, @ANYRES8, @ANYRESOCT, @ANYRES8, @ANYRES8, @ANYRES16=0x0, @ANYRES64, @ANYRES32], 0xfe, 0x1508, &(0x7f0000000a00)="$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")
creat(&(0x7f00000004c0)='./bus\x00', 0x14c)
mount(&(0x7f0000000480)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x801400, 0x0)
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
fsync(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x4600, 0xe898d2275f586819)
preadv2(r1, &(0x7f0000000980)=[{&(0x7f0000001200)=""/4096, 0xffffffa4}], 0x1, 0x8000, 0x9, 0x1b)

1m52.254094624s ago: executing program 7 (id=4239):
r0 = fsopen(&(0x7f00000000c0)='cpuset\x00', 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80102, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = eventfd2(0x4001, 0x800)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file1\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRES16=0x0, @ANYRES16, @ANYRES8], 0x1, 0x370, &(0x7f0000000600)="$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")
close_range(r0, r2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1010012, &(0x7f0000000080)={[{@nobh}, {@bsdgroups}, {@data_err_ignore}]}, 0x1, 0x4cd, &(0x7f0000000c80)="$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")

1m51.991919637s ago: executing program 7 (id=4241):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f00000014c0)=@svm={0x10c, 0x1, 0x1080, {0x30000}, {"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"}})
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = memfd_create(0x0, 0x2)
fcntl$addseals(r3, 0x409, 0x7)

1m51.533797702s ago: executing program 43 (id=4241):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f00000014c0)=@svm={0x10c, 0x1, 0x1080, {0x30000}, {"60b047b7fe1c072f644fc903f0a877968be6f57e64c135f64abe8ec9216432952ad019aaf930b242657b340a52e16d926604c1cd69d3a29678352b193f9d44351f442ee10e3967c5e46ff19a48989f6cf688d79f539dfd47744eeb663d8c5988378334b7c37c793a45d42b6483eba78178fa477abe5a7bd83621f58f4b89c3a2f7d819f885966aae48de3bebd2842ef9fb345d680d97bd8b9e6a235defe5548ff63089e2819191bd1ada213009619b40c84002a9cb5e2ce09e4732f89e9b173dd7f951b234fe49692b262c98631d2f4719378448861dbe188b4b8199ffada4780d0eed807a987f2cd99ff8b1318daabcb4d19b99f6cd1114b08f190aefb94cd56e7c0317fc466a1e89c01c070e97114be5cdc4ce3c99c8f08d00660b1206aa5e1b7b3a85fb1a0b6f3c1d2b3f743085a0d62768e4997e666f3402059fae1600d1d7daf6520e77630bdc95f36b0ec026976e56210a06385f974b6ad97a2c6ecba953797d660ddbee30230566bc9b0fa20e5360d89c21a3d59847345f2c31eb51bfadaf7cb79c2850ee242924fe960cd675642ce103b8082bdd80ea9a64cd8e1c95546bbc60cfc80f9c76a48db8ea844996aa489e7c66298672af82b0beb7b7f0f06ca6264fb9675c9ec5cb6b3f28c4f8f153600216208d216298c0b57dfe03f347a6359702c77ff7d8a2ec35382d6344090dae85d2d5ae7bb8b8b257767e9394d291bc0f06e4e5d4af5b2fc7f44205f3fe0723c159dc137df92bddb3bfe524b655e33d6803e8df874c8d74acad7df8e43572172b7c88c30a822d1fd3303cca495f69f8ef8e5a78e67f27d81963d0034eecee9701e88477c0dca9042d1f26017f8748b50e20270d68c4e7156dca22a405579048f7e12842d138eeb1ce8821cda4cdde6d0bd1ccd3e53a147b3fb10e9f7db8c46f7de68a3ebec9235043639cda42f6ba920df03d1fce104d7285e2fc6cfb121e2c0b10fdcd0f84ea620acb44430c811adeff61f8df64cb47dbe633aa5f3969eab321e5aa353f93c0ba5ab7c8ec67efc96d5988ad8b3b6941d4ac87012dfcee7b039da59a840b9642c549241e82f23a3996900764676b9693dae360d81ad35d129365da6411c573f68e2765905943cbf859d5f657267da81f587617dc146cd08d6786ee21a6f712970f0dac5a2270f1435f98a61507f0e42125d104bee787fe300591e55b6b8d960f41e3081c1cd8bc68f1aefd2fef954a9dc50c3cb6374d64540c844ab9effef5c44e2180d0cd0320d2cbcdf3fc33b20e5619f143b8a66e7bf44652a45032431a3d191bedc70f705592bbc28c5dee499b5e17bb5223c272b14cdb9d13289db61a7a26ecb251c8164e8c9b9318ececfd3289511fa5dae65160e1f27a2105cd77ab00a607181ffc1fe718676abd0dfa2364bde4b8f1c49f61cb1bab701291d969bc54db3879161ec2515a38646d6daa20823ad07d33a968199d82d713f630ead91b1844999b18c90a400339e31f42c0b08a3e62cd4f2a884a972cfb70f68379891669d4d5751bd05c1205246a4d6e187f9affcc473b0f9e2b7ea0c8326d5590c0a996789c4f9853b918ba400b76ca301be8c6d635250e101bdfe02a4b8b11ace8c1275185f1616d8d30a2bc106d2a403b8c6a71fb9e78b4027538fe4755b606b5df2e2a4a2d0e0205d873e3d4ac1d37b26af2567debf016fb5fec93a347031ecbf3a08c36e253a349bb665bfcc42190619d2fe8f00e57571fa797847dbb5abe25ece457d940737fb32fceedc447f4eb088b27405715b89db4e356964df5fbcbc347b4004854cc06961b5e299bad315fe9b62edabe35e61130e07e6548623a7d2e0be4449bc176b6e9337b82380cd694b620f6ff7844fb5232f5f3241e8d55815470459919963c9278140485831e82bee3cbea155bd7a218bed816a2ca05d279aec25f48f165bd02d9641530cf97d4c12653847ad9746a6bb0cbac201a708790a31277ed3bc67e52db1439b620a2b18e5507199d686106cd3d1a9729ab31132153d39b771d56c1e9a646d5d0a55d5da7ead705ff2f0814950036dd05c93018aacec1abd55f9a08c9d263519b91d336986868b8adc8ed19a1089ec7eba5b5b41f8626eb5068c0db5a78f272657779ee0ccc7c06d59b92e7e2fba8752091147a370545a5422e1f2528f2469e1922abe44567225e70536c173fb7e3f7fc3cc44be87964dd1a8d0ffdfc60bc7b117d354f38b0b75c03ea76a8c817cb25f6a33dda4d3fb7c6fd1897401a394b5c5ee12b8778e61155fe8bde369d5d94c0759714f7eb7b37a6228e72f5656919117b1037aff3fbe892dd7c9bcdd69f5b3c28270082aedc3f981e16f13d74abb4048f405c31381ae274453d664ec9e9080faaaca31c3ba4bedbee13833163e0423f0276194a93bb52a0e3b22df5ec67460e083efaed1d51814fa24fc75bcdadba77e87b936133939497e1fa6eaa24a8b38e9c26a2801e598fba3d9e295aa7d1ab5ad758d0f6f0acf097e7efe175ded0b0f0babb2e7fa4ecfba65002a995edba6f8b4acdae4b2ca2f79c222e1f352088deda426025c9af3807ae9552a70f61fb1e3ef3c15d55ac86a84dcd29e4671ca4f740f8cdd7f37424940f35445ef65bf7e5b8ea3d9828e2d966f71d13d034f4fe90e1a954ddf74bc09b129e5258e5ccb9bcbd5c23c974e0a2a912655775832645e87e5add4bb4defee02d2e9ff351b6091ade7434fd9438ced23f10621143706a9fd8231d95de85a9607c8edb79f8c7deee8d93c82e62ff068fd337c6b59bf03bf6e509074992f8551b9b9248702fcf517c77de9f13bb1470d5fb2817b9330c995adb9159032405450a81d3a879c18638e269ae3fd831d525722d239fa5f797c269d406096cf14ac34768b53eb0ca1b24a581951718d56a7bf2fad559173f95239774547be5581aed4ecdfcbc36e80784d97a6b1696be3118f1b477826c4817ffc20ae3a9757ddcd272f9b68e053edf0e165cb772bbe4c0f02a69abc82b40f1036d0649ffb7d02d287fa9263d38f9273b9ca9035538235e6d1f0b650a6a989cafb0b8f9206eb2ee457fc49f755571e4e3c1fafc8f2c8364965ae418a547bb69822f1082b20e4bd4f095d057a8a32b7cbbc6feba4fa40dc596ff5e086c1117565b9e6325a8c01ade37adb162a9bc1a050a4d71f541b73c8ee1e8f8172d1647ce2b8da59fdf21c1985309f3111a552edfc09ee91bee8a3b3ee8ba4fbf39f642aa8e488d15525b13d693016141a6d108d7d9026c4b1f53ffad9c642b1ae2349c326233aebf90043526ebcb94499db5e5ed509a80f0e8dd18ecae8430c86b675a91bb1275a00e96b417c1d22f53a1dc141ac35a9a63b49f662acc6a5ae89704e30e90ffd118e6f15fd0bb977b6c545d18fb618fb8d3f84be37225c5a2d7457259810615df09291ee85c661cb45e0c19cb93bbeda47957751b3897924ded83dc7116db23bac7d382a1a8f9a59028779ba3b24f3a1a4e1bdbf1253be8b3e427dd98290d9d70539847f0ce60a99db16051ded01218fb87ef1ca0bc87491209d72de260ee88a74f40f6953b6f0f17980a7fcd50e80902da9c735a906b921956225ec5987f99c206b0cd0fe49f64492b3932be21991cdb5644b55a1a65673928f642c244cebf0c7394b24c55c938f6748b1203eeafda124dd24c18a6fce7f4ac03d0c17e472b2cd9f40ce25ef63057d8412ced937324c1b479406bda8aeff5cff89874d6849760a3cfa5e92a7235209898622008b41195e830bb5cdbc3b56dd48494f23c92d5e434b95165d1c1f2c15e0d2d79dd5b8081f59fe750004d1a9337cb5531cb56c6d14defd552edaa9048dcf3c2bb802c38db2c83b84292d362505853b88da62055831906eb091aa4e40ef01d2104d3c6b6a1c58cbba55ded6c0ea71bf8ee8d81cb121bf5a10ae53c4be9875e4911c521e984367cc45a2b955328bddfc6e84f80f98cb4e9e8484b253beac2f94edb815f7d5411abbe93a6e3fd6cb63d508819c0fd4283165e9391c717cae3e41148cc9140b44d2ad1412e3ec250238ad2e02e7c5579f16f94e46caff0f90e0131af821d31461b642f4bca1946ef91cf84d77cdb013a14108d16fedcec309ca001704dd8f0e280f7cf53868e9d5003cd3594823b62d025ed65e247a658ff0a8a698143d713c6cd11d13d1355f1bb2cc668be35efd0218f8b54ff11d37d6d3414df6ff525f02985ed55ff1e580578dfe0d7d14b7ffd50c11ee389fe294ecfa5b56bb3ee36d8297b64ea5e2edf46bb536276a30ae9a6bfcae474180c79a2cb1bc1e78caa7a25456a9110daa1788a396c63d05fede9dcb058b91d6c54d1267b9f59827937899b48a790da0d8433d820129f9278e81ecfd1ec589b8cf34f81aecd081b219b32bb84319fb71b1bdbd921a210c77136553890f543c00cb03d555a5ba35823c9387e2f1565ca244fffc9461c6cc6ca2e1bdf38f7e97414ea2f627129c38da57098b6577fc96aa77c66151527df62463f0ce564773343241cbf8511db15d023445d4db0a371060cde2e9a0403da4be7c96f03ecbad9f3303443adc9fc59b3fc3259b0859acff72e8a01c94c66cd88b5f48c8694f82bd77f7254799e114200df865c15e6817d7abe4cb49723533aa8a745c41a0ce2ccc9bb1f21a0a5c980dc54fe8a6a9b5fb2347566260dda9670f3b2e2704b733440e3fe8531c0662c2f1e508c26c5083410fcb03fb7227ece57e629998d0db44e9299f4b26841c83e33a4653e9ebf955da8fef97a605e28c9c6f6a8a26644d77ad3aa9c5866c4607feb228d931fd96f0cb99eeca20366123a218ba8a4c3c43318fead154a8be98c406a484829ac6ff0e3b57c1af8e89c18ae794ba6666dda3a6dde5dfc6f9430f8f938272fd880c1328f48747162de0fa89cadf5ffa099d63f20385672bcce27a8053589cd04fab51f50ea25be497a333e9881302fd73393c49528e6f60a763165ed683ed68ee46f068bc77f5e0e0fa47c6b46d7831be82d3ad4e760c164a4b3a1adbcbbec7e588be71eb40add1111dccd6b323e1143cfabfa27b3b14648e39442ee75e0e8d7d299d1618a4002578aaaa04703006ad08a778726179afada8e86c8343a0ad56072b6891939f1c8d3f924942ab5d6ae4fe45e8a79d2c00a731c2c7aeab052a123c7abaf698bad4b14e29f31c3504b10776fd032282a26f2bdc87f066bbd9ac3323f0b6bc3f20c314822abfb2bd2e23066f97d5c497f42706a79966a20ca9ae6d921f10cd924f978d848b5d209c1aa5e841110b6764f5524afb8396a4cf4d1be371ec8eca4ea5da57185154415ccffb8e9e332ac08c4ff10edacec5c012626a0c88e8a128e00cf625c208b584450ae7de27348e639cfec9b1d93207f913c6a1be06999d1acdaf33ff0ffa8b77bf9a4855b824545c112e43e21bedbd9261f2e706af45446c91ee23b47112ffa0f762bd4745e6792fc390ab256d028bbe248e286c6e671f804a1d5e6ae71b2da02dce2509a7a7f9955e2f511e9749fed150609d439ba80be3cad47273081f7c2eadd6334116e3bdfef4d89327dd548cc60e2a1d8363c78044324da66a9e0464d5e52e634503ff35afe5de7bf9a8aebe92ecf3821cf268eda054779bcd1c8a2603017723c4c1df96bdf83c151df9ca935be2c4f3d7e5e801d70153bf72816cb738bd79c7581fb52e0ea5100a7305b1255ae5d14286459d4166285dff7f98ac49bd64dcd8d0da3c8f7f0ecfd3ff78d1985916c7f86fea4a6d82eae414f7a2d3cbc2d873b0ab5b6a8b909024daf0d18a8aeec05c7a98010a2"}})
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = memfd_create(0x0, 0x2)
fcntl$addseals(r3, 0x409, 0x7)

10.69720589s ago: executing program 2 (id=4919):
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="48000000100005070000040000924211ec000000", @ANYRES32=r2, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
getsockname$packet(r4, &(0x7f0000000540)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x55)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=@delchain={0x5c, 0x2c, 0xf31, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r5, {0xf}, {0xfff2, 0xffff}, {0xffff, 0x1}}, [@filter_kind_options=@f_fw={{0x7}, {0x30, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0x1, 0x9}}, @TCA_FW_MASK={0x8, 0x5, 0x3}, @TCA_FW_MASK={0x8}, @TCA_FW_INDEV={0xffffffffffffff75, 0x3, 'xfrm0\x00'}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4008854}, 0x4010)

9.741252831s ago: executing program 2 (id=4921):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@name={0x1e, 0x2, 0x3, {{0x42, 0x1}}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$tipc(r0, 0x0, 0x0)

8.712510672s ago: executing program 2 (id=4925):
syz_open_dev$loop(&(0x7f0000000240), 0x195d, 0xec4d2770249a3ef5)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x82803, 0x8e)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000400))
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shutdown(0xffffffffffffffff, 0x1)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r5 = socket(0x1d, 0x2, 0x6)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(r5, 0x6a, 0x4, 0xfffffffd, 0x4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="f00000000209010300000000000000000200000908000640000000009c0002000c00028005000100840000002c00018014000300fe8000000000000000000000000000aa14000400ff0200000000000000000000000000012c00018014000300ff0100000000000000000000000000011400040000000000000000000000ffffac14143d2c0001801400030000000000000000000000ffff0a01010114000400fe8000000000000000000000000000aa0600034000000000090001"], 0xf0}, 0x1, 0x0, 0x0, 0x4000000}, 0x14)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$nl_netfilter(0xffffffffffffffff, 0x0, 0x55fdb4595c3d8032)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x117, 0x5, 0x101, 0x200}})

8.164403049s ago: executing program 8 (id=4941):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000140), 0x4)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = accept(r0, 0x0, 0x0)
sendmsg$AUDIT_USER_AVC(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)=ANY=[], 0x454}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0x541b, &(0x7f0000000040)={<r5=>0xffffffffffffffff, 0x1, 0x7, 0x8040000000000000})
close_range(r5, 0xffffffffffffffff, 0x0)

7.764137703s ago: executing program 8 (id=4932):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
close(r1)
lseek(0xffffffffffffffff, 0x7fffffffffffffff, 0x0)
timerfd_create(0x0, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000001, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000e8f000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f0000ffc000/0x2000)=nil)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff6000/0x9000)=nil, 0x9000, 0x1000000, 0x8010, r1, 0x8000000)
write$UHID_SET_REPORT_REPLY(r3, &(0x7f0000000100)={0xe, {0x8, 0x6, 0x8, 0x35, "58b31dd252d8664b337d8097435bd37011511ce571ad91a1164428c4d30d6eed7d6f3ce5b50ad95c65e20a8d8086f5b6de4b636ce0"}}, 0x41)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)

7.755871543s ago: executing program 0 (id=4933):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001300)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd2d, 0x25dfdc00, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {}, {0xfff3, 0xffe0}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0xc854}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006080)=@delchain={0x2c, 0x66, 0x221, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff2}, {}, {0xb, 0xfff3}}, [@TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004800)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000680), r4)

6.328999629s ago: executing program 0 (id=4935):
open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000540)='./bus\x00', 0xe3d1e1f660815c8)
mount$overlay(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
fchmodat(r0, &(0x7f00000000c0)='./file1\x00', 0x0)
unlink(&(0x7f0000000180)='./file1\x00')
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x2020, 0x0)
linkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0xffffffffffffff9c, 0x0, 0x1000)

