last executing test programs:

10m32.905936192s ago: executing program 3 (id=51):
r0 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r1=>0x0})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0x5, 0x9}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0xb, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'vxcan1\x00'}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x810}, 0x0)

10m32.659170851s ago: executing program 3 (id=53):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f00000005c0)={&(0x7f00000004c0)={0x24, @short={0x2, 0xffff, 0xaaa0}}, 0x14, &(0x7f0000000580)={0x0}, 0x1, 0x0, 0x0, 0x4008044}, 0x0)

10m32.519846245s ago: executing program 3 (id=55):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x24, r0, 0x1, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x804}, 0x20000000)

10m32.38106161s ago: executing program 3 (id=56):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8880, 0x85)
lseek(r0, 0x3, 0x1)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x1c9080, 0x0)
getdents64(r0, 0x0, 0x4f)

10m32.059250321s ago: executing program 3 (id=60):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@xino_auto}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[], [], 0x2f})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
getdents64(r3, 0x0, 0x0)

10m31.518111519s ago: executing program 3 (id=64):
r0 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r1=>0x0})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0x5, 0x9}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0xb, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'vxcan1\x00'}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x810}, 0x0)

10m30.814387882s ago: executing program 32 (id=64):
r0 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r1=>0x0})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0x5, 0x9}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0xb, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'vxcan1\x00'}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x810}, 0x0)

3m51.352305141s ago: executing program 5 (id=1483):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'syz_tun\x00'})
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x20400, &(0x7f0000000080)={[{@nodioread_nolock}, {@sb={'sb', 0x3d, 0x1}}]}, 0x4, 0x523, &(0x7f00000018c0)="$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")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000180)={'bridge_slave_1\x00', &(0x7f00000034c0)=@ethtool_per_queue_op={0x4b, 0x1, [0x200, 0x5, 0x10000, 0x2, 0x8, 0x6, 0x2, 0x7fffffff, 0x80, 0x0, 0x3, 0x5, 0x9, 0x101, 0x10001, 0x42, 0x4, 0x8, 0x3, 0x1, 0xc, 0xf773, 0x6, 0xffffffff, 0x10, 0x1, 0xf2, 0x8, 0x2, 0xfff, 0x1, 0x5, 0x1000, 0x9, 0xc, 0x3e9, 0x8c03, 0x3, 0x80000000, 0xfffffffa, 0x841f, 0x18c8f43c, 0x7f, 0x4, 0x1000, 0xf, 0xfffffffc, 0x6, 0x1000, 0x0, 0x53f1, 0x6, 0xfffff249, 0x5, 0xfffffff2, 0x6, 0x4, 0x80000000, 0xd, 0x7, 0x0, 0x1, 0x3, 0x7, 0xc8, 0x8, 0x800, 0xfffffffd, 0x9, 0x4, 0x7, 0xe00000, 0x4, 0x7fff, 0x1ff, 0x2, 0x1, 0x34cc, 0x400000, 0xcf13, 0x8, 0x90, 0x5, 0x800, 0x4, 0x6, 0x5, 0x6, 0xe0000000, 0x8, 0x10000, 0x7, 0x7f, 0x7, 0x6, 0x8001, 0x6, 0xffff1057, 0x2, 0x4, 0x5, 0x7, 0x1, 0xfffffff6, 0x40, 0x3, 0x0, 0x4, 0x6, 0x5, 0x102, 0xffffff7f, 0x4, 0x1, 0x1000, 0x8, 0x8, 0x0, 0x3, 0x7fffffff, 0x6, 0xffff9cd9, 0xfffffff7, 0x8, 0x8, 0x9, 0x0, 0x524]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket(0xa, 0x3, 0xff)
setsockopt$inet6_int(r5, 0x29, 0x5, 0x0, 0x0)
getsockopt$sock_timeval(r4, 0x1, 0x15, &(0x7f0000000000), &(0x7f0000000240)=0x10)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb01001800000000aff30024000000"], &(0x7f0000000140)=""/240, 0x3e, 0xf0, 0x1}, 0x28)
ioctl$UI_DEV_SETUP(r6, 0x405c5503, &(0x7f0000000340)={{0x8, 0xf, 0x3, 0xffa}, 'syz0\x00', 0x3e})
ioctl$UI_ABS_SETUP(r6, 0x401c5504, &(0x7f00000000c0)={0x35, {0x9, 0xd, 0x15b, 0x3, 0xfffffffe, 0xfffffffe}})
add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
ioctl$UI_DEV_CREATE(r6, 0x5501)
r7 = syz_clone(0x2008400, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r7, &(0x7f0000000100)='map_files\x00')
ioprio_set$pid(0x2, r2, 0x0)
syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff000000e8ff000003424203"], 0x0)

3m47.846027558s ago: executing program 5 (id=1493):
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file7\x00', 0x1ac)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7/file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)

3m46.639491909s ago: executing program 5 (id=1496):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x10f, 0x4})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0})
dup3(r1, r0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0xffffffffffffff67, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000640)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x60, 0x18, &(0x7f00000009c0)={@flat=@binder={0x73622a85, 0x0, 0x2}, @ptr={0x70742a85, 0x0, &(0x7f0000000140)=""/64, 0x4d, 0x0, 0xa}, @fda={0x66646185, 0x4, 0x1, 0x3}}, &(0x7f0000000240)={0x0, 0x18, 0x40}}, 0x400}], 0x0, 0x0, 0x0})

3m46.613400979s ago: executing program 5 (id=1498):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x200002, &(0x7f0000000380)={[{@block_validity}, {}, {@usrquota}, {@orlov}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@nogrpid}, {@noblock_validity}, {@nouid32}]}, 0x3, 0x58b, &(0x7f0000002680)="$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")
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000000000)='./file0\x00', 0x8, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x8, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f0000000480)=ANY=[], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x40)

3m44.780959392s ago: executing program 5 (id=1501):
r0 = socket$packet(0x11, 0xa, 0x300)
recvmmsg(r0, &(0x7f0000003f80)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x200}], 0x2, 0x0, 0x0)

3m43.088176058s ago: executing program 5 (id=1509):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x23}], 0x2)
syz_io_uring_setup(0x49a, 0x0, 0x0, 0x0, &(0x7f0000000000))
r1 = io_uring_setup(0xf08, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000080)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, &(0x7f0000000000)=[r1], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000380)={[{@dioread_nolock}]}, 0x1, 0x5bc, &(0x7f0000001440)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x2)
r4 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000640)={'wlan0\x00'})
pwrite64(r4, 0x0, 0x0, 0x8000c5d)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x80, 0xd754, 0x7f96})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))

3m42.920448354s ago: executing program 33 (id=1509):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x23}], 0x2)
syz_io_uring_setup(0x49a, 0x0, 0x0, 0x0, &(0x7f0000000000))
r1 = io_uring_setup(0xf08, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000080)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, &(0x7f0000000000)=[r1], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000380)={[{@dioread_nolock}]}, 0x1, 0x5bc, &(0x7f0000001440)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x2)
r4 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000640)={'wlan0\x00'})
pwrite64(r4, 0x0, 0x0, 0x8000c5d)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x80, 0xd754, 0x7f96})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))

2m1.221483429s ago: executing program 2 (id=1767):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='htcp', 0x4)
socket$packet(0x11, 0x2, 0x300)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x9)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x3, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x6, 0x6b7, 0x80, 0x0, 0x1, 0x91b1}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000400}, 0x24000000)
sendto$inet(r0, &(0x7f0000000900)="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", 0x1a1, 0x12, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080), 0xffffffffffffffa9, 0xc9100120, 0x0, 0x1500)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200080, &(0x7f0000000180)={[{@nobh}, {@nodelalloc}, {@jqfmt_vfsv1}]}, 0x3, 0x575, &(0x7f00000005c0)="$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")

2m0.132108476s ago: executing program 2 (id=1770):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_TSC(0x1a, 0x3)
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
mmap(&(0x7f00009c5000/0x4000)=nil, 0x4000, 0x3, 0x28012, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009c6000/0x4000)=nil, 0x4000, 0x3, 0x28012, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240cc0c5, &(0x7f0000000080)={0xa, 0x4c1f, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x9}, 0x1c)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r3, &(0x7f0000000040)=[{&(0x7f00000024c0)=""/4127, 0x101f}], 0x1, 0x4000, 0x0)
setregid(0xffffffffffffffff, 0x0)

1m55.437792333s ago: executing program 2 (id=1783):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fda000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000040)="0f38f172b00f01cad9d0f080ae0200cc0f01d10f01df0f300f73d2050f3264c9", 0x20}], 0x1, 0x27, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m54.676156619s ago: executing program 2 (id=1786):
unshare(0x20000600)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000002a00)={[{@noblock_validity}, {@resgid={'resgid', 0x3d, 0xee00}}, {@acl}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@nodiscard}]}, 0xfe, 0x472, &(0x7f0000000940)="$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")
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x11)
r0 = socket(0x11, 0x3, 0x0)
bind$packet(r0, 0x0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000002080)='./file0\x00', 0x0, &(0x7f0000000080)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x3e, 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000100)=ANY=[@ANYBLOB="020000000100030000000000040001000000000020"], 0x1c, 0x2)

1m53.363833433s ago: executing program 2 (id=1791):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0x2, 0x801, 0x0)
capset(0x0, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r3, 0x0, 0x1, 0x2004cfe9, &(0x7f0000000180)={0x2, 0x4e23, @loopback}, 0x10)
pipe2(0x0, 0x0)
shutdown(r3, 0x1)

1m51.038478271s ago: executing program 2 (id=1801):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r3, 0x0, 0x483, &(0x7f0000000240), &(0x7f0000000340)=0x68)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r6, 0x8946, 0x0)
sendto$inet6(r1, 0x0, 0x10, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x0, 0x0, @loopback={0x2001001000000000, 0xac141400}}, 0x1c)
r7 = fspick(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x1)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x3000, 0x1})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0)
fgetxattr(r8, &(0x7f0000000200)=ANY=[], &(0x7f0000000300)=""/47, 0x2f)
flock(r7, 0x1e)
socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r9=>0xffffffffffffffff})
getpeername$packet(r9, &(0x7f0000000000)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000140)={'ip6tnl0\x00', &(0x7f0000000180)={'syztnl2\x00', r10, 0x29, 0xfb, 0x53, 0x83, 0x74, @local, @mcast2={0xff, 0x5}, 0x20, 0x7, 0xe3de, 0xcfe}})

1m50.559851187s ago: executing program 34 (id=1801):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r3, 0x0, 0x483, &(0x7f0000000240), &(0x7f0000000340)=0x68)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r6, 0x8946, 0x0)
sendto$inet6(r1, 0x0, 0x10, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x0, 0x0, @loopback={0x2001001000000000, 0xac141400}}, 0x1c)
r7 = fspick(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x1)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x3000, 0x1})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0)
fgetxattr(r8, &(0x7f0000000200)=ANY=[], &(0x7f0000000300)=""/47, 0x2f)
flock(r7, 0x1e)
socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r9=>0xffffffffffffffff})
getpeername$packet(r9, &(0x7f0000000000)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000140)={'ip6tnl0\x00', &(0x7f0000000180)={'syztnl2\x00', r10, 0x29, 0xfb, 0x53, 0x83, 0x74, @local, @mcast2={0xff, 0x5}, 0x20, 0x7, 0xe3de, 0xcfe}})

1m27.010063768s ago: executing program 1 (id=1862):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'syz_tun\x00'})
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x20400, &(0x7f0000000080)={[{@nodioread_nolock}, {@sb={'sb', 0x3d, 0x1}}]}, 0x4, 0x523, &(0x7f00000018c0)="$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")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000180)={'bridge_slave_1\x00', &(0x7f00000034c0)=@ethtool_per_queue_op={0x4b, 0x1, [0x200, 0x5, 0x10000, 0x2, 0x8, 0x6, 0x2, 0x7fffffff, 0x80, 0x0, 0x3, 0x5, 0x9, 0x101, 0x10001, 0x42, 0x4, 0x8, 0x3, 0x1, 0xc, 0xf773, 0x6, 0xffffffff, 0x10, 0x1, 0xf2, 0x8, 0x2, 0xfff, 0x1, 0x5, 0x1000, 0x9, 0xc, 0x3e9, 0x8c03, 0x3, 0x80000000, 0xfffffffa, 0x841f, 0x18c8f43c, 0x7f, 0x4, 0x1000, 0xf, 0xfffffffc, 0x6, 0x1000, 0x0, 0x53f1, 0x6, 0xfffff249, 0x5, 0xfffffff2, 0x6, 0x4, 0x80000000, 0xd, 0x7, 0x0, 0x1, 0x3, 0x7, 0xc8, 0x8, 0x800, 0xfffffffd, 0x9, 0x4, 0x7, 0xe00000, 0x4, 0x7fff, 0x1ff, 0x2, 0x1, 0x34cc, 0x400000, 0xcf13, 0x8, 0x90, 0x5, 0x800, 0x4, 0x6, 0x5, 0x6, 0xe0000000, 0x8, 0x10000, 0x7, 0x7f, 0x7, 0x6, 0x8001, 0x6, 0xffff1057, 0x2, 0x4, 0x5, 0x7, 0x1, 0xfffffff6, 0x40, 0x3, 0x0, 0x4, 0x6, 0x5, 0x102, 0xffffff7f, 0x4, 0x1, 0x1000, 0x8, 0x8, 0x0, 0x3, 0x7fffffff, 0x6, 0xffff9cd9, 0xfffffff7, 0x8, 0x8, 0x9, 0x0, 0x524]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0xa, 0x3, 0xff)
getsockopt$sock_timeval(r4, 0x1, 0x15, &(0x7f0000000000), &(0x7f0000000240)=0x10)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r5, 0x405c5503, &(0x7f0000000340)={{0x8, 0xf, 0x3, 0xffa}, 'syz0\x00', 0x3e})
ioctl$UI_ABS_SETUP(r5, 0x401c5504, &(0x7f00000000c0)={0x35, {0x9, 0xd, 0x15b, 0x3, 0xfffffffe, 0xfffffffe}})
r6 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, 0xfffffffffffffffe, 0x0)
ioctl$UI_DEV_CREATE(r5, 0x5501)
r7 = syz_clone(0x2008400, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r7, &(0x7f0000000100)='map_files\x00')
ioprio_set$pid(0x2, r2, 0x0)
syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff000000e8ff000003424203"], 0x0)

1m24.994383615s ago: executing program 1 (id=1867):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
unshare(0x22020600)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040))

1m24.643966517s ago: executing program 1 (id=1870):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x23}], 0x2)
syz_io_uring_setup(0x49a, 0x0, 0x0, 0x0, &(0x7f0000000000))
r1 = io_uring_setup(0xf08, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000080)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, &(0x7f0000000000)=[r1], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000380)={[{@dioread_nolock}]}, 0x1, 0x5bc, &(0x7f0000001440)="$eJzs3V2IXGcdB+D/md1N87E1H7Zqa2xWQ20gdGez2YREvLDEj1qTWlG8CIWwZKe7IbM7a3YD3algizeiIII3IggVe2FFNJCbSqntRYs3Ckr9oKIxoIIIRSsFEdSRdz620+akCe7uHJrzPHBm3/Oe2X3f2eE355w57zkngNIaSw9ZxGhEXIyI7Z3Z1z9hrPOjefDCXJqyaLU+/bes/byZgxfmek/t/d629DAcsTkidh3LYu/Ile0urTTPTtfrtXPd+ery/GJ1aaV595n56dnabG3h0JGpo5OHp45Mrd9rnfjZ1lv/fOf9l594/p///tZvDv8g9Xe0u6z/dayXsRjr/k9GYmdf/XAWcd96N1aQoc5bHXf21WXDBXaI69Zq7fp+ev/eHhF72/nfHkPRefNeevrBf2yPX91bdB+BjdPqyV/8Sgu4YVXa28BZZTwiOuVKZXy8sw1/S2yt1BtLy/sfapxfmOlsK++IkcpDZ+q1ie6+wo4YydL8gXb5tfnJN8wfjGhvA39paEt7fvx0oz4z6A87oG004tLFz53etO0N+f/LUCf/wI0r5f+XLzz1bCq/OlR0b4BBSvn/3qvznwj5h9KRfygv+Yfykn8oL/mH8pJ/KC/5h/KSfygv+Yfykn8or17+HzhxIh44caLV7J7/vtCYPXN2bvHo5MT4/PnT46cb5xbHZxuN2fYZO/PX/rv1RmPxwGScf7i6XFtari6tNE/NN84vLJ9qn9d/qpZzKQCgACcvb75v557nXsoi4tEPbGlPyabuclmFG1urlUXR5yADxbDrD+XlUm1QXvbxgewayzdfbUF9/fsCDEal6A4AhbnrNsf/oKx8/w/l5ft/KC/b+IDv/6F8fP8P5TV6lft/3dx3766JiHhbRPx0aOSm3r2+gLeU1+3qj0ZcuvSdz1ZX78OtoKCgsFoo7oMKGIzXQl90T4CizBy8MNebBtXmM7ODagnI8/I9nUFAKffN7tRZMrx6bGBkg8YJ7bwjPf7o94/vmxtKU3Q/hzagKSDHo49FxLvy1v9Z+9jAju7zdnWeFrdExK0R8Y6IeOca2/7GpyLG4oVaf538w+Bcb/5vi4i0ur49It4dEbsj4j1rbPsXF1P+f72lv07+oRw+/3zRPQCK8vGniu4BUJSTxhhAaX33kaJ7ABTl6R8W3QOgKF99segeQLk9d09ETOQd/6u0j/f3jHSvC3hT91oAWyJia0Rs655DeHP3HMHtfccMr+XUJyPG4o4f99c5/geD0xv/17xi/F9ldfzfUETsWUMbz3xw9Ct59dO7U/6feKQ3/i9Nqf3eWEBgY738WMTtufnPVsf8ZpFyGvHe/7ONsS9cfjKv/sX7098d+bn8QzFa3454f+TnvyeVqsvzi9Wllebd7ft4z9YWDh2ZOjp5eOrIVLV9iZBq70IhOY7//ZX9efW/m0z5/+Yh+YdipPX/1qvkv3/7/31raOPY1798Mq9+9I8p/7ufffP8V/66KftMe753X4KHp5eXzx2I2JQdv7J+cg0dhRtcLyO9DKX879ubv/+/q/s7af1/LCI+nLYXIuI/EfHfiPhIRHw0Ij4WEfe+SZtfu2v2cl79H55M+X/8rPU/FCPlf+Ya6//0819raGP/vp98Ma/+Q3tS/sd/+6fjDw6nSf4BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1t/SSvPsdL1eO7eBhaJfIwAAAAAAAJTF/wIAAP//d8Uzog==")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x2)
r4 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
pwrite64(r4, &(0x7f0000000080)="16", 0xff8d, 0x8000c5d)
ioctl$FITRIM(r3, 0xc0185879, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))

1m21.932100789s ago: executing program 1 (id=1873):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
fdatasync(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r1, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)

1m21.435263905s ago: executing program 1 (id=1876):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x40040, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x1}, {0xffff, 0xffff}, {0x5, 0x9}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0xb, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'vxcan1\x00'}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x810}, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r8)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r9, 0x3e}, 0x80, 0x0}, 0x4)

1m20.926850342s ago: executing program 1 (id=1878):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800, &(0x7f0000000380)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0x9e}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@fmask={'fmask', 0x3d, 0x5}}, {@dmask}, {@iocharset={'iocharset', 0x3d, 'cp860'}}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {}], [{@hash}, {@obj_role}, {@subj_role={'subj_role', 0x3d, 'iso\x84\xe9\xc6p\x1f\xda\x11\x91N\xf4\x04\xb3\xe3\xbd\xfc\xa7\xc0\xd1\x8fv\xc4\x0059-78\x11\xa0:\xa5\xdd?cM\x80\xb7a\\\xbc\xff\x81k\xa6\x01W\n\xaf\x05P\x87\x05\xcf\x80\t\x87\x80\xb3\xd9hD\xd4\x94|\xc4\x1d\t\x1b\xbdH\xc0i\xef\x1dL%\xce\x90%\xfeZ\xc64\xfa\xf22\x89\xf8v\x8aulj\xdc\tf\xb3\x1b\xe5\xc4 H\xb5J\x1f\x1f7\"Y\v\xce\xe2\x8eob\x00\x99\x85\xbd\xc3X\xbb.O\xb1\xf8$7\x8b\xd7\fR\xc4\xfd\xc8\xfdm6\xe0cr\x00\x8d\xcd\"\x9eW\xe2\xbbs\xa1;K]\xb2\xa1A\xd38\xc5\x86l\x88$\xd8{\xad\xe6\x89h#w\xb2n\x8fq\xd7\xa3\xa2\'\xe5t\x8d\x05mWF\n]\x13\x9a\xd1n\xbaV9?8G\xc9\x1c\xd7\x85\xac\x06\xb3\x0e\xc0R\x96\x91\xa4\xf8n\x8f\xd3q%T\x15\x0fO\x03L E\x18\xc8\xf9g\x81h\xa2\xaf\xa4\xa4{q\xb8\xfc+\xfei\xc6\xc2\xa2\x92\x99^Dr\x124{\x94~\xdbM\xd2ZP\x18\xa3~'}}, {@obj_type={'obj_type', 0x3d, '9p\x00'}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