4.936022285s ago: executing program 5 (id=4938):
r0 = io_uring_setup(0x180d, &(0x7f0000000140)={0x0, 0x4178, 0x400, 0x8001002, 0x3d3})
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
writev(r2, &(0x7f0000002a80)=[{&(0x7f0000000a00)="1b", 0x1}], 0x1)
pipe(&(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0xf3a, 0x0)
splice(r1, 0x0, r5, 0x0, 0x80, 0x8)
readv(r1, &(0x7f0000000680)=[{&(0x7f0000000040)=""/32, 0x20}], 0x1)
write(r3, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4.935343485s ago: executing program 0 (id=4949):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="200000001000010400000000f61c000000480000", @ANYRES32=r1, @ANYBLOB="ae"], 0x20}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$unix(0x1, 0x2, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x50, r4, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)
socket$inet_sctp(0x2, 0x1, 0x84)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
r8 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r8, &(0x7f00000005c0)="bad330fbc9b55400040000ea0756", 0xe, 0x40, &(0x7f00000001c0)={0x11, 0x86dd, r7, 0x1, 0xd8, 0x6, @multicast}, 0x14)

4.933024065s ago: executing program 1 (id=4950):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x8140, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
migrate_pages(r1, 0x1000, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0x94)
preadv2(r0, &(0x7f0000002500)=[{&(0x7f0000001580)=""/193, 0xc1}], 0x1000000000000273, 0x0, 0x0, 0x1c)

4.270045602s ago: executing program 8 (id=4939):
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000040)="01bb", 0x2}, {&(0x7f0000000000)='?\x00', 0x2}], 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r2, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)={0x1c, r3, 0x1, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x24000010}, 0x24000090)
syz_emit_ethernet(0x4e, &(0x7f0000000380)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x9, 0x6, "9eebf9", 0x18, 0x6, 0xff, @dev={0xfe, 0x80, '\x00', 0x39}, @local, {[], {{0x4e22, 0x4e24, 0x41424344, 0x41424344, 0x1, 0x0, 0x6, 0xc2, 0xfffd, 0x0, 0xffd, {[@window={0x3, 0x3, 0x7}]}}}}}}}}, 0x0)

4.261506552s ago: executing program 0 (id=4952):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000340)={[{0x122e, 0x2, 0xfe, 0x1, 0x0, 0x88, 0x0, 0x0, 0x5, 0xff, 0x1f}, {0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfd, 0x0, 0x2, 0x20, 0x0, 0x1000000}]})
socket$nl_route(0x10, 0x3, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x9, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000006800e97800000000000000000a00000000000000040004"], 0x1c}}, 0x40010)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)

3.754329338s ago: executing program 1 (id=4940):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x800040, &(0x7f00000002c0)={[{@test_dummy_encryption_v1}, {@bsdgroups}, {@nouid32}, {@i_version}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x471, &(0x7f0000000a00)="$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")
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000000)=@fragment={0x88, 0x0, 0x5, 0x1, 0x0, 0x1, 0x8000064}, 0x8)
connect$inet6(r0, 0x0, 0x0)
ioctl$XFS_IOC_RTGROUP_GEOMETRY(r0, 0xc0805841, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO(r0, 0xc0389424, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000580)=ANY=[], 0x8)
connect$inet6(r1, &(0x7f00000004c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendmmsg$inet6(r1, &(0x7f0000000980)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="82", 0x1}, {&(0x7f00000001c0)=' ', 0x1}], 0x2}}], 0x1, 0x4400c800)
sendto$inet6(r1, &(0x7f0000000300), 0x16, 0x3b00, 0x0, 0xfffffffffffffdfd)

3.683815319s ago: executing program 5 (id=4942):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000006c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@delqdisc={0x24, 0x25, 0x1, 0x70bd25, 0x255fdbff, {0x0, 0x0, 0x0, r6, {}, {0x8, 0xfff1}, {0x4, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20081054}, 0x24008088)

3.675054599s ago: executing program 1 (id=4943):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_ATM={0x8, 0x4, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$kcm(r2, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r7, 0xbe}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)='\'', 0x1}], 0x1}, 0x5)

3.54595994s ago: executing program 8 (id=4944):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r2, 0x4b52, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x2000, 0x5}]})

3.54531277s ago: executing program 0 (id=4957):
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
epoll_create(0x7e)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xffffffffffffffff, 0x0, 0x0, 0x1000001000, 0x46}, 0x0, &(0x7f0000000000)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0xf, 0x80000002}, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)

3.436246842s ago: executing program 5 (id=4945):
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000100))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r0, 0x403c6f2b, &(0x7f0000001e40)={0x4, {"0dbad96fff01000008ff002084000100", "3dfab043e15fad27a639f105b5e9f977", "a7c947420000000000000000ff4a70f3"}, 0x4000c, 0x5})
preadv(r0, &(0x7f0000000480)=[{&(0x7f0000000180)=""/1, 0x1}], 0x1000000000000098, 0x1, 0xd)
unshare(0x22020400)
r1 = syz_open_procfs(0x0, &(0x7f0000001080)='attr/fscreate\x00')
lseek(r1, 0xe, 0x3)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r0, 0x403c6f2b, &(0x7f0000000080)={0x6, {"4b81b0c732e92eb1fd60fbf401687d72", "1cea03ca4fe1c1f1e31253bda1f1fed5", "d80190bae206002cb2a1a28cde21dbfd"}, 0x2, 0x7})

2.837797348s ago: executing program 0 (id=4946):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000b80)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
pipe2(&(0x7f0000000580)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r2, &(0x7f0000000040)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
tee(r1, r3, 0xfffffffffffffc01, 0x0)
tee(r1, r3, 0x1fc, 0x0)

2.837625538s ago: executing program 1 (id=4947):
syz_open_dev$media(&(0x7f0000000040), 0x7fdffffe, 0x0)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x101000, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
socket(0x2b, 0x80801, 0x1)
openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi3\x00', 0x2000, 0x0)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x9, 0x1ff, 0x1, 0x0, 0x7ffe, 0xffffffffffff8000, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x2000000000008, 0xffffffffffffffff, 0x2, 0x3, 0x7, 0x80000006, 0x8}, 0x0, 0x0)
close(0x3)

2.837221148s ago: executing program 8 (id=4948):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001300)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd2d, 0x25dfdc00, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {}, {0xfff3, 0xffe0}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0xc854}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006080)=@delchain={0x2c, 0x66, 0x221, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff2}, {}, {0xb, 0xfff3}}, [@TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004800)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000680), r4)

2.698976999s ago: executing program 1 (id=4951):
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x9102})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x40480, 0x0)
close(r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0x10}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x3, 0x7fffffff, 0x6361, 0x5, 0xffffffff, 0x407}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffffd, 0x101}}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x300, r6, 0x3e}, 0x80, &(0x7f0000003600)=[{&(0x7f0000000180)="27030200590214000600006fb96dbcf706e10500000086dd", 0x18}, {0x0}, {&(0x7f00000022c0)="c1cc6316b04e1180368f8d022708e1f23fb7295c22407c0efd450c4178f6f739e481f136a220101c7650e99f085a2ebb821de18fd510ed7bd6d4fa08c84d414ea15d86ea7bbf8c87aaf443e2f5ea92c1b371c91e652d552aff720fa0811ab30a483ace91278152125ae2299aceafe392a66e0a671a1e235f2850de518d6bfdd2ce8d009bcba53aa07d47ca8954be70ba978d1a2aa1f027db43c290ff21cdccabd7b7759f1513a608b59f5aab453b300f3ee503c772c1577caa855c7c2dba1f7cf50f87a131ed287ef59828f1600c11ee43996532f68a992cb4ec9142652a9191c30d6c0321d81fd7006227606242385d2d0d29d610ffc955911e418d79c658beae98d43ec1f6b1465eaf1c1c79ef99b7c17f7fe26f5134dceae7e40fbbd503492ade4d2c08a0b1ee422061c2f8ff3146624b25571bfe35a6564eedce05db4227c308855e623610e6c53a6a1a5674fc5d431f4f3608f9e60233c61d7927f08f7a49ae044f364e9b51f6a69b23266f3bd69d0aac610227138b6c29c13b0cfa532bfab3d55bad4fba9808b73ba283eca4f1ecf328d40015d0de70dff5f8d359f7e5b1a047ee66eefaa1da7c674cad6d34c4acb56fe9e844b2c8feac94ce2ba329d92bba88fc65a266163a03a0380580a961fc8ebae633d5a3c623a6bc91c33e57abd19e7a27d77523cc4a2a022f1b0409e6fc6f0417dc9643508c2770669d424918070abb53d60bdd3ca9f403feee0b1582d8381dec0dac932ca911c528af20186a451cd0b292082fbaaa8cd8822434c9618bb452ba0a71468b317c2d68d7ee9d4e0de3aedb3d7bf701593b86ffd72aa17971eb9601aae4b06627abb59ee7455abd29a7350085197a1c91c0c9448108e3ce32720a278fb35c999703e8141a1ea81f578f414f81134489db55c8ca953bb5d648dc43aa6b9bcb916c02c004efc53b454e73dda4938c9c7ad3b4c2ebe3651baa577abeac1cbc18f913e91de96760777dfe7a46976a3b570cab2747627e0e36d0483621a21a88018e6618552ea4025278effd29858b6d75210eed2f115033f8ef39ebc81b17fe51678edb2a24fde7b0e09e710e1a2b829ff9efe6d3b6a2cd5287fd0ad12d152e8887c2057031b90d870b915fd94fda362a88c5d1032535c00f5c03ab4fc63c2c34e4a63ccf3dadb5c58d6ef7b774922a4847ee59dd90aa0f4cca5b37b9bfdb06d1891f9bc900c530e85012452a57f75b2b0f1543c72f8e80fc1c3da989a452baf6650376d0841a85520ead809e12c841a19fbaf8c5e0134b640a6b7de65d4db7b99ad7c924cda6d86279dfce3aa6e17b8190ccd61c1678ec237f649ea9e69d798fd041f02de9db72e065585cc9f5fab70d0fa0af0d4459a2361587abdc48be7dc6c3356d62535dd23931831d91cff1d5200946a2bad81b48f33e6b17d12a9b5b4ce60003e6036b4719aa8f80da2f0a12a02be4f627d79132ab5d950d5af75fdd4b9da683b5fe59cca67d42860636cf7b44c38a623e76b1626f83994c460c247dfc4d2e8163c6638d6be0fb7dd2263c5ff97f0ea96cea42b69bc1fc730f930ad67ad46e5fbf7ad3f42853d5168a90cbb8437b7d239ab70bdbb2c1882f3138048b88d420da6c774fa7ea41380d5b1cac8274a1f2dcf8f4b9e4e7ddc2003ba9830eccd21ce7619dcfb19a72ee1a5924d845b813d65ec8fbf74851d46575cfe48a92e2a83b8275045bd3aa4c26999f2eff189520900a35aff2bf4013d7628459a85750a51288c3276201c18ea4c9fa5e5c0307a218fe37f78e13a8820dc6c8fc6abc678c0b06a6aa9d568e42b248bb64b637d61f9bc3efc96886f271244e2cf6ec220bb31501e08f3709afaad8dca5c532b6e9f6c5ede6340c909cefb4632821bed10aabdbdf91e27804da5e81c3d1d17a9a9f0b3b5e93b3f95c7ca4ccc499ea258dc7885b39cd6ad2f2963a330b8d3a16aacf6abb41156247257c265ea644a0bf543f0580ed5453c592e74420627e0c6e2e134da623ffa1375e04eeed88d49849e1661bdec119a5a97e7156d57a74ced4cc55ba2bf9780cac1b7cf5aaa7d9342baaced8af9f5e8d2ce098631a8fcdc740b5a1f7ec03b1038458efe7f6af3ef1e8f67d9996618f503545cdee9476754c9b49f70b9dd869d773c70c2d0b8b264815169ddf6b3ccbdecff18c8750476daa78ec4d3463281c1f96c0d6f2e15b2f59de45071710c8adca3c49eb4acdee4327aef932ab63224639316e1e3755b4256442f97a1f642741430746c11f0d45331af7dfda504d96b8ac2b6c42467652ed6c2dc6809f0e2261fefa13060b24a6f3a3fcc5b9ab7e83105e9c7d4f2c488d02ed17624875ee71406f2eeea3beac65dc141c0417ca68bf6406b535168090676fa2896a7c42cf09ea632fa33fff6bbfae10f8426174c44aac5c5b45406ec9e40e7fa44fa1c419eb744b00d46f510c3538a4ec6f254bfb49576969dfa121924cc7d152c889c2d1597a00aa6f9928f451cceb735d9770758f5548341c2390eed020f95b671c13f2ff7538890d3afa4765b0ff8dcd29743d3338c32621c6f1fd1f2cf73c5a9588b6d82c78f3400dfc8c80892e72746698224578a08a7d5dc3ad5248eb7fff9e44342649a93af3fcc301501281674a9c931e9b1fd056afc8cee6d5419dd65f6be656f4415603b9aff48e32b7a3a404e51c63fdebca85ed842b5a519ddfc60878ceac5e1248674c282708ed5335a301590d63d4a64cffcadd5722d4879be526aff3aaf9a1dd0a909398446239e93d2975b8a162bde4c0ab470bc305aad39ebfcabcae92b57e4ef27f7379571f252a74b95d062f4ebb717dfacdf750d5f7f82c74a639509d1cfc5023c283105835ff651530e6d1fbb25faf5d87b0c9e915ccd97976318f34ffc7a673f80a639ef4c5b122480d6b0c22540502e4a22099dca95ba5d9139cc165a3bf84e081cae66cacde51818c67dcb1d0e22803accb717225f00efdf9b195ade5576bf13a239fe335760a3c1d9dfebd714720084e28982797052907cfe97aefc1e3371916537fba8a2493cf0e7314d716d9ab9150bd8c95e9ac1bf6e511c827147138511a9d794cd9f8b4dcf0f39743b686847edc2d52962e1d21bd35a418ad92c0eaea9d55ee7e7ac077fd8a62a5cc494dd60aea31cf66b0bec884da0361b8f7c7b76cb2b7a8a698576a483fbff051fc9e1ec8017c44368772eaa7ce469e7caa143ba733d465f1fb10f7dd659d56525113d1b429f3b3e2a07ca8e53ad0342a559faec9475fdae2572d4e3dc1deec904408143cdd18e2434366763c3481b70df7c3560f19dac5864bcfa7a1226b052a4445e1172c489b393436a123db076887206a0b1c5578b6e5cfbd60838c4ffacaca09e85ac15b1cfa4b518afd3c93d687caab41676dff2726f5c179673b08ada01087d43439424bbc141fac49a73bec071824d53812daecfe0950453d3b5db153a47135e5a46388f94b783de8023a9cd236b34985cfeeaeb9e0cab13f5954746e5d5b8fd0c0dff3c5dee6a6cef2cbb9a986f942653ca1d5746a96da2c82c6cee7a57bf311be4f976fae112517a75107589e25c627b554b1e838e0804d7c75939d46886b5d7bba704a18", 0x9f5}], 0x3}, 0x0)

2.69285354s ago: executing program 2 (id=4953):
prlimit64(0x0, 0x8, &(0x7f0000000000)={0x2, 0x10001}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x10000, 0x6, 0xeeee0000, 0x2000, &(0x7f0000a1b000/0x2000)=nil})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f0000000240)={'\x00', 0x4, 0x9, 0xbd, 0x0, 0xffff, 0x2, 0x2, '\x00', 0x654})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.540121362s ago: executing program 5 (id=4954):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r3, 0x29, 0x6, &(0x7f00000007c0)={0x65, {{0x29, 0x0, 0x8000000, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2b}}, 0x3}}}, 0x11cb40c454c80c15)

2.492755272s ago: executing program 8 (id=4955):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x8140, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
migrate_pages(r1, 0x1000, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4000}, 0x94)
preadv2(r0, &(0x7f0000002500)=[{&(0x7f0000001580)=""/193, 0xc1}], 0x1000000000000273, 0x0, 0x0, 0x1c)

1.443252194s ago: executing program 2 (id=4956):
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x40400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeeb, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x320c8d4, &(0x7f0000000600)={[{@mode={'mode', 0x3d, 0x4}}], [{@context={'context', 0x3d, 'system_u'}}]})

1.349897325s ago: executing program 5 (id=4958):
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000040)="01bb", 0x2}, {&(0x7f0000000000)='?\x00', 0x2}], 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r2, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)={0x1c, r3, 0x1, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x24000010}, 0x24000090)
syz_emit_ethernet(0x4e, &(0x7f0000000380)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x9, 0x6, "9eebf9", 0x18, 0x6, 0xff, @dev={0xfe, 0x80, '\x00', 0x39}, @local, {[], {{0x4e22, 0x4e24, 0x41424344, 0x41424344, 0x1, 0x0, 0x6, 0xc2, 0xfffd, 0x0, 0xffd, {[@window={0x3, 0x3, 0x7}]}}}}}}}}, 0x0)

1.180030857s ago: executing program 1 (id=4959):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x7})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000300))
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x40200, 0x0)
preadv2(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/167, 0xa7}], 0x20, 0x0, 0x4, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

1.113627057s ago: executing program 5 (id=4960):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000780)={'pim6reg0\x00', 0x400})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000780)={'pim6reg0\x00', 0x400})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000280)={'ipvlan1\x00', 0x400})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2c0800, 0x0)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180))
ioctl$SIOCSIFHWADDR(r3, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})