1m20.040089692s ago: executing program 35 (id=1878):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800, &(0x7f0000000380)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0x9e}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@fmask={'fmask', 0x3d, 0x5}}, {@dmask}, {@iocharset={'iocharset', 0x3d, 'cp860'}}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {}], [{@hash}, {@obj_role}, {@subj_role={'subj_role', 0x3d, 'iso\x84\xe9\xc6p\x1f\xda\x11\x91N\xf4\x04\xb3\xe3\xbd\xfc\xa7\xc0\xd1\x8fv\xc4\x0059-78\x11\xa0:\xa5\xdd?cM\x80\xb7a\\\xbc\xff\x81k\xa6\x01W\n\xaf\x05P\x87\x05\xcf\x80\t\x87\x80\xb3\xd9hD\xd4\x94|\xc4\x1d\t\x1b\xbdH\xc0i\xef\x1dL%\xce\x90%\xfeZ\xc64\xfa\xf22\x89\xf8v\x8aulj\xdc\tf\xb3\x1b\xe5\xc4 H\xb5J\x1f\x1f7\"Y\v\xce\xe2\x8eob\x00\x99\x85\xbd\xc3X\xbb.O\xb1\xf8$7\x8b\xd7\fR\xc4\xfd\xc8\xfdm6\xe0cr\x00\x8d\xcd\"\x9eW\xe2\xbbs\xa1;K]\xb2\xa1A\xd38\xc5\x86l\x88$\xd8{\xad\xe6\x89h#w\xb2n\x8fq\xd7\xa3\xa2\'\xe5t\x8d\x05mWF\n]\x13\x9a\xd1n\xbaV9?8G\xc9\x1c\xd7\x85\xac\x06\xb3\x0e\xc0R\x96\x91\xa4\xf8n\x8f\xd3q%T\x15\x0fO\x03L E\x18\xc8\xf9g\x81h\xa2\xaf\xa4\xa4{q\xb8\xfc+\xfei\xc6\xc2\xa2\x92\x99^Dr\x124{\x94~\xdbM\xd2ZP\x18\xa3~'}}, {@obj_type={'obj_type', 0x3d, '9p\x00'}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

55.368384381s ago: executing program 7 (id=1947):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'pimreg\x00', 0x5005})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="280000001000010024bd7000fc0ddf2500000000", @ANYRES32=0x0, @ANYBLOB="1b0b04000300000008001b"], 0x28}, 0x1, 0x0, 0x0, 0x68010}, 0x0)
write$tun(r0, &(0x7f0000000240)={@void, @val={0x2, 0x3, 0x8, 0x6, 0x16, 0xc}, @ipv4=@generic={{0x10, 0x4, 0x2, 0x16, 0xfc2, 0x68, 0x0, 0x9, 0x4, 0x0, @private=0xa010101, @broadcast, {[@cipso={0x86, 0x6, 0xffffffffffffffff}, @ssrr={0x89, 0xf, 0x47, [@empty, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp={0x44, 0x14, 0xd, 0x0, 0x5, [0x1, 0x1dcd, 0xffffffc0, 0x4]}]}}, "465835170fa06ded05427a07dab063fd416d24e0689d552734f601503f4d395e7794229315d4d39f6453b5b0e5c4dcba679704b8245844ad9a2df7cc05734f08c63ab32f66f8ea4dec60fca3e11c64a5fdcb41dc8291282d4a0a6af9727ea119edaa53714fd2a7580edf4ff0356e360ecb0d38182fceed1ab2f6644125d5b784d97ce98c0f19ab0e1317c22f61205aa6554478e03cf7392e0d8e54a557f12d0db842a1e05c2d4de2d3aa4a681afee8eb9f08acc29c75e5698887c7fc925dbcfc2fb8512da9d621f4c33a51d14be564816e16d2d1cf77e7441af104aece606f6597699104233cb55c01074f73deafca015512bfa39941c6d256879c7ce230d27ba2736821a57bf96825d88cfbdddd5e48f7fad1114783079b98df132a85a5c8882be087b9d4040d603e82ad4d1b373b1a5cb484cc563bf07ec7f6415223e5bee1b60b2cd4ded9b1608f5137a2199c82672d0d73bd6f03112691fa97cf2bd22eb53cb1729e33e4d4907af29ba773a7961582dab8af2c737a67175b00f62745cdc0389040171dfe3c1b0f3e104a357fcf014cc9e75196cb9dbbe2f44828c488be7ecc64819f8cca5341ebbaf5aacb9a7ab2308540a720a940136c03ad463fbc394742ba12753db51629904978e7f09dcc4c754380629faa4409054f458c33c98dc2efcb1f3a46fda15d14f51ce09b4a6424e11078d70a848e0d011fe3328ee913009ec1de6a058b0075375917b501423d94e6fd81f3e5ef2392f4d2b8d5ad38b665eb0b5cb9868dc9c8b4da3cc100a1392438204ea73299ccf958ed8a7baa2027221ccf5b74b9d511bbbccfebcb487a61de8d575489e048d76ca577a32a0cdc81b881396dea2faf07ab3f1cba7e2b7a79e347d1d1e7167c1011fdbe4a78db08ef7aacd8dfac7d940cfb186c258c46f0fce2daf682a643c96f8ec37d9c7ac0b4560a1aa5811da8778fbc720c6a2c612581a92ef83eb7fcd12d5dc2a7fd3af039199f4b5a0016561e9512639156210a02aaac0540f0773dd3e5e417aafb6f4c31c2a104885a429101ca9faf5a93be6c70c0c6f1fd5973df9defcf6bcc38bec0f878b206b4bac240248377f9a12790f52b5ff96a2649a66798e9bd71671169e2aa195f89a937d3c431d4871463e98ba77cb09da905fc60685ded392e4b44cec624ddef813a279e1b104996fbae00491f4361edf57257f7f19b05e4375f4354edeef65a47b230e085bd2535b59c71753c5360885419198014b554d0346bfd4137007e864386547f3432b44b2c5972ce453143dff873cf20fea179caddce77516124c9ae426a48b9485c66f1f5f18a0f3730b76730aca019ecd349bd71aebeddcb94095539a8eada5e7079c4734582b5ea1cac940762b5000c7d6363d39c2297392800e6c7147f01c17353b4e66473e3c0e2fd605de77da26a5589891d7cbf145ef93b1308ddb74e1eab386a819b517965e1a1b9c572b768097fe0bdbf3b5c3a0533fa911ed42c055c7dc17906ea4e0206aef78ea3090bd67d093ad9d65aef1c54343fa068c940435d09b2022f4b2be0182b48bffffa123122a91d4bb5dfe18f32334400aed3dd5c83f2113c3d4f1445962b82dc57c8a515cfa8501a086e711eaef2b94c93b0d39f0ddd7e09aa712cfee37125b7a7922d8718002b0d39b6d51cee6c5460ae53e888f6105d359ac89ac0ccc203570596f3280220c90b69991c97ecb8e838a19d96d0c8f37f89da2c2de958447851270b8f00576e817782bdbd5dbed996596de60f339419787ccff8296988360adbdd4abbc2cb3001163182de349717ec1706de04251af911fb9588a9203adfa2690c4794b3204b09fb117fd641b27f80ec13c5890e879f92434f155d663cb0e000d20f4b69d94162d92302599a34c950fb17fd4c9dd848a8ea346a185c8d15fb309dc23c1fe14dd81ece6709ecd891dd4f74babc5255a62117ecdd70d7bb922caf27f87a44f56daf82a34fb8f6f0b08a0c868f9c6a46a330647df1f9189a5f90635190103bf4fb17ac54ee3ff222c160a7f2ce304897629727bb3afff560505949d2064b1fffb350d387ee3d6adb72dbd924fbf49495de1c87aec21c4a09367779e628567ea7da0e58eb4d413c52ba1eab852c00000000000000d7cbbbd77c8bc4320bbaadd0f58b028f01b88fcc3d070dd40ee3564b474a8a8e52e44d452504041e3122f607bc9215644f7f1dc4a6f8f0f864b783aa546674b54434dc12f621f323990f7c409434c05e5f14874fc8c5968bea0265e071ad968f3d97a81551110cdd2cf5483d97e51a7c312aade294a0b7f361d1c566f37f7655c829030d55115aca19b75ab920e06fcd7a4ba2c22ba9547b22c6d23663e0534917760bb6b7e6b66df251bfa5e73e2d1592661973807d07bf6d0e4e4dd9fff92c91d46e45a7fd46f880cf581d6b8060a104ff53f2b5ad4d079dc93228a551081daf63cfcc353831e3a924b3b3319f7413af4b462236425fec19f9bd4ba499d5ed255a2c8903266e2422d651d60f8e724e0503a3c45e18f363a6127a6ee46167e3b5c6fd1e31437e1ee607174c91a9eae4394e0624e83d8b8f23547fce4c8721ba5a76c0e377ee91afd73ebeb92d955ce8a2f77861a510913afdf1f29af5b9816d5efc5aaf0467d15e09db35cd9a1874f2d013dc3dde4227cb1ccb7d326949308ce6b9bbb1055d674e1014b956f83135d3334a8e7c9bc4a6a8cbc00c4384a04aa20831a6d414c9d98f6293ee4d665e674c3aaa65647ab2f6b0af5426ecb6f659cebdd61723900ab9c68c8588f5e3552b622f3e611c6ab271d7c99b63490a9cbc68b1b5bc1ec5ccad016da7e9fabbf41b5e5655f914cc9a2b777584c45554780197f3583c7cb8db809c9f14633e3d2503af1991ea529bbf51e532941cdc08eb65fd604e28a0b07b5d6315f81236b681417e4d9a065c86d42d639b72cbc82d346d2e8eeaf812c5d95c3b6eb6d969dcb2205bb2342e7b66e4669e7b3fcc0f89d9dbd906fcdda72be4691e3b289585e96cd873662a841c52e186c60081f4528485bf756cd068935ab318a9946987b1e75ed7ce794c2f0acc0601af3e29db83359af6d4320d60d54ae45e322fccb1860dd784d7b21f688807bcb484cafd8bd4442c6c952ccbb550545d0e50c0f303d5b6272de2c59568ca5a24a4473f91bd94cc486bdb9a020d6ccea19ee109b7b3a3c5e9cb19239f33e2d1a6f04e1f638c4d18f2cdc37cce73797eec8e703a21359d7e203e24298b5df41fe342ed803be8a0d8ccfe6db50f233225ced25b44fca26c53b769c98d1268595a2c5f33806e1cd5347d396ca6f625e6a8fc2cbc32649397578541d14050b3a98d72f795c4181cd04ae4d1fd5a1f3044a98281ee21e778ddf0616ca1d56b71da52fe5f5cc7e366e477ff36068f00031550063f6f113724f83771db172b899c0fb68798406e6556ba673a85728a01ac11799920c0e0fb309ccb97e8fdf91a4aec656d38dd007c54d240684e45bb2a0efa38defa733ef892e7bde623e5f7d1db478a524f01eab6ac854315238792cafc39296400d914d9aa32869d5c471979453437eb6d1c137200e330aca386ca28fc9b30e1baaaa51795c298bafbff6950e33d530e4f225f88889304ca5ae8898d050febd09397136df2defaa689d584d9a02eebec5a57e43adff797b5e7a72ba97d1aca32f6fb97c978b9929d2eef28c4bbf294aa69d3a62d2088b2b5dc97cb541c4ed405e77c59196d94d2e1d8293ad6d80cc4462295525f249ee0a07bfd8c2707302b3831f479a3eb514a745f852e30b07e72b31b388248eea539b6bf761d870f703d19230b0c37938b2896c9706b9dc7856eb407d69a4ad8e3bc264a1c2c74812f5304e977aa10062eae1a6e4a236256f264561a2209c3e1ffc0304d4d691324bdce5052d1f63d3a3244b882f4f02525b052d2f86a61c6c008cc7d728e557a4e8f19951d9de9c5f80dbbb48356a633b00357e56685a830ecd9ee045027ca1fa0389a615e0f15625d3ebb31ad207df15860348f18d229d101be27658124d891456ed08acd630f97dda5e163ce0a475e8c4ec0bb81155f241791ab6060aabd9c3d3ade231ba3f4dbca9ea8f1da0522c7cb3c3117f268b742b94560d14e8e385e09fdda97a26792f4cb78564a690910f580615d8b6bb162957920ce84e1067b5417597a9e6f4e9d15e0462b7b88ffc6d1319de334afe7242807de6ff994248f9be17108efa329bd1327c84528c81f889d4fd32eb360b05b10f57d2de520fe4b2678a6f8a3c62c5a2dbc19719c4878d60623db456791c1374cf7a26dca2b0df69d379e497293d96591628ca0b47a6ba99f66b4fc51731e1a3d97397509fa3e81b52ee9e25158a47d3b18a9c012ea47f9a6662b8aea6349c5c2e8a154dfb93feb792b82c434692cabd304875b83ac9b9e1ec67d593da6e1d60f7b0e5285ea993343fabc307b66262cf4e6af4ca65fcafba1d991482d457a2b7c6fcf6903d963932838350dc5ae06d5a921b3eceaa6d367d88cf5ea35ef86a171eb632d3ef194b38d0f4b945386037bdb4e0bbdfd730aca3646ab03e372167cbd9d93fb07125353e32005a2cab0080091bddabf4722cefb68a8a6b72a85f588e2b20869c02655468fce7a0b5fa7d95347613ff28d6a4f2efba5eb5a13dc487548d3f6d030126500e67760f468729df8cad82038363a96aabd23a55251492e233e751eb3ead1a7e02acfb9b8e6c91d2f216c4653e3541da1d7a79240fc7461685f3ad9da0d5f545b1e63347cddbb598600f42c5ad6d4a964102a7d55bc9ecaf26cdcd005cd120115edade01377db8fa6ce1c37c2d5db91cce44752a196000e5718ced5b49cce29e99cd974f2a73d5bdd89bb2a0016245655eb886dc42597d8d8d66848186e0f7f65ac475c80b799fe1e7f17cdc6fc4938f33fdcd0071569e627926cfa6b1ea831a7087025ce1e8766f1465c4684d60c357c9c20511d9533684bbad71eab0ed55b2c0465833d599117e9545a0852d2ca374ac7f12b067711096fcd6730c4d493e5a34655208aca62795e558efe715830d93731835a95a35097c600a8471acc5bca328b2f2b94f57a07414b06ba477c095a442ffefe6c1897242d249f9a2b74e29f44197da0360628ce8f2478ac752286365a7ef9a89b0e9ef2a67ea262f685e3ca479bae73f0e895045c54f97c858039bca17ba1aa318695f5cd3e079240bd145d46facd29a4fa3b7e4970c28ee79ee4c8cf4fc7645f56f0031dc62b100ab9550fd0816e4ca22e5143abdc5ec4cbc409ad9d2c29a19a27996f0d9a8d6952b0957c7ceefc0c4c6d3c95db0e42b9a0cae8a3d28199b9531499b3e36016c54a5d399f5db5d12d16cc9b08116c6dc30951e23d34b8fa4fb82ce03388d5b7884744677dc45a13857f8d7a8de5bed8252d37de5e1ceaf15904fce0de37fce88a0683ac84bd5737262545ac502983da688f3d9b5632da32e6561aea03e9f353707b6ed150e912aa095d13f2eb6c8f64912896c3119bea04d7b4124e9d16631b49dd8888861cd2dfee110eac96bd7e9edb99311b8e876a4101c43a16b842d173ac6657271ae770355991faa3c4173a855b7695dab634ee8d0d25185ca4dd"}}, 0xfcc)

54.868164778s ago: executing program 7 (id=1949):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000640), r0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r4)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
r5 = syz_clone(0x11, 0x0, 0xfffffffffffffede, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000100)='oom_score\x00')
pread64(r6, &(0x7f0000000500)=""/31, 0x1f, 0x6677)

53.90496945s ago: executing program 7 (id=1952):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000500)={[{@debug}, {@delalloc}, {@inlinecrypt}, {@test_dummy_encryption}, {@errors_continue}, {@errors_continue}, {@delalloc}, {@barrier}]}, 0x1, 0xbc8, &(0x7f0000002380)="$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")
chdir(&(0x7f00000001c0)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80700, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000a80)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

53.416122986s ago: executing program 7 (id=1956):
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
read$FUSE(r0, &(0x7f00000024c0)={0x2020}, 0xfffffec1)
read$FUSE(r0, &(0x7f0000006540)={0x2020}, 0xfffffce2)

52.075977522s ago: executing program 7 (id=1963):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_TSC(0x1a, 0x3)
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f00009c5000/0x4000)=nil, 0x4000, 0x3, 0x28012, r3, 0x0)
mmap(&(0x7f00009c6000/0x4000)=nil, 0x4000, 0x3, 0x28012, r3, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x19, 0x0, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x240cc0c5, &(0x7f0000000080)={0xa, 0x4c1f, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x9}, 0x1c)
sendto$inet6(r4, 0x0, 0x0, 0x8000, 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
read$FUSE(r5, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')

48.292095868s ago: executing program 7 (id=1979):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x5)
sched_setaffinity(0x0, 0x0, 0x0)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000200)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x40000, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, 0x0, 0x0)
madvise(&(0x7f000014b000/0xc00000)=nil, 0xc00000, 0x15)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000006c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x24, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffffff, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000002c0)='net/rt_cache\x00')
read$msr(r3, 0x0, 0x0)

32.993465092s ago: executing program 36 (id=1979):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x5)
sched_setaffinity(0x0, 0x0, 0x0)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000200)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x40000, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, 0x0, 0x0)
madvise(&(0x7f000014b000/0xc00000)=nil, 0xc00000, 0x15)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000006c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x24, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffffff, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000002c0)='net/rt_cache\x00')
read$msr(r3, 0x0, 0x0)

19.771150766s ago: executing program 8 (id=2071):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
r0 = socket$inet6(0xa, 0x3, 0x5)
capset(&(0x7f0000a31000)={0x20080522}, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x0, 0x1, 0x3})
sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="080100000000000029000000", @ANYRES64=r0], 0x108}}], 0x1, 0xc040)

19.581382662s ago: executing program 8 (id=2073):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[], 0x50)
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000280)={0x18, 0x2, {0x1, @local}}, 0x1e)
connect$pptp(r0, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
ioctl$PPPIOCATTCHAN(r1, 0x40047438, &(0x7f0000000040)=0x1)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000003280)={'syztnl1\x00', 0x0})

19.05148458s ago: executing program 8 (id=2074):
r0 = socket$nl_generic(0x11, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x13, 0x1c, 0x0, 0x0, 0x4a, 0x2, 0x0, @remote, @multicast1}, {0x17, 0x0, 0x0, @broadcast}}}}}, 0x0)
sendmsg(r0, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x2c, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x3e}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)

18.740215771s ago: executing program 8 (id=2076):
syz_usb_connect$printer(0x3, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="0801120100000040f0031000400001020301090224000101059004090407010302090501020004"], 0x0)

18.100196012s ago: executing program 8 (id=2078):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f00000000c0)={[{@bh}]}, 0x82, 0x4a8, &(0x7f0000000300)="$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")
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
lstat(&(0x7f00000001c0)='./file1\x00', &(0x7f00000007c0))
fstat(0xffffffffffffffff, 0x0)

17.951471247s ago: executing program 8 (id=2079):
unshare(0x64000600)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/route\x00')
read$FUSE(r0, &(0x7f0000002dc0)={0x2020}, 0x2020)

15.940451905s ago: executing program 6 (id=2083):
io_setup(0x2278, 0x0)
r0 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000000000))
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/profiling', 0x42701, 0x192)
io_setup(0x1, &(0x7f00000016c0))
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(0xffffffffffffffff, 0x40043d04, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x121000, 0x0)
ioctl$TIOCGICOUNT(r4, 0x545d, 0x200000000000000)
getpgid(r1)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f0000000280)={[{@errors_remount}, {@usrquota}, {@minixdf}, {@nombcache}]}, 0x1, 0x51a, &(0x7f0000000f00)="$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")
r5 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
fallocate(r5, 0x0, 0x0, 0x1001f0)
fallocate(r5, 0x3, 0xf00, 0xfffe)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x40000d2}, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000300)={@map, 0xf, 0x0, 0xe23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$sock_timeval(r6, 0x1, 0x14, &(0x7f0000000000)={0x0, 0xea60}, 0x10)

12.882398408s ago: executing program 6 (id=2086):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_TSC(0x1a, 0x3)
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
mmap(&(0x7f00009c5000/0x4000)=nil, 0x4000, 0x3, 0x28012, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009c6000/0x4000)=nil, 0x4000, 0x3, 0x28012, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240cc0c5, &(0x7f0000000080)={0xa, 0x4c1f, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x9}, 0x1c)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r3, &(0x7f0000000040)=[{&(0x7f00000024c0)=""/4127, 0x101f}], 0x1, 0x4000, 0x0)
setregid(0xffffffffffffffff, 0x0)

11.860146962s ago: executing program 6 (id=2087):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
prlimit64(r0, 0xf, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = openat$rtc(0xffffff9c, &(0x7f0000000040), 0xc2440, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(r1, 0x7005, 0x0)
r2 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r2, &(0x7f00000001c0)={0x18, 0x2, {0x0, @empty}}, 0x1e)
pipe2(&(0x7f0000000200), 0x80800)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0x5)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})

11.821066633s ago: executing program 6 (id=2088):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@ipv6_newrule={0x38, 0x20, 0x1, 0x70bd29, 0x0, {0xa, 0x0, 0x0, 0x40}, [@FIB_RULE_POLICY=@FRA_FWMARK={0x8, 0xa, 0x4}, @FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'veth1_vlan\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040804}, 0x4008000)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x40084)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r4, 0x402c542c, &(0x7f0000000080)={0xf7fffff8, 0xf21f96ac, 0x64, 0x3fe, 0xc, "00000000001a00f5ff7d0d00", 0x0, 0xa})
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x48, &(0x7f0000000000)=0x4000e, 0x2f)
setresgid(0xee00, 0xee01, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x200800, &(0x7f00000042c0)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x3}}]}})
lseek(0xffffffffffffffff, 0xfff, 0x0)

10.683143161s ago: executing program 6 (id=2090):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000640), r0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r4)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
r5 = syz_clone(0x11, 0x0, 0xfffffffffffffede, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000100)='oom_score\x00')
pread64(r6, &(0x7f0000000500)=""/31, 0x1f, 0x6677)