0s ago: executing program 2 (id=4961):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x40180, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x80, 0x1000000, 0x8, 0x1}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0x7, 0xffe0}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x8, 0x9}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8001}, 0x4890)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x4207, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'syzkaller0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f00000002c0)="05031400d3fc141200004788031c09102c28", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x88a8, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)

kernel console output (not intermixed with test programs):

y lower: 18446744073709551615/255
[  654.445099][T15691] overlayfs: failed to clone lowerpath
[  656.470833][    T9] team0 (unregistering): Port device team_slave_1 removed
[  656.556555][    T9] team0 (unregistering): Port device team_slave_0 removed
[  657.421274][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  657.524147][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  658.904898][    T9] bond0 (unregistering): Released all slaves
[  659.060138][T15628] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2900'.
[  659.117320][T15677] netlink: 'syz.2.2910': attribute type 39 has an invalid length.
[  660.658615][T15763] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  661.131221][T15338] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  661.181947][T15338] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  661.235608][T15338] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  661.271846][T15338] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  661.613110][T15338] 8021q: adding VLAN 0 to HW filter on device bond0
[  661.825503][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  661.915810][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  662.142707][T15338] 8021q: adding VLAN 0 to HW filter on device team0
[  663.236105][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  663.284913][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  663.294710][ T5739] bridge0: port 1(bridge_slave_0) entered blocking state
[  663.301908][ T5739] bridge0: port 1(bridge_slave_0) entered forwarding state
[  663.357805][T15338] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  663.429104][T15338] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  663.489894][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  663.500337][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  663.544462][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  663.562516][ T5739] bridge0: port 2(bridge_slave_1) entered blocking state
[  663.569767][ T5739] bridge0: port 2(bridge_slave_1) entered forwarding state
[  663.621230][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  663.647546][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  663.682856][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  663.799262][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  663.841028][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  663.976742][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  663.994800][T15833] overlayfs: failed to clone lowerpath
[  664.143329][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  664.346361][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  664.600356][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  664.635696][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  664.696292][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  664.706587][ T5739] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  665.037816][T15843] virt_wifi0 speed is unknown, defaulting to 1000
[  665.278760][T15843] tipc: Started in network mode
[  665.283920][T15843] tipc: Node identity 8, cluster identity 4711
[  665.290506][T15843] tipc: Node number set to 8
[  665.943857][T15554] tipc: Left network mode
[  668.600025][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  668.607529][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  668.674486][T15338] 8021q: adding VLAN 0 to HW filter on device batadv0
[  670.172136][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  670.200021][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  670.244614][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  670.267345][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  670.303792][T15338] device veth0_vlan entered promiscuous mode
[  670.335045][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  670.367955][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  670.401485][T15338] device veth1_vlan entered promiscuous mode
[  670.521274][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  670.539839][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  670.552654][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  670.576955][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  670.779362][T15338] device veth0_macvtap entered promiscuous mode
[  670.797328][T15338] device veth1_macvtap entered promiscuous mode
[  670.966908][T15338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  671.288561][T15338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  671.436539][T15338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  671.454959][T15338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  671.537111][T15338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  671.548426][T15338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  671.566585][T15338] batman_adv: batadv0: Interface activated: batadv_slave_0
[  671.578344][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  671.599453][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  671.644464][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  671.686575][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  674.610678][ T4282] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  674.624242][ T4282] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  674.632978][ T4282] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  674.653823][ T4282] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  674.663414][ T4282] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  674.670818][ T4282] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  674.882783][T15947] virt_wifi0 speed is unknown, defaulting to 1000
[  674.952850][T15957] No such timeout policy "syz1"
[  676.987184][T15947] chnl_net:caif_netlink_parms(): no params data found
[  677.038603][T14758] Bluetooth: hci5: command 0x0409 tx timeout
[  679.108463][ T4287] Bluetooth: hci5: command 0x041b tx timeout
[  679.614687][T15947] bridge0: port 1(bridge_slave_0) entered blocking state
[  679.638750][T15947] bridge0: port 1(bridge_slave_0) entered disabled state
[  679.738748][T15947] device bridge_slave_0 entered promiscuous mode
[  679.837246][T15947] bridge0: port 2(bridge_slave_1) entered blocking state
[  679.844781][T15947] bridge0: port 2(bridge_slave_1) entered disabled state
[  679.866150][T15947] device bridge_slave_1 entered promiscuous mode
[  680.111471][T16012] overlayfs: failed to clone upperpath
[  681.198447][ T4287] Bluetooth: hci5: command 0x040f tx timeout
[  682.288623][T15947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  682.361022][T15947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  682.494850][T15947] team0: Port device team_slave_0 added
[  683.103415][T16035] Device name cannot be null; rc = [-22]
[  683.297665][ T4287] Bluetooth: hci5: command 0x0419 tx timeout
[  683.573168][T15947] team0: Port device team_slave_1 added
[  684.530541][T15947] batman_adv: batadv0: Adding interface: batadv_slave_0
[  684.565348][T15947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  684.678115][T15947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  684.947067][T15947] batman_adv: batadv0: Adding interface: batadv_slave_1
[  685.287572][T15947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  685.392407][T15947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  685.692818][T15947] device hsr_slave_0 entered promiscuous mode
[  685.793780][T15947] device hsr_slave_1 entered promiscuous mode
[  687.932343][   T51] device hsr_slave_0 left promiscuous mode
[  687.966882][   T51] device hsr_slave_1 left promiscuous mode
[  688.031013][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  688.062194][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  688.109458][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  688.124388][   T51] device bridge_slave_1 left promiscuous mode
[  688.144125][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  688.182981][   T51] device bridge_slave_0 left promiscuous mode
[  688.223295][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.544224][   T51] device veth1_macvtap left promiscuous mode
[  688.575774][   T51] device veth0_macvtap left promiscuous mode
[  688.689841][   T51] device veth1_vlan left promiscuous mode
[  688.778277][   T51] device veth0_vlan left promiscuous mode
[  689.215979][T16099] loop0: detected capacity change from 0 to 1024
[  689.312239][T16099] EXT4-fs: Ignoring removed orlov option
[  689.409271][T16099] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  690.672086][T12459] EXT4-fs (loop0): unmounting filesystem.
[  690.808254][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  690.814615][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  695.814380][   T51] team0 (unregistering): Port device team_slave_1 removed
[  696.066608][   T51] team0 (unregistering): Port device team_slave_0 removed
[  696.873375][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  696.969013][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  698.020871][   T51] bond0 (unregistering): Released all slaves
[  698.135298][T16080] device batadv_slave_0 entered promiscuous mode
[  698.339925][T16080] device batadv_slave_0 left promiscuous mode
[  698.803709][T16176] No such timeout policy "syz1"
[  698.817404][T16176] autofs4:pid:16176:autofs_fill_super: called with bogus options
[  699.526925][T16181] netlink: 56 bytes leftover after parsing attributes in process `syz.2.3013'.
[  699.592944][T15947] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  699.613376][T15947] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  699.646727][T15947] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  699.681485][T15947] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  701.136442][T15947] 8021q: adding VLAN 0 to HW filter on device bond0
[  701.215887][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  701.231955][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  701.308006][T15947] 8021q: adding VLAN 0 to HW filter on device team0
[  701.338459][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  701.364991][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  701.385459][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  701.392636][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  701.601877][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  701.720957][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  701.840189][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  701.950384][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  701.957608][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  702.184050][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  702.285159][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  702.342626][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  702.364069][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  702.435542][T15947] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  702.497319][T15947] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  702.555561][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  702.564282][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  702.588334][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  702.640961][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  702.725602][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  702.855334][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  702.966859][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  703.131388][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  704.424169][T16224] device bridge_slave_1 entered promiscuous mode
[  705.052346][T16230] netlink: 'syz.0.3023': attribute type 8 has an invalid length.
[  706.588717][ T4881] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  706.606407][ T4881] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  707.232456][T15947] 8021q: adding VLAN 0 to HW filter on device batadv0
[  714.980988][T16316] Device name cannot be null; rc = [-22]
[  715.030910][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  715.061091][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  715.122967][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  715.144762][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  715.195625][T15947] device veth0_vlan entered promiscuous mode
[  715.214703][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  715.244674][ T5513] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  715.276419][  T128] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  715.289087][T15947] device veth1_vlan entered promiscuous mode
[  715.371661][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  715.469554][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  715.486335][  T128] usb 1-1: device descriptor read/64, error -71
[  716.036050][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  716.067421][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  716.098294][T15947] device veth0_macvtap entered promiscuous mode
[  716.127092][  T128] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  716.233507][T15947] device veth1_macvtap entered promiscuous mode
[  716.296428][  T128] usb 1-1: device descriptor read/64, error -71
[  716.333018][T15947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  716.372393][T15947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.412958][T15947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  716.426829][  T128] usb usb1-port1: attempt power cycle
[  716.477292][T15947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.510907][T15947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  717.122731][T15947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  717.184102][T15947] batman_adv: batadv0: Interface activated: batadv_slave_0
[  717.222500][T15947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  717.269907][T15947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  717.327016][T15947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  717.736671][T15947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.036656][  T128] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  718.049716][T15947] batman_adv: batadv0: Interface activated: batadv_slave_1
[  718.255722][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  718.266309][  T128] usb 1-1: device not accepting address 24, error -71
[  718.284558][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  718.331478][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  718.362292][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  718.547202][T15947] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  718.593332][T15947] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  719.080790][T15947] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  719.496098][T15947] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  721.064563][T16390] overlayfs: failed to clone upperpath
[  721.153856][ T4881] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  721.186326][ T4881] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  721.256340][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  721.284906][ T7835] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  721.308990][ T7835] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  721.361128][T15554] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  723.618666][T16421] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  725.680433][T16436] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  727.497065][T16446] relay: one or more items not logged [item size (56) > sub-buffer size (10)]
[  729.029315][T16474] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3076'.
[  729.752794][T16480] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  730.821364][T16485] loop7: detected capacity change from 0 to 4096
[  730.945968][T16485] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[  730.956958][T16485] NILFS (loop7): mounting unchecked fs
[  731.210903][T16485] NILFS (loop7): recovery complete
[  731.255540][T16487] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  732.313726][T16498] binder_alloc: 16496: binder_alloc_buf, no vma
[  733.391807][T16518] input: syz1 as /devices/virtual/input/input24
[  733.489386][T16519] netlink: 48 bytes leftover after parsing attributes in process `syz.7.3084'.
[  735.756089][T16531] autofs4:pid:16531:autofs_fill_super: called with bogus options
[  737.675352][T16547] loop0: detected capacity change from 0 to 16
[  737.719405][T16547] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  737.890550][T16319] udevd[16319]: incorrect cramfs checksum on /dev/loop0
[  738.218268][T16551] netlink: 'syz.1.3091': attribute type 3 has an invalid length.
[  739.084377][T16547] overlayfs: missing 'lowerdir'
[  742.147838][T16587] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3097'.
[  745.236554][T16618] loop0: detected capacity change from 0 to 256
[  745.295132][T16618] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[  745.344129][   T26] audit: type=1800 audit(2000000273.302:76): pid=16618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3106" name="file1" dev="loop0" ino=1048759 res=0 errno=0
[  746.802780][T16621] blk_print_req_error: 16 callbacks suppressed
[  746.802794][T16621] I/O error, dev loop15, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1
[  746.819167][T16621] SQUASHFS error: Failed to read block 0x0: -5
[  751.110430][T16656] loop7: detected capacity change from 0 to 2048
[  752.082060][T16656] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  752.233643][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  752.240266][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  753.720306][T16665] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  754.993045][T16684] loop7: detected capacity change from 0 to 128
[  755.302312][T16684] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  755.410428][T16684] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  756.267479][T16698] overlayfs: failed to clone upperpath
[  756.346009][T16701] netlink: 'syz.7.3124': attribute type 5 has an invalid length.
[  757.115031][ T4881] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  757.337935][T16710] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3131'.
[  761.444455][T16744] overlayfs: failed to clone upperpath
[  761.598287][T16751] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  761.681311][T16751] overlayfs: failed to look up (tracing) for ino (-66)
[  763.741665][T16763] block device autoloading is deprecated and will be removed.
[  767.545432][T16812] binder: BINDER_SET_CONTEXT_MGR already set
[  767.551464][T16812] binder: 16811:16812 ioctl 4018620d 200000004a80 returned -16
[  769.869688][T16825] xt_CONNSECMARK: invalid mode: 66
[  771.402202][T16831] loop0: detected capacity change from 0 to 1024
[  771.606649][   T26] audit: type=1326 audit(2000000299.573:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  772.355814][   T26] audit: type=1326 audit(2000000299.573:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  772.475699][   T26] audit: type=1326 audit(2000000300.293:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  772.573657][   T26] audit: type=1326 audit(2000000300.293:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  772.774962][   T26] audit: type=1326 audit(2000000300.293:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  773.946311][   T26] audit: type=1326 audit(2000000300.293:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  774.009383][   T26] audit: type=1326 audit(2000000300.303:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  774.125810][   T26] audit: type=1326 audit(2000000300.303:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  774.210581][T16862] fuse: Bad value for 'fd'
[  774.222276][   T26] audit: type=1326 audit(2000000300.303:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  774.334925][   T26] audit: type=1326 audit(2000000300.303:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16836 comm="syz.1.3162" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  774.363486][T16871] loop7: detected capacity change from 0 to 256
[  774.568204][T16871] FAT-fs (loop7): Directory bread(block 64) failed
[  774.574884][T16871] FAT-fs (loop7): Directory bread(block 65) failed
[  774.581473][T16871] FAT-fs (loop7): Directory bread(block 66) failed
[  774.588093][T16871] FAT-fs (loop7): Directory bread(block 67) failed
[  774.594748][T16871] FAT-fs (loop7): Directory bread(block 68) failed
[  774.601318][T16871] FAT-fs (loop7): Directory bread(block 69) failed
[  774.607956][T16871] FAT-fs (loop7): Directory bread(block 70) failed
[  774.614541][T16871] FAT-fs (loop7): Directory bread(block 71) failed
[  774.621301][T16871] FAT-fs (loop7): Directory bread(block 72) failed
[  774.628055][T16871] FAT-fs (loop7): Directory bread(block 73) failed
[  775.253617][T16881] bio_check_eod: 51 callbacks suppressed
[  775.253631][T16881] syz.7.3171: attempt to access beyond end of device
[  775.253631][T16881] loop7: rw=524288, sector=1192, nr_sectors = 4 limit=256
[  775.273991][T16881] syz.7.3171: attempt to access beyond end of device
[  775.273991][T16881] loop7: rw=0, sector=1192, nr_sectors = 4 limit=256
[  775.894374][T16886] binder: BINDER_SET_CONTEXT_MGR already set
[  775.908883][T16886] binder: 16885:16886 ioctl 4018620d 200000004a80 returned -16
[  779.778296][T16899] fuse: Bad value for 'fd'
[  780.146675][T16917] fuse: Bad value for 'fd'
[  780.468588][T16929] loop0: detected capacity change from 0 to 64
[  781.189094][T16929] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3187'.
[  781.606984][T16947] binfmt_misc: register: failed to install interpreter file ./file0
[  782.740577][T16952] netlink: 'syz.2.3193': attribute type 3 has an invalid length.
[  784.145062][T16958] fuse: Bad value for 'fd'
[  784.259681][T16964] fuse: Bad value for 'fd'
[  787.869993][T17002] zonefs (nullb0) ERROR: Not a zoned block device
[  788.318823][T17001] futex_wake_op: syz.5.3204 tries to shift op by 144; fix this program
[  788.462860][T17007] vivid-007: disconnect
[  788.690958][T16994] vivid-007: reconnect
[  789.758469][T17012] autofs4:pid:17012:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a)
[  789.775132][T17018] fuse: Bad value for 'fd'
[  791.299120][T17039] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  793.087061][T17059] lo speed is unknown, defaulting to 1000
[  793.093193][T17059] lo speed is unknown, defaulting to 1000
[  793.106190][T17059] lo speed is unknown, defaulting to 1000
[  793.242787][T17059] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  793.582595][T17059] lo speed is unknown, defaulting to 1000
[  793.588879][T17059] lo speed is unknown, defaulting to 1000
[  793.769170][T17059] lo speed is unknown, defaulting to 1000
[  794.513536][T17059] lo speed is unknown, defaulting to 1000
[  794.520020][T17059] lo speed is unknown, defaulting to 1000
[  794.564437][T17059] lo speed is unknown, defaulting to 1000
[  798.238265][T17121] Device name cannot be null; rc = [-22]
[  799.446493][T17123] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  799.463596][T17123] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  799.961991][T17123] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  800.222106][ T4316] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  801.007393][T17133] siw: device registration error -23
[  801.551580][ T4287] Bluetooth: hci5: command 0x0406 tx timeout
[  802.134485][T17143] binder_alloc: 17140: binder_alloc_buf, no vma
[  802.640080][T17157] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3242'.
[  805.617347][T17178] input: syz1 as /devices/virtual/input/input25
[  813.715421][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  813.722945][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  815.153694][T17264] virt_wifi0 speed is unknown, defaulting to 1000
[  815.167117][T17264] lo speed is unknown, defaulting to 1000
[  815.979164][T17264] tipc: Started in network mode
[  815.984115][T17264] tipc: Node identity 8, cluster identity 4711
[  815.990279][T17264] tipc: Node number set to 8
[  817.346184][T17284] IPv6: syztnl0: Disabled Multicast RS
[  817.877861][T17280] virt_wifi0 speed is unknown, defaulting to 1000
[  817.887041][T17280] lo speed is unknown, defaulting to 1000
[  817.950273][ T7823] tipc: Left network mode
[  819.335846][T17308] loop7: detected capacity change from 0 to 256
[  819.384969][T17306] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  820.125027][T17308] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[  820.176303][   T26] kauditd_printk_skb: 43 callbacks suppressed
[  820.177710][   T26] audit: type=1800 audit(2000000348.146:130): pid=17299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3274" name="file1" dev="loop7" ino=1048763 res=0 errno=0
[  824.730846][T17341] overlayfs: failed to clone lowerpath
[  825.052891][T17357] program syz.7.3285 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  830.843829][T17424] fuse: Bad value for 'fd'
[  831.654894][T17448] loop7: detected capacity change from 0 to 8
[  831.729839][T17448] SQUASHFS error: xz decompression failed, data probably corrupt
[  831.737769][T17448] SQUASHFS error: Failed to read block 0x108: -5
[  831.744316][T17448] SQUASHFS error: Unable to read metadata cache entry [106]
[  831.751725][T17448] SQUASHFS error: Unable to read inode 0x11f
[  832.611676][T17460] hub 8-0:1.0: USB hub found
[  832.623285][T17460] hub 8-0:1.0: 1 port detected
[  832.914405][T17459] ceph: No mds server is up or the cluster is laggy
[  833.047426][T16677] libceph: connect (1)[c::]:6789 error -101
[  833.178886][T16677] libceph: mon0 (1)[c::]:6789 connect error
[  833.294043][T17472] fuse: Bad value for 'fd'
[  834.487604][T17483] fuse: Bad value for 'fd'
[  836.640411][T17505] overlayfs: failed to clone upperpath
[  838.853323][T17530] overlayfs: failed to clone lowerpath
[  839.324462][T17532] bridge0: port 1(bridge_slave_0) entered disabled state
[  839.333177][T17532] bridge0: port 2(bridge_slave_1) entered disabled state
[  841.184897][T17542] fuse: Bad value for 'fd'
[  841.345975][T17556] fuse: Bad value for 'fd'
[  841.526424][T17558] VFS: Mount too revealing
[  842.352420][T17564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3334'.
[  843.738797][T17585] fuse: Bad value for 'fd'
[  846.496904][T17620] virt_wifi0 speed is unknown, defaulting to 1000
[  846.497778][T17620] lo speed is unknown, defaulting to 1000
[  847.420358][T17628] fuse: Bad value for 'fd'
[  848.791166][T17651] virt_wifi0 speed is unknown, defaulting to 1000
[  848.803139][T17651] lo speed is unknown, defaulting to 1000
[  852.695204][T17687] virt_wifi0 speed is unknown, defaulting to 1000
[  852.745472][T17687] lo speed is unknown, defaulting to 1000
[  852.824163][T17699] loop7: detected capacity change from 0 to 512
[  852.944357][T17699] EXT4-fs error (device loop7): ext4_get_branch:178: inode #13: block 2: comm syz.7.3366: invalid block
[  853.091219][T17699] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz.7.3366: invalid indirect mapped block 10 (level 1)
[  853.143205][T17699] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz.7.3366: invalid indirect mapped block 8 (level 1)
[  853.341428][T17699] EXT4-fs (loop7): 1 truncate cleaned up
[  853.348065][T17699] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  854.188740][T17699] EXT4-fs (loop7): shut down requested (2)
[  854.821222][T17719] EXT4-fs (loop7): re-mounted. Quota mode: writeback.
[  855.019553][T15947] EXT4-fs (loop7): unmounting filesystem.
[  856.084568][T17738] overlayfs: failed to clone lowerpath
[  860.183239][T17782] NILFS (nullb0): couldn't find nilfs on the device
[  862.390176][T17806] virt_wifi0 speed is unknown, defaulting to 1000
[  862.397666][T17806] lo speed is unknown, defaulting to 1000
[  863.873919][T17838] virt_wifi0 speed is unknown, defaulting to 1000
[  863.886917][T17838] lo speed is unknown, defaulting to 1000
[  865.720810][T14758] Bluetooth: hci5: command 0x0c1a tx timeout
[  866.191506][T17808] Bluetooth: hci5: Opcode 0x0c1a failed: -110
[  867.219072][T17808] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  867.777024][T17808] Bluetooth: hci5: Suspend notifier action (1) failed: -4
[  869.040891][ T4287] Bluetooth: hci5: command 0x0406 tx timeout
[  870.428671][T17881] Bluetooth: MGMT ver 1.22
[  875.561218][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  875.567620][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  875.585300][   T26] audit: type=1326 audit(2000000402.129:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  875.646277][   T26] audit: type=1326 audit(2000000402.129:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  876.393769][T17901] IPv6: syztnl0: Disabled Multicast RS
[  876.404496][T17909] virt_wifi0 speed is unknown, defaulting to 1000
[  876.411855][T17909] lo speed is unknown, defaulting to 1000
[  876.540636][T17918] ceph: No mds server is up or the cluster is laggy
[  876.552564][ T5441] libceph: connect (1)[c::]:6789 error -101
[  876.603163][ T5441] libceph: mon0 (1)[c::]:6789 connect error
[  876.817476][   T26] audit: type=1326 audit(2000000402.169:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  877.408357][   T26] audit: type=1326 audit(2000000402.189:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  877.437656][   T26] audit: type=1326 audit(2000000402.189:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  878.115223][   T26] audit: type=1326 audit(2000000402.249:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  878.290423][   T26] audit: type=1326 audit(2000000402.249:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  878.504933][T17949] VFS: Mount too revealing
[  879.270290][   T26] audit: type=1326 audit(2000000402.249:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  879.526268][   T26] audit: type=1326 audit(2000000402.289:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  880.990628][T17972] batman_adv: batadv: cannot create tp meter kthread
[  881.624924][   T26] audit: type=1326 audit(2000000402.309:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  882.572985][   T26] audit: type=1326 audit(2000000402.309:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  882.597072][    C0] vkms_vblank_simulate: vblank timer overrun
[  883.819205][T17998] virt_wifi0 speed is unknown, defaulting to 1000
[  883.826597][T17998] lo speed is unknown, defaulting to 1000
[  884.596553][T18001] binder: 18000:18001 ioctl 4018620d 0 returned -22
[  884.656784][   T26] audit: type=1326 audit(2000000402.349:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  884.680980][    C0] vkms_vblank_simulate: vblank timer overrun
[  884.800035][   T26] audit: type=1326 audit(2000000402.359:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  885.002190][   T26] audit: type=1326 audit(2000000402.359:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  885.026648][    C0] vkms_vblank_simulate: vblank timer overrun
[  885.759275][   T26] audit: type=1326 audit(2000000402.389:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  885.783913][   T26] audit: type=1326 audit(2000000402.389:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  885.831817][   T26] audit: type=1326 audit(2000000402.389:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  885.863492][T18015] loop7: detected capacity change from 0 to 512
[  885.867288][T18018] fuse: Unknown parameter 'group_i'
[  885.873555][   T26] audit: type=1326 audit(2000000402.399:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb3a4b9cdd9 code=0x7ffc0000
[  885.938735][T18018] overlayfs: unrecognized mount option "rootmode=00000000000000000040000" or missing value
[  885.958041][   T26] audit: type=1326 audit(2000000402.419:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17911 comm="syz.1.3408" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb3a4b9cb42 code=0x7ffc0000
[  886.855640][T18015] EXT4-fs error (device loop7): ext4_xattr_inode_iget:401: inode #12: comm syz.7.3433: missing EA_INODE flag
[  886.920238][T18015] EXT4-fs error (device loop7): ext4_xattr_inode_iget:406: comm syz.7.3433: error while reading EA inode 12 err=-117
[  886.985722][T18015] EXT4-fs (loop7): 1 orphan inode deleted
[  886.995816][T18015] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  888.375985][T18050] virt_wifi0 speed is unknown, defaulting to 1000
[  888.386297][T18050] lo speed is unknown, defaulting to 1000
[  889.131931][T15947] EXT4-fs (loop7): unmounting filesystem.
[  891.546409][T18080] netlink: 72 bytes leftover after parsing attributes in process `syz.2.3449'.
[  895.545216][T18090] bridge0: port 1(bridge_slave_0) entered disabled state
[  895.558379][T18090] bridge0: port 2(bridge_slave_1) entered disabled state
[  895.687374][T18091] virt_wifi0 speed is unknown, defaulting to 1000
[  895.694870][T18091] lo speed is unknown, defaulting to 1000
[  896.337922][   T26] kauditd_printk_skb: 8 callbacks suppressed
[  896.337985][   T26] audit: type=1326 audit(2000000424.280:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18098 comm="syz.2.3452" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35cfd9cdd9 code=0x0
[  900.069043][   T26] audit: type=1326 audit(2000000427.651:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  900.653151][   T26] audit: type=1326 audit(2000000427.651:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  900.818249][   T26] audit: type=1326 audit(2000000427.751:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  900.842721][   T26] audit: type=1326 audit(2000000427.751:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  901.491368][   T26] audit: type=1326 audit(2000000427.751:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  901.515543][    C0] vkms_vblank_simulate: vblank timer overrun
[  901.834545][   T26] audit: type=1326 audit(2000000427.851:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  902.007057][   T26] audit: type=1326 audit(2000000427.851:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  902.335574][   T26] audit: type=1326 audit(2000000427.851:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  902.365514][   T26] audit: type=1326 audit(2000000427.951:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  904.206358][T18170] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  904.225858][   T26] audit: type=1326 audit(2000000427.951:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  904.497604][T18177] virt_wifi0 speed is unknown, defaulting to 1000
[  904.513992][T18177] lo speed is unknown, defaulting to 1000
[  905.157745][   T26] audit: type=1326 audit(2000000427.951:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  905.348568][   T26] audit: type=1326 audit(2000000428.031:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  905.657911][   T26] audit: type=1326 audit(2000000428.031:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  906.579388][   T26] audit: type=1326 audit(2000000428.041:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18122 comm="syz.0.3455" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[  911.861134][T18231] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3477'.
[  914.374197][T18262] loop7: detected capacity change from 0 to 16
[  914.460454][T18262] MTD: Attempt to mount non-MTD device "/dev/loop7"
[  915.592641][T18265] raw_sendmsg: syz.2.3483 forgot to set AF_INET. Fix it!
[  915.742851][ T5444] libceph: connect (1)[c::]:6789 error -101
[  916.686419][T18261] ceph: No mds server is up or the cluster is laggy
[  916.725131][ T5444] libceph: mon0 (1)[c::]:6789 connect error
[  918.550388][T18292] binder: BINDER_SET_CONTEXT_MGR already set
[  918.556558][T18292] binder: 18291:18292 ioctl 4018620d 200000004a80 returned -16
[  921.810702][T18321] netlink: 'syz.5.3497': attribute type 10 has an invalid length.
[  921.818755][T18321] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3497'.
[  921.829189][T18321] bridge0: port 3(team0) entered blocking state
[  921.835745][T18321] bridge0: port 3(team0) entered disabled state
[  921.843752][T18321] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  922.165529][T18325] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3499'.
[  922.178658][T18325] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3499'.
[  922.778488][T18325] syz.1.3499 (18325) used greatest stack depth: 16632 bytes left
[  923.127591][T18336] fuse: Unknown parameter 'group_i'
[  923.156735][T18336] overlayfs: unrecognized mount option "rootmode=00000000000000000040000" or missing value
[  926.842233][T18371] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  933.385733][T18419] 9pnet_virtio: no channels available for device syz
[  934.952357][T18448] overlayfs: failed to clone upperpath
[  935.021820][T18451] bad cache= option: noney
[  935.021820][T18451] 
[  935.028883][T18451] CIFS: VFS: bad cache= option: noney
[  937.476738][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  937.483090][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  938.368962][T18479] loop7: detected capacity change from 0 to 131072
[  938.554404][T18479] F2FS-fs (loop7): Found nat_bits in checkpoint
[  938.722585][T18479] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  942.089320][T18519] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3547'.
[  945.496952][T18541] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  945.505737][T18541] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  945.514476][T18541] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  945.523361][T18541] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  946.607911][T18555] virt_wifi0 speed is unknown, defaulting to 1000
[  946.619504][T18555] lo speed is unknown, defaulting to 1000
[  947.215233][T18564] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  951.752555][   T26] audit: type=1326 audit(2000000477.984:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18582 comm="syz.0.3575" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fde8fb9cdd9 code=0x0
[  954.363513][T18604] netlink: 'syz.7.3567': attribute type 3 has an invalid length.
[  954.872633][T18608] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[  955.157686][T18616] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3570'.
[  959.666486][T18639] A link change request failed with some changes committed already. Interface veth0_macvtap may have been left with an inconsistent configuration, please check.
[  963.321379][T18656] overlayfs: failed to clone upperpath
[  963.965430][T18668] netlink: 'syz.1.3582': attribute type 3 has an invalid length.
[  964.317614][T18664] Cannot find del_set index 1 as target
[  964.326430][T18664] overlayfs: missing 'lowerdir'
[  965.422358][T18685] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3587'.
[  965.866812][ T4287] Bluetooth: hci5: unexpected event for opcode 0x200d
[  965.978869][T18693] binder: 18689:18693 ioctl c0306201 0 returned -14
[  968.106036][T18711] loop7: detected capacity change from 0 to 128
[  968.145533][T18711] ext4: Unknown parameter 'uid>00000000000000060928'
[  969.858703][T18721] overlayfs: failed to clone upperpath
[  970.511157][T18733] netlink: 256 bytes leftover after parsing attributes in process `syz.7.3595'.