9.84000006s ago: executing program 0 (id=2094):
ioctl$USBDEVFS_REAPURB(0xffffffffffffffff, 0x4008550c, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r1 = fcntl$dupfd(r0, 0x406, r0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200047fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmsg$TIPC_NL_NODE_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[], 0x134}, 0x1, 0x0, 0x0, 0x8000}, 0x20040004)
sendto$inet(r0, &(0x7f0000000500)="b0", 0x1, 0x40001, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000200)=ANY=[], 0x540)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./bus\x00', 0x4000, &(0x7f0000000540)=ANY=[@ANYRES16=0x0, @ANYRES64, @ANYRES8, @ANYRES32], 0xff, 0x5512, &(0x7f00000079c0)="$eJzs3EtvG1UUAODjpGnpgxIhFuw6UoWUSLVVpw/BrkArHiJVVGDBChzbsdzanih2nJAVC5aIBf8EgcSKJb+BBWt2iAWIHRLIcyfQ8JCQ4sSk+T5pfOZeX58516oqnZnIAZxai9kvP1XicpyPiPmIuBRRnFfKo3Anhecj4kpEzD12VMr5PybORsSFiLg8SZ5yVsq3Prs2vnrrxzd//vrbc2cufv7Vd7PbNTBrL0REfzOd7/RTzDspPiznG+NuEfs3x2VMb/QfleM8xZ32epFhp7G/rlHEG520Pt/cHk7iRq/RnMROd6OY3xykCw7Hnf08xQceNraKcau9XsTuMC9iZy/VtbuX/m/bG45SnlaZ78MifYxG+zHNt3fbaT+bj4rYHIzK+ZQ3b7V3J3FcxvJy0cx7raKO9cN80/9vb3UH27vZuL017OaD7Fat/mKtfrta38pb7VH7ZrXRb92+mS11epNl1VG70b/TyfNOr11r5v3lbKnTbFbr9Wzpbnu92xhk9XrtRu169dZyeXYte+3+u1mvlS1N4ivdwfao2xtmG/lWlj6xnK3Ubry0nF2tZ2+vrmVrD+7dW1175/27791/efWNV8tFfysrW1q5vrJSrV+vrtSXT9H+Py6LnuL+4VAqsy4A4OTR/wOzcHT9/9aDiKPv/0P/PxUnqv897f3/EewfDkX/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwan2/8MXrxcliGl8s558up54tx5WImIuI3/7BfJw9kHO+zLPwL+sX/lLDN5UoMkyuca48LkTEnfL49Zmj/hYAAADgyfXlR1c+Td16elmcdUEcp3TTZu7SB1PKV4mIhcUfppRtbvLy3JSSFf++z8TulLIVN7DOTClZuuU2tWz/yfyB8NRjoZLC3LGWAwAAHIuDncDxdiEAAAAcp09mXQCzUYn9R5n7z4KLv7z/84Hg+QMjAAAA4ASqzLoAAAAA4MgV/b/f/wMAAIAnW/r9PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOB3du4mN20gjgPo3wYX6IeKqu57le7gGD1Cl11WHKCX4ABd0Cv0ApyB7HKECCLsCYEIRZE8NiF6TzLDGPNjxoLFzKABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAu3VSr+b/f3/60zdnu2snTGwAAAOCcTbWa10+mTf1DOv8pnfqS6kVElBFxbuw+iHcnmYOUUz1e//f4+upJG/5H1An7zxil431EfE/H3eeu7wIAAABcsdHzL68Xy1kzWm8epv20itehmbQpP/7IlFdERDW9zZRW7vO+Zgqrv9/D+JUprZ7AGmcKa6bchrnSXqT+uR9m7cZHRdEU5dm3HRqZre8AAECPBidFv6MQAAAA+vTz0g3gMop4WMo8LAWmPwyk5b3JSQ0AAAC4QsWlGwAAAAB0rh7/97T/3y73/n+T3HcDAAAA3qhm/z8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC6tKlW8/ViOWubs921k6c3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9+zPOwqEQBiEwd71ncnc/7DSoKmpSRUIH39jMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG9+95f/E1PjTDL32lh6HknWTo2tU2Pv3Dj6w/j6NQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwsT8vKRACQRAFc8b/Tvr+h5UEPYMIEdDwqKIWDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAF/3ul/8TU+NMMnfaWDoeSdauGltXjb0HjaMH4+3fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwsXM/r3FUcQDA38zsbH+ouEbZQ0QUPOjFbre1tTfxoAQP/glCSLc1duuPNgdbipiLN8m5F9GjiKDEW/+Hnlvopd562EMFz8qbnclO0oCr4swm+XzgzfvuY5j3fbMQ8p03CQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFCZvDOLs3joTeO0HLv3+NZa7O/v6aM7Ww+WY4tx0mTSB8NL9Q9Jv71EAAAAODqyqr4PITzMt1din/aK+j+vzok1/3fPTOOqnt9b91d9VfvH9usvj17Ymag3nSde9NL6eHT6yVQ6/98qF9uzf3tGp7jzxbOXrPhC0vc3n5/kx+P9TL65e/fdbnFrjzWRLQDwb5yq+jKofh+K/bDNxAA4Mjq1wruq/7NeuzkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANGGyGZ6q4iSEsNyZxdH9x7fW9uvvbD1Yrtr527e3wleza8ZL5CGES+vj0elGV7PYrt+4eWV1PB5daz54OYTQ1uxvl8u/8uEcJ4eweyQLe0cEixyk5Ze9KPkcjKDFH0oAABxKedliXf8w316JY8lSCH9+v7v+f60Whznr/0cfnb9Xn6te/w8bW+HiG2xc/Wxw/cbNN9avrl4eXR598uaZ4VvDsxfOnbswKJ6VDDwxAQAA4L/plq1e/6dLT+7/n6zFYc76//Nvh1/W58rU//uabfq1nQkAAMDR9twrf/ye7DOedLvhi9WNjWvD6XHn85npsYVU/7FjZavX/9lS21kBAAAATZhsJrv2/y/W4jDn/v/TP7z4U/2aWQjhRLn/f2rt0/HF5paz0Jr4c+K21wgAAEC7TpStvv+fF+//pzuvPKQhhNdfncblvwGcq/7P3vv6x/pc9ff/zza3xIWU9qf3o+j7IXT6bWcEAADAYXa8bLHY/y3fXvn455MfdL3/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANC0vwIAAP//PJY89w==")
openat(0xffffffffffffffff, 0x0, 0x418480, 0x1d2)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r1)
shutdown(r0, 0x1)

9.742330513s ago: executing program 9 (id=2096):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000021c0)={&(0x7f0000000040)={0x40, 0x0, 0x1, 0x0, 0x2, {}, [@DEVLINK_ATTR_RATE_TX_MAX={0xc, 0xa7, 0x9}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x44001}, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001980), r0)
sendmsg$IEEE802154_LLSEC_LIST_KEY(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000019c0)={0x14, r1, 0x311, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x24000001}, 0x4048014)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="7000000002060500000000000000000000000000120003006269746d61703a69702c6d6163000000050004000000000009000200f3797a3000000000240007800c0002800800014000008e020c0001800800014000000000080008400000001005000500020000000500010006"], 0x70}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)={0x5c, 0x9, 0x6, 0x801, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private0}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0xe1f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x88}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e1f}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)=ANY=[@ANYBLOB='\\\x00\x00\x00\n'], 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)

9.480173002s ago: executing program 9 (id=2097):
socket(0x10, 0x3, 0x0)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x1000000, &(0x7f00000000c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x223, &(0x7f0000000a80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x842, 0x1fa)
write$P9_RCREATE(r0, &(0x7f0000000040)={0x18, 0x73, 0x2, {{0x40, 0x1}, 0x3ff}}, 0x18)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x0)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44}, 0x40818)
sync_file_range(r0, 0x88c, 0xab10, 0x6)

9.417754674s ago: executing program 6 (id=2099):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x9, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x16, 0x3, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r4, &(0x7f0000000540)="900000001c001f4d154a817393278bff0a80a57802000000e503740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e00a2c5fed0759cb068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cef7cff81d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
sendto$inet6(r4, &(0x7f0000000180)="900000001d001f4d154a817393278bff0a80a578020000000404840014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000766436c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
r5 = open(0x0, 0x109cc2, 0x13d)
dup2(r0, r5)
getsockopt$IP6T_SO_GET_INFO(0xffffffffffffffff, 0x29, 0x40, 0x0, &(0x7f0000000180))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@array={0x0, 0x0, 0x0, 0x4, 0x3000000, {0x0, 0x6000000, 0x4}}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x2}]}}, 0xffffffffffffffff, 0x3e, 0xb1, 0x2}, 0x20)
fsopen(0x0, 0x1)

8.077547209s ago: executing program 9 (id=2101):
r0 = syz_usb_connect$uac1(0x5, 0xdc, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca00030100700009040000000101"], 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x6, 0x80000000, 0x227, 0xd, 0x8005, 0x9}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x20048010)
syz_usb_control_io$uac1(r0, &(0x7f0000000100)={0x14, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x44d}}}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0003040000000403"], 0x0, 0x0, 0x0}, 0x0)

7.482480989s ago: executing program 4 (id=2102):
r0 = syz_open_dev$dvb_frontend(&(0x7f0000000040), 0x0, 0x0)
ioctl$FE_SET_PROPERTY(r0, 0x40086f52, &(0x7f0000000480)={0x2c, &(0x7f0000000300)=[{0x12, '\x00', @st={0x4, [{0x3, @uvalue=0x9}, {0x2, @svalue=0x61dca84a}, {0x1, @uvalue=0x5}, {0x0, @svalue=0x2}]}, 0x1000}]})

7.308018825s ago: executing program 4 (id=2103):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000800)={'syz0\x00', {0x2, 0x10, 0x2, 0x4}, 0xf, [0x0, 0x0, 0x0, 0x40000, 0x1, 0x2, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x4000, 0x20, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x296, 0x1, 0x0, 0x0, 0x0, 0x2000, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x6, 0x5f1, 0x6], [0x0, 0x0, 0x8, 0x0, 0x0, 0x5, 0x0, 0x80, 0x8000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x200, 0x7, 0xfffffffc, 0x0, 0x0, 0x7, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x3, 0x0, 0x200, 0x0, 0x2, 0x0, 0x3, 0x5, 0xfffffffd, 0x4000000, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0xfffffffd, 0x0, 0x8, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xffff], [0x4, 0xfc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1, 0x4000000, 0x0, 0x1, 0x4, 0x1000, 0x80, 0x0, 0x200, 0x0, 0xffffffff, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0xffffffff, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x20, 0x4, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x4, 0x0, 0x6, 0x1, 0x0, 0xbda6, 0xe, 0x0, 0x0, 0xfffffffd, 0xffffffff, 0x0, 0x20, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x8], [0x40000000, 0x0, 0x74e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x40, 0x0, 0x0, 0xbd, 0x0, 0xff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x80000020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5cb9, 0xcaa, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000000080)={'syz0\x00', {0x2590, 0x4, 0x1, 0x4}, 0x52, [0x10000, 0x3ff, 0x8, 0x100, 0xa, 0x80000000, 0x3, 0x409, 0xb, 0x4, 0x80000000, 0x4, 0x7, 0x9, 0x1, 0x4, 0x8000, 0xb, 0xbc2, 0x5, 0x5, 0x68b, 0x80000000, 0x1a2c, 0xff, 0x9, 0x8, 0x81b, 0x2, 0x9, 0x683, 0x2, 0xc00, 0x1, 0xe, 0xffe00000, 0xd, 0xfffffff7, 0x7, 0x6, 0x6, 0x3, 0x9, 0x8, 0xbe1d, 0x1, 0x101, 0x6, 0xfffffffb, 0x8, 0x81, 0x1, 0x1, 0x2e8, 0x2, 0x7, 0x0, 0x8, 0x3, 0x8, 0x80, 0xa, 0x3, 0x1], [0x0, 0x7, 0xfe000000, 0xffff38ae, 0x7fff, 0x7fff, 0x8b, 0x5, 0xb, 0x702, 0x4, 0x1, 0x7, 0x3, 0x1, 0x0, 0x40, 0x0, 0x3, 0xacbc, 0xfffffff7, 0xff, 0xff00000, 0x7, 0x9, 0x10001, 0x34, 0x3, 0x3, 0x3cd, 0xb0, 0x800, 0xffffff01, 0x67, 0xd8, 0x6, 0x1, 0x9, 0x6, 0x9, 0x800, 0x7, 0x1, 0x7, 0x9, 0xc, 0x3cd, 0x3, 0x10, 0x5, 0x3, 0x3, 0x5, 0x8, 0x400, 0x6, 0x9, 0xe, 0x0, 0x1, 0x4, 0x3, 0x5, 0x2], [0x4, 0xc, 0x9, 0x6, 0x3, 0x200, 0x7ff, 0x3, 0x1, 0x2, 0xffff, 0x401, 0x9, 0xbbc, 0xabc, 0x3, 0x7f, 0x40, 0x9, 0x9, 0x1ff, 0x6, 0x7, 0x8, 0x3, 0xfffff001, 0x7, 0x7, 0xca47, 0x400, 0x400, 0x4, 0xea3a, 0xff, 0x1, 0x4, 0xc, 0x22c, 0x5c5, 0xa, 0x7b1d, 0x9, 0x34000, 0x7, 0x2, 0x7, 0xff, 0x6, 0x4, 0xf, 0xfffffff4, 0x80000000, 0xbb, 0x1, 0x927b, 0x1, 0x7, 0x0, 0x3, 0x8, 0xa, 0x5, 0x7], [0x5, 0x9, 0x4, 0x7fff, 0x0, 0x0, 0x2, 0x81, 0x2, 0x100, 0x2, 0x22, 0x6, 0x100, 0x3, 0x200, 0xfffffffe, 0x2, 0x7, 0x400, 0x22b, 0xd017, 0xadd, 0x2, 0x5, 0x2, 0x2, 0xffffffff, 0x0, 0x0, 0x10000, 0x66, 0xc, 0xa8c8, 0x100, 0x5, 0x6, 0x8, 0x7fff, 0xffff, 0x8, 0x6, 0x5, 0x4, 0x4, 0x39, 0x9, 0xf, 0xff, 0x6, 0x400, 0x1224, 0x0, 0x3, 0x0, 0xd, 0x8, 0xc7, 0x0, 0x24, 0x0, 0x9, 0x401, 0x80000000]}, 0x45c)

7.222908858s ago: executing program 4 (id=2104):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}}, 0x4084)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842c", @ANYRES32=0x0], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

6.776780493s ago: executing program 0 (id=2105):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000003c0)=ANY=[@ANYRES64=0x0], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
fsopen(0x0, 0x1)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
clock_gettime(0x0, &(0x7f0000001d80))
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000400)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x8}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x5, 0x9}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x58, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0xfff2, 0xffe0}, {}, {0x7, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x28, 0x2, [@TCA_FLOW_EMATCHES={0x24, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}, @TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x5, 0x7, 0x4c2}, {{0x2}, {0xf0ffff, 0x1, 0x0, 0x1}}}}]}]}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000045}, 0x2008c014)

6.480029063s ago: executing program 4 (id=2106):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000caefb8)={0x8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x94)
socket$inet6(0xa, 0x80002, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r3, 0x8982, &(0x7f00000023c0)={0x0, 'vlan1\x00', {}, 0xef})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000000140)={'vlan1\x00', @random="02000000002b"})

5.08095397s ago: executing program 4 (id=2107):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x6, @loopback, 0x1}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0x2, 0x4, 0x893b, 0x3}, &(0x7f0000000100)=0x10)

4.951935634s ago: executing program 4 (id=2108):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000000)={0x7, 0x5, 0x4, 0x20, 0x80, 0x6, 0xd, 0x7, 0x2, 0x31, 0xa2, 0xb, 0x81, 0x84}, 0xe)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x4, 0xfff, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000000)='bic', 0x3)
shutdown(r4, 0x0)
r5 = openat$sequencer2(0xffffff9c, 0x0, 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r5, 0x40085112, &(0x7f0000000000)=@t={0x4, 0x8, 0x1, 0x2})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x20001002, 0x0, 0x111, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000480)={0x3, 0x40, 0xfa00, {{0xa, 0xfffc, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xa}, {0xa, 0x0, 0x9, @mcast1}}}, 0x38)
pread64(0xffffffffffffffff, &(0x7f0000000100)=""/50, 0x32, 0x20000000000040)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendfile(r6, r6, 0x0, 0x200000)
sendto$inet6(r1, &(0x7f0000000500)="a4", 0x1, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x400, @private0={0xfc, 0x0, '\x00', 0x1}, 0xffffffff}, 0x1c)
close(r1)
r7 = accept4(r0, 0x0, 0x0, 0x800)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYRES16=0x0, @ANYRESHEX, @ANYRES32=0x0, @ANYRESOCT=r3], 0x30}, 0x1, 0x0, 0x0, 0x804}, 0x4000104)
readv(r7, &(0x7f0000001540), 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)

4.77740061s ago: executing program 9 (id=2109):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000640), r0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r4)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
r5 = syz_clone(0x11, 0x0, 0xfffffffffffffede, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(r5, &(0x7f0000000100)='oom_score\x00')
pread64(r6, &(0x7f0000000500)=""/31, 0x1f, 0x6677)

4.77566306s ago: executing program 0 (id=2110):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_TSC(0x1a, 0x3)
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
mmap(&(0x7f00009c5000/0x4000)=nil, 0x4000, 0x3, 0x28012, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009c6000/0x4000)=nil, 0x4000, 0x3, 0x28012, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240cc0c5, &(0x7f0000000080)={0xa, 0x4c1f, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x9}, 0x1c)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r3, &(0x7f0000000040)=[{&(0x7f00000024c0)=""/4127, 0x101f}], 0x1, 0x4000, 0x0)
setregid(0xffffffffffffffff, 0x0)

3.748325005s ago: executing program 0 (id=2111):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000100)=0x3)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000380)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r3=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r3, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

3.59219462s ago: executing program 0 (id=2112):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x30, 0x8b}, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='source', 0x0, 0x0)
ioctl$XFS_IOC_PATH_TO_HANDLE(r0, 0xc01c5869, &(0x7f00000003c0)={<r1=>0xffffffffffffffff, &(0x7f0000000040)='!^\x00', 0x50a40, &(0x7f00000000c0)={@align, {0xa3, 0x4, 0x4, 0x53d}}, 0x8, &(0x7f0000000100)={@_ha_fsid}, &(0x7f0000000280)=0x8})
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, &(0x7f0000000400)={0x2, 0x6, 0x0, 0x1}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000180)={@private0, 0x8000000, 0x0, 0xff, 0x1, 0xffff}, 0x20)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f00000025c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha384\x00'}, 0x60)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x7, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000000a882, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r7, &(0x7f00000002c0)={0x2, 0xc22, @remote}, 0x10)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x20000023896)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x28011, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
socket$igmp6(0xa, 0x3, 0x2)

1.420319192s ago: executing program 37 (id=2079):
unshare(0x64000600)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/route\x00')
read$FUSE(r0, &(0x7f0000002dc0)={0x2020}, 0x2020)

243.038842ms ago: executing program 0 (id=2114):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x7, 0x0, &(0x7f0000000040)="b90103600040f0", 0x0, 0x104, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0xc0105b08, &(0x7f0000000040))

189.323594ms ago: executing program 9 (id=2115):
r0 = syz_io_uring_setup(0xf00, &(0x7f0000000200)={0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
syz_io_uring_submit(r1, r2, r3, &(0x7f00000001c0)=@IORING_OP_SYMLINKAT={0x26, 0x19, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x1, 0x1, 0x1, 0x0, 0x0)