[  970.520497][T18733] netlink: 32 bytes leftover after parsing attributes in process `syz.7.3595'.
[  970.536715][T18733] loop7: detected capacity change from 0 to 512
[  971.392649][T18733] EXT4-fs error (device loop7): ext4_xattr_inode_iget:401: comm syz.7.3595: inode #1: comm syz.7.3595: iget: illegal inode #
[  971.412524][T18733] EXT4-fs error (device loop7): ext4_xattr_inode_iget:406: comm syz.7.3595: error while reading EA inode 1 err=-117
[  971.426161][T18733] EXT4-fs error (device loop7): ext4_xattr_inode_iget:401: comm syz.7.3595: inode #1: comm syz.7.3595: iget: illegal inode #
[  972.398828][T18743] overlayfs: unrecognized mount option "context=sysadm_u" or missing value
[  972.899968][T18745] overlayfs: failed to clone upperpath
[  973.145668][T18733] EXT4-fs error (device loop7): ext4_xattr_inode_iget:406: comm syz.7.3595: error while reading EA inode 1 err=-117
[  973.161895][T18733] EXT4-fs (loop7): 1 orphan inode deleted
[  973.167699][T18733] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  973.181335][T18733] EXT4-fs (loop7): unmounting filesystem.
[  974.155344][T18758] loop7: detected capacity change from 0 to 512
[  974.607034][T18758] EXT4-fs error (device loop7): ext4_iget_extra_inode:4763: inode #15: comm syz.7.3606: corrupted in-inode xattr
[  974.622075][T18758] EXT4-fs error (device loop7): ext4_orphan_get:1410: comm syz.7.3606: couldn't read orphan inode 15 (err -117)
[  974.658275][T18758] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  976.204410][T15947] EXT4-fs (loop7): unmounting filesystem.
[  976.686497][T18786] loop7: detected capacity change from 0 to 1024
[  976.748386][T18786] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  976.758215][T18786] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  976.778370][T18786] EXT4-fs error (device loop7): ext4_get_journal_inode:5762: inode #5: comm syz.7.3609: unexpected bad inode w/o EXT4_IGET_BAD
[  976.883455][T18786] EXT4-fs (loop7): no journal found
[  976.888877][T18786] EXT4-fs (loop7): can't get journal size
[  977.347277][T18786] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  977.777983][T15947] EXT4-fs (loop7): unmounting filesystem.
[  978.105569][T18803] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3620'.
[  978.114587][T18803] netlink: 'syz.5.3620': attribute type 2 has an invalid length.
[  978.123514][T18803] netlink: 'syz.5.3620': attribute type 1 has an invalid length.
[  978.131287][T18803] netlink: 'syz.5.3620': attribute type 1 has an invalid length.
[  978.139064][T18803] netlink: 'syz.5.3620': attribute type 1 has an invalid length.
[  980.621958][T18817] netlink: 'syz.1.3612': attribute type 10 has an invalid length.
[  980.629986][T18817] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3612'.
[  980.639475][T18817] device team0 entered promiscuous mode
[  980.662332][T18817] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  987.145513][T18890] netlink: 'syz.7.3631': attribute type 10 has an invalid length.
[  987.217115][   T26] audit: type=1800 audit(2000000461.160:174): pid=18892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3634" name="SYSV798dd818" dev="hugetlbfs" ino=0 res=0 errno=0
[  987.241673][T18890] netlink: 40 bytes leftover after parsing attributes in process `syz.7.3631'.
[  987.355826][T18890] device team0 entered promiscuous mode
[  987.383618][T18890] device team_slave_0 entered promiscuous mode
[  987.444591][T18892] xt_hashlimit: size too large, truncated to 1048576
[  987.451561][T18892] xt_hashlimit: invalid rate
[  987.461017][T18890] device team_slave_1 entered promiscuous mode
[  987.500944][T18890] bridge0: port 3(team0) entered blocking state
[  987.515699][T18890] bridge0: port 3(team0) entered disabled state
[  987.570499][T18885] netlink: 'syz.2.3630': attribute type 3 has an invalid length.
[  988.504366][T18915] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3639'.
[  988.560068][T18908] virt_wifi0 speed is unknown, defaulting to 1000
[  988.567583][T18908] lo speed is unknown, defaulting to 1000
[  989.684171][T18927] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  989.692981][T18927] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  989.701758][T18927] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  989.710496][T18927] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  993.135686][T18976] No such timeout policy "syz1"
[  994.647808][T19002] netlink: 'syz.7.3654': attribute type 4 has an invalid length.
[  997.927699][T19031] A link change request failed with some changes committed already. Interface veth0_macvtap may have been left with an inconsistent configuration, please check.
[  998.044184][T19034] No such timeout policy "syz1"
[  998.963465][T19046] overlayfs: failed to clone upperpath
[ 1000.328637][T19068] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1003.024921][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1003.031265][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1004.904239][T19127] No such timeout policy "syz1"
[ 1005.816207][T19111] overlayfs: failed to clone upperpath
[ 1006.012147][T19121] loop7: detected capacity change from 0 to 32768
[ 1006.083878][T19121] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 13
[ 1009.040778][T19049] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 13
[ 1010.094742][T19165] loop7: detected capacity change from 0 to 128
[ 1010.399925][T19165] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1011.049293][T19165] ext4 filesystem being mounted at /117/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1011.342301][T15947] EXT4-fs (loop7): unmounting filesystem.
[ 1011.769008][T18225] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[ 1011.979557][T18225] usb 8-1: Using ep0 maxpacket: 8
[ 1011.987580][T18225] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1012.021153][T18225] usb 8-1: config 0 has an invalid interface number: 209 but max is 0
[ 1012.118494][T18225] usb 8-1: config 0 has no interface number 0
[ 1012.129416][T18225] usb 8-1: config 0 interface 209 has no altsetting 0
[ 1012.200743][T19208] No such timeout policy "syz1"
[ 1012.232879][T18225] usb 8-1: New USB device found, idVendor=2001, idProduct=200c, bcdDevice=36.9a
[ 1012.436077][T18225] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1012.597265][T18225] usb 8-1: Product: syz
[ 1012.655294][T18225] usb 8-1: Manufacturer: syz
[ 1012.713294][T18225] usb 8-1: SerialNumber: syz
[ 1012.806518][T18225] usb 8-1: config 0 descriptor??
[ 1013.055450][T19219] fuse: Bad value for 'fd'
[ 1013.092608][T18225] pegasus 8-1:0.209: Missing or invalid endpoints
[ 1013.140831][T18225] usb 8-1: USB disconnect, device number 9
[ 1013.515320][T19231] netlink: 'syz.5.3728': attribute type 4 has an invalid length.
[ 1014.412862][ T4287] Bluetooth: hci5: Malformed LE Event: 0x1b
[ 1014.764931][T19255] overlayfs: failed to clone upperpath
[ 1015.659880][T19261] UBIFS error (pid: 19261): cannot open "./file0", error -22
[ 1015.693732][T19262] fuse: Bad value for 'fd'
[ 1015.810319][T19267] loop7: detected capacity change from 0 to 256
[ 1015.846502][T19267] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1015.873311][T19267] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=512, location=512
[ 1015.888973][T19267] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[ 1015.901707][T19267] UDF-fs: Scanning with blocksize 512 failed
[ 1015.923626][T19267] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1015.945062][T19267] UDF-fs: warning (device loop7): udf_fill_super: No partition found (2)
[ 1016.716103][T19298] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3751'.
[ 1017.796213][T19308] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3752'.
[ 1017.805267][T19308] netlink: 'syz.2.3752': attribute type 2 has an invalid length.
[ 1017.812999][T19308] netlink: 'syz.2.3752': attribute type 1 has an invalid length.
[ 1017.820814][T19308] netlink: 'syz.2.3752': attribute type 1 has an invalid length.
[ 1017.828601][T19308] netlink: 'syz.2.3752': attribute type 1 has an invalid length.
[ 1019.088071][T19340] netlink: 'syz.0.3760': attribute type 4 has an invalid length.
[ 1019.732077][T18225] lo speed is unknown, defaulting to 1000
[ 1022.931432][T19397] netlink: 44 bytes leftover after parsing attributes in process `syz.7.3773'.
[ 1022.940587][T19397] netlink: 'syz.7.3773': attribute type 2 has an invalid length.
[ 1022.948448][T19397] netlink: 'syz.7.3773': attribute type 1 has an invalid length.
[ 1022.956245][T19397] netlink: 'syz.7.3773': attribute type 1 has an invalid length.
[ 1022.964021][T19397] netlink: 'syz.7.3773': attribute type 1 has an invalid length.
[ 1025.670803][T19428] binder: 19427:19428 ioctl c0306201 0 returned -14
[ 1027.377781][T19458] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3802'.
[ 1027.504586][T19458] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1027.550188][T19458] device bridge_slave_1 left promiscuous mode
[ 1027.556556][T19458] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1027.924767][T19469] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3806'.
[ 1027.934164][T19469] netlink: 'syz.2.3806': attribute type 2 has an invalid length.
[ 1027.941906][T19469] netlink: 'syz.2.3806': attribute type 1 has an invalid length.
[ 1027.949732][T19469] netlink: 'syz.2.3806': attribute type 1 has an invalid length.
[ 1027.957675][T19469] netlink: 'syz.2.3806': attribute type 1 has an invalid length.
[ 1029.146498][T19497] No such timeout policy "syz1"
[ 1030.933946][T19521] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3818'.
[ 1030.943170][T19521] netlink: 'syz.2.3818': attribute type 2 has an invalid length.
[ 1030.951050][T19521] netlink: 'syz.2.3818': attribute type 1 has an invalid length.
[ 1030.958902][T19521] netlink: 'syz.2.3818': attribute type 1 has an invalid length.
[ 1030.966632][T19521] netlink: 'syz.2.3818': attribute type 1 has an invalid length.
[ 1031.783077][T19543] futex_wake_op: syz.5.3828 tries to shift op by -1; fix this program
[ 1032.271157][T19562] No such timeout policy "syz1"
[ 1033.106124][T19565] device vlan3 entered promiscuous mode
[ 1033.111729][T19565] device bridge0 entered promiscuous mode
[ 1035.619563][T19632] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3853'.
[ 1035.628813][T19632] netlink: 'syz.1.3853': attribute type 2 has an invalid length.
[ 1035.636568][T19632] netlink: 'syz.1.3853': attribute type 1 has an invalid length.
[ 1035.644382][T19632] netlink: 'syz.1.3853': attribute type 1 has an invalid length.
[ 1035.652263][T19632] netlink: 'syz.1.3853': attribute type 1 has an invalid length.
[ 1036.897824][T19667] syz.5.3868[19667] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1036.897999][T19667] syz.5.3868[19667] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1037.100708][  T126] libceph: connect (1)[c::]:6789 error -101
[ 1037.181391][  T126] libceph: mon0 (1)[c::]:6789 connect error
[ 1037.190310][T19677] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3870'.
[ 1037.199504][T19677] netlink: 'syz.2.3870': attribute type 2 has an invalid length.
[ 1037.207244][T19677] netlink: 'syz.2.3870': attribute type 1 has an invalid length.
[ 1037.215064][T19677] netlink: 'syz.2.3870': attribute type 1 has an invalid length.
[ 1037.223046][T19677] netlink: 'syz.2.3870': attribute type 1 has an invalid length.
[ 1037.859267][T19669] ceph: No mds server is up or the cluster is laggy
[ 1038.374814][T19699] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3876'.
[ 1038.383861][T19699] netlink: 'syz.5.3876': attribute type 2 has an invalid length.
[ 1038.391715][T19699] netlink: 'syz.5.3876': attribute type 1 has an invalid length.
[ 1039.643491][T19729] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3887'.
[ 1040.756383][T19757] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3891'.
[ 1041.281492][   T22] libceph: connect (1)[c::]:6789 error -101
[ 1041.291838][   T22] libceph: mon0 (1)[c::]:6789 connect error
[ 1041.386687][T19757] ceph: No mds server is up or the cluster is laggy
[ 1043.007693][   T26] audit: type=1326 audit(2000000513.387:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1043.097018][   T26] audit: type=1326 audit(2000000513.415:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1043.232524][   T26] audit: type=1326 audit(2000000513.424:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1043.380473][T19803] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3907'.
[ 1043.389673][T19803] validate_nla: 6 callbacks suppressed
[ 1043.389687][T19803] netlink: 'syz.1.3907': attribute type 2 has an invalid length.
[ 1043.402939][T19803] netlink: 'syz.1.3907': attribute type 1 has an invalid length.
[ 1043.411048][T19803] netlink: 'syz.1.3907': attribute type 1 has an invalid length.
[ 1043.418933][T19803] netlink: 'syz.1.3907': attribute type 1 has an invalid length.
[ 1043.490118][   T26] audit: type=1326 audit(2000000513.424:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1043.853668][   T22] libceph: connect (1)[c::]:6789 error -101
[ 1043.908215][   T22] libceph: mon0 (1)[c::]:6789 connect error
[ 1043.984554][T19803] ceph: No mds server is up or the cluster is laggy
[ 1044.153617][   T26] audit: type=1326 audit(2000000513.424:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1044.287111][   T26] audit: type=1326 audit(2000000513.424:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1044.379629][   T26] audit: type=1326 audit(2000000513.424:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1044.479987][   T26] audit: type=1326 audit(2000000513.424:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1044.718495][T19777] loop7: detected capacity change from 0 to 65536
[ 1044.744194][T19777] XFS: ikeep mount option is deprecated.
[ 1044.772620][   T26] audit: type=1326 audit(2000000513.424:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1044.815624][T19829] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3915'.
[ 1044.836581][T19830] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3912'.
[ 1044.845789][T19830] netlink: 'syz.1.3912': attribute type 2 has an invalid length.
[ 1044.853651][T19830] netlink: 'syz.1.3912': attribute type 1 has an invalid length.
[ 1044.861572][T19830] netlink: 'syz.1.3912': attribute type 1 has an invalid length.
[ 1044.869334][T19830] netlink: 'syz.1.3912': attribute type 1 has an invalid length.
[ 1044.922505][   T26] audit: type=1326 audit(2000000513.424:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19796 comm="syz.5.3906" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fead399cdd9 code=0x7ffc0000
[ 1045.374350][   T41] libceph: connect (1)[c::]:6789 error -101
[ 1045.428225][T19830] ceph: No mds server is up or the cluster is laggy
[ 1045.441867][   T41] libceph: mon0 (1)[c::]:6789 connect error
[ 1047.406128][T19892] device batadv_slave_0 entered promiscuous mode
[ 1047.435625][T19892] batman_adv: batadv0: Adding interface: macvtap1
[ 1047.464503][T19892] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1047.504090][T19892] batman_adv: batadv0: Interface activated: macvtap1
[ 1048.002407][   T22] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1048.190766][T19920] netlink: 188 bytes leftover after parsing attributes in process `syz.1.3945'.
[ 1048.207271][   T22] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[ 1048.213983][T19712] Set syz1 is full, maxelem 65536 reached
[ 1048.221461][   T22] usb 8-1: config 0 has no interface number 0
[ 1048.252800][   T22] usb 8-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1048.281470][   T22] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1048.310959][   T22] usb 8-1: Product: syz
[ 1048.328790][   T22] usb 8-1: Manufacturer: syz
[ 1048.347643][   T22] usb 8-1: SerialNumber: syz
[ 1048.397002][   T22] usb 8-1: config 0 descriptor??
[ 1048.629687][   T22] usb 8-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[ 1048.672827][   T22] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1048.700627][   T22] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[ 1048.815545][   T22] usb 8-1: media controller created
[ 1048.852496][   T22] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1051.145514][   T22] i2c i2c-1: ec100: i2c rd failed=-32 reg=33
[ 1051.272800][   T22] usb 8-1: USB disconnect, device number 10
[ 1051.278446][T19948] overlayfs: failed to clone upperpath
[ 1053.997581][T20029] netlink: 44 bytes leftover after parsing attributes in process `syz.7.3980'.
[ 1054.006738][T20029] netlink: 'syz.7.3980': attribute type 2 has an invalid length.
[ 1054.014750][T20029] netlink: 'syz.7.3980': attribute type 1 has an invalid length.
[ 1054.022714][T20029] netlink: 'syz.7.3980': attribute type 1 has an invalid length.
[ 1054.030641][T20029] netlink: 'syz.7.3980': attribute type 1 has an invalid length.
[ 1055.583865][ T7819] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[ 1057.118989][T20121] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4011'.
[ 1057.121455][T20097] loop7: detected capacity change from 0 to 40427
[ 1057.172812][T20097] F2FS-fs (loop7): Insane cp_payload (553648128 >= 504)
[ 1057.186587][T20097] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[ 1057.201883][T20097] F2FS-fs (loop7): build fault injection attr: rate: 17008, type: 0x3ffff
[ 1057.211750][T20097] F2FS-fs (loop7): build fault injection attr: rate: 0, type: 0x6
[ 1057.235493][T20097] F2FS-fs (loop7): invalid crc value
[ 1057.255951][T20097] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1057.372599][T20130] bridge0: port 3(vlan3) entered blocking state
[ 1057.382537][T20130] bridge0: port 3(vlan3) entered disabled state
[ 1057.394250][T20130] device vlan3 entered promiscuous mode
[ 1057.400194][T20130] device geneve0 entered promiscuous mode
[ 1057.405956][T20097] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[ 1057.405983][T20097] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1057.584433][T20143] netlink: 27 bytes leftover after parsing attributes in process `syz.1.4017'.
[ 1057.598735][T20143] device bridge0 entered promiscuous mode
[ 1057.624318][T20143] team0: Port device bridge0 added
[ 1057.711438][T20143] bridge0: port 1(team0) entered blocking state
[ 1057.773558][T20143] bridge0: port 1(team0) entered disabled state
[ 1057.774119][T15947] syz-executor: attempt to access beyond end of device
[ 1057.774119][T15947] loop7: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 1058.099695][T20153] overlayfs: failed to clone upperpath
[ 1059.070409][T20185] virt_wifi0 speed is unknown, defaulting to 1000
[ 1059.085825][T20185] lo speed is unknown, defaulting to 1000
[ 1061.466112][T20232] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4038'.
[ 1061.475332][T20232] netlink: 'syz.0.4038': attribute type 2 has an invalid length.
[ 1061.483177][T20232] netlink: 'syz.0.4038': attribute type 1 has an invalid length.
[ 1061.491084][T20232] netlink: 'syz.0.4038': attribute type 1 has an invalid length.
[ 1061.499098][T20232] netlink: 'syz.0.4038': attribute type 1 has an invalid length.
[ 1062.192614][T20247] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4045'.
[ 1062.577607][T20262] netlink: 44 bytes leftover after parsing attributes in process `syz.7.4047'.
[ 1062.586725][T20262] netlink: 'syz.7.4047': attribute type 2 has an invalid length.
[ 1062.594748][T20262] netlink: 'syz.7.4047': attribute type 1 has an invalid length.
[ 1062.602798][T20262] netlink: 'syz.7.4047': attribute type 1 has an invalid length.
[ 1062.611010][T20262] netlink: 'syz.7.4047': attribute type 1 has an invalid length.
[ 1062.728320][T18225] libceph: connect (1)[c::]:6789 error -101
[ 1062.734564][T18225] libceph: mon0 (1)[c::]:6789 connect error
[ 1063.016514][ T5444] libceph: connect (1)[c::]:6789 error -101
[ 1063.026280][ T5444] libceph: mon0 (1)[c::]:6789 connect error
[ 1063.141388][T20262] ceph: No mds server is up or the cluster is laggy
[ 1064.782097][T20299] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4058'.
[ 1065.514737][T20298] loop7: detected capacity change from 0 to 131072