0s ago: executing program 9 (id=2116):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x15)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x8, 0x3, 0x1e8, 0x0, 0xffffffff, 0xffffffff, 0x100, 0xffffffff, 0x198, 0xffffff7a, 0xffffffff, 0x198, 0xffffffff, 0x7fffffe, 0x0, {[{{@uncond, 0x6, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x6, 0x3, 0x6, '\x00', {0x3}}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, 0x0, 0xff000000, 'team_slave_0\x00', 'ip6gre0\x00', {0xff}, {}, 0x6, 0x3}, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x0, 0x0, 0x4}, {0x4, 0x5, 0x6}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x248)
bind$netlink(0xffffffffffffffff, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
bind$ax25(r5, &(0x7f0000000100)={{0x3, @null, 0x1}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}, 0x48)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
ioctl$sock_netdev_private(r6, 0x8914, &(0x7f0000000000))
setsockopt$ax25_SO_BINDTODEVICE(r5, 0x101, 0x19, &(0x7f0000000240)=@bpq0, 0x10)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xd0, 0x0, 0x0)
ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bpq0, 0x1, 'syz1\x00', @default, 0x1, 0x0, [@null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]})
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r3, 0x8914, &(0x7f0000000000))

kernel console output (not intermixed with test programs):

h=c000003e syscall=15 compat=0 ip=0x7f30d747fb99 code=0x7ffc0000
[  362.382763][ T4492] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  362.392952][   T26] audit: type=1326 audit(1775145661.696:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.0.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f30d747fb99 code=0x7ffc0000
[  362.417124][   T26] audit: type=1326 audit(1775145661.696:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.0.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f30d747fb99 code=0x7ffc0000
[  362.487121][   T26] audit: type=1326 audit(1775145661.696:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.0.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f30d747fb99 code=0x7ffc0000
[  362.647261][ T4492] usb 6-1: Using ep0 maxpacket: 16
[  362.654238][   T26] audit: type=1326 audit(1775145661.696:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.0.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f30d747fb99 code=0x7ffc0000
[  362.770905][   T26] audit: type=1326 audit(1775145661.696:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.0.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f30d747fb99 code=0x7ffc0000
[  362.794416][ T4492] usb 6-1: config 128 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  362.812642][ T4492] usb 6-1: config 128 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  362.823281][ T4492] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  362.839240][ T4492] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.396937][ T4492] mcp2221 0003:04D8:00DD.0014: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.5-1/input0
[  363.909405][ T4492] usb 6-1: USB disconnect, device number 28
[  364.153703][ T8254] loop2: detected capacity change from 0 to 512
[  364.194695][ T8259] loop5: detected capacity change from 0 to 256
[  364.270688][ T8259] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  364.323975][ T8254] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,inode_readahead_blks=0x0000000000080000,quota,,errors=continue. Quota mode: writeback.
[  364.376100][ T8259] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  364.436790][ T8254] ext4 filesystem being mounted at /223/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  364.455791][ T8259] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c91aa, utbl_chksum : 0xe619d30d)
[  367.053138][ T8280] loop4: detected capacity change from 0 to 512
[  367.144853][ T8287] loop5: detected capacity change from 0 to 512
[  367.220343][ T8280] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  367.234811][ T8287] EXT4-fs (loop5): Ignoring removed nobh option
[  367.266223][ T8287] EXT4-fs (loop5): Quota format mount options ignored when QUOTA feature is enabled
[  367.301866][ T8280] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  367.373989][ T8287] EXT4-fs warning (device loop5): ext4_multi_mount_protect:300: Invalid MMP block in superblock
[  367.848972][ T8304] loop4: detected capacity change from 0 to 512
[  368.072135][ T8304] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  368.119854][ T8304] ext4 filesystem being mounted at /241/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  369.334627][ T8340] loop4: detected capacity change from 0 to 512
[  369.384422][ T8340] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  369.504340][ T8338] loop5: detected capacity change from 0 to 512
[  369.538775][ T8340] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  369.706166][ T8338] EXT4-fs (loop5): Ignoring removed nobh option
[  369.828640][ T8338] EXT4-fs (loop5): Quota format mount options ignored when QUOTA feature is enabled
[  370.064048][ T8338] EXT4-fs warning (device loop5): ext4_multi_mount_protect:300: Invalid MMP block in superblock
[  371.528081][ T8359] loop5: detected capacity change from 0 to 1024
[  371.769740][ T8364] loop4: detected capacity change from 0 to 256
[  373.967241][ T8408] loop5: detected capacity change from 0 to 1024
[  375.313962][ T8438] loop2: detected capacity change from 0 to 512
[  375.790475][ T8446] input: syz0 as /devices/virtual/input/input14
[  376.939768][ T8460] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1128'.
[  377.668856][ T8459] loop1: detected capacity change from 0 to 4096
[  377.771937][ T8459] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  377.899712][ T8459] EXT4-fs (loop1): mounted filesystem without journal. Opts: data_err=ignore,noblock_validity,noload,auto_da_alloc=0x0000000000000a5a,jqfmt=vfsv0,nodiscard,nombcache,,errors=continue. Quota mode: writeback.
[  378.069628][ T8471] loop2: detected capacity change from 0 to 4096
[  378.186250][ T8471] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,barrier=0x0000000000000857,,errors=continue. Quota mode: writeback.
[  378.421018][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  378.427423][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  378.705538][ T8478] loop1: detected capacity change from 0 to 512
[  378.849155][ T8478] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  378.879179][ T8484] loop2: detected capacity change from 0 to 512
[  378.886888][ T8478] ext4 filesystem being mounted at /200/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  379.195527][ T8484] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  379.713501][ T8490] loop5: detected capacity change from 0 to 256
[  379.743720][ T8490] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  380.808608][ T8498] loop2: detected capacity change from 0 to 131072
[  380.946450][ T8498] F2FS-fs (loop2): Test dummy encryption mode enabled
[  380.963694][ T8498] F2FS-fs (loop2): invalid crc value
[  381.009286][ T8498] F2FS-fs (loop2): Found nat_bits in checkpoint
[  381.058379][ T8498] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  381.122530][ T8498] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1142'.
[  383.532672][ T8531] loop5: detected capacity change from 0 to 512
[  383.606291][ T8531] EXT4-fs (loop5): Invalid want_extra_isize 61451
[  384.817157][ T8540] Disabled LAPIC found during irq injection
[  384.853574][ T8544] loop1: detected capacity change from 0 to 256
[  386.558799][ T8561] loop4: detected capacity change from 0 to 128
[  386.672487][ T8561] attempt to access beyond end of device
[  386.672487][ T8561] loop4: rw=1, want=140, limit=128
[  386.754902][ T8561] attempt to access beyond end of device
[  386.754902][ T8561] loop4: rw=2049, want=142, limit=128
[  386.857956][ T8566] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1148'.
[  387.033053][ T8561] Buffer I/O error on dev loop4, logical block 70, lost async page write
[  387.300916][ T8561] attempt to access beyond end of device
[  387.300916][ T8561] loop4: rw=2049, want=144, limit=128
[  387.501355][ T8560] attempt to access beyond end of device
[  387.501355][ T8560] loop4: rw=2049, want=250, limit=128
[  387.603842][ T8561] Buffer I/O error on dev loop4, logical block 71, lost async page write
[  387.693105][ T8561] attempt to access beyond end of device
[  387.693105][ T8561] loop4: rw=2049, want=146, limit=128
[  387.725162][ T8561] Buffer I/O error on dev loop4, logical block 72, lost async page write
[  389.362811][ T8583] loop4: detected capacity change from 0 to 512
[  391.609296][ T8583] EXT4-fs (loop4): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  391.642904][ T4294] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  392.163405][ T8604] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1175'.
[  392.307084][ T1110] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  392.607432][ T4294] usb 6-1: string descriptor 0 read error: -71
[  392.645684][ T4294] usb 6-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  392.875201][ T4294] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.237062][ T1110] usb 3-1: Using ep0 maxpacket: 16
[  394.323933][ T8610] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1178'.
[  394.358421][ T1110] usb 3-1: config 128 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  394.387254][ T4294] usb 6-1: can't set config #1, error -71
[  394.407129][ T4294] usb 6-1: USB disconnect, device number 29
[  394.437122][ T1110] usb 3-1: config 128 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  394.487544][ T1110] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  394.511574][ T1110] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  395.033027][ T1110] mcp2221 0003:04D8:00DD.0015: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  395.233882][ T8601] i2c i2c-1: unsupported multi-msg i2c transaction
[  395.245927][ T1110] usb 3-1: USB disconnect, device number 14
[  397.335920][ T8674] loop2: detected capacity change from 0 to 512
[  397.412682][ T8674] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  397.877090][    T7] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  398.137514][    T7] usb 6-1: Using ep0 maxpacket: 16
[  398.287482][    T7] usb 6-1: config 128 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  398.327010][    T7] usb 6-1: config 128 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  398.352170][ T8683] loop4: detected capacity change from 0 to 512
[  398.411244][    T7] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  398.438059][ T8683] EXT4-fs (loop4): Ignoring removed nobh option
[  398.444368][ T8683] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  398.452523][    T7] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  398.497188][ T8683] EXT4-fs warning (device loop4): ext4_multi_mount_protect:300: Invalid MMP block in superblock
[  398.994875][    T7] mcp2221 0003:04D8:00DD.0016: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.5-1/input0
[  399.191251][ T8676] i2c i2c-1: unsupported multi-msg i2c transaction
[  399.211450][    T7] usb 6-1: USB disconnect, device number 30
[  399.452177][ T8698] loop1: detected capacity change from 0 to 1024
[  400.290024][ T8698] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  400.497395][ T8708] loop5: detected capacity change from 0 to 512
[  400.512748][ T8708] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  400.601918][ T8698] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,noblock_validity,init_itable=0x0000000000004068,minixdf,max_dir_size_kb=0x0000000000000009,data_err=ignore,nouid32,user_xattr,user_xattr,journal_ioprio=0x0000000000000005,dioread_nolock,,errors=continue. Quota mode: none.
[  400.664622][ T8708] EXT4-fs (loop5): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  402.475170][ T8724] loop2: detected capacity change from 0 to 256
[  402.777460][ T4192] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[  402.801668][ T8737] loop5: detected capacity change from 0 to 512
[  402.834829][ T8737] EXT4-fs (loop5): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  403.257366][ T4192] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  403.286755][ T4192] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  404.337298][ T4192] usb 5-1: New USB device found, idVendor=19f7, idProduct=0011, bcdDevice= 0.00
[  404.374733][ T4192] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  404.416894][ T8750] loop1: detected capacity change from 0 to 1024
[  404.425342][ T4192] usb 5-1: Product: syz
[  404.451207][ T4192] usb 5-1: Manufacturer: syz
[  404.457039][    T7] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  404.502244][ T4192] usb 5-1: SerialNumber: syz
[  404.592979][ T8749] ipt_CLUSTERIP: Please specify destination IP
[  404.648737][ T8750] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,usrjquota=,,errors=continue. Quota mode: none.
[  406.563237][ T8755] ODEBUG: Out of memory. ODEBUG disabled
[  406.757243][ T4192] usb 5-1: 0:1 : does not exist
[  406.762395][ T4192] usb 5-1: BAAD HEADSET ADAPTER c_chmask mismatch
[  406.872683][ T4192] snd-usb-audio: probe of 5-1:1.0 failed with error -22
[  406.894484][ T8758] loop2: detected capacity change from 0 to 256
[  406.941789][ T4192] usb 5-1: USB disconnect, device number 24
[  406.979858][ T4177] udevd[4177]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  407.051064][ T8758] FAT-fs (loop2): Directory bread(block 64) failed
[  407.140082][ T8758] FAT-fs (loop2): Directory bread(block 65) failed
[  407.200385][ T8758] FAT-fs (loop2): Directory bread(block 66) failed
[  407.237992][ T8758] FAT-fs (loop2): Directory bread(block 67) failed
[  407.265469][ T8758] FAT-fs (loop2): Directory bread(block 68) failed
[  407.285696][ T8758] FAT-fs (loop2): Directory bread(block 69) failed
[  407.313576][ T8758] FAT-fs (loop2): Directory bread(block 70) failed
[  407.330730][ T8758] FAT-fs (loop2): Directory bread(block 71) failed
[  407.351955][ T8758] FAT-fs (loop2): Directory bread(block 72) failed
[  407.371369][ T8758] FAT-fs (loop2): Directory bread(block 73) failed
[  407.720765][ T8766] loop4: detected capacity change from 0 to 512
[  407.775313][ T8766] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  407.877058][ T8766] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  408.683643][ T8783] loop1: detected capacity change from 0 to 1024
[  408.858074][ T8783] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  408.875192][ T8783] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  409.196086][ T8799] loop2: detected capacity change from 0 to 512
[  409.291979][ T8799] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  409.331994][ T8801] udc-core: couldn't find an available UDC or it's busy
[  409.470175][ T8801] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  410.284109][ T8807] loop1: detected capacity change from 0 to 256
[  410.497529][ T8807] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  412.560824][ T8824] loop1: detected capacity change from 0 to 512
[  412.682975][ T8824] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  412.846244][ T8824] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  413.118411][ T8838] loop2: detected capacity change from 0 to 128
[  413.577425][  T154] Bluetooth: hci5: Frame reassembly failed (-84)
[  413.588476][  T144] Bluetooth: hci5: Frame reassembly failed (-84)
[  413.939777][ T8853] loop2: detected capacity change from 0 to 512
[  413.988674][ T8853] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  415.356661][ T8870] loop2: detected capacity change from 0 to 128
[  415.406086][ T8870] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  415.429934][ T8870] ext4 filesystem being mounted at /262/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  415.611291][ T6706] Bluetooth: hci5: command 0x1003 tx timeout
[  415.621434][ T4194] Bluetooth: hci5: sending frame failed (-49)
[  416.499704][ T8898] loop5: detected capacity change from 0 to 512
[  416.580998][ T8898] EXT4-fs (loop5): Ignoring removed nobh option
[  416.649088][ T8898] EXT4-fs error (device loop5): ext4_iget_extra_inode:4566: inode #15: comm syz.5.1263: corrupted in-inode xattr
[  416.699401][ T8898] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1263: couldn't read orphan inode 15 (err -117)
[  416.712427][ T8898] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobh,nombcache,debug_want_extra_isize=0x000000000000005a,usrjquota=,barrier,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none.
[  417.877308][ T8889] loop4: detected capacity change from 0 to 40427
[  417.902830][ T8889] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  417.932229][ T8889] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  417.955833][ T8889] F2FS-fs (loop4): Unrecognized mount option "����������" or missing value
[  418.432751][ T6706] Bluetooth: hci5: command 0x1001 tx timeout
[  418.439133][ T4194] Bluetooth: hci5: sending frame failed (-49)
[  418.649970][ T8909] loop2: detected capacity change from 0 to 1024
[  418.786018][ T8911] fuse: Bad value for 'fd'
[  420.427021][ T8926] loop5: detected capacity change from 0 to 256
[  420.479203][ T1110] Bluetooth: hci5: command 0x1009 tx timeout
[  420.506122][ T8929] loop2: detected capacity change from 0 to 128
[  420.564838][ T8926] FAT-fs (loop5): Directory bread(block 64) failed
[  420.575178][ T8926] FAT-fs (loop5): Directory bread(block 65) failed
[  420.642566][ T8926] FAT-fs (loop5): Directory bread(block 66) failed
[  420.668218][ T8926] FAT-fs (loop5): Directory bread(block 67) failed
[  420.719114][ T8926] FAT-fs (loop5): Directory bread(block 68) failed
[  420.744659][ T8926] FAT-fs (loop5): Directory bread(block 69) failed
[  420.781749][ T8926] FAT-fs (loop5): Directory bread(block 70) failed
[  420.816002][ T8926] FAT-fs (loop5): Directory bread(block 71) failed
[  420.840654][ T8926] FAT-fs (loop5): Directory bread(block 72) failed
[  420.862557][ T8929] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  420.865164][ T8926] FAT-fs (loop5): Directory bread(block 73) failed
[  420.874462][ T8929] ext4 filesystem being mounted at /268/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  421.808936][ T8949] attempt to access beyond end of device
[  421.808936][ T8949] loop5: rw=1, want=1768, limit=256
[  421.872184][ T8949] attempt to access beyond end of device
[  421.872184][ T8949] loop5: rw=1, want=1928, limit=256
[  421.929421][ T8949] attempt to access beyond end of device
[  421.929421][ T8949] loop5: rw=1, want=5792, limit=256
[  422.011565][ T8949] attempt to access beyond end of device
[  422.011565][ T8949] loop5: rw=1, want=9104, limit=256
[  422.104873][ T8949] attempt to access beyond end of device
[  422.104873][ T8949] loop5: rw=1, want=11232, limit=256
[  422.160865][ T8949] attempt to access beyond end of device
[  422.160865][ T8949] loop5: rw=1, want=13376, limit=256
[  422.240453][ T8949] attempt to access beyond end of device
[  422.240453][ T8949] loop5: rw=1, want=15264, limit=256
[  422.562447][ T6634] attempt to access beyond end of device
[  422.562447][ T6634] loop5: rw=1, want=17232, limit=256
[  422.859819][ T8967] loop5: detected capacity change from 0 to 1024
[  425.123459][ T9000] loop2: detected capacity change from 0 to 512
[  425.187434][ T9000] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  425.247102][ T9000] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  425.254293][ T9000] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  425.268918][ T9000] EXT4-fs (loop2): 1 truncate cleaned up
[  425.274599][ T9000] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodiscard,mblk_io_submit,nouid32,lazytime,barrier,mblk_io_submit,min_batch_time=0x0000000000000004,,errors=continue. Quota mode: none.
[  425.346118][ T9012] loop1: detected capacity change from 0 to 1024
[  426.786923][ T9011] loop5: detected capacity change from 0 to 8192
[  426.812099][ T9011] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  427.050554][ T9033] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1304'.
[  427.070346][ T9030] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  427.100459][ T9030] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  427.321365][ T9038] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  427.355253][ T9038] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  428.285583][ T9052] loop5: detected capacity change from 0 to 256
[  428.346125][ T9054] loop2: detected capacity change from 0 to 1024
[  431.017815][ T9072] device pim6reg1 entered promiscuous mode
[  434.793303][ T9122] device batadv_slave_0 entered promiscuous mode
[  434.817735][ T9122] xt_l2tp: missing protocol rule (udp|l2tpip)
[  435.506364][ T9117] device batadv_slave_0 left promiscuous mode
[  435.566570][ T9126] loop1: detected capacity change from 0 to 256
[  435.635182][ T9126] exfat: Unknown parameter '��'
[  436.625855][ T9136] loop5: detected capacity change from 0 to 1024
[  436.715181][ T9136] EXT4-fs (loop5): Ignoring removed mblk_io_submit option
[  436.758135][ T9136] EXT4-fs (loop5): mounted filesystem without journal. Opts: auto_da_alloc,mblk_io_submit,,errors=continue. Quota mode: none.
[  436.817110][ T9136] EXT4-fs error (device loop5): ext4_xattr_block_find:1855: inode #15: comm syz.5.1335: corrupted xattr block 113
[  436.841233][ T9143] loop1: detected capacity change from 0 to 128
[  438.442678][   T26] kauditd_printk_skb: 438 callbacks suppressed
[  438.442692][   T26] audit: type=1326 audit(1775145994.094:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1351" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd2b2c9f819 code=0x0
[  438.563160][ T9187] loop2: detected capacity change from 0 to 256
[  438.573987][ T9185] overlayfs: unrecognized mount option "fowner>00000000000000000000" or missing value
[  439.199457][ T9177] loop5: detected capacity change from 0 to 40427
[  440.418655][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  440.425002][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  440.442797][ T9177] F2FS-fs (loop5): Corrupted extension count (64 + 1 > 64)
[  441.070273][ T9177] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  441.147708][ T9177] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0x6
[  441.225122][ T9177] F2FS-fs (loop5): invalid crc value
[  441.265617][ T9177] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  441.386699][ T9177] F2FS-fs (loop5): Start checkpoint disabled!
[  442.196603][ T9177] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  442.234548][ T9177] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  443.747633][ T9245] loop2: detected capacity change from 0 to 512
[  443.813984][ T9245] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  444.664750][ T9245] EXT4-fs (loop2): mounted filesystem without journal. Opts: nouid32,data_err=abort,user_xattr,max_batch_time=0x0000000000000200,dioread_nolock,,errors=continue. Quota mode: writeback.
[  444.934732][ T9267] loop1: detected capacity change from 0 to 256
[  444.947291][ T9245] ext4 filesystem being mounted at /289/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  445.094169][ T9267] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  446.319214][   T26] audit: type=1804 audit(1775146001.974:459): pid=9275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1380" name="/newroot/240/file0/bus" dev="loop1" ino=1048697 res=1 errno=0
[  447.480964][ T9278] overlayfs: failed to clone upperpath
[  447.489061][ T9279] loop5: detected capacity change from 0 to 16
[  447.607655][ T9279] erofs: (device loop5): mounted with root inode @ nid 36.
[  450.260618][ T9299] �
: renamed from syztnl2
[  450.294521][ T9304] netlink: 228 bytes leftover after parsing attributes in process `syz.1.1392'.
[  450.612318][ T9312] loop1: detected capacity change from 0 to 512
[  450.715622][ T9312] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  450.883759][ T9312] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  451.654775][ T9324] loop2: detected capacity change from 0 to 512
[  451.728292][ T4294] kernel write not supported for file /input/event2 (pid: 4294 comm: kworker/0:9)
[  451.760624][ T9328] netlink: 'syz.4.1398': attribute type 3 has an invalid length.
[  451.797087][ T9324] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  451.825628][ T9328] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1398'.
[  451.948480][ T9324] EXT4-fs (loop2): mounted filesystem without journal. Opts: nouid32,errors=remount-ro,grpjquota=,nodiscard,dioread_nolock,. Quota mode: writeback.
[  451.969158][ T9332] loop5: detected capacity change from 0 to 256
[  452.059498][ T9334] loop1: detected capacity change from 0 to 1024
[  452.076723][ T9324] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  452.246337][ T9334] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  452.304841][ T9322] EXT4-fs (loop2): shut down requested (2)
[  452.392046][ T9334] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,errors=remount-ro,dioread_nolock,jqfmt=vfsv1,debug_want_extra_isize=0x0000000000000070,barrier,stripe=0x0000000000000020,bsdgroups,max_batch_time=0x0000000000000003,user_xattr,noinit_itable,. Quota mode: none.
[  452.570100][   T26] audit: type=1326 audit(1775146008.224:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9343 comm="syz.5.1404" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2efb5d5819 code=0x0
[  452.639222][ T9334] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1161: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  452.711203][ T9334] EXT4-fs (loop1): Remounting filesystem read-only
[  454.331686][ T9364] loop1: detected capacity change from 0 to 512
[  455.672244][ T9364] EXT4-fs (loop1): Ignoring removed orlov option