[ 1065.594119][T20298] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1065.637393][T20298] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1065.772057][T20298] F2FS-fs (loop7): lookup inode (7) has corrupted xattr
[ 1065.793073][T20298] F2FS-fs (loop7): lookup inode (7) has corrupted xattr
[ 1065.836792][T20298] F2FS-fs (loop7): lookup inode (7) has corrupted xattr
[ 1065.846418][T20298] F2FS-fs (loop7): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix.
[ 1065.867834][T20298] F2FS-fs (loop7): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix.
[ 1066.255588][T20332] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4063'.
[ 1066.264777][T20332] netlink: 'syz.2.4063': attribute type 2 has an invalid length.
[ 1066.272518][T20332] netlink: 'syz.2.4063': attribute type 1 has an invalid length.
[ 1066.719860][  T128] libceph: connect (1)[c::]:6789 error -101
[ 1066.761161][  T128] libceph: mon0 (1)[c::]:6789 connect error
[ 1066.880699][T20332] ceph: No mds server is up or the cluster is laggy
[ 1067.226577][T20342] virt_wifi0 speed is unknown, defaulting to 1000
[ 1067.247548][T20342] lo speed is unknown, defaulting to 1000
[ 1067.440401][ T5444] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[ 1067.643293][ T5444] usb 8-1: Using ep0 maxpacket: 32
[ 1067.650437][ T5444] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1067.680185][ T5444] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1067.718086][ T5444] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1067.744724][ T5444] usb 8-1: Product: syz
[ 1067.758421][ T5444] usb 8-1: Manufacturer: syz
[ 1067.774228][ T5444] usb 8-1: SerialNumber: syz
[ 1067.801209][ T5444] usb 8-1: config 0 descriptor??
[ 1067.822482][T20348] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1067.839045][ T5444] hub 8-1:0.0: bad descriptor, ignoring hub
[ 1067.855788][ T5444] hub: probe of 8-1:0.0 failed with error -5
[ 1068.667588][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1068.674026][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1068.701290][T20348] usb 8-1: reset high-speed USB device number 11 using dummy_hcd
[ 1069.000401][T20348] usb 8-1: device firmware changed
[ 1069.513245][T18225] usb 8-1: USB disconnect, device number 11
[ 1069.701252][T20396] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4077'.
[ 1069.710293][T20396] validate_nla: 2 callbacks suppressed
[ 1069.710306][T20396] netlink: 'syz.1.4077': attribute type 2 has an invalid length.
[ 1069.723728][T20396] netlink: 'syz.1.4077': attribute type 1 has an invalid length.
[ 1069.731508][T20396] netlink: 'syz.1.4077': attribute type 1 has an invalid length.
[ 1069.739257][T20396] netlink: 'syz.1.4077': attribute type 1 has an invalid length.
[ 1069.757603][T18225] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[ 1070.654031][T20417] overlayfs: './file0' not a directory
[ 1070.752851][T18225] usb 8-1: device not accepting address 12, error -71
[ 1070.947161][ T4287] Bluetooth: hci5: ACL packet for unknown connection handle 201
[ 1071.562170][T20448] netlink: 44 bytes leftover after parsing attributes in process `syz.7.4092'.
[ 1071.571302][T20448] netlink: 'syz.7.4092': attribute type 2 has an invalid length.
[ 1071.579146][T20448] netlink: 'syz.7.4092': attribute type 1 has an invalid length.
[ 1071.587166][T20448] netlink: 'syz.7.4092': attribute type 1 has an invalid length.
[ 1071.594900][T20448] netlink: 'syz.7.4092': attribute type 1 has an invalid length.
[ 1072.071800][   T41] libceph: connect (1)[c::]:6789 error -101
[ 1072.078619][   T41] libceph: mon0 (1)[c::]:6789 connect error
[ 1072.178584][T20448] ceph: No mds server is up or the cluster is laggy
[ 1072.691647][T20463] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 1073.159483][T20481] netlink: 'syz.5.4103': attribute type 7 has an invalid length.
[ 1073.279932][T20487] loop7: detected capacity change from 0 to 128
[ 1073.287278][T20481] netlink: 'syz.5.4103': attribute type 7 has an invalid length.
[ 1073.368890][T20487] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1073.444899][T20487] ext4 filesystem being mounted at /184/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1073.948100][T15947] EXT4-fs (loop7): unmounting filesystem.
[ 1073.987691][T20502] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4107'.
[ 1074.672816][T20506] input: syz1 as /devices/virtual/input/input26
[ 1075.191490][T20530] overlayfs: failed to clone upperpath
[ 1075.635806][T20544] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4120'.
[ 1075.644976][T20544] validate_nla: 4 callbacks suppressed
[ 1075.644989][T20544] netlink: 'syz.0.4120': attribute type 2 has an invalid length.
[ 1075.658414][T20544] netlink: 'syz.0.4120': attribute type 1 has an invalid length.
[ 1075.666261][T20544] netlink: 'syz.0.4120': attribute type 1 has an invalid length.
[ 1075.674051][T20544] netlink: 'syz.0.4120': attribute type 1 has an invalid length.
[ 1076.118880][   T41] libceph: connect (1)[c::]:6789 error -101
[ 1076.134361][   T41] libceph: mon0 (1)[c::]:6789 connect error
[ 1076.266778][T20544] ceph: No mds server is up or the cluster is laggy
[ 1076.741334][T20566] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4124'.
[ 1076.750698][T20566] netlink: 'syz.1.4124': attribute type 2 has an invalid length.
[ 1076.758530][T20566] netlink: 'syz.1.4124': attribute type 1 has an invalid length.
[ 1076.766260][T20566] netlink: 'syz.1.4124': attribute type 1 has an invalid length.
[ 1076.774042][T20566] netlink: 'syz.1.4124': attribute type 1 has an invalid length.
[ 1076.827053][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1076.843203][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1077.132842][  T128] libceph: connect (1)[c::]:6789 error -101
[ 1077.138937][  T128] libceph: mon0 (1)[c::]:6789 connect error
[ 1077.273293][T20566] ceph: No mds server is up or the cluster is laggy
[ 1078.205190][T20588] loop7: detected capacity change from 0 to 32768
[ 1078.303134][T20588] XFS (loop7): Mounting V5 Filesystem
[ 1078.403704][T20588] XFS (loop7): Ending clean mount
[ 1078.446641][T20588] XFS (loop7): Quotacheck needed: Please wait.
[ 1078.630373][T20588] XFS (loop7): Quotacheck: Done.
[ 1078.900986][T15947] XFS (loop7): Unmounting Filesystem
[ 1079.549451][T20652] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4148'.
[ 1079.558588][T20652] netlink: 'syz.0.4148': attribute type 2 has an invalid length.
[ 1079.566330][T20652] netlink: 'syz.0.4148': attribute type 1 has an invalid length.
[ 1079.954910][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1080.037956][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1080.160499][T20652] ceph: No mds server is up or the cluster is laggy
[ 1080.466173][T20663] overlayfs: failed to clone upperpath
[ 1080.534203][   T26] kauditd_printk_skb: 9 callbacks suppressed
[ 1080.534218][   T26] audit: type=1326 audit(2000000548.507:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20664 comm="syz.1.4152" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb3a4b9cdd9 code=0x0
[ 1081.785802][T20706] overlayfs: failed to clone upperpath
[ 1082.137895][T20716] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4163'.
[ 1082.147092][T20716] validate_nla: 2 callbacks suppressed
[ 1082.147104][T20716] netlink: 'syz.2.4163': attribute type 2 has an invalid length.
[ 1082.160427][T20716] netlink: 'syz.2.4163': attribute type 1 has an invalid length.
[ 1082.168190][T20716] netlink: 'syz.2.4163': attribute type 1 has an invalid length.
[ 1082.175930][T20716] netlink: 'syz.2.4163': attribute type 1 has an invalid length.
[ 1082.426377][T20715] loop7: detected capacity change from 0 to 4096
[ 1082.666464][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1082.776237][T20716] ceph: No mds server is up or the cluster is laggy
[ 1082.820660][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1082.837744][T20715] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 1082.942430][T20715] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1083.249324][T15947] EXT4-fs (loop7): unmounting filesystem.
[ 1083.691604][T20755] loop7: detected capacity change from 0 to 16
[ 1083.725387][T20755] erofs: (device loop7): mounted with root inode @ nid 36.
[ 1083.774426][T20755] erofs: (device loop7): z_erofs_fill_inode_lazy: unknown HEAD1 format 12 for nid 36, please upgrade kernel
[ 1083.843585][T20755] erofs: (device loop7): z_erofs_fill_inode_lazy: unknown HEAD1 format 12 for nid 36, please upgrade kernel
[ 1083.873965][T20755] erofs: (device loop7): z_erofs_read_folio: failed to read, err [-95]
[ 1084.428040][T20779] netlink: 44 bytes leftover after parsing attributes in process `syz.7.4179'.
[ 1084.437501][T20779] netlink: 'syz.7.4179': attribute type 2 has an invalid length.
[ 1084.445319][T20779] netlink: 'syz.7.4179': attribute type 1 has an invalid length.
[ 1084.453362][T20779] netlink: 'syz.7.4179': attribute type 1 has an invalid length.
[ 1084.461222][T20779] netlink: 'syz.7.4179': attribute type 1 has an invalid length.
[ 1084.499408][  T126] libceph: connect (1)[c::]:6789 error -101
[ 1084.505455][  T126] libceph: mon0 (1)[c::]:6789 connect error
[ 1085.065926][T20779] ceph: No mds server is up or the cluster is laggy
[ 1085.093685][  T126] libceph: connect (1)[c::]:6789 error -101
[ 1085.113299][  T126] libceph: mon0 (1)[c::]:6789 connect error
[ 1086.359105][T20839] overlayfs: failed to clone upperpath
[ 1086.536416][T20841] overlayfs: failed to resolve './file0': -2
[ 1086.699205][T20853] overlayfs: failed to clone upperpath
[ 1086.781799][T20858] 9pnet_fd: Insufficient options for proto=fd
[ 1086.790364][T20858] 9pnet_fd: Insufficient options for proto=fd
[ 1086.896228][T20864] overlayfs: failed to clone upperpath
[ 1087.310706][T20880] device gretap0 entered promiscuous mode
[ 1089.615739][T20949] loop7: detected capacity change from 0 to 256
[ 1089.661966][T20949] exfat: Deprecated parameter 'utf8'
[ 1089.701033][T20949] exfat: Deprecated parameter 'namecase'
[ 1089.706781][T20949] exfat: Deprecated parameter 'namecase'
[ 1089.721322][T20949] exfat: Deprecated parameter 'utf8'
[ 1089.808335][T20949] exFAT-fs (loop7): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[ 1090.365905][T20964] overlayfs: failed to clone upperpath
[ 1091.417465][T14758] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1091.428288][T14758] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1091.456867][T14758] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1091.468013][T14758] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1091.475797][T14758] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1091.487108][T14758] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1091.619254][T21000] virt_wifi0 speed is unknown, defaulting to 1000
[ 1091.637600][T21000] lo speed is unknown, defaulting to 1000
[ 1091.989961][T21000] chnl_net:caif_netlink_parms(): no params data found
[ 1092.212278][T21000] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1092.219574][T21000] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1092.264972][T21000] device bridge_slave_0 entered promiscuous mode
[ 1092.286707][T21000] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1092.299770][T21000] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1092.339428][T21000] device bridge_slave_1 entered promiscuous mode
[ 1092.384692][T21000] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1092.434115][T21000] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1092.576444][T21000] team0: Port device team_slave_0 added
[ 1092.599060][T21000] team0: Port device team_slave_1 added
[ 1092.653525][T21000] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1092.670002][T21000] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1092.755773][T21000] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1092.798787][T21000] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1092.815787][T21000] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1092.890988][T21000] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1092.969979][T21000] device hsr_slave_0 entered promiscuous mode
[ 1092.994996][T21000] device hsr_slave_1 entered promiscuous mode
[ 1093.016553][T21000] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1093.027906][T21000] Cannot create hsr debugfs directory
[ 1093.706595][ T4287] Bluetooth: hci1: command 0x0409 tx timeout
[ 1095.123384][T21000] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1095.173897][T21000] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1095.191147][T21000] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1095.258363][T21000] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1095.494185][T21000] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1095.540305][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1095.585880][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1095.657488][T21000] 8021q: adding VLAN 0 to HW filter on device team0
[ 1095.698857][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1095.720266][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1095.774334][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1095.781559][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1095.806979][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1095.830794][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1095.859735][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1095.890408][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1095.897568][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1095.929584][T14758] Bluetooth: hci1: command 0x041b tx timeout
[ 1095.996518][T15563] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1096.062220][T15563] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1096.107089][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1096.175161][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1096.216394][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1096.246351][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1096.288228][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1096.325379][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1096.355576][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1096.389453][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1096.408984][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1096.430216][T21000] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1096.525344][T20998] Set syz1 is full, maxelem 65536 reached
[ 1096.976993][T21139] overlayfs: failed to clone upperpath
[ 1097.315506][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1097.326229][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1097.364230][T21000] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1098.027967][T21176] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4298'.
[ 1098.152061][T14758] Bluetooth: hci1: command 0x040f tx timeout
[ 1098.524082][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1098.533650][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1098.591278][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1098.610608][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1098.646616][T21000] device veth0_vlan entered promiscuous mode
[ 1098.669123][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1098.695952][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1098.732041][T21000] device veth1_vlan entered promiscuous mode
[ 1098.929598][T21171] overlayfs: failed to clone upperpath
[ 1098.973692][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1099.055909][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1099.191237][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1099.268454][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1099.449629][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1099.480155][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1099.651600][T21199] ceph: No mds server is up or the cluster is laggy
[ 1099.706370][T21000] device veth0_macvtap entered promiscuous mode
[ 1099.821643][ T5737] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1099.888217][T21000] device veth1_macvtap entered promiscuous mode
[ 1099.907433][T21173] overlayfs: failed to clone upperpath
[ 1099.980119][T21000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1100.030865][T21000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1100.052892][T21000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1100.075179][T21000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1100.103896][T21000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1100.124484][T21000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1100.141282][T21000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1100.152666][T21000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1100.168843][T21000] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1100.186702][T15563] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1100.217030][T15563] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1100.249939][T21000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1100.271467][T21000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1100.313422][T21000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1100.326006][T21000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1100.353599][T21000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1100.373484][T21000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1100.384624][T14758] Bluetooth: hci1: command 0x0419 tx timeout
[ 1100.404230][T21000] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1100.422805][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1100.446947][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1100.479595][T21000] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1100.515924][T21000] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1100.542380][T21000] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1100.565194][T21000] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1100.797312][ T5737] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1100.829844][ T5737] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1100.859006][ T7835] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1100.948410][   T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1100.961667][   T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1100.991131][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1101.164251][T21243] loop8: detected capacity change from 0 to 128
[ 1101.172024][T21243] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1101.255445][T21246] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4315'.
[ 1101.264888][T21246] netlink: 'syz.0.4315': attribute type 2 has an invalid length.
[ 1101.272761][T21246] netlink: 'syz.0.4315': attribute type 1 has an invalid length.
[ 1101.280488][T21246] netlink: 'syz.0.4315': attribute type 1 has an invalid length.
[ 1101.288285][T21246] netlink: 'syz.0.4315': attribute type 1 has an invalid length.
[ 1101.678712][T21243] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1101.968569][T21243] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1101.987042][T21243] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1102.092865][T21243] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[ 1102.217951][T21000] EXT4-fs (loop8): unmounting filesystem.
[ 1102.417126][T21278] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4323'.
[ 1102.488255][T21278] netlink: 'syz.5.4323': attribute type 13 has an invalid length.
[ 1102.522416][T21278] netlink: 'syz.5.4323': attribute type 17 has an invalid length.
[ 1102.563796][T21278] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1102.601656][T21278] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1102.669198][T21278] gretap0: refused to change device tx_queue_len
[ 1102.687177][T21278] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1103.494091][T21318] overlayfs: failed to clone upperpath
[ 1104.992406][   T41] libceph: connect (1)[c::]:6789 error -101
[ 1105.035528][   T41] libceph: mon0 (1)[c::]:6789 connect error
[ 1105.357839][ T6011] libceph: connect (1)[c::]:6789 error -101