[  456.019147][ T9364] EXT4-fs (loop1): mounted filesystem without journal. Opts: nogrpid,auto_da_alloc=0x0000000000000001,orlov,usrquota,data_err=ignore,sb=0x0000000000000003,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  456.040380][ T9364] ext4 filesystem being mounted at /246/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  458.158502][ T9388] loop5: detected capacity change from 0 to 1024
[  458.266554][ T9388] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  458.525375][ T9388] EXT4-fs (loop5): mounted filesystem without journal. Opts: user_xattr,errors=remount-ro,dioread_nolock,jqfmt=vfsv1,debug_want_extra_isize=0x0000000000000070,barrier,stripe=0x0000000000000020,bsdgroups,max_batch_time=0x0000000000000003,user_xattr,noinit_itable,. Quota mode: none.
[  463.256697][ T9409] loop1: detected capacity change from 0 to 4096
[  463.332003][ T9409] EXT4-fs (loop1): inline encryption not supported
[  463.380490][ T9409] EXT4-fs (loop1): Test dummy encryption mode enabled
[  463.406978][ T9409] EXT4-fs (loop1): Ignoring removed bh option
[  463.434661][ T9409] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  463.543137][ T9409] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  463.627163][ T9409] System zones: 0-5
[  463.660618][ T9409] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,delalloc,inlinecrypt,test_dummy_encryption,bh,barrier,delalloc,jqfmt=vfsv0,,errors=continue. Quota mode: writeback.
[  463.693621][ T9421] loop5: detected capacity change from 0 to 256
[  463.743780][ T9427] loop2: detected capacity change from 0 to 512
[  463.916669][ T9427] EXT4-fs (loop2): inline encryption not supported
[  463.939376][ T9427] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  463.987531][ T9427] EXT4-fs (loop2): external journal device major/minor numbers have changed
[  464.005532][ T9421] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  464.109142][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.122159][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.131632][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.141961][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.151328][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.161267][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.170566][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.180665][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.190012][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.199551][ T9432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1421'.
[  464.690277][ T9435] exFAT-fs (loop5): error, tried to truncate zeroed cluster.
[  464.741863][   T26] audit: type=1804 audit(1775146020.224:461): pid=9421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1424" name="/newroot/238/file0/bus" dev="loop5" ino=1048700 res=1 errno=0
[  464.779937][ T9435] exFAT-fs (loop5): Filesystem has been set read-only
[  465.181049][ T9427] EXT4-fs (loop2): failed to open journal device unknown-block(0,3) -6
[  466.243631][ T4234] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  466.781810][ T9450] 9pnet: Insufficient options for proto=fd
[  466.787997][ T4234] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  467.010149][ T4234] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  467.089796][ T9460] overlayfs: failed to clone upperpath
[  468.128972][ T4234] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  468.142180][ T4234] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  468.151977][ T4234] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  468.168191][ T4234] usb 6-1: config 0 descriptor??
[  468.324038][ T9465] loop1: detected capacity change from 0 to 512
[  468.372398][ T9465] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.1439: invalid indirect mapped block 4294967295 (level 0)
[  468.440841][ T9465] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.1439: invalid indirect mapped block 4294967295 (level 1)
[  468.576520][ T9465] EXT4-fs (loop1): 1 orphan inode deleted
[  468.596094][ T9465] EXT4-fs (loop1): 1 truncate cleaned up
[  468.607138][ T4234] usbhid 6-1:0.0: can't add hid device: -71
[  468.612154][ T9465] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,lazytime,block_validity,block_validity,nojournal_checksum,quota,jqfmt=vfsv0,,errors=continue. Quota mode: writeback.
[  468.613326][ T4234] usbhid: probe of 6-1:0.0 failed with error -71
[  468.647187][ T4294] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  468.768509][ T4234] usb 6-1: USB disconnect, device number 31
[  468.917242][ T4294] usb 3-1: Using ep0 maxpacket: 8
[  469.057259][ T4294] usb 3-1: config 0 has an invalid interface number: 31 but max is 0
[  469.074199][ T4294] usb 3-1: config 0 has no interface number 0
[  469.277525][ T4294] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  469.762360][ T4294] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  470.214238][ T4294] usb 3-1: Product: syz
[  470.214260][ T4294] usb 3-1: Manufacturer: syz
[  470.214276][ T4294] usb 3-1: SerialNumber: syz
[  470.222821][ T4294] usb 3-1: config 0 descriptor??
[  470.278015][   T26] audit: type=1326 audit(1775146025.934:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9496 comm="syz.4.1447" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff719f28819 code=0x0
[  470.427855][ T9476] loop5: detected capacity change from 0 to 40427
[  470.492616][ T4294] usb 3-1: Found UVC 0.04 device syz (046d:08c3)
[  470.502644][ T4294] uvcvideo 3-1:0.31: Entity type for entity 䤬鮚찻훕圝覉儖킩䐩� was not initialized!
[  470.529494][ T9476] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  470.541816][ T9476] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  470.566159][ T9476] F2FS-fs (loop5): invalid crc value
[  470.614623][ T9476] F2FS-fs (loop5): Found nat_bits in checkpoint
[  470.725838][ T4294] usb 3-1: USB disconnect, device number 16
[  473.584354][ T9517] loop2: detected capacity change from 0 to 512
[  474.557374][ T9517] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  474.614902][ T9517] ext4 filesystem being mounted at /303/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  475.190900][ T9552] loop5: detected capacity change from 0 to 256
[  475.210544][   T26] audit: type=1326 audit(1775146030.866:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.2.1461" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f6a414819 code=0x0
[  475.246703][ T9552] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36a12e94, utbl_chksum : 0xe619d30d)
[  477.171718][ T9569] loop1: detected capacity change from 0 to 512
[  477.476201][ T9577] input: syz0 as /devices/virtual/input/input16
[  477.722402][ T9579] loop5: detected capacity change from 0 to 256
[  478.330864][ T9594] device syzkaller0 entered promiscuous mode
[  479.986482][ T9610] netlink: 'syz.0.1482': attribute type 4 has an invalid length.
[  480.105944][ T9614] loop2: detected capacity change from 0 to 256
[  481.569420][ T9614] FAT-fs (loop2): Directory bread(block 64) failed
[  481.576139][ T9614] FAT-fs (loop2): Directory bread(block 65) failed
[  481.583120][ T9614] FAT-fs (loop2): Directory bread(block 66) failed
[  481.590433][ T9614] FAT-fs (loop2): Directory bread(block 67) failed
[  481.597400][ T9614] FAT-fs (loop2): Directory bread(block 68) failed
[  481.604125][ T9614] FAT-fs (loop2): Directory bread(block 69) failed
[  481.611107][ T9614] FAT-fs (loop2): Directory bread(block 70) failed
[  481.617779][ T9614] FAT-fs (loop2): Directory bread(block 71) failed
[  481.624736][ T9614] FAT-fs (loop2): Directory bread(block 72) failed
[  481.631484][ T9614] FAT-fs (loop2): Directory bread(block 73) failed
[  483.036684][ T9620] loop5: detected capacity change from 0 to 512
[  483.255513][ T9630] __nla_validate_parse: 10 callbacks suppressed
[  483.255532][ T9630] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1490'.
[  483.592674][ T9637] input: syz0 as /devices/virtual/input/input17
[  485.321981][ T9649] loop2: detected capacity change from 0 to 512
[  485.478472][ T9649] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  485.514564][ T9654] 9pnet: Insufficient options for proto=fd
[  485.551584][ T9656] binder: 9655:9656 ioctl c0306201 2000000003c0 returned -14
[  485.618695][ T9661] loop5: detected capacity change from 0 to 1024
[  485.626448][ T9649] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  485.649758][ T9661] EXT4-fs (loop5): Ignoring removed orlov option
[  485.731237][ T9661] EXT4-fs (loop5): mounted filesystem without journal. Opts: block_validity,bsddf,usrquota,orlov,journal_ioprio=0x0000000000000006,max_batch_time=0x0000000000000001,nogrpid,noblock_validity,nouid32,,errors=continue. Quota mode: writeback.
[  485.973423][ T9661] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1498: bg 0: block 48: padding at end of block bitmap is not set
[  489.071499][ T6634] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.209303][ T6634] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.273380][ T6634] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.344583][ T6634] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  490.706043][ T9719] chnl_net:caif_netlink_parms(): no params data found
[  490.910061][ T9719] bridge0: port 1(bridge_slave_0) entered blocking state
[  490.980842][ T9719] bridge0: port 1(bridge_slave_0) entered disabled state
[  491.030038][ T9719] device bridge_slave_0 entered promiscuous mode
[  491.074986][ T9719] bridge0: port 2(bridge_slave_1) entered blocking state
[  491.096989][ T9719] bridge0: port 2(bridge_slave_1) entered disabled state
[  491.440589][ T9719] device bridge_slave_1 entered promiscuous mode
[  492.021834][ T9719] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  492.066058][ T9719] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  492.155779][ T9719] team0: Port device team_slave_0 added
[  492.228987][ T9719] team0: Port device team_slave_1 added
[  492.309672][ T9719] batman_adv: batadv0: Adding interface: batadv_slave_0
[  492.335042][ T6706] Bluetooth: hci3: command 0x0409 tx timeout
[  492.343060][ T9719] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  492.378045][ T9719] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  492.432547][ T9719] batman_adv: batadv0: Adding interface: batadv_slave_1
[  492.446990][ T9719] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  492.514187][ T9719] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  492.641600][ T6634] device hsr_slave_0 left promiscuous mode
[  492.694535][ T6634] device hsr_slave_1 left promiscuous mode
[  492.767969][ T6634] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  492.775435][ T6634] batman_adv: batadv0: Removing interface: batadv_slave_0
[  492.811276][ T6634] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  492.845859][ T6634] batman_adv: batadv0: Removing interface: batadv_slave_1
[  492.873686][ T6634] device bridge_slave_1 left promiscuous mode
[  492.892702][ T6634] bridge0: port 2(bridge_slave_1) entered disabled state
[  492.924074][ T6634] device bridge_slave_0 left promiscuous mode
[  492.960830][ T6634] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.007629][ T6634] device veth1_macvtap left promiscuous mode
[  493.028534][ T6634] device veth0_macvtap left promiscuous mode
[  493.035753][ T6634] device veth1_vlan left promiscuous mode
[  493.046837][ T6634] device veth0_vlan left promiscuous mode
[  493.057452][ T2300] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  493.351965][ T6634] team0 (unregistering): Port device team_slave_1 removed
[  493.373403][ T6634] team0 (unregistering): Port device team_slave_0 removed
[  493.385662][ T6634] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  493.402024][ T6634] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  493.437109][ T2300] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  493.456985][ T2300] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  493.490296][ T6634] bond0 (unregistering): Released all slaves
[  493.536267][ T9719] device hsr_slave_0 entered promiscuous mode
[  493.543130][ T9719] device hsr_slave_1 entered promiscuous mode
[  493.550388][ T9719] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  493.557743][ T2300] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  493.558969][ T9719] Cannot create hsr debugfs directory
[  493.581073][ T2300] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  493.594165][ T2300] usb 3-1: Manufacturer: syz
[  493.603888][ T9788] device dummy0 entered promiscuous mode
[  493.630361][ T9791] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1527'.
[  493.644462][ T2300] usb 3-1: config 0 descriptor??
[  493.897429][ T9800] loop1: detected capacity change from 0 to 256
[  493.949667][ T9800] FAT-fs (loop1): Directory bread(block 64) failed
[  493.988503][ T9800] FAT-fs (loop1): Directory bread(block 65) failed
[  494.012394][ T9719] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  494.019504][ T9800] FAT-fs (loop1): Directory bread(block 66) failed
[  494.052944][ T9800] FAT-fs (loop1): Directory bread(block 67) failed
[  494.062693][ T9719] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  494.070947][ T9800] FAT-fs (loop1): Directory bread(block 68) failed
[  494.080702][ T9800] FAT-fs (loop1): Directory bread(block 69) failed
[  494.090656][ T9719] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  494.100526][ T9800] FAT-fs (loop1): Directory bread(block 70) failed
[  494.120846][ T9719] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  494.129058][ T9800] FAT-fs (loop1): Directory bread(block 71) failed
[  494.142026][ T9800] FAT-fs (loop1): Directory bread(block 72) failed
[  494.151178][ T9808] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  494.170714][ T9800] FAT-fs (loop1): Directory bread(block 73) failed
[  494.457907][ T4234] Bluetooth: hci3: command 0x041b tx timeout
[  495.353862][ T9719] 8021q: adding VLAN 0 to HW filter on device bond0
[  495.485666][ T4350] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  495.506848][ T4350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  495.598213][ T2300] uclogic 0003:256C:006D.0017: interface is invalid, ignoring
[  495.620925][ T9719] 8021q: adding VLAN 0 to HW filter on device team0
[  496.073705][ T9719] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  496.200776][ T9719] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  496.537580][ T4230] Bluetooth: hci3: command 0x040f tx timeout
[  496.577377][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  496.586183][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  496.589557][ T2300] usb 3-1: USB disconnect, device number 17
[  496.697464][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  496.704589][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  496.800196][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  496.818983][ T9846] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2186864327 (139959316928 ns) > initial count (90695598528 ns). Using initial count to start timer.
[  496.850951][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  496.869681][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  496.876772][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  496.887356][ T9852] Disabled LAPIC found during irq injection
[  496.941747][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  496.968010][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  496.995464][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  497.039006][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  497.054815][ T9857] loop2: detected capacity change from 0 to 1024
[  497.080895][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  497.089050][ T9857] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  497.094544][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  497.217339][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  497.295623][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  497.323095][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  497.336297][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  497.344674][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  497.352671][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  497.371383][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  498.261897][ T9871] loop2: detected capacity change from 0 to 1024
[  498.608964][ T4230] Bluetooth: hci3: command 0x0419 tx timeout
[  499.043687][ T9875] loop1: detected capacity change from 0 to 4096
[  499.107118][ T9875] EXT4-fs (loop1): Ignoring removed bh option
[  499.175697][ T9875] EXT4-fs (loop1): mounted filesystem without journal. Opts: discard,bh,norecovery,stripe=0x0000000000000001,,errors=continue. Quota mode: writeback.
[  499.260125][ T9875] Quota error (device loop1): do_check_range: Getting dqdh_next_free 100663296 out of range 0-8
[  499.302488][ T9875] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  499.334155][ T9875] EXT4-fs error (device loop1): ext4_acquire_dquot:6234: comm syz.1.1548: Failed to acquire dquot type 0
[  499.628502][ T9719] 8021q: adding VLAN 0 to HW filter on device batadv0
[  499.672038][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  499.743117][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  501.214926][ T1173] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  501.242329][ T1173] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  501.341360][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  501.348129][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  501.431188][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  501.467987][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  501.552977][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  502.659865][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  503.643826][ T9719] device veth0_vlan entered promiscuous mode
[  503.658618][ T9719] device veth1_vlan entered promiscuous mode
[  504.645915][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  504.799073][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  504.827442][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  504.869257][ T9719] device veth0_macvtap entered promiscuous mode
[  504.903410][ T9719] device veth1_macvtap entered promiscuous mode
[  505.178799][ T9719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  505.399952][ T9719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  505.840923][ T9719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  505.872555][ T9972] tipc: Trying to set illegal importance in message
[  505.895166][ T9719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  505.925661][ T9719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  505.984482][ T9719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  506.100090][ T9719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  506.160467][ T9719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  506.211908][ T9719] batman_adv: batadv0: Interface activated: batadv_slave_0
[  506.311243][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  506.347848][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  506.384351][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  506.417580][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  506.451791][ T9719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  506.491887][ T9719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  506.532240][ T9719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  506.556347][ T9719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  506.588366][ T9719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  506.609088][ T9719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  506.638369][ T9719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  506.659677][ T9719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  506.697418][ T9719] batman_adv: batadv0: Interface activated: batadv_slave_1
[  506.731900][ T9719] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  506.782596][ T9719] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  506.827930][ T9719] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  506.836673][ T9719] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  506.848525][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  506.865862][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  507.397486][  T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  507.432234][  T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  507.444403][ T9999] loop1: detected capacity change from 0 to 4096
[  507.468846][ T9999] EXT4-fs (loop1): inline encryption not supported
[  507.479798][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  507.497288][ T9999] EXT4-fs (loop1): Test dummy encryption mode enabled
[  509.258033][ T9999] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a042c018, mo2=0003]
[  509.275123][ T9999] System zones: 0-5
[  509.347458][ T9999] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,delalloc,inlinecrypt,test_dummy_encryption,errors=continue,errors=continue,nodelalloc,barrier,,errors=continue. Quota mode: writeback.
[  509.699699][  T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  509.741309][  T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  509.802429][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  510.086622][T10027] device syzkaller0 entered promiscuous mode
[  510.142588][T10031] loop6: detected capacity change from 0 to 2048
[  510.207399][T10031] EXT4-fs (loop6): Journaled quota options ignored when QUOTA feature is enabled
[  510.275789][T10031] EXT4-fs (loop6): mounted filesystem without journal. Opts: usrjquota=./file1,noauto_da_alloc,bsddf,,errors=continue. Quota mode: writeback.
[  510.440934][T10031] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  510.536535][T10052] loop2: detected capacity change from 0 to 512
[  511.675878][T10067] input: syz0 as /devices/virtual/input/input18
[  515.304690][T10113] device syzkaller0 entered promiscuous mode
[  515.473722][T10117] loop2: detected capacity change from 0 to 256
[  515.591359][T10117] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011bf5, chksum : 0x5eaa6302, utbl_chksum : 0xe619d30d)
[  515.678784][T10117] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  515.878409][T10125] loop2: detected capacity change from 0 to 512
[  516.051204][T10125] EXT4-fs (loop2): Ignoring removed bh option
[  516.067641][T10125] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  516.134992][T10125] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  518.103894][T10125] EXT4-fs (loop2): 1 truncate cleaned up
[  518.149265][T10125] EXT4-fs (loop2): mounted filesystem without journal. Opts: noload,max_dir_size_kb=0x0000000000000007,bh,nomblk_io_submit,data_err=ignore,usrjquota=,,errors=continue. Quota mode: none.
[  518.394271][T10125] overlayfs: upper fs needs to support d_type.
[  518.531244][ T4185] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0)
[  518.609593][ T4185] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1)
[  518.669764][ T4185] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2)
[  521.636135][T10191] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1617'.
[  524.926511][T10215] loop6: detected capacity change from 0 to 512
[  525.061189][   T26] audit: type=1326 audit(1775146080.716:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10216 comm="syz.2.1623" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f6a414819 code=0x0
[  525.087640][T10215] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  525.134933][T10215] EXT4-fs (loop6): orphan cleanup on readonly fs
[  525.213991][T10215] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.1622: bg 0: block 248: padding at end of block bitmap is not set
[  525.290271][T10215] Quota error (device loop6): write_blk: dquota write failed
[  525.324185][T10215] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  525.371578][T10215] EXT4-fs error (device loop6): ext4_acquire_dquot:6234: comm syz.6.1622: Failed to acquire dquot type 1
[  525.404317][T10215] EXT4-fs (loop6): 1 truncate cleaned up
[  525.473561][T10215] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  528.420545][T10260] loop2: detected capacity change from 0 to 512
[  528.816417][T10273] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1635'.
[  531.557045][   T26] audit: type=1326 audit(1775146087.186:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1638" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f6a414819 code=0x0
[  531.755427][T10287] loop6: detected capacity change from 0 to 4096
[  531.992889][T10287] EXT4-fs (loop6): inline encryption not supported
[  532.007187][T10287] EXT4-fs (loop6): Test dummy encryption mode enabled
[  532.014157][T10287] EXT4-fs (loop6): Ignoring removed mblk_io_submit option
[  533.633346][T10287] EXT4-fs (loop6): Mount option "nouser_xattr" will be removed by 3.5
[  533.633346][T10287] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  533.633346][T10287] 
[  534.316450][T10287] EXT4-fs: failed to create workqueue
[  534.342537][T10287] EXT4-fs (loop6): mount failed
[  537.286045][T10327] loop2: detected capacity change from 0 to 512
[  537.339994][T10327] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  538.553196][T10343] loop2: detected capacity change from 0 to 512
[  538.761347][T10348] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1647'.
[  538.777715][T10341] input: syz0 as /devices/virtual/input/input20
[  541.783005][   T26] audit: type=1326 audit(1775146097.436:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10365 comm="syz.1.1653" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd2b2c9f819 code=0x0
[  542.095226][T10359] device syzkaller0 entered promiscuous mode
[  545.056648][T10426] loop2: detected capacity change from 0 to 512
[  545.089046][T10426] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  546.530011][T10453] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1663'.
[  549.331250][T10461] loop6: detected capacity change from 0 to 512
[  550.595074][   T26] audit: type=1326 audit(1775146106.246:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10473 comm="syz.1.1669" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd2b2c9f819 code=0x0
[  552.671701][T10525] loop2: detected capacity change from 0 to 512
[  552.819340][T10525] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  553.904702][T10540] loop2: detected capacity change from 0 to 512
[  553.914994][T10540] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  553.930001][T10540] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  553.962830][T10540] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002]
[  555.630813][T10540] EXT4-fs (loop2): orphan cleanup on readonly fs
[  555.647325][T10539] loop6: detected capacity change from 0 to 512
[  555.810595][T10540] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[  555.858260][T10540] EXT4-fs warning (device loop2): ext4_enable_quotas:6486: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  555.957059][T10540] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  555.978493][T10540] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1679: bg 0: block 40: padding at end of block bitmap is not set
[  556.160589][T10540] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6192: Corrupt filesystem
[  556.222969][T10540] EXT4-fs (loop2): 1 truncate cleaned up
[  556.264589][T10540] EXT4-fs (loop2): mounted filesystem without journal. Opts: lazytime,noload,noblock_validity,norecovery,i_version,nomblk_io_submit,,errors=continue. Quota mode: writeback.
[  557.249625][T10566] netlink: 'syz.1.1684': attribute type 1 has an invalid length.
[  557.323796][T10566] netlink: 'syz.1.1684': attribute type 3 has an invalid length.
[  557.402903][T10566] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1684'.
[  558.012830][T10580] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1676'.
[  558.357366][   T26] audit: type=1326 audit(1775146114.006:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10579 comm="syz.4.1680" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff719f28819 code=0x0
[  560.394037][T10594] loop1: detected capacity change from 0 to 4096
[  560.497605][T10594] EXT4-fs (loop1): Test dummy encryption mode enabled
[  560.560105][T10594] EXT4-fs (loop1): Ignoring removed orlov option
[  560.642025][T10594] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpid,debug_want_extra_isize=0x0000000000000010,nodioread_nolock,test_dummy_encryption,lazytime,nodelalloc,minixdf,orlov,,errors=continue. Quota mode: writeback.
[  562.437891][T10623] loop1: detected capacity change from 0 to 512
[  562.630225][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  562.636765][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  563.704288][   T26] audit: type=1326 audit(1775146119.356:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10644 comm="syz.6.1698" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f342bff3819 code=0x0
[  565.162237][T10670] loop1: detected capacity change from 0 to 256
[  565.213559][T10671] loop6: detected capacity change from 0 to 512
[  565.408283][T10671] EXT4-fs error (device loop6): ext4_xattr_inode_iget:401: comm syz.6.1702: inode #1: comm syz.6.1702: iget: illegal inode #
[  565.453950][T10671] EXT4-fs error (device loop6): ext4_xattr_inode_iget:406: comm syz.6.1702: error while reading EA inode 1 err=-117
[  565.507734][T10671] EXT4-fs error (device loop6): ext4_xattr_inode_iget:401: comm syz.6.1702: inode #1: comm syz.6.1702: iget: illegal inode #
[  565.569669][T10671] EXT4-fs error (device loop6): ext4_xattr_inode_iget:406: comm syz.6.1702: error while reading EA inode 1 err=-117
[  565.622707][T10671] EXT4-fs (loop6): 1 orphan inode deleted
[  565.636932][T10671] EXT4-fs (loop6): mounted filesystem without journal. Opts: minixdf,stripe=0x0000000000000000,norecovery,noinit_itable,max_batch_time=0x0000000000000006,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[  566.914271][T10682] loop1: detected capacity change from 0 to 512
[  566.947967][T10682] EXT4-fs (loop1): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  570.879462][T10703] loop6: detected capacity change from 0 to 512
[  571.152891][T10690] cgroup: noprefix used incorrectly
[  571.255648][T10706] input: syz0 as /devices/virtual/input/input24
[  572.088245][   T26] audit: type=1326 audit(1775146127.736:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.6.1712" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f342bff3819 code=0x0
[  572.351526][T10715] loop1: detected capacity change from 0 to 512
[  572.390787][T10715] EXT4-fs (loop1): Ignoring removed bh option
[  572.422645][T10715] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  572.474433][T10715] EXT4-fs (loop1): 1 truncate cleaned up
[  572.504497][T10715] EXT4-fs (loop1): mounted filesystem without journal. Opts: bh,,errors=continue. Quota mode: none.
[  573.883951][T10731] loop2: detected capacity change from 0 to 512
[  573.945339][T10731] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  575.026292][T10763] loop1: detected capacity change from 0 to 512
[  577.194286][T10776] loop2: detected capacity change from 0 to 128
[  577.355676][T10778] loop1: detected capacity change from 0 to 512
[  577.453419][T10778] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,inode_readahead_blks=0x0000000000080000,quota,,errors=continue. Quota mode: writeback.
[  577.521179][T10778] ext4 filesystem being mounted at /303/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  577.773621][   T26] audit: type=1326 audit(1775146133.426:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10783 comm="syz.2.1727" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f6a414819 code=0x0
[  578.261763][T10788] loop6: detected capacity change from 0 to 512
[  578.302530][T10790] loop1: detected capacity change from 0 to 1024
[  578.317019][T10788] EXT4-fs (loop6): Ignoring removed mblk_io_submit option
[  578.327236][T10788] EXT4-fs (loop6): Ignoring removed mblk_io_submit option
[  578.334989][T10788] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  578.355997][T10788] EXT4-fs (loop6): 1 truncate cleaned up
[  578.374552][T10790] EXT4-fs (loop1): inline encryption not supported
[  578.382652][T10790] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  578.395688][T10788] EXT4-fs (loop6): mounted filesystem without journal. Opts: nodiscard,mblk_io_submit,nouid32,lazytime,barrier,mblk_io_submit,min_batch_time=0x0000000000000004,,errors=continue. Quota mode: none.
[  578.442843][T10790] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,data_err=abort,inlinecrypt,noauto_da_alloc,data_err=ignore,nojournal_checksum,errors=remount-ro,grpquota,noblock_validity,user_xattr,nombcache,inode_readahead_blks=0x0000000000000100,. Quota mode: writeback.
[  579.974569][T10819] loop2: detected capacity change from 0 to 1024
[  580.803544][T10819] EXT4-fs (loop2): inline encryption not supported
[  580.832004][T10819] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  581.034561][T10819] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,data_err=abort,inlinecrypt,noauto_da_alloc,data_err=ignore,nojournal_checksum,errors=remount-ro,grpquota,noblock_validity,user_xattr,nombcache,errors=remount-ro,. Quota mode: writeback.
[  581.538041][T10819] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  581.817990][T10819] EXT4-fs (loop2): re-mounted. Opts: . Quota mode: writeback.
[  583.009472][T10842] loop1: detected capacity change from 0 to 4096
[  583.066819][T10842] EXT4-fs (loop1): inline encryption not supported
[  583.095622][T10842] EXT4-fs (loop1): Test dummy encryption mode enabled
[  583.140076][T10842] EXT4-fs (loop1): Mount option "nouser_xattr" will be removed by 3.5
[  583.140076][T10842] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  583.140076][T10842] 
[  583.331646][T10842] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a8428018, mo2=0003]
[  583.411830][T10842] System zones: 0-5
[  583.609606][T10842] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,delalloc,inlinecrypt,test_dummy_encryption,errors=continue,errors=continue,delalloc,nouser_xattr,,errors=continue. Quota mode: writeback.
[  583.661569][T10855] device syzkaller0 entered promiscuous mode
[  586.610950][T10901] loop2: detected capacity change from 0 to 512
[  591.359897][T10944] loop6: detected capacity change from 0 to 512
[  591.405589][T10944] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  591.582543][T10944] EXT4-fs (loop6): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  593.013595][T10963] loop6: detected capacity change from 0 to 512
[  594.601636][T10968] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1773'.
[  594.908426][T10975] device syzkaller0 entered promiscuous mode
[  596.024297][T11002] loop6: detected capacity change from 0 to 512
[  596.051407][T11002] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  596.175214][T11002] EXT4-fs (loop6): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  597.533662][T11017] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1785'.
[  597.816027][T11017] 8021q: VLANs not supported on vcan0
[  597.915669][T11023] loop2: detected capacity change from 0 to 512
[  598.169531][T11023] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1786: inode has both inline data and extents flags
[  598.202273][T11031] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1787'.
[  598.244365][T11023] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1786: couldn't read orphan inode 15 (err -117)
[  598.286172][T11023] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,resgid=0x000000000000ee00,acl,noload,journal_dev=0x0000000000000003,nodiscard,,errors=continue. Quota mode: none.
[  598.391823][T11037] device syzkaller0 entered promiscuous mode
[  598.827225][ T4185] EXT4-fs error (device loop2): ext4_readdir:263: inode #11: block 20: comm syz-executor: path /375/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=393216, rec_len=0, size=1024 fake=0
[  598.881441][ T4185] EXT4-fs error (device loop2): ext4_empty_dir:3177: inode #11: block 20: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=393216, rec_len=0, size=1024 fake=0
[  598.916836][ T4185] EXT4-fs error (device loop2): ext4_readdir:263: inode #11: block 20: comm syz-executor: path /375/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=393216, rec_len=0, size=1024 fake=0
[  598.960134][ T4185] EXT4-fs error (device loop2): ext4_empty_dir:3177: inode #11: block 20: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=393216, rec_len=0, size=1024 fake=0
[  598.989389][ T4185] EXT4-fs error (device loop2): ext4_readdir:263: inode #11: block 20: comm syz-executor: path /375/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=393216, rec_len=0, size=1024 fake=0
[  599.019155][ T4185] EXT4-fs error (device loop2): ext4_empty_dir:3177: inode #11: block 20: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=393216, rec_len=0, size=1024 fake=0
[  599.046448][ T4185] EXT4-fs error (device loop2): ext4_readdir:263: inode #11: block 20: comm syz-executor: path /375/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=393216, rec_len=0, size=1024 fake=0
[  599.074629][ T4185] EXT4-fs error (device loop2): ext4_empty_dir:3177: inode #11: block 20: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=393216, rec_len=0, size=1024 fake=0
[  599.105819][ T4185] EXT4-fs error (device loop2): ext4_readdir:263: inode #11: block 20: comm syz-executor: path /375/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=393216, rec_len=0, size=1024 fake=0
[  599.213690][ T4185] EXT4-fs error (device loop2): ext4_empty_dir:3177: inode #11: block 20: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=393216, rec_len=0, size=1024 fake=0
[  599.415900][T11051] loop1: detected capacity change from 0 to 512
[  599.475109][T11051] EXT4-fs (loop1): Ignoring removed nobh option
[  599.532541][T11051] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  599.545180][T11051] EXT4-fs warning (device loop1): ext4_multi_mount_protect:300: Invalid MMP block in superblock
[  599.866024][ T6634] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  600.112929][ T6634] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  601.983895][ T6634] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  602.220188][ T6634] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  602.598414][T11077] chnl_net:caif_netlink_parms(): no params data found
[  602.972926][T11077] bridge0: port 1(bridge_slave_0) entered blocking state
[  602.990548][T11077] bridge0: port 1(bridge_slave_0) entered disabled state
[  603.044394][T11077] device bridge_slave_0 entered promiscuous mode
[  603.081131][T11097] x_tables: duplicate underflow at hook 3
[  603.085390][T11077] bridge0: port 2(bridge_slave_1) entered blocking state
[  603.124496][T11077] bridge0: port 2(bridge_slave_1) entered disabled state
[  603.163915][T11077] device bridge_slave_1 entered promiscuous mode
[  603.304880][T11077] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  603.390725][T11077] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  603.573809][T11077] team0: Port device team_slave_0 added
[  603.605717][T11077] team0: Port device team_slave_1 added
[  603.690409][T11077] batman_adv: batadv0: Adding interface: batadv_slave_0
[  603.736718][T11077] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.785804][T11077] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  603.835247][T11077] batman_adv: batadv0: Adding interface: batadv_slave_1
[  603.859422][T11077] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.995741][T11077] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  604.306434][T11077] device hsr_slave_0 entered promiscuous mode
[  604.336180][T11077] device hsr_slave_1 entered promiscuous mode
[  604.363632][T11077] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  604.416979][T11077] Cannot create hsr debugfs directory
[  605.164654][ T1110] Bluetooth: hci1: command 0x0409 tx timeout
[  605.219476][ T6634] device hsr_slave_0 left promiscuous mode
[  605.237563][ T6634] device hsr_slave_1 left promiscuous mode
[  605.283068][ T6634] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  605.321308][ T6634] batman_adv: batadv0: Removing interface: batadv_slave_0
[  605.379090][ T6634] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  605.419353][ T6634] batman_adv: batadv0: Removing interface: batadv_slave_1
[  605.787186][ T6634] device bridge_slave_1 left promiscuous mode
[  605.844331][ T6634] bridge0: port 2(bridge_slave_1) entered disabled state
[  605.926176][ T6634] device bridge_slave_0 left promiscuous mode
[  605.936178][ T6634] bridge0: port 1(bridge_slave_0) entered disabled state
[  606.052124][ T6634] device veth0_macvtap left promiscuous mode
[  606.085617][ T6634] device veth1_vlan left promiscuous mode
[  606.122922][ T6634] device veth0_vlan left promiscuous mode
[  607.178419][ T6634] team0 (unregistering): Port device team_slave_1 removed
[  607.194294][ T6634] team0 (unregistering): Port device team_slave_0 removed
[  607.211491][ T6634] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  607.241864][ T6634] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  607.257136][ T1110] Bluetooth: hci1: command 0x041b tx timeout
[  607.495291][ T6634] bond0 (unregistering): Released all slaves
[  607.806268][T11077] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  607.871229][T11077] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  607.890716][T11077] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  607.933721][T11077] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  608.241189][T11077] 8021q: adding VLAN 0 to HW filter on device bond0
[  608.274188][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  608.292225][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  608.315455][T11077] 8021q: adding VLAN 0 to HW filter on device team0
[  608.364242][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  608.397637][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  608.406187][T10935] bridge0: port 1(bridge_slave_0) entered blocking state
[  608.413320][T10935] bridge0: port 1(bridge_slave_0) entered forwarding state
[  608.493551][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  608.537639][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  608.574509][T10935] bridge0: port 2(bridge_slave_1) entered blocking state
[  608.581726][T10935] bridge0: port 2(bridge_slave_1) entered forwarding state
[  608.639786][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  608.677495][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  608.709653][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  608.740282][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  608.780130][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  608.817753][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  608.853109][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  608.890071][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  608.971892][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  608.986327][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  609.013783][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  609.035069][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  609.058770][T11077] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  609.337653][ T4492] Bluetooth: hci1: command 0x040f tx timeout
[  609.487502][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  609.497497][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  609.539710][T11077] 8021q: adding VLAN 0 to HW filter on device batadv0
[  609.643567][T11200] device syzkaller0 entered promiscuous mode
[  610.544038][T11217] loop6: detected capacity change from 0 to 512
[  610.624956][T11217] EXT4-fs (loop6): Ignoring removed nobh option
[  610.653567][T11217] EXT4-fs (loop6): Quota format mount options ignored when QUOTA feature is enabled
[  610.703011][T11217] EXT4-fs warning (device loop6): ext4_multi_mount_protect:300: Invalid MMP block in superblock
[  610.747572][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  610.763704][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  610.817808][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  610.844112][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  610.873440][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  610.904843][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  610.936744][T11077] device veth0_vlan entered promiscuous mode
[  611.094686][T11077] device veth1_vlan entered promiscuous mode
[  611.220387][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  611.242252][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  611.272446][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  611.307780][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  611.339062][T11077] device veth0_macvtap entered promiscuous mode
[  611.508150][ T4492] Bluetooth: hci1: command 0x0419 tx timeout
[  611.526628][T11077] device veth1_macvtap entered promiscuous mode
[  611.572148][T11077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  611.711709][T11077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  611.877744][T11077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  611.895136][T11077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  611.934286][T11077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  612.300906][T11077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  612.364932][T11077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  612.451787][T11077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  612.463288][T11077] batman_adv: batadv0: Interface activated: batadv_slave_0
[  612.475864][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  612.493294][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  612.507483][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  612.527477][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  612.538912][T11077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  612.662216][T11077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  612.723328][T11077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  612.736384][T11077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  613.546939][T11077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  613.810560][T11077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  613.846910][T11077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  613.886973][T11077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  613.898560][T11077] batman_adv: batadv0: Interface activated: batadv_slave_1
[  613.917433][T10933] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  613.950653][T10933] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  614.008649][T11077] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  614.020237][T11077] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  614.050517][T11077] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  614.098396][T11077] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  614.446136][ T1173] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  614.485902][ T1173] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  614.567754][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  614.668110][ T1404] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  614.690849][ T1404] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  614.727088][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  614.957992][T11267] device syzkaller0 entered promiscuous mode
[  615.151071][T11273] af_packet: tpacket_rcv: packet too big, clamped from 40 to 4294967272. macoff=96
[  615.489017][T11271] netlink: 96 bytes leftover after parsing attributes in process `syz.7.1802'.
[  615.900312][ T4232] Bluetooth: hci3: command 0x0406 tx timeout
[  617.188743][T11317] loop1: detected capacity change from 0 to 512
[  617.245817][T11317] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  617.400441][T11317] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  617.898572][T11331] device syzkaller0 entered promiscuous mode
[  619.499205][T11353] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1844'.
[  619.645341][T11363] loop7: detected capacity change from 0 to 256
[  619.785154][T11363] FAT-fs (loop7): Directory bread(block 64) failed
[  619.833351][T11363] FAT-fs (loop7): Directory bread(block 65) failed
[  619.872521][T11374] loop1: detected capacity change from 0 to 1024
[  619.890927][T11363] FAT-fs (loop7): Directory bread(block 66) failed
[  619.955216][T11363] FAT-fs (loop7): Directory bread(block 67) failed
[  620.152635][T11363] FAT-fs (loop7): Directory bread(block 68) failed
[  620.425033][T11363] FAT-fs (loop7): Directory bread(block 69) failed
[  620.693140][T11363] FAT-fs (loop7): Directory bread(block 70) failed
[  620.734504][T11363] FAT-fs (loop7): Directory bread(block 71) failed
[  620.791405][T11363] FAT-fs (loop7): Directory bread(block 72) failed
[  620.906745][T11363] FAT-fs (loop7): Directory bread(block 73) failed
[  620.963932][T11374] EXT4-fs error (device loop1): ext4_map_blocks:739: inode #3: block 1: comm syz.1.1850: lblock 1 mapped to illegal pblock 1 (length 1)
[  621.152369][T11374] Quota error (device loop1): write_blk: dquota write failed
[  621.360876][T11374] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  621.429081][T11374] EXT4-fs error (device loop1): ext4_acquire_dquot:6234: comm syz.1.1850: Failed to acquire dquot type 0
[  621.440991][T11374] EXT4-fs error (device loop1): ext4_free_blocks:6232: comm syz.1.1850: Freeing blocks not in datazone - block = 0, count = 4096
[  621.458181][T11374] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.1850: Invalid inode bitmap blk 0 in block_group 0
[  621.477845][ T5704] EXT4-fs error (device loop1): ext4_map_blocks:629: inode #3: block 1: comm kworker/u4:11: lblock 1 mapped to illegal pblock 1 (length 1)
[  621.526010][ T5704] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  621.548314][T11374] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[  621.586471][ T5704] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:11: Failed to release dquot type 0
[  621.614457][T11374] EXT4-fs (loop1): 1 orphan inode deleted
[  621.690974][T11374] EXT4-fs (loop1): mounted filesystem without journal. Opts: ��; ,errors=continue. Quota mode: writeback.
[  623.913423][T11469] loop1: detected capacity change from 0 to 512
[  624.319703][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  624.326057][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  624.872324][T11469] EXT4-fs (loop1): Ignoring removed nobh option
[  624.918773][T11469] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  624.933655][T11469] EXT4-fs warning (device loop1): ext4_multi_mount_protect:300: Invalid MMP block in superblock
[  625.066770][T11477] device syzkaller0 entered promiscuous mode
[  625.284674][T11488] loop1: detected capacity change from 0 to 512
[  626.080957][T11486] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1859'.
[  627.417340][T11520] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1869'.
[  627.474404][T11523] loop7: detected capacity change from 0 to 512
[  627.561642][T11523] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  627.665547][T11528] loop1: detected capacity change from 0 to 512
[  627.725235][T11528] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  627.879647][T11528] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  628.199137][T11523] EXT4-fs error (device loop7): mb_free_blocks:1874: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  630.029012][T11523] EXT4-fs error (device loop7): ext4_do_update_inode:5222: inode #11: comm syz.7.1868: corrupted inode contents