[ 1105.378595][ T6011] libceph: mon0 (1)[c::]:6789 connect error
[ 1105.437682][T21362] fuse: Bad value for 'fd'
[ 1105.462091][T21351] ceph: No mds server is up or the cluster is laggy
[ 1105.720399][T21367] overlayfs: failed to clone upperpath
[ 1105.926620][T21377] overlayfs: failed to clone upperpath
[ 1105.974470][T21379] qfq: no options
[ 1107.070588][T21411] xt_hashlimit: max too large, truncated to 1048576
[ 1107.452135][T21422] overlayfs: failed to clone upperpath
[ 1107.861547][T21439] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[ 1107.925461][T21439] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[ 1108.010856][T21439] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[ 1108.062307][T21439] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[ 1108.113429][T21439] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[ 1108.155296][T21439] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[ 1109.391217][T21471] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4389'.
[ 1110.102173][T21484] loop8: detected capacity change from 0 to 164
[ 1110.258122][T21484] iso9660: Corrupted directory entry in block 4 of inode 1792
[ 1110.869416][T21497] loop8: detected capacity change from 0 to 4096
[ 1110.933704][T21508] device batadv_slave_0 entered promiscuous mode
[ 1110.943371][T21497] EXT4-fs: inline encryption not supported
[ 1110.949345][T21497] EXT4-fs: Ignoring removed nobh option
[ 1111.044835][T21497] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1111.095386][T21497] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a042c018, mo2=0003]
[ 1111.132028][T21497] System zones: 0-5
[ 1111.195254][T21497] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1111.394023][T21526] EXT4-fs warning (device loop8): ext4_dirblock_csum_verify:406: inode #2: comm syz.8.4396: No space for directory leaf checksum. Please run e2fsck -D.
[ 1111.469762][T21526] EXT4-fs error (device loop8): __ext4_find_entry:1696: inode #2: comm syz.8.4396: checksumming directory block 0
[ 1111.683168][T21000] EXT4-fs (loop8): unmounting filesystem.
[ 1111.881497][T21533] tipc: Started in network mode
[ 1111.908569][T21533] tipc: Node identity 32c62ce2447e, cluster identity 4711
[ 1111.940063][T21533] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1112.140475][T21534] device syzkaller0 entered promiscuous mode
[ 1112.205950][T21530] tipc: Resetting bearer <eth:syzkaller0>
[ 1113.020010][T21567] overlayfs: failed to clone upperpath
[ 1117.406752][T21530] tipc: Disabling bearer <eth:syzkaller0>
[ 1117.416541][ T6016] tipc: Node number set to 1991781602
[ 1119.294582][T21666] loop8: detected capacity change from 0 to 128
[ 1119.346688][T21666] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 1, start 0000000d)
[ 1120.384042][T21679] overlayfs: failed to clone upperpath
[ 1121.774848][T21732] netlink: 64 bytes leftover after parsing attributes in process `syz.1.4463'.
[ 1121.857930][T21739] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4462'.
[ 1123.712909][T17388] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1123.916149][T17388] usb 9-1: Using ep0 maxpacket: 8
[ 1123.923007][T17388] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[ 1123.965090][T17388] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1124.001844][T17388] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1124.035844][T17388] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1124.064220][T17388] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1124.099294][T17388] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1124.129670][T17388] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1124.372480][T17388] usb 9-1: usb_control_msg returned -32
[ 1124.378379][T17388] usbtmc 9-1:16.0: can't read capabilities
[ 1124.739996][T21792] usbtmc 9-1:16.0: usb_control_msg returned -71
[ 1124.769460][T17388] usb 9-1: USB disconnect, device number 2
[ 1124.776814][T21819] usbtmc 9-1:16.0: send_request_dev_dep_msg_in returned -19
[ 1127.218286][T21864] fuse: Bad value for 'fd'
[ 1128.033097][T21882] loop8: detected capacity change from 0 to 16
[ 1128.111467][T21882] erofs: (device loop8): mounted with root inode @ nid 36.
[ 1128.146764][T21885] overlayfs: failed to clone upperpath
[ 1129.055801][T21906] fuse: Bad value for 'fd'
[ 1130.186016][T21895] loop8: detected capacity change from 0 to 32768
[ 1130.401341][T21942] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4522'.
[ 1130.410536][T21942] netlink: 'syz.5.4522': attribute type 2 has an invalid length.
[ 1130.418430][T21942] netlink: 'syz.5.4522': attribute type 1 has an invalid length.
[ 1130.426209][T21942] netlink: 'syz.5.4522': attribute type 1 has an invalid length.
[ 1130.433954][T21942] netlink: 'syz.5.4522': attribute type 1 has an invalid length.
[ 1132.031461][ T6016] libceph: connect (1)[c::]:6789 error -101
[ 1132.043283][ T6016] libceph: mon0 (1)[c::]:6789 connect error
[ 1132.057716][T21951] ceph: No mds server is up or the cluster is laggy
[ 1133.045536][T21973] loop8: detected capacity change from 0 to 512
[ 1133.091775][T21973] EXT4-fs: Ignoring removed i_version option
[ 1133.114250][T21973] EXT4-fs: Ignoring removed oldalloc option
[ 1133.144967][T21973] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1133.189435][T21973] EXT4-fs (loop8): 1 truncate cleaned up
[ 1133.196166][T21973] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1133.290459][T21985] overlayfs: failed to clone upperpath
[ 1133.354052][T21973] EXT4-fs error (device loop8): ext4_ind_map_blocks:604: inode #13: comm syz.8.4531: Can't allocate blocks for non-extent mapped inodes with bigalloc
[ 1133.414326][T21973] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.4531: invalid indirect mapped block 234881024 (level 0)
[ 1133.647595][T21000] EXT4-fs (loop8): unmounting filesystem.
[ 1133.683487][T21994] overlayfs: failed to clone upperpath
[ 1134.295811][T22022] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1134.329734][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1134.336101][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1134.372023][T22029] overlayfs: failed to clone upperpath
[ 1134.637148][T22038] device syzkaller0 entered promiscuous mode
[ 1136.148950][T22064] loop8: detected capacity change from 0 to 32768
[ 1136.190590][T22064] XFS (loop8): Mounting V5 Filesystem
[ 1136.329881][ T4881] wlan1: Trigger new scan to find an IBSS to join
[ 1136.336600][T22064] XFS (loop8): Ending clean mount
[ 1136.369078][T22064] XFS (loop8): Quotacheck needed: Please wait.
[ 1136.563990][T22064] XFS (loop8): Quotacheck: Done.
[ 1136.833830][T21000] XFS (loop8): Unmounting Filesystem
[ 1137.196170][T22119] overlayfs: failed to clone upperpath
[ 1141.666217][T15551] wlan1: Trigger new scan to find an IBSS to join
[ 1142.500607][T22267] overlayfs: failed to clone upperpath
[ 1142.870441][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1142.921050][T22280] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4622'.
[ 1142.930493][T22280] netlink: 'syz.1.4622': attribute type 2 has an invalid length.
[ 1142.938349][T22280] netlink: 'syz.1.4622': attribute type 1 has an invalid length.
[ 1142.946054][T22280] netlink: 'syz.1.4622': attribute type 1 has an invalid length.
[ 1142.954137][T22280] netlink: 'syz.1.4622': attribute type 1 has an invalid length.
[ 1142.987781][ T6016] libceph: connect (1)[c::]:6789 error -101
[ 1142.994659][ T6016] libceph: mon0 (1)[c::]:6789 connect error
[ 1143.279457][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1143.287458][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1143.587042][T22280] ceph: No mds server is up or the cluster is laggy
[ 1144.026390][T22305] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4626'.
[ 1144.210943][T22315] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[ 1144.449520][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1144.461858][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1144.476068][T18225] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1144.700640][T18225] usb 9-1: Using ep0 maxpacket: 16
[ 1144.714245][T18225] usb 9-1: config 0 has an invalid interface number: 34 but max is 0
[ 1144.722739][T18225] usb 9-1: config 0 has no interface number 0
[ 1144.728970][T18225] usb 9-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[ 1144.740107][T18225] usb 9-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80
[ 1144.743499][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1144.764950][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1144.765954][T18225] usb 9-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[ 1144.804362][T18225] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1144.821567][T18225] usb 9-1: Product: syz
[ 1144.831508][T18225] usb 9-1: Manufacturer: syz
[ 1144.840627][T18225] usb 9-1: SerialNumber: syz
[ 1144.853384][T18225] usb 9-1: config 0 descriptor??
[ 1144.864612][T22312] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1144.874956][T22312] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1145.081273][T22319] ceph: No mds server is up or the cluster is laggy
[ 1145.128581][T22312] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1145.197974][T22312] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1145.319592][T22333] netlink: 'syz.2.4636': attribute type 10 has an invalid length.
[ 1145.482377][T18225] asix 9-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[ 1145.509528][T18225] asix: probe of 9-1:0.34 failed with error -61
[ 1147.209960][T22426] overlayfs: failed to clone upperpath
[ 1147.456521][   T14] usb 9-1: USB disconnect, device number 3
[ 1148.746461][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1148.764197][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1148.875746][T22483] netlink: 'syz.8.4678': attribute type 39 has an invalid length.
[ 1149.040689][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1149.063786][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1149.419489][T22475] ceph: No mds server is up or the cluster is laggy
[ 1149.842203][T22512] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4685'.
[ 1149.918824][T22507] tipc: Started in network mode
[ 1149.923756][T22507] tipc: Node identity 080211000001, cluster identity 4711
[ 1150.041113][T22507] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1150.873761][  T128] libceph: connect (1)[c::]:6789 error -101
[ 1150.889987][  T128] libceph: mon0 (1)[c::]:6789 connect error
[ 1151.314753][  T128] libceph: connect (1)[c::]:6789 error -101
[ 1151.335255][  T128] libceph: mon0 (1)[c::]:6789 connect error
[ 1151.352519][  T128] tipc: Node number set to 134418688
[ 1151.378124][T22562] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4699'.
[ 1151.387671][T22562] netlink: 'syz.5.4699': attribute type 2 has an invalid length.
[ 1151.395590][T22562] netlink: 'syz.5.4699': attribute type 1 has an invalid length.
[ 1151.403507][T22562] netlink: 'syz.5.4699': attribute type 1 has an invalid length.
[ 1151.411362][T22562] netlink: 'syz.5.4699': attribute type 1 has an invalid length.
[ 1151.439432][  T128] libceph: connect (1)[c::]:6789 error -101
[ 1151.450174][  T128] libceph: mon0 (1)[c::]:6789 connect error
[ 1151.457370][T22544] ceph: No mds server is up or the cluster is laggy
[ 1151.732343][  T128] libceph: connect (1)[c::]:6789 error -101
[ 1151.739649][  T128] libceph: mon0 (1)[c::]:6789 connect error
[ 1152.003459][T22562] ceph: No mds server is up or the cluster is laggy
[ 1152.741882][T22608] overlayfs: upper fs does not support file handles, falling back to index=off.
[ 1152.765229][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1152.789953][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1153.205930][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1153.340156][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1153.367739][T22606] ceph: No mds server is up or the cluster is laggy
[ 1154.159736][T22640] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4720'.
[ 1154.168799][T22640] netlink: 'syz.0.4720': attribute type 2 has an invalid length.
[ 1154.176531][T22640] netlink: 'syz.0.4720': attribute type 1 has an invalid length.
[ 1154.184335][T22640] netlink: 'syz.0.4720': attribute type 1 has an invalid length.
[ 1154.192103][T22640] netlink: 'syz.0.4720': attribute type 1 has an invalid length.
[ 1154.241131][T18225] libceph: connect (1)[c::]:6789 error -101
[ 1154.251866][T18225] libceph: mon0 (1)[c::]:6789 connect error
[ 1154.572999][T18225] libceph: connect (1)[c::]:6789 error -101
[ 1154.579230][T18225] libceph: mon0 (1)[c::]:6789 connect error
[ 1154.830383][T22640] ceph: No mds server is up or the cluster is laggy
[ 1155.155695][T22668] tipc: Started in network mode
[ 1155.170476][T22668] tipc: Node identity 8, cluster identity 4711
[ 1155.213722][T22668] tipc: Node number set to 8
[ 1155.299761][T22680] overlayfs: failed to clone upperpath
[ 1155.326585][T22676] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4731'.
[ 1155.335844][T22676] netlink: 'syz.2.4731': attribute type 2 has an invalid length.
[ 1155.343969][T22676] netlink: 'syz.2.4731': attribute type 1 has an invalid length.
[ 1155.351716][T22676] netlink: 'syz.2.4731': attribute type 1 has an invalid length.
[ 1155.359534][T22676] netlink: 'syz.2.4731': attribute type 1 has an invalid length.
[ 1155.387877][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1155.393929][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1155.440392][ T5444] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1155.644578][ T5444] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1155.662664][ T5444] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[ 1155.696247][ T5444] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1155.706656][ T5444] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1155.743408][ T5444] usb 9-1: Product: syz
[ 1155.767597][ T5444] usb 9-1: Manufacturer: syz
[ 1155.798553][ T5444] usb 9-1: SerialNumber: syz
[ 1155.861501][   T14] libceph: connect (1)[c::]:6789 error -101
[ 1155.870264][   T14] libceph: mon0 (1)[c::]:6789 connect error
[ 1155.874754][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1155.885947][ T5444] cdc_mbim 9-1:1.0: skipping garbage
[ 1155.893350][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1155.967322][T22676] ceph: No mds server is up or the cluster is laggy
[ 1155.978525][T22675] ceph: No mds server is up or the cluster is laggy
[ 1156.108477][T22674] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1156.201918][T17388] libceph: connect (1)[c::]:6789 error -101
[ 1156.208124][T17388] libceph: mon0 (1)[c::]:6789 connect error
[ 1156.828106][T22674] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1156.846774][ T5444] cdc_mbim 9-1:1.0: setting tx_max = 184
[ 1156.872592][ T5444] cdc_mbim 9-1:1.0: cdc-wdm0: USB WDM device
[ 1156.956785][ T5444] cdc_mbim 9-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.8-1, CDC MBIM, f2:ab:80:cf:c1:0b
[ 1157.138638][    C0] cdc_mbim 9-1:1.0: nonzero urb status received: -71
[ 1157.145584][    C0] cdc_mbim 9-1:1.0: wdm_int_callback - 0 bytes
[ 1157.153654][    C0] cdc_mbim 9-1:1.0: nonzero urb status received: -71
[ 1157.160368][    C0] cdc_mbim 9-1:1.0: wdm_int_callback - 0 bytes
[ 1157.167995][    C0] cdc_mbim 9-1:1.0: nonzero urb status received: -71
[ 1157.174709][    C0] cdc_mbim 9-1:1.0: wdm_int_callback - 0 bytes
[ 1157.180930][    C0] cdc_mbim 9-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1
[ 1157.196113][  T128] usb 9-1: USB disconnect, device number 4
[ 1157.208960][  T128] cdc_mbim 9-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.8-1, CDC MBIM
[ 1157.442500][T22728] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4741'.
[ 1157.451683][T22728] netlink: 'syz.0.4741': attribute type 2 has an invalid length.
[ 1157.459529][T22728] netlink: 'syz.0.4741': attribute type 1 has an invalid length.
[ 1157.467259][T22728] netlink: 'syz.0.4741': attribute type 1 has an invalid length.
[ 1157.475018][T22728] netlink: 'syz.0.4741': attribute type 1 has an invalid length.
[ 1157.521686][ T5444] libceph: connect (1)[c::]:6789 error -101
[ 1157.530202][ T5444] libceph: mon0 (1)[c::]:6789 connect error
[ 1157.833843][T17388] libceph: connect (1)[c::]:6789 error -101
[ 1157.841351][T17388] libceph: mon0 (1)[c::]:6789 connect error
[ 1158.100458][T22728] ceph: No mds server is up or the cluster is laggy
[ 1158.216066][T22748] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4743'.
[ 1158.225235][T22748] netlink: 'syz.2.4743': attribute type 2 has an invalid length.
[ 1158.233066][T22748] netlink: 'syz.2.4743': attribute type 1 has an invalid length.
[ 1158.293094][   T41] libceph: connect (1)[c::]:6789 error -101
[ 1158.325946][   T41] libceph: mon0 (1)[c::]:6789 connect error
[ 1158.614171][   T41] libceph: connect (1)[c::]:6789 error -101
[ 1158.621459][   T41] libceph: mon0 (1)[c::]:6789 connect error
[ 1158.715768][T22772] loop8: detected capacity change from 0 to 2048
[ 1158.832050][T22748] ceph: No mds server is up or the cluster is laggy
[ 1158.933284][T22772] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1159.261570][T22782] EXT4-fs error (device loop8): ext4_do_update_inode:5279: inode #12: comm syz.8.4751: corrupted inode contents
[ 1159.367022][T22784] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4762'.
[ 1159.379475][T22782] EXT4-fs error (device loop8): ext4_try_add_inline_entry:1364: inode #12: comm syz.8.4751: mark_inode_dirty error
[ 1159.437801][T17388] libceph: connect (1)[c::]:6789 error -101
[ 1159.448745][T17388] libceph: mon0 (1)[c::]:6789 connect error
[ 1159.465568][T22782] EXT4-fs error (device loop8): ext4_do_update_inode:5279: inode #12: comm syz.8.4751: corrupted inode contents
[ 1159.540435][T22782] EXT4-fs error (device loop8): ext4_mkdir:3097: inode #12: comm syz.8.4751: mark_inode_dirty error
[ 1159.684299][T22772] EXT4-fs error (device loop8): ext4_do_update_inode:5279: inode #12: comm syz.8.4751: corrupted inode contents
[ 1159.779015][T17388] libceph: connect (1)[c::]:6789 error -101
[ 1159.786299][T17388] libceph: mon0 (1)[c::]:6789 connect error
[ 1159.821610][T22800] overlayfs: failed to clone upperpath
[ 1159.915977][T21000] EXT4-fs (loop8): unmounting filesystem.
[ 1160.024882][T22784] ceph: No mds server is up or the cluster is laggy
[ 1161.175000][T22813] netlink: 44 bytes leftover after parsing attributes in process `syz.8.4757'.
[ 1161.184068][T22813] validate_nla: 6 callbacks suppressed
[ 1161.184082][T22813] netlink: 'syz.8.4757': attribute type 2 has an invalid length.
[ 1161.197301][T22813] netlink: 'syz.8.4757': attribute type 1 has an invalid length.
[ 1161.205272][T22813] netlink: 'syz.8.4757': attribute type 1 has an invalid length.
[ 1161.213056][T22813] netlink: 'syz.8.4757': attribute type 1 has an invalid length.
[ 1161.372943][T22817] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1161.403844][ T5444] libceph: connect (1)[c::]:6789 error -101
[ 1161.412367][ T5444] libceph: mon0 (1)[c::]:6789 connect error
[ 1161.712871][ T5444] libceph: connect (1)[c::]:6789 error -101
[ 1161.718910][ T5444] libceph: mon0 (1)[c::]:6789 connect error
[ 1161.843735][T22813] ceph: No mds server is up or the cluster is laggy
[ 1162.259373][  T126] libceph: connect (1)[c::]:6789 error -101
[ 1162.265631][  T126] libceph: mon0 (1)[c::]:6789 connect error
[ 1162.491813][T22850] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4770'.
[ 1162.501138][T22850] netlink: 'syz.2.4770': attribute type 2 has an invalid length.
[ 1162.509027][T22850] netlink: 'syz.2.4770': attribute type 1 has an invalid length.
[ 1162.516972][T22850] netlink: 'syz.2.4770': attribute type 1 has an invalid length.
[ 1162.524768][T22850] netlink: 'syz.2.4770': attribute type 1 has an invalid length.
[ 1162.545718][ T5444] libceph: connect (1)[c::]:6789 error -101
[ 1162.554615][ T5444] libceph: mon0 (1)[c::]:6789 connect error
[ 1162.595557][ T5444] libceph: connect (1)[c::]:6789 error -101
[ 1162.614738][T22836] ceph: No mds server is up or the cluster is laggy
[ 1162.640496][ T5444] libceph: mon0 (1)[c::]:6789 connect error
[ 1162.953280][ T5444] libceph: connect (1)[c::]:6789 error -101
[ 1162.959355][ T5444] libceph: mon0 (1)[c::]:6789 connect error
[ 1163.132936][T22850] ceph: No mds server is up or the cluster is laggy
[ 1165.198442][T22892] loop8: detected capacity change from 0 to 512
[ 1165.211032][T22892] EXT4-fs: Ignoring removed i_version option
[ 1165.217091][T22892] EXT4-fs: Ignoring removed oldalloc option
[ 1165.328136][T22892] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1165.505167][T22903] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4786'.
[ 1165.514219][T22903] netlink: 'syz.2.4786': attribute type 2 has an invalid length.
[ 1165.521999][T22903] netlink: 'syz.2.4786': attribute type 1 has an invalid length.
[ 1165.656832][  T126] libceph: connect (1)[c::]:6789 error -101
[ 1165.709197][  T126] libceph: mon0 (1)[c::]:6789 connect error
[ 1165.890014][   T26] audit: type=1326 audit(2000000628.378:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1165.978598][   T26] audit: type=1326 audit(2000000628.453:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.009106][   T14] libceph: connect (1)[c::]:6789 error -101
[ 1166.022071][   T14] libceph: mon0 (1)[c::]:6789 connect error
[ 1166.116215][   T26] audit: type=1326 audit(2000000628.453:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.194585][T22903] ceph: No mds server is up or the cluster is laggy
[ 1166.202423][   T26] audit: type=1326 audit(2000000628.453:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.227722][T21000] EXT4-fs (loop8): unmounting filesystem.
[ 1166.307836][   T26] audit: type=1326 audit(2000000628.453:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.440954][   T26] audit: type=1326 audit(2000000628.453:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.508344][   T26] audit: type=1326 audit(2000000628.453:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.577990][   T26] audit: type=1326 audit(2000000628.453:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.631181][T22945] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4795'.
[ 1166.645889][   T26] audit: type=1326 audit(2000000628.453:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.725673][   T26] audit: type=1326 audit(2000000628.453:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22917 comm="syz.0.4788" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde8fb9cdd9 code=0x7ffc0000
[ 1166.998189][T22957] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1168.976644][T23000] tipc: Failed to remove unknown binding: 66,0,0/134418688:1384546387/1384546389
[ 1169.229954][T23000] tipc: Failed to remove unknown binding: 66,0,0/134418688:1384546387/1384546388
[ 1169.549906][T23003] tipc: Failed to remove unknown binding: 66,0,0/134418688:1384546387/1384546389
[ 1169.561042][T23003] tipc: Failed to remove unknown binding: 66,0,0/134418688:1384546387/1384546388
[ 1171.040547][T23026] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1172.227770][ T6016] tipc: Node number set to 2886997007
[ 1172.504632][T23045] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4829'.
[ 1172.513736][T23045] validate_nla: 2 callbacks suppressed
[ 1172.513748][T23045] netlink: 'syz.5.4829': attribute type 2 has an invalid length.
[ 1172.527353][T23045] netlink: 'syz.5.4829': attribute type 1 has an invalid length.
[ 1172.535105][T23045] netlink: 'syz.5.4829': attribute type 1 has an invalid length.
[ 1172.542936][T23045] netlink: 'syz.5.4829': attribute type 1 has an invalid length.
[ 1172.601006][ T6016] libceph: connect (1)[c::]:6789 error -101
[ 1172.616627][ T6016] libceph: mon0 (1)[c::]:6789 connect error
[ 1172.929215][T23066] Invalid option length (62363) for dns_resolver key
[ 1173.296484][T23045] ceph: No mds server is up or the cluster is laggy
[ 1173.306574][ T6016] libceph: connect (1)[c::]:6789 error -101
[ 1173.608786][ T6016] libceph: mon0 (1)[c::]:6789 connect error
[ 1174.776122][   T26] kauditd_printk_skb: 27 callbacks suppressed
[ 1174.776137][   T26] audit: type=1326 audit(2000000636.697:232): auid=4294967295 uid=3171839 gid=0 ses=4294967295 subj=unconfined pid=23086 comm="syz.2.4840" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35cfd9cdd9 code=0x0
[ 1175.748126][T23114] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4847'.
[ 1175.757271][T23114] netlink: 'syz.1.4847': attribute type 2 has an invalid length.
[ 1175.765057][T23114] netlink: 'syz.1.4847': attribute type 1 has an invalid length.
[ 1175.772771][T23114] netlink: 'syz.1.4847': attribute type 1 has an invalid length.
[ 1175.780588][T23114] netlink: 'syz.1.4847': attribute type 1 has an invalid length.
[ 1175.837919][ T6011] libceph: connect (1)[c::]:6789 error -101
[ 1175.846620][ T6011] libceph: mon0 (1)[c::]:6789 connect error
[ 1176.160781][ T6011] libceph: connect (1)[c::]:6789 error -101
[ 1176.175221][ T6011] libceph: mon0 (1)[c::]:6789 connect error
[ 1176.469917][T23114] ceph: No mds server is up or the cluster is laggy
[ 1177.944079][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1177.962377][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1178.255065][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1178.261099][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1178.422018][T23182] netlink: 'syz.5.4859': attribute type 1 has an invalid length.
[ 1178.701623][T23164] ceph: No mds server is up or the cluster is laggy
[ 1178.966009][T23200] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4863'.
[ 1178.975131][T23200] netlink: 'syz.1.4863': attribute type 2 has an invalid length.
[ 1178.983044][T23200] netlink: 'syz.1.4863': attribute type 1 has an invalid length.
[ 1178.990768][T23200] netlink: 'syz.1.4863': attribute type 1 has an invalid length.
[ 1178.998620][T23200] netlink: 'syz.1.4863': attribute type 1 has an invalid length.
[ 1179.073164][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1179.103761][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1179.785014][T23200] ceph: No mds server is up or the cluster is laggy
[ 1180.156975][T17999] libceph: connect (1)[c::]:6789 error -101
[ 1180.163354][T17999] libceph: mon0 (1)[c::]:6789 connect error
[ 1180.334091][T23216] ubi31: attaching mtd0
[ 1180.346308][T23216] ubi31: scanning is finished
[ 1180.354362][T23216] ubi31: empty MTD device detected
[ 1180.597290][T23216] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1180.625069][T23216] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1180.660883][T23216] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1180.691000][T23216] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1180.712049][T23216] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1180.744454][T23216] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1180.763649][T23216] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 110495983
[ 1180.812269][T23216] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1180.837013][T23240] netlink: 'syz.1.4872': attribute type 1 has an invalid length.
[ 1180.848471][T23227] ubi31: background thread "ubi_bgt31d" started, PID 23227
[ 1183.514581][T23259] netlink: 44 bytes leftover after parsing attributes in process `syz.8.4879'.
[ 1183.523636][T23259] netlink: 'syz.8.4879': attribute type 2 has an invalid length.
[ 1183.531385][T23259] netlink: 'syz.8.4879': attribute type 1 has an invalid length.
[ 1183.539184][T23259] netlink: 'syz.8.4879': attribute type 1 has an invalid length.
[ 1183.546975][T23259] netlink: 'syz.8.4879': attribute type 1 has an invalid length.
[ 1184.987864][T23296] overlayfs: failed to clone upperpath
[ 1186.760764][T23324] netlink: 44 bytes leftover after parsing attributes in process `syz.8.4892'.
[ 1186.769792][T23324] netlink: 'syz.8.4892': attribute type 2 has an invalid length.
[ 1186.777888][T23324] netlink: 'syz.8.4892': attribute type 1 has an invalid length.
[ 1186.785745][T23324] netlink: 'syz.8.4892': attribute type 1 has an invalid length.
[ 1186.793856][T23324] netlink: 'syz.8.4892': attribute type 1 has an invalid length.
[ 1187.783750][T23332] ALSA: mixer_oss: invalid OSS volume ''
[ 1187.879540][T23336] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4905'.
[ 1187.963895][T23336] netlink: 'syz.5.4905': attribute type 2 has an invalid length.
[ 1188.051304][   T14] libceph: connect (1)[c::]:6789 error -101
[ 1188.058066][   T14] libceph: mon0 (1)[c::]:6789 connect error
[ 1188.089158][T23336] netlink: 'syz.5.4905': attribute type 1 has an invalid length.
[ 1188.108317][T23336] netlink: 'syz.5.4905': attribute type 1 has an invalid length.
[ 1188.188840][T23336] netlink: 'syz.5.4905': attribute type 1 has an invalid length.
[ 1188.374886][   T14] libceph: connect (1)[c::]:6789 error -101
[ 1188.382462][   T14] libceph: mon0 (1)[c::]:6789 connect error
[ 1188.464640][T23340] ceph: No mds server is up or the cluster is laggy
[ 1189.727987][T23367] netlink: 180 bytes leftover after parsing attributes in process `syz.1.4906'.
[ 1189.935943][T23373] netlink: 180 bytes leftover after parsing attributes in process `syz.1.4906'.
[ 1189.981027][T23367] netlink: 180 bytes leftover after parsing attributes in process `'.
[ 1190.845980][T23380] loop8: detected capacity change from 0 to 1024
[ 1191.673925][T23412] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4919'.
[ 1191.724788][T23412] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4919'.
[ 1192.707805][T23423] overlayfs: failed to clone upperpath
[ 1193.902122][T23443] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4925'.
[ 1193.931231][T23443] netlink: 'syz.2.4925': attribute type 2 has an invalid length.
[ 1193.942766][T23443] netlink: 'syz.2.4925': attribute type 1 has an invalid length.
[ 1193.952094][T23443] netlink: 'syz.2.4925': attribute type 1 has an invalid length.
[ 1193.964753][T23443] netlink: 'syz.2.4925': attribute type 1 has an invalid length.
[ 1194.004249][T23449] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4929'.
[ 1194.055817][T23449] device syz_tun entered promiscuous mode
[ 1194.079761][T23449] device macvtap1 entered promiscuous mode
[ 1194.089121][T23454] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4929'.
[ 1194.102443][T23454] device syz_tun left promiscuous mode
[ 1194.124881][ T6011] libceph: connect (1)[c::]:6789 error -101
[ 1194.130942][ T6011] libceph: mon0 (1)[c::]:6789 connect error
[ 1194.506129][ T6011] libceph: connect (1)[c::]:6789 error -101
[ 1194.540729][ T6011] libceph: mon0 (1)[c::]:6789 connect error
[ 1195.087552][ T6011] libceph: connect (1)[c::]:6789 error -101
[ 1195.103949][T23443] ceph: No mds server is up or the cluster is laggy
[ 1195.120056][ T6011] libceph: mon0 (1)[c::]:6789 connect error
[ 1196.513059][T23489] overlayfs: failed to clone upperpath
[ 1199.973780][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1199.981902][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1313.358178][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1313.365188][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P51/1:b..l
[ 1313.374008][    C1] 	(detected by 1, t=10502 jiffies, g=128129, q=245 ncpus=2)
[ 1313.381389][    C1] task:kworker/u4:3    state:R  running task     stack:21264 pid:51    ppid:2      flags:0x00004000
[ 1313.394589][    C1] Workqueue: bat_events batadv_nc_worker
[ 1313.400261][    C1] Call Trace:
[ 1313.403550][    C1]  <TASK>
[ 1313.406493][    C1]  __schedule+0x11d1/0x40e0
[ 1313.411022][    C1]  ? mark_lock+0x94/0x320
[ 1313.415383][    C1]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1313.421401][    C1]  ? __sched_text_start+0x8/0x8
[ 1313.426286][    C1]  ? lock_chain_count+0x20/0x20
[ 1313.431165][    C1]  ? preempt_schedule_irq+0xb0/0x160
[ 1313.436483][    C1]  preempt_schedule_irq+0xbb/0x160
[ 1313.441632][    C1]  ? preempt_schedule_notrace+0x120/0x120
[ 1313.447397][    C1]  ? rcu_is_watching+0x11/0xa0
[ 1313.452204][    C1]  ? rcu_irq_exit_check_preempt+0xdb/0x210
[ 1313.458035][    C1]  irqentry_exit+0x63/0x70
[ 1313.462537][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1313.468547][    C1] RIP: 0010:lock_acquire+0x225/0x4a0
[ 1313.473859][    C1] Code: f7 84 24 80 00 00 00 00 02 00 00 43 c6 44 3d 04 f8 0f 85 f0 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 44 3d 00 00 00 00 00 43 c7 44 3d 08 00 00 00 00 65 48 8b 04
[ 1313.493480][    C1] RSP: 0018:ffffc90000bc7ac0 EFLAGS: 00000206
[ 1313.499564][    C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 129a939a837d2500
[ 1313.507557][    C1] RDX: 0000000000000000 RSI: ffffffff8a8c22a0 RDI: ffffffff8adf1320
[ 1313.515550][    C1] RBP: ffffc90000bc7bc8 R08: dffffc0000000000 R09: 1ffffffff215f248
[ 1313.523538][    C1] R10: dffffc0000000000 R11: fffffbfff215f249 R12: 0000000000000001
[ 1313.531523][    C1] R13: 1ffff92000178f64 R14: 0000000000000246 R15: dffffc0000000000
[ 1313.539538][    C1]  ? read_lock_is_recursive+0x10/0x10
[ 1313.544934][    C1]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1313.550932][    C1]  ? batadv_nc_worker+0xce/0x600
[ 1313.555885][    C1]  batadv_nc_worker+0xeb/0x600
[ 1313.560662][    C1]  ? batadv_nc_worker+0xce/0x600
[ 1313.565620][    C1]  ? process_one_work+0x7b0/0x1160
[ 1313.570747][    C1]  process_one_work+0x8a2/0x1160
[ 1313.575772][    C1]  ? worker_detach_from_pool+0x240/0x240
[ 1313.581423][    C1]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1313.586528][    C1]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1313.592130][    C1]  ? kthread_data+0x4b/0xc0
[ 1313.596676][    C1]  worker_thread+0xaa2/0x1270
[ 1313.601400][    C1]  kthread+0x29d/0x330
[ 1313.605496][    C1]  ? worker_clr_flags+0x1a0/0x1a0
[ 1313.610542][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1313.615145][    C1]  ret_from_fork+0x1f/0x30
[ 1313.619605][    C1]  </TASK>
[ 1313.622637][    C1] rcu: rcu_preempt kthread starved for 10419 jiffies! g128129 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1313.633930][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1313.643905][    C1] rcu: RCU grace-period kthread stack dump:
[ 1313.649802][    C1] task:rcu_preempt     state:R  running task     stack:27376 pid:16    ppid:2      flags:0x00004000
[ 1313.660604][    C1] Call Trace:
[ 1313.663892][    C1]  <TASK>
[ 1313.666838][    C1]  __schedule+0x11d1/0x40e0
[ 1313.671378][    C1]  ? __sched_text_start+0x8/0x8
[ 1313.676249][    C1]  ? __mod_timer+0x91e/0xd00
[ 1313.680857][    C1]  schedule+0xb9/0x180
[ 1313.684943][    C1]  schedule_timeout+0x184/0x2d0
[ 1313.689807][    C1]  ? console_conditional_schedule+0x40/0x40
[ 1313.695713][    C1]  ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 1313.701617][    C1]  ? update_process_times+0x1b0/0x1b0
[ 1313.707015][    C1]  ? prepare_to_swait_event+0x335/0x350
[ 1313.712582][    C1]  rcu_gp_fqs_loop+0x303/0x1340
[ 1313.717455][    C1]  ? rcu_gp_kthread+0x3b0/0x3b0
[ 1313.722410][    C1]  ? dyntick_save_progress_counter+0x2b0/0x2b0
[ 1313.728581][    C1]  ? rcu_gp_init+0x14e0/0x14e0
[ 1313.733361][    C1]  ? rcu_gp_cleanup+0xb41/0xc90
[ 1313.738231][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1313.743440][    C1]  ? lockdep_hardirqs_on+0x94/0x140
[ 1313.748662][    C1]  rcu_gp_kthread+0x99/0x3b0
[ 1313.753269][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1313.758392][    C1]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1313.764304][    C1]  ? __kthread_parkme+0x162/0x1c0
[ 1313.769350][    C1]  kthread+0x29d/0x330
[ 1313.773424][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1313.778547][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1313.783148][    C1]  ret_from_fork+0x1f/0x30
[ 1313.787597][    C1]  </TASK>
[ 1313.790628][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1313.796961][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1313.802178][    C0] NMI backtrace for cpu 0
[ 1313.802189][    C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0
[ 1313.802205][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1313.802213][    C0] RIP: 0010:lock_acquire+0x16e/0x4a0
[ 1313.802238][    C0] Code: 3e 00 0f 85 18 01 00 00 43 c6 44 3d 08 00 48 c7 84 24 a0 00 00 00 00 00 00 00 9c 8f 84 24 a0 00 00 00 4c 8b b4 24 a0 00 00 00 <43> c6 44 3d 08 f8 fa 48 c7 c7 00 1e 8c 8a e8 bf bd c9 08 65 ff 05
[ 1313.802251][    C0] RSP: 0018:ffffc90000007c40 EFLAGS: 00000046
[ 1313.802266][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: c13ea2445530fb00
[ 1313.802277][    C0] RDX: 0000000000000000 RSI: ffffffff8adf1300 RDI: ffffffff8adf12c0
[ 1313.802289][    C0] RBP: ffffc90000007d48 R08: ffffffff8e1ff3ef R09: 1ffffffff1c3fe7d
[ 1313.802301][    C0] R10: dffffc0000000000 R11: fffffbfff1c3fe7e R12: 0000000000000000
[ 1313.802312][    C0] R13: 1ffff92000000f94 R14: 0000000000000046 R15: dffffc0000000000
[ 1313.802324][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1313.802338][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1313.802350][    C0] CR2: 0000200000000300 CR3: 0000000058c5f000 CR4: 00000000003506f0
[ 1313.802364][    C0] Call Trace:
[ 1313.802371][    C0]  <IRQ>
[ 1313.802382][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 1313.802406][    C0]  ? ktime_get_update_offsets_now+0x44/0x3e0
[ 1313.802433][    C0]  seqcount_lockdep_reader_access+0xcd/0x1d0
[ 1313.802451][    C0]  ? ktime_get_update_offsets_now+0x44/0x3e0
[ 1313.802469][    C0]  ? ktime_get_real_ts64+0x440/0x440
[ 1313.802493][    C0]  ktime_get_update_offsets_now+0x44/0x3e0
[ 1313.802511][    C0]  ? kvm_sched_clock_read+0x14/0x40
[ 1313.802530][    C0]  hrtimer_interrupt+0x130/0x9c0
[ 1313.802549][    C0]  ? kvm_sched_clock_read+0x14/0x40
[ 1313.802563][    C0]  ? sched_clock_cpu+0x6e/0x260
[ 1313.802582][    C0]  ? __sched_clock_gtod_offset+0xe0/0xe0
[ 1313.802599][    C0]  ? __irq_exit_rcu+0x147/0x230
[ 1313.802613][    C0]  ? irq_exit_rcu+0x20/0x20
[ 1313.802631][    C0]  __sysvec_apic_timer_interrupt+0x153/0x5a0
[ 1313.802654][    C0]  sysvec_apic_timer_interrupt+0x9b/0xc0
[ 1313.802672][    C0]  </IRQ>
[ 1313.802677][    C0]  <TASK>
[ 1313.802683][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1313.802702][    C0] RIP: 0010:sched_core_balance+0x149/0xde0
[ 1313.802720][    C0] Code: 8b 8a e8 4a e2 09 00 4c 89 7c 24 38 4c 89 6c 24 28 e9 1a 0c 00 00 48 8b 7c 24 40 e8 c1 f1 dc 08 e8 5c d2 2d 00 fb 41 83 fd 08 <0f> 83 e7 0b 00 00 4e 8d 34 fd 80 39 65 8c 4c 89 f0 48 c1 e8 03 48
[ 1313.802733][    C0] RSP: 0018:ffffffff8c807a00 EFLAGS: 00000293
[ 1313.802745][    C0] RAX: c13ea2445530fb00 RBX: ffff8880b8e3b848 RCX: c13ea2445530fb00
[ 1313.802757][    C0] RDX: dffffc0000000000 RSI: ffffffff8a8c1120 RDI: ffffffff8adf1320
[ 1313.802769][    C0] RBP: ffffffff8c807b68 R08: ffff8880b8e3ab03 R09: 1ffff110171c7560
[ 1313.802780][    C0] R10: dffffc0000000000 R11: ffffed10171c7561 R12: dffffc0000000000
[ 1313.802792][    C0] R13: 0000000000000000 R14: ffffffff815b0ac0 R15: 0000000000000000
[ 1313.802809][    C0]  ? put_prev_task_balance+0x110/0x110
[ 1313.802838][    C0]  ? sched_core_balance+0xbb/0xde0
[ 1313.802853][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 1313.802872][    C0]  ? put_prev_task_balance+0x110/0x110
[ 1313.802894][    C0]  ? put_prev_task_balance+0x110/0x110
[ 1313.802909][    C0]  finish_task_switch+0x39d/0x8f0
[ 1313.802932][    C0]  __schedule+0x11d9/0x40e0
[ 1313.802962][    C0]  ? __sched_text_start+0x8/0x8
[ 1313.802980][    C0]  ? flush_smp_call_function_queue+0x127/0x350
[ 1313.802997][    C0]  ? generic_smp_call_function_single_interrupt+0x120/0x120
[ 1313.803015][    C0]  ? tick_nohz_restart_sched_tick+0x1f0/0x1f0
[ 1313.803039][    C0]  schedule_idle+0x4a/0x90
[ 1313.803058][    C0]  do_idle+0x635/0x680
[ 1313.803080][    C0]  ? idle_inject_timer_fn+0x60/0x60
[ 1313.803103][    C0]  ? schedule_idle+0x57/0x90
[ 1313.803122][    C0]  ? do_idle+0x669/0x680
[ 1313.803143][    C0]  cpu_startup_entry+0x3f/0x60
[ 1313.803162][    C0]  rest_init+0x2dc/0x300
[ 1313.803178][    C0]  ? time_init+0x33/0x33
[ 1313.803195][    C0]  arch_call_rest_init+0xa/0xa
[ 1313.803216][    C0]  start_kernel+0x493/0x53c
[ 1313.803236][    C0]  secondary_startup_64_no_verify+0xcf/0xdb
[ 1313.803262][    C0]  </TASK>