[  630.044281][T11523] EXT4-fs error (device loop7): ext4_dirty_inode:6058: inode #11: comm syz.7.1868: mark_inode_dirty error
[  630.056701][T11523] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #11: comm syz.7.1868: invalid indirect mapped block 1 (level 1)
[  630.073574][T11523] EXT4-fs error (device loop7): ext4_do_update_inode:5222: inode #11: comm syz.7.1868: corrupted inode contents
[  630.255911][T11523] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[  630.286994][T11545] loop6: detected capacity change from 0 to 512
[  630.314101][T11523] EXT4-fs error (device loop7): ext4_do_update_inode:5222: inode #11: comm syz.7.1868: corrupted inode contents
[  630.335136][T11550] loop1: detected capacity change from 0 to 128
[  630.350908][T11523] EXT4-fs error (device loop7): ext4_truncate:4279: inode #11: comm syz.7.1868: mark_inode_dirty error
[  630.352908][T11545] EXT4-fs (loop6): Ignoring removed nobh option
[  630.392373][T11523] EXT4-fs error (device loop7) in ext4_process_orphan:345: Corrupt filesystem
[  630.419707][T11545] EXT4-fs (loop6): Quota format mount options ignored when QUOTA feature is enabled
[  630.462881][T11545] EXT4-fs warning (device loop6): ext4_multi_mount_protect:300: Invalid MMP block in superblock
[  630.498667][T11523] EXT4-fs (loop7): 1 truncate cleaned up
[  630.530216][T11523] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  630.545338][T11552] attempt to access beyond end of device
[  630.545338][T11552] loop1: rw=2049, want=657, limit=128
[  630.995801][T11568] loop7: detected capacity change from 0 to 512
[  631.184393][T11424] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  631.404646][T11573] input: syz0 as /devices/virtual/input/input25
[  632.201189][T11424] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  632.355067][T11424] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.943338][T11424] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.765954][T11593] loop7: detected capacity change from 0 to 512
[  634.957125][T11593] EXT4-fs (loop7): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  635.078100][T11593] EXT4-fs (loop7): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  635.653316][T11623] device syzkaller0 entered promiscuous mode
[  636.277833][T11613] chnl_net:caif_netlink_parms(): no params data found
[  636.308364][T11636] loop7: detected capacity change from 0 to 512
[  636.642806][T11648] input: syz0 as /devices/virtual/input/input26
[  636.996515][T11613] bridge0: port 1(bridge_slave_0) entered blocking state
[  637.064500][T11613] bridge0: port 1(bridge_slave_0) entered disabled state
[  637.334523][T11613] device bridge_slave_0 entered promiscuous mode
[  637.368192][T11613] bridge0: port 2(bridge_slave_1) entered blocking state
[  637.420536][T11613] bridge0: port 2(bridge_slave_1) entered disabled state
[  637.434684][T11613] device bridge_slave_1 entered promiscuous mode
[  637.621827][ T4230] Bluetooth: hci2: command 0x0409 tx timeout
[  637.686604][T11613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  638.480234][T11613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  638.641844][T11613] team0: Port device team_slave_0 added
[  638.735285][T11613] team0: Port device team_slave_1 added
[  638.853484][   T26] audit: type=1326 audit(1775146194.506:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11678 comm="syz.0.1897" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f30d74de819 code=0x0
[  638.935535][T11424] device hsr_slave_0 left promiscuous mode
[  638.952309][T11424] device hsr_slave_1 left promiscuous mode
[  638.967494][T11424] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  638.985825][T11424] batman_adv: batadv0: Removing interface: batadv_slave_0
[  638.996772][T11424] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  639.016122][T11424] batman_adv: batadv0: Removing interface: batadv_slave_1
[  639.062247][T11424] device bridge_slave_1 left promiscuous mode
[  639.085649][T11424] bridge0: port 2(bridge_slave_1) entered disabled state
[  639.108109][T11424] device bridge_slave_0 left promiscuous mode
[  639.127281][T11424] bridge0: port 1(bridge_slave_0) entered disabled state
[  639.153756][T11424] device veth1_macvtap left promiscuous mode
[  639.170328][T11424] device veth0_macvtap left promiscuous mode
[  639.176452][T11424] device veth1_vlan left promiscuous mode
[  639.183244][T11424] device veth0_vlan left promiscuous mode
[  639.337056][ T4294] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  639.511508][T11424] team0 (unregistering): Port device team_slave_1 removed
[  639.555967][T11424] team0 (unregistering): Port device team_slave_0 removed
[  639.571800][T11424] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  639.597248][T11424] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  639.654024][ T4232] Bluetooth: hci2: command 0x041b tx timeout
[  639.737164][ T4294] usb 8-1: unable to get BOS descriptor or descriptor too short
[  639.848611][T11424] bond0 (unregistering): Released all slaves
[  639.916476][T11613] batman_adv: batadv0: Adding interface: batadv_slave_0
[  639.928667][T11613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  639.986987][ T4294] usb 8-1: New USB device found, idVendor=200c, idProduct=100b, bcdDevice= 0.40
[  640.000751][ T4294] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  640.017690][ T4294] usb 8-1: Product: syz
[  640.025268][T11613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  640.037037][ T4294] usb 8-1: Manufacturer: syz
[  640.047492][ T4294] usb 8-1: SerialNumber: syz
[  640.117497][T11613] batman_adv: batadv0: Adding interface: batadv_slave_1
[  640.124485][T11613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  640.253246][T11613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  640.465489][T11613] device hsr_slave_0 entered promiscuous mode
[  640.496183][T11613] device hsr_slave_1 entered promiscuous mode
[  640.504378][T11613] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  640.513336][T11613] Cannot create hsr debugfs directory
[  640.837247][ T4294] usb 8-1: 1:1: cannot set freq 48000 to ep 0x1
[  640.935682][ T4294] usb 8-1: USB disconnect, device number 2
[  641.001117][T11714] loop6: detected capacity change from 0 to 512
[  641.022525][T11613] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  641.053943][T11613] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  641.083234][T11613] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  641.125764][T11613] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  641.142698][T11714] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  641.158562][T11714] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  641.233712][T11714] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  641.242992][T11716] udevd[11716]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  641.269472][T11714] System zones: 0-2, 18-18, 34-35
[  641.278697][T11714] EXT4-fs (loop6): mounted filesystem without journal. Opts: bsdgroups,,errors=continue. Quota mode: none.
[  641.423415][T11714] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  641.590836][T11714] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  642.227598][ T4232] Bluetooth: hci2: command 0x040f tx timeout
[  642.825183][T11714] EXT4-fs (loop6): re-mounted. Opts: . Quota mode: none.
[  642.854285][T11613] 8021q: adding VLAN 0 to HW filter on device bond0
[  642.869439][T11613] 8021q: adding VLAN 0 to HW filter on device team0
[  642.896408][T11613] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  642.908905][T11613] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  642.984534][   T26] audit: type=1800 audit(1775146198.636:473): pid=11714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1904" name="file1" dev="loop6" ino=15 res=0 errno=0
[  643.029884][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  643.174736][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  643.187550][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  643.287388][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  643.625631][T11426] bridge0: port 1(bridge_slave_0) entered blocking state
[  643.632901][T11426] bridge0: port 1(bridge_slave_0) entered forwarding state
[  644.198975][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  644.208121][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  644.267291][T11426] bridge0: port 2(bridge_slave_1) entered blocking state
[  644.274403][T11426] bridge0: port 2(bridge_slave_1) entered forwarding state
[  644.297875][ T4232] Bluetooth: hci2: command 0x0419 tx timeout
[  644.348668][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  644.373329][   T26] audit: type=1326 audit(1775146200.026:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11753 comm="syz.7.1910" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2a12f98819 code=0x0
[  644.451160][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  644.460032][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  644.468959][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  644.478502][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  644.487881][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  644.497511][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  644.506504][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  644.515187][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  644.524026][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  644.543987][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  644.589717][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  644.624728][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  644.697107][T11762] loop6: detected capacity change from 0 to 4096
[  644.842750][T11762] EXT4-fs (loop6): inline encryption not supported
[  644.856178][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  644.871957][T11762] EXT4-fs (loop6): Test dummy encryption mode enabled
[  644.898368][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  644.976124][T11613] 8021q: adding VLAN 0 to HW filter on device batadv0
[  645.000867][T11762] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  645.024790][T11762] System zones: 0-5
[  645.502050][T11762] EXT4-fs (loop6): mounted filesystem without journal. Opts: debug,delalloc,inlinecrypt,test_dummy_encryption,errors=continue,errors=continue,delalloc,barrier,,errors=continue. Quota mode: writeback.
[  646.198526][T11790] device gretap0 entered promiscuous mode
[  647.386953][T11790] device vlan2 entered promiscuous mode
[  647.717154][T11811] loop6: detected capacity change from 0 to 512
[  647.767605][T11811] EXT4-fs (loop6): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  648.201462][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  648.243654][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  648.325152][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  648.371666][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  648.412717][T11613] device veth0_vlan entered promiscuous mode
[  648.420559][   T26] audit: type=1326 audit(1775146204.076:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11821 comm="syz.4.1924" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff719f28819 code=0x0
[  648.421228][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  648.538393][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  648.584864][T11613] device veth1_vlan entered promiscuous mode
[  648.608633][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  648.692657][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  648.727591][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  648.771301][T11613] device veth0_macvtap entered promiscuous mode
[  648.811966][T11613] device veth1_macvtap entered promiscuous mode
[  648.871536][T11613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  648.935869][T11613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  648.990658][T11613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  649.051841][T11613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  649.098403][T11613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  649.145890][T11613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  649.187002][T11613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  649.273601][T11613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  649.372331][T11613] batman_adv: batadv0: Interface activated: batadv_slave_0
[  649.457459][T11613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  649.692678][T11613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.009181][T11613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  650.339798][T11613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.373958][T11613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  650.456899][T11613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.511055][T11613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  650.559380][T11613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  650.590812][T11613] batman_adv: batadv0: Interface activated: batadv_slave_1
[  650.620847][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  650.643309][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  650.680857][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  650.731578][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  650.781976][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  650.835085][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  650.854801][T11840] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1925'.
[  650.864086][T11840] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  651.135537][T11840] batman_adv: batadv0: Removing interface: batadv_slave_0
[  651.927822][T11613] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  652.016947][T11613] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  652.056699][T11613] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  652.089697][T11613] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  652.256221][T11860] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1932'.
[  652.549699][   T26] audit: type=1326 audit(1775146208.206:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11865 comm="syz.4.1934" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff719f28819 code=0x0
[  652.593482][T11417] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  652.624016][T11417] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  652.674174][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  652.714949][T11417] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  652.731708][T11417] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  652.780998][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  652.781602][T11878] loop6: detected capacity change from 0 to 256
[  652.921166][T11878] FAT-fs (loop6): Directory bread(block 64) failed
[  652.966393][T11878] FAT-fs (loop6): Directory bread(block 65) failed
[  652.997665][T11878] FAT-fs (loop6): Directory bread(block 66) failed
[  653.025399][T11878] FAT-fs (loop6): Directory bread(block 67) failed
[  653.130508][T11878] FAT-fs (loop6): Directory bread(block 68) failed
[  653.183425][T11878] FAT-fs (loop6): Directory bread(block 69) failed
[  653.264014][T11878] FAT-fs (loop6): Directory bread(block 70) failed
[  653.302010][T11878] FAT-fs (loop6): Directory bread(block 71) failed
[  653.377144][T11878] FAT-fs (loop6): Directory bread(block 72) failed
[  653.455445][T11878] FAT-fs (loop6): Directory bread(block 73) failed
[  654.030939][T11896] loop6: detected capacity change from 0 to 256
[  654.052394][T11899] netlink: 996 bytes leftover after parsing attributes in process `syz.7.1939'.
[  654.129218][T11899] gretap0: refused to change device tx_queue_len
[  654.181815][T11896] exFAT-fs (loop6): failed to load upcase table (idx : 0x00012c80, chksum : 0x8ff561f5, utbl_chksum : 0xe619d30d)
[  654.287913][ T4231] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[  654.558999][T11907] loop6: detected capacity change from 0 to 128
[  654.797623][ T4231] usb 9-1: unable to get BOS descriptor or descriptor too short
[  654.920304][ T4231] usb 9-1: not running at top speed; connect to a high speed hub
[  655.577571][T11913] netlink: 96 bytes leftover after parsing attributes in process `syz.7.1944'.
[  655.717191][ T4231] usb 9-1: New USB device found, idVendor=0499, idProduct=1033, bcdDevice= 0.40
[  655.726269][ T4231] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  655.746902][ T4231] usb 9-1: Product: syz
[  655.751116][ T4231] usb 9-1: Manufacturer: syz
[  655.755721][ T4231] usb 9-1: SerialNumber: syz
[  655.887351][T11919] loop6: detected capacity change from 0 to 512
[  655.934773][T11919] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  656.103600][T11919] EXT4-fs (loop6): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue. Quota mode: writeback.
[  656.565561][ T4231] snd-usb-audio: probe of 9-1:1.0 failed with error -2
[  656.668171][ T4231] usb 9-1: USB disconnect, device number 2
[  656.905357][T11935] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  656.929274][ T9953] udevd[9953]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  656.987916][T11935] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  658.425338][T11961] loop7: detected capacity change from 0 to 4096
[  658.516979][T11961] EXT4-fs (loop7): inline encryption not supported
[  658.523790][T11961] EXT4-fs (loop7): Test dummy encryption mode enabled
[  658.597957][T11961] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  658.606328][T11961] System zones: 0-5
[  658.659264][T11961] EXT4-fs (loop7): mounted filesystem without journal. Opts: debug,delalloc,inlinecrypt,test_dummy_encryption,errors=continue,errors=continue,delalloc,barrier,,errors=continue. Quota mode: writeback.
[  658.689962][T11961] fs-verity (loop7, inode 13): Unknown hash algorithm number: 0
[  658.946704][T11978] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1958'.
[  661.172615][T12017] loop6: detected capacity change from 0 to 512
[  661.297478][T12017] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  661.514871][T12017] EXT4-fs (loop6): 1 truncate cleaned up
[  661.526943][T12017] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  662.302522][T12041] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1969'.
[  664.109819][T12087] loop8: detected capacity change from 0 to 1024
[  664.234655][T12087] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  664.329546][   T26] audit: type=1800 audit(1775146220.988:477): pid=12087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.1980" name="file1" dev="loop8" ino=15 res=0 errno=0
[  664.688561][T12100] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1981'.
[  665.167681][T12110] Invalid ELF header len 9
[  667.047282][   T26] audit: type=1800 audit(1775146223.698:478): pid=12087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1980" name="file1" dev="loop8" ino=15 res=0 errno=0
[  667.944001][T12174] loop6: detected capacity change from 0 to 1024
[  668.258360][T12181] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1997'.
[  669.520767][T12174] EXT4-fs (loop6): mounted filesystem without journal. Opts: i_version,usrjquota=,,errors=continue. Quota mode: none.
[  670.856977][ T7522] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  671.734332][ T7522] usb 9-1: Using ep0 maxpacket: 16
[  673.356983][ T7522] usb 9-1: device descriptor read/all, error -71
[  673.705077][T12222] loop8: detected capacity change from 0 to 131072
[  673.864008][T12242] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2010'.
[  674.190615][T12222] F2FS-fs (loop8): Test dummy encryption mode enabled
[  674.202857][T12222] F2FS-fs (loop8): invalid crc value
[  674.248156][T12222] F2FS-fs (loop8): Found nat_bits in checkpoint
[  674.303982][T12222] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  674.674828][T12264] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2013'.
[  681.500213][T12322] chnl_net:caif_netlink_parms(): no params data found
[  681.856283][T12322] bridge0: port 1(bridge_slave_0) entered blocking state
[  681.904232][T12322] bridge0: port 1(bridge_slave_0) entered disabled state
[  681.942119][T12322] device bridge_slave_0 entered promiscuous mode
[  681.970429][T12322] bridge0: port 2(bridge_slave_1) entered blocking state
[  682.021100][T12322] bridge0: port 2(bridge_slave_1) entered disabled state
[  682.057041][T12322] device bridge_slave_1 entered promiscuous mode
[  682.271434][T12322] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  682.338147][T12322] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  682.510124][T12322] team0: Port device team_slave_0 added
[  682.550459][T12322] team0: Port device team_slave_1 added
[  682.583045][T12371] overlayfs: failed to resolve './file1': -2
[  682.645603][T12322] batman_adv: batadv0: Adding interface: batadv_slave_0
[  682.686959][T12322] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  682.767037][ T4294] Bluetooth: hci5: command 0x0409 tx timeout
[  682.790483][T12342] loop8: detected capacity change from 0 to 40427
[  682.816942][T12322] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  682.851437][T12342] F2FS-fs (loop8): Invalid SB checksum offset: 0
[  682.882166][T12322] batman_adv: batadv0: Adding interface: batadv_slave_1
[  682.901132][T12342] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock
[  682.921390][T12322] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  682.965603][T12342] F2FS-fs (loop8): invalid crc value
[  683.003537][T12342] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  683.019213][T12322] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  683.184318][T12322] device hsr_slave_0 entered promiscuous mode
[  683.231593][T12342] F2FS-fs (loop8): Try to recover 2th superblock, ret: 0
[  683.239250][T12322] device hsr_slave_1 entered promiscuous mode
[  683.246488][T12322] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  683.254847][T12342] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  683.268593][T12322] Cannot create hsr debugfs directory
[  683.293266][   T26] audit: type=1800 audit(1775146239.948:479): pid=12342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2035" name="file1" dev="loop8" ino=10 res=0 errno=0
[  683.469312][T11613] attempt to access beyond end of device
[  683.469312][T11613] loop8: rw=2049, want=45104, limit=40427
[  684.274071][T12391] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2042'.
[  684.463563][T12401] fuse: Bad value for 'fd'
[  685.444785][   T13] Bluetooth: hci5: command 0x041b tx timeout
[  685.497321][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  685.503687][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  685.728910][T12322] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  686.021985][T12322] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  686.095741][T12322] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  686.416215][T12322] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  686.727443][T12443] overlayfs: failed to resolve './file1': -2
[  686.938179][T12322] 8021q: adding VLAN 0 to HW filter on device bond0
[  687.015988][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  687.036438][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  687.090451][T12322] 8021q: adding VLAN 0 to HW filter on device team0
[  687.140596][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  687.178007][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  687.197397][T11429] bridge0: port 1(bridge_slave_0) entered blocking state
[  687.204637][T11429] bridge0: port 1(bridge_slave_0) entered forwarding state
[  687.290911][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  687.338125][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  687.391407][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  687.440354][T11429] bridge0: port 2(bridge_slave_1) entered blocking state
[  687.447514][T11429] bridge0: port 2(bridge_slave_1) entered forwarding state
[  687.487149][   T13] Bluetooth: hci5: command 0x040f tx timeout
[  687.526679][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  687.564289][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  687.627860][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  687.696720][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  687.747898][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  687.805189][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  687.838122][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  687.884024][T12322] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  687.935272][T12322] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  687.988585][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  688.007156][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  688.057449][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  688.097191][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  688.137286][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  688.643178][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  688.667952][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  688.680522][T12322] 8021q: adding VLAN 0 to HW filter on device batadv0
[  688.819154][T11424] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  688.984209][T11424] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  689.171151][T11424] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  689.283244][T11424] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  689.583333][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  689.614575][T10935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  689.626952][ T4294] Bluetooth: hci5: command 0x0419 tx timeout
[  689.778607][T12322] device veth0_vlan entered promiscuous mode
[  689.802741][T11417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  689.829843][T11417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  689.883280][T12322] device veth1_vlan entered promiscuous mode
[  689.897260][T11417] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  689.911736][T11417] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  689.936477][T11417] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  690.032487][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  690.046199][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  690.081650][T11429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  690.108453][T12322] device veth0_macvtap entered promiscuous mode
[  690.156710][T12322] device veth1_macvtap entered promiscuous mode
[  690.264352][T12504] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2060'.
[  690.279501][ T6706] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  690.410273][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  690.597234][ T6706] usb 7-1: Using ep0 maxpacket: 8
[  690.643886][ T1404] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  690.738275][ T6706] usb 7-1: config 135 has an invalid interface number: 230 but max is 0
[  690.904566][ T6706] usb 7-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  690.925438][ T6706] usb 7-1: config 135 has no interface number 0
[  690.935628][ T6706] usb 7-1: too many endpoints for config 135 interface 230 altsetting 126: 53, using maximum allowed: 30
[  690.972308][ T6706] usb 7-1: config 135 interface 230 altsetting 126 has 0 endpoint descriptors, different from the interface descriptor's value: 53
[  690.995933][T12507] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  691.016227][ T6706] usb 7-1: config 135 interface 230 has no altsetting 0
[  691.164964][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  691.191778][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  691.247800][ T6706] usb 7-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  691.265398][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  691.287049][ T6706] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  691.307621][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  691.337302][ T6706] usb 7-1: Product: syz
[  691.363601][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  691.366483][ T6706] usb 7-1: Manufacturer: syz
[  691.414826][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  691.433603][ T6706] usb 7-1: SerialNumber: syz
[  691.475206][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  691.510839][ T6706] usb 7-1: Found UVC 0.00 device syz (18ec:3288)
[  691.527945][ T6706] usb 7-1: No valid video chain found.
[  691.543305][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  691.614275][T12322] batman_adv: batadv0: Interface activated: batadv_slave_0
[  691.662485][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  691.685020][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  691.712158][ T6706] usb 7-1: USB disconnect, device number 2
[  691.758208][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  691.787790][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  691.832206][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  691.893391][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  692.008784][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  692.061664][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  692.130104][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  692.191697][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  692.242656][T12322] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  692.287383][T12322] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  692.398709][T12322] batman_adv: batadv0: Interface activated: batadv_slave_1
[  692.414361][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  692.457454][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  692.525682][T12322] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  692.554417][T12322] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  692.591348][T12322] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  692.618933][T12322] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  693.534626][T11422] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  693.557341][T11422] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  693.628884][T11422] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  693.675640][ T1404] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  693.721815][ T1404] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  693.755016][T11426] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  694.055251][T11424] device hsr_slave_0 left promiscuous mode
[  694.092242][T11424] device hsr_slave_1 left promiscuous mode
[  694.298606][T11424] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  694.359890][T11424] batman_adv: batadv0: Removing interface: batadv_slave_0
[  694.574801][T11424] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  694.911910][T11424] batman_adv: batadv0: Removing interface: batadv_slave_1
[  695.135191][T11424] device bridge_slave_1 left promiscuous mode
[  695.197103][T11424] bridge0: port 2(bridge_slave_1) entered disabled state
[  695.260480][T11424] device bridge_slave_0 left promiscuous mode
[  695.317012][T11424] bridge0: port 1(bridge_slave_0) entered disabled state
[  695.467657][T11424] device veth1_macvtap left promiscuous mode
[  695.534485][T11424] device veth0_macvtap left promiscuous mode
[  695.605328][T11424] device veth1_vlan left promiscuous mode
[  695.682259][T11424] device veth0_vlan left promiscuous mode
[  699.013574][T11424] team0 (unregistering): Port device team_slave_1 removed
[  699.060389][T11424] team0 (unregistering): Port device team_slave_0 removed
[  699.102595][T11424] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  699.161414][T11424] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  700.280691][T11424] bond0 (unregistering): Released all slaves
[  700.392770][T12585] netlink: 96 bytes leftover after parsing attributes in process `syz.9.2027'.
[  700.707147][T12618] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2088'.
[  700.756240][T12618] fuse: Bad value for 'fd'
[  701.388594][T12608] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2084'.
[  701.397608][T12608] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  701.577391][T12623] binder: BINDER_SET_CONTEXT_MGR already set
[  701.583428][T12623] binder: 12620:12623 ioctl 4018620d 200000000040 returned -16
[  701.620756][T12623] binder: 12620:12623 ioctl c0306201 2000000003c0 returned -14
[  701.725001][T12608] batman_adv: batadv0: Removing interface: batadv_slave_0
[  702.730599][T12652] loop9: detected capacity change from 0 to 128
[  702.857966][T12652] attempt to access beyond end of device
[  702.857966][T12652] loop9: rw=2049, want=140, limit=128
[  703.316519][T12652] Buffer I/O error on dev loop9, logical block 69, lost async page write
[  703.777952][T12652] attempt to access beyond end of device
[  703.777952][T12652] loop9: rw=1, want=140, limit=128
[  703.806990][T12652] Buffer I/O error on dev loop9, logical block 69, lost async page write
[  703.910619][T12665] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2099'.
[  704.516892][T12621] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  704.770913][T12621] usb 10-1: Using ep0 maxpacket: 16
[  704.887179][T12621] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  704.938639][T12621] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  705.001186][T12687] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2104'.
[  705.036985][T12687] netlink: 'syz.4.2104': attribute type 2 has an invalid length.
[  705.177307][T12621] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  705.199850][T12621] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  705.238831][T12621] usb 10-1: Product: syz
[  705.256571][T12621] usb 10-1: Manufacturer: syz
[  705.280375][T12621] usb 10-1: SerialNumber: syz
[  705.314922][T12688] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2104'.
[  705.335232][T12688] netlink: 'syz.4.2104': attribute type 2 has an invalid length.
[  706.080662][T12621] usb 10-1: cannot find UAC_HEADER
[  707.436571][T12621] snd-usb-audio: probe of 10-1:1.0 failed with error -22
[  707.476910][T12621] usb 10-1: USB disconnect, device number 2
[  707.504628][T12619] udevd[12619]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  712.336362][T12744] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  712.418603][T12744] 
[  712.420970][T12744] ======================================================
[  712.428002][T12744] WARNING: possible circular locking dependency detected
[  712.435052][T12744] syzkaller #0 Not tainted
[  712.439507][T12744] ------------------------------------------------------
[  712.446521][T12744] syz.9.2116/12744 is trying to acquire lock:
[  712.452595][T12744] ffff8880741c3120 (sk_lock-AF_AX25){+.+.}-{0:0}, at: ax25_device_event+0x217/0x4f0
[  712.461996][T12744] 
[  712.461996][T12744] but task is already holding lock:
[  712.469345][T12744] ffffffff8d43cb48 (rtnl_mutex){+.+.}-{3:3}, at: dev_ioctl+0x534/0xe30
[  712.477590][T12744] 
[  712.477590][T12744] which lock already depends on the new lock.
[  712.477590][T12744] 
[  712.487986][T12744] 
[  712.487986][T12744] the existing dependency chain (in reverse order) is:
[  712.497017][T12744] 
[  712.497017][T12744] -> #1 (rtnl_mutex){+.+.}-{3:3}:
[  712.504236][T12744]        __mutex_lock_common+0x1e3/0x2400
[  712.509950][T12744]        mutex_lock_nested+0x17/0x20
[  712.515226][T12744]        ax25_setsockopt+0x859/0xa60
[  712.520498][T12744]        __sys_setsockopt+0x2bf/0x3d0
[  712.525877][T12744]        __x64_sys_setsockopt+0xb1/0xc0
[  712.531449][T12744]        do_syscall_64+0x4c/0xa0
[  712.536382][T12744]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  712.542801][T12744] 
[  712.542801][T12744] -> #0 (sk_lock-AF_AX25){+.+.}-{0:0}:
[  712.550432][T12744]        __lock_acquire+0x2c42/0x7d10
[  712.555800][T12744]        lock_acquire+0x19e/0x400
[  712.560834][T12744]        lock_sock_nested+0x44/0x100
[  712.566113][T12744]        ax25_device_event+0x217/0x4f0
[  712.571564][T12744]        raw_notifier_call_chain+0xcb/0x160
[  712.577461][T12744]        __dev_notify_flags+0x158/0x300
[  712.582993][T12744]        dev_change_flags+0xe3/0x1a0
[  712.588284][T12744]        dev_ifsioc+0x130/0xd50
[  712.593130][T12744]        dev_ioctl+0x545/0xe30
[  712.597898][T12744]        sock_do_ioctl+0x245/0x320
[  712.603034][T12744]        sock_ioctl+0x4d2/0x710
[  712.607913][T12744]        __se_sys_ioctl+0xfa/0x170
[  712.613064][T12744]        do_syscall_64+0x4c/0xa0
[  712.618001][T12744]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  712.624416][T12744] 
[  712.624416][T12744] other info that might help us debug this:
[  712.624416][T12744] 
[  712.634641][T12744]  Possible unsafe locking scenario:
[  712.634641][T12744] 
[  712.642082][T12744]        CPU0                    CPU1
[  712.647448][T12744]        ----                    ----
[  712.652799][T12744]   lock(rtnl_mutex);
[  712.656796][T12744]                                lock(sk_lock-AF_AX25);
[  712.663742][T12744]                                lock(rtnl_mutex);
[  712.670236][T12744]   lock(sk_lock-AF_AX25);
[  712.674642][T12744] 
[  712.674642][T12744]  *** DEADLOCK ***
[  712.674642][T12744] 
[  712.682771][T12744] 1 lock held by syz.9.2116/12744:
[  712.687864][T12744]  #0: ffffffff8d43cb48 (rtnl_mutex){+.+.}-{3:3}, at: dev_ioctl+0x534/0xe30
[  712.696558][T12744] 
[  712.696558][T12744] stack backtrace:
[  712.702439][T12744] CPU: 1 PID: 12744 Comm: syz.9.2116 Not tainted syzkaller #0
[  712.709887][T12744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  712.719943][T12744] Call Trace:
[  712.723220][T12744]  <TASK>
[  712.726147][T12744]  dump_stack_lvl+0x188/0x250
[  712.730822][T12744]  ? load_image+0x400/0x400
[  712.735323][T12744]  ? show_regs_print_info+0x20/0x20
[  712.740530][T12744]  ? print_circular_bug+0x12b/0x1a0
[  712.745730][T12744]  check_noncircular+0x296/0x330
[  712.750664][T12744]  ? stack_trace_snprint+0xf0/0xf0
[  712.755788][T12744]  ? add_chain_block+0x940/0x940
[  712.760714][T12744]  ? lockdep_lock+0xf1/0x1f0
[  712.765301][T12744]  ? mark_lock+0x94/0x320
[  712.769619][T12744]  __lock_acquire+0x2c42/0x7d10
[  712.774472][T12744]  ? mark_lock+0x94/0x320
[  712.778795][T12744]  ? verify_lock_unused+0x140/0x140
[  712.783992][T12744]  ? verify_lock_unused+0x140/0x140
[  712.789191][T12744]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  712.795162][T12744]  ? lockdep_hardirqs_on_prepare+0x770/0x770
[  712.801133][T12744]  ? mark_lock+0x94/0x320
[  712.805553][T12744]  lock_acquire+0x19e/0x400
[  712.810056][T12744]  ? ax25_device_event+0x217/0x4f0
[  712.815179][T12744]  ? lock_chain_count+0x20/0x20
[  712.820020][T12744]  ? read_lock_is_recursive+0x10/0x10
[  712.825400][T12744]  ? __local_bh_enable_ip+0x136/0x1c0
[  712.830761][T12744]  ? lockdep_hardirqs_on+0x94/0x140
[  712.835956][T12744]  ? __local_bh_enable_ip+0x136/0x1c0
[  712.841315][T12744]  ? _local_bh_enable+0xa0/0xa0
[  712.846177][T12744]  lock_sock_nested+0x44/0x100
[  712.850937][T12744]  ? ax25_device_event+0x217/0x4f0
[  712.856048][T12744]  ax25_device_event+0x217/0x4f0
[  712.860978][T12744]  raw_notifier_call_chain+0xcb/0x160
[  712.866349][T12744]  __dev_notify_flags+0x158/0x300
[  712.871371][T12744]  ? __dev_change_flags+0x6a0/0x6a0
[  712.876566][T12744]  ? __dev_change_flags+0x4d0/0x6a0
[  712.881756][T12744]  ? dev_get_flags+0x1c0/0x1c0
[  712.886509][T12744]  ? __mutex_lock_common+0x465/0x2400
[  712.891876][T12744]  dev_change_flags+0xe3/0x1a0
[  712.896633][T12744]  dev_ifsioc+0x130/0xd50
[  712.900955][T12744]  ? dev_ioctl+0xe30/0xe30
[  712.905365][T12744]  ? apparmor_capable+0x12c/0x190
[  712.910396][T12744]  ? full_name_hash+0x8e/0xe0
[  712.915073][T12744]  dev_ioctl+0x545/0xe30
[  712.919302][T12744]  ? _copy_from_user+0x111/0x170
[  712.924259][T12744]  sock_do_ioctl+0x245/0x320
[  712.928866][T12744]  ? sock_show_fdinfo+0xb0/0xb0
[  712.933732][T12744]  sock_ioctl+0x4d2/0x710
[  712.938057][T12744]  ? sock_poll+0x410/0x410
[  712.942466][T12744]  ? bpf_lsm_file_ioctl+0x5/0x10
[  712.947394][T12744]  ? security_file_ioctl+0x7c/0xa0
[  712.952508][T12744]  ? sock_poll+0x410/0x410
[  712.956921][T12744]  __se_sys_ioctl+0xfa/0x170
[  712.961524][T12744]  do_syscall_64+0x4c/0xa0
[  712.965932][T12744]  ? clear_bhb_loop+0x30/0x80
[  712.970614][T12744]  ? clear_bhb_loop+0x30/0x80
[  712.975290][T12744]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  712.981183][T12744] RIP: 0033:0x7f0720869819
[  712.985586][T12744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  713.005178][T12744] RSP: 002b:00007f071eaa2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  713.013585][T12744] RAX: ffffffffffffffda RBX: 00007f0720ae3090 RCX: 00007f0720869819
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  713.021552][T12744] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 0000000000000008
[  713.029648][T12744] RBP: 00007f07208ffc91 R08: 0000000000000000 R09: 0000000000000000
[  713.037610][T12744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  713.045573][T12744] R13: 00007f0720ae3128 R14: 00007f0720ae3090 R15: 00007fff6b9e2ea8
[  713.053541][T12744]  </TASK>
[  713.140776][T12742] sctp: failed to load transform for md5: -2
[  713.598811][T12744] ==================================================================
[  713.606907][T12744] BUG: KASAN: use-after-free in ax25_dev_device_down+0x35e/0x520
[  713.614659][T12744] Write of size 4 at addr ffff88805ced7ab8 by task syz.9.2116/12744
[  713.622648][T12744] 
[  713.625118][T12744] CPU: 0 PID: 12744 Comm: syz.9.2116 Not tainted syzkaller #0
[  713.632676][T12744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  713.642771][T12744] Call Trace:
[  713.646075][T12744]  <TASK>
[  713.649027][T12744]  dump_stack_lvl+0x188/0x250
[  713.653731][T12744]  ? show_regs_print_info+0x20/0x20
[  713.658962][T12744]  ? _printk+0xda/0x130
[  713.663141][T12744]  ? ax25_dev_device_down+0x35e/0x520
[  713.668538][T12744]  ? load_image+0x400/0x400
[  713.673120][T12744]  ? _raw_spin_lock_irqsave+0xbc/0x100
[  713.678604][T12744]  print_address_description+0x60/0x2d0
[  713.684175][T12744]  ? ax25_dev_device_down+0x35e/0x520
[  713.689578][T12744]  kasan_report+0xdf/0x130
[  713.694031][T12744]  ? ax25_dev_device_down+0x35e/0x520
[  713.699430][T12744]  kasan_check_range+0x235/0x290
[  713.704383][T12744]  ax25_dev_device_down+0x35e/0x520
[  713.709601][T12744]  ax25_device_event+0x4b4/0x4f0
[  713.714581][T12744]  raw_notifier_call_chain+0xcb/0x160
[  713.719974][T12744]  __dev_notify_flags+0x158/0x300
[  713.725013][T12744]  ? __dev_change_flags+0x6a0/0x6a0
[  713.730226][T12744]  ? __dev_change_flags+0x4d0/0x6a0
[  713.735462][T12744]  ? dev_get_flags+0x1c0/0x1c0
[  713.740273][T12744]  ? __mutex_lock_common+0x465/0x2400
[  713.745673][T12744]  dev_change_flags+0xe3/0x1a0
[  713.750504][T12744]  dev_ifsioc+0x130/0xd50
[  713.754858][T12744]  ? dev_ioctl+0xe30/0xe30
[  713.759303][T12744]  ? apparmor_capable+0x12c/0x190
[  713.764381][T12744]  ? full_name_hash+0x8e/0xe0
[  713.769086][T12744]  dev_ioctl+0x545/0xe30
[  713.773356][T12744]  ? _copy_from_user+0x111/0x170
[  713.778316][T12744]  sock_do_ioctl+0x245/0x320
[  713.782925][T12744]  ? sock_show_fdinfo+0xb0/0xb0
[  713.787802][T12744]  sock_ioctl+0x4d2/0x710
[  713.792165][T12744]  ? sock_poll+0x410/0x410
[  713.796610][T12744]  ? bpf_lsm_file_ioctl+0x5/0x10
[  713.801567][T12744]  ? security_file_ioctl+0x7c/0xa0
[  713.806689][T12744]  ? sock_poll+0x410/0x410
[  713.811117][T12744]  __se_sys_ioctl+0xfa/0x170
[  713.815737][T12744]  do_syscall_64+0x4c/0xa0
[  713.820180][T12744]  ? clear_bhb_loop+0x30/0x80
[  713.824862][T12744]  ? clear_bhb_loop+0x30/0x80
[  713.829581][T12744]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  713.835498][T12744] RIP: 0033:0x7f0720869819
[  713.839926][T12744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  713.859548][T12744] RSP: 002b:00007f071eaa2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  713.867979][T12744] RAX: ffffffffffffffda RBX: 00007f0720ae3090 RCX: 00007f0720869819
[  713.875963][T12744] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 0000000000000008
[  713.883953][T12744] RBP: 00007f07208ffc91 R08: 0000000000000000 R09: 0000000000000000
[  713.891947][T12744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  713.899926][T12744] R13: 00007f0720ae3128 R14: 00007f0720ae3090 R15: 00007fff6b9e2ea8
[  713.907930][T12744]  </TASK>
[  713.910957][T12744] 
[  713.913296][T12744] Allocated by task 12744:
[  713.917715][T12744]  __kasan_kmalloc+0xb5/0xf0
[  713.922324][T12744]  ax25_dev_device_up+0x50/0x580
[  713.927269][T12744]  ax25_device_event+0x483/0x4f0
[  713.932213][T12744]  raw_notifier_call_chain+0xcb/0x160
[  713.937601][T12744]  __dev_notify_flags+0x194/0x300
[  713.942643][T12744]  dev_change_flags+0xe3/0x1a0
[  713.947417][T12744]  dev_ifsioc+0x130/0xd50
[  713.951752][T12744]  dev_ioctl+0x545/0xe30
[  713.956032][T12744]  sock_do_ioctl+0x245/0x320
[  713.960651][T12744]  sock_ioctl+0x4d2/0x710
[  713.964988][T12744]  __se_sys_ioctl+0xfa/0x170
[  713.969597][T12744]  do_syscall_64+0x4c/0xa0
[  713.974030][T12744]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  713.979945][T12744] 
[  713.982272][T12744] Freed by task 12744:
[  713.986338][T12744]  kasan_set_track+0x4b/0x70
[  713.990947][T12744]  kasan_set_free_info+0x1f/0x40
[  713.995899][T12744]  ____kasan_slab_free+0xd5/0x110
[  714.000933][T12744]  slab_free_freelist_hook+0xea/0x170
[  714.006315][T12744]  kfree+0xef/0x2a0
[  714.010137][T12744]  ax25_dev_device_down+0x1c0/0x520
[  714.015363][T12744]  ax25_device_event+0x4b4/0x4f0
[  714.020322][T12744]  raw_notifier_call_chain+0xcb/0x160
[  714.025707][T12744]  __dev_notify_flags+0x158/0x300
[  714.030749][T12744]  dev_change_flags+0xe3/0x1a0
[  714.035542][T12744]  dev_ifsioc+0x130/0xd50
[  714.039884][T12744]  dev_ioctl+0x545/0xe30
[  714.044134][T12744]  sock_do_ioctl+0x245/0x320
[  714.048751][T12744]  sock_ioctl+0x4d2/0x710
[  714.053112][T12744]  __se_sys_ioctl+0xfa/0x170
[  714.057737][T12744]  do_syscall_64+0x4c/0xa0
[  714.062166][T12744]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  714.068067][T12744] 
[  714.070420][T12744] Last potentially related work creation:
[  714.076139][T12744]  kasan_save_stack+0x35/0x60
[  714.080831][T12744]  kasan_record_aux_stack+0xb8/0x100
[  714.086123][T12744]  insert_work+0x54/0x3d0
[  714.090488][T12744]  __queue_work+0x9c5/0xd50
[  714.095018][T12744]  queue_work_on+0x124/0x1f0
[  714.099614][T12744]  inetaddr_event+0xec/0x150
[  714.104225][T12744]  blocking_notifier_call_chain+0x103/0x1b0
[  714.110142][T12744]  __inet_insert_ifa+0x9f7/0xbe0
[  714.115099][T12744]  inet_rtm_newaddr+0x99a/0x1890
[  714.120054][T12744]  rtnetlink_rcv_msg+0x844/0xf30
[  714.125018][T12744]  netlink_rcv_skb+0x1f5/0x440
[  714.129792][T12744]  netlink_unicast+0x774/0x920
[  714.134579][T12744]  netlink_sendmsg+0x8ba/0xbe0
[  714.139532][T12744]  __sys_sendto+0x46d/0x620
[  714.144094][T12744]  __x64_sys_sendto+0xda/0xf0
[  714.148794][T12744]  do_syscall_64+0x4c/0xa0
[  714.153225][T12744]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  714.159137][T12744] 
[  714.161481][T12744] Second to last potentially related work creation:
[  714.168069][T12744]  kasan_save_stack+0x35/0x60
[  714.172767][T12744]  kasan_record_aux_stack+0xb8/0x100
[  714.178081][T12744]  call_rcu+0x189/0x950
[  714.182253][T12744]  inetdev_event+0x757/0x1370
[  714.186947][T12744]  raw_notifier_call_chain+0xcb/0x160
[  714.192337][T12744]  unregister_netdevice_many+0x1049/0x19f0
[  714.198170][T12744]  vti6_exit_batch_net+0x3d2/0x420
[  714.203304][T12744]  cleanup_net+0x791/0xba0
[  714.207750][T12744]  process_one_work+0x85f/0x1010
[  714.212717][T12744]  worker_thread+0xaa6/0x1290
[  714.217415][T12744]  kthread+0x436/0x520
[  714.221512][T12744]  ret_from_fork+0x1f/0x30
[  714.225953][T12744] 
[  714.228289][T12744] The buggy address belongs to the object at ffff88805ced7a00
[  714.228289][T12744]  which belongs to the cache kmalloc-192 of size 192
[  714.242371][T12744] The buggy address is located 184 bytes inside of
[  714.242371][T12744]  192-byte region [ffff88805ced7a00, ffff88805ced7ac0)
[  714.255666][T12744] The buggy address belongs to the page:
[  714.261316][T12744] page:ffffea000173b5c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88805ced7600 pfn:0x5ced7
[  714.272799][T12744] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[  714.280376][T12744] raw: 00fff00000000200 0000000000000000 0000000100000001 ffff888016c41a00
[  714.288979][T12744] raw: ffff88805ced7600 000000008010000f 00000001ffffffff 0000000000000000
[  714.297566][T12744] page dumped because: kasan: bad access detected
[  714.303992][T12744] page_owner tracks the page as allocated
[  714.309720][T12744] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_HARDWALL), pid 4318, ts 73760951709, free_ts 73750213626
[  714.327011][T12744]  get_page_from_freelist+0x1bbd/0x1ca0
[  714.332581][T12744]  __alloc_pages+0x1ee/0x480
[  714.337188][T12744]  new_slab+0xb6/0x4b0
[  714.341284][T12744]  ___slab_alloc+0x80a/0xdd0
[  714.345890][T12744]  __kmalloc_node+0x200/0x3b0
[  714.350586][T12744]  memcg_alloc_page_obj_cgroups+0x81/0x120
[  714.356417][T12744]  slab_post_alloc_hook+0xba/0x380
[  714.361551][T12744]  kmem_cache_alloc+0x100/0x290
[  714.366417][T12744]  alloc_buffer_head+0x21/0x100
[  714.371281][T12744]  alloc_page_buffers+0x341/0x600
[  714.376326][T12744]  create_empty_buffers+0x3a/0x6d0
[  714.381480][T12744]  create_page_buffers+0x1c4/0x320
[  714.386608][T12744]  __block_write_full_page+0xe8/0x11a0
[  714.392088][T12744]  __writepage+0x63/0x130
[  714.396425][T12744]  write_cache_pages+0x9b7/0x1000
[  714.401481][T12744]  generic_writepages+0x104/0x170
[  714.406522][T12744] page last free stack trace:
[  714.411203][T12744]  free_unref_page_prepare+0x637/0x6c0
[  714.416689][T12744]  free_unref_page_list+0x119/0x820
[  714.421901][T12744]  release_pages+0x186c/0x1be0
[  714.426683][T12744]  tlb_finish_mmu+0x176/0x300
[  714.431381][T12744]  exit_mmap+0x3d0/0x640
[  714.435646][T12744]  __mmput+0x115/0x3b0
[  714.439729][T12744]  exit_mm+0x588/0x6e0
[  714.443812][T12744]  do_exit+0x5a9/0x20c0
[  714.447993][T12744]  do_group_exit+0x12e/0x300
[  714.452608][T12744]  get_signal+0x6ca/0x12c0
[  714.457038][T12744]  arch_do_signal_or_restart+0xe7/0x12c0
[  714.462696][T12744]  exit_to_user_mode_loop+0x9e/0x130
[  714.467989][T12744]  exit_to_user_mode_prepare+0xee/0x180
[  714.473564][T12744]  syscall_exit_to_user_mode+0x16/0x40
[  714.479050][T12744]  do_syscall_64+0x58/0xa0
[  714.483481][T12744]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  714.489398][T12744] 
[  714.491730][T12744] Memory state around the buggy address:
[  714.497370][T12744]  ffff88805ced7980: 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  714.505436][T12744]  ffff88805ced7a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  714.513521][T12744] >ffff88805ced7a80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  714.521592][T12744]                                         ^
[  714.527495][T12744]  ffff88805ced7b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  714.535562][T12744]  ffff88805ced7b80: 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  714.543640][T12744] ==================================================================
[  714.713959][T12744] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  714.721210][T12744] CPU: 0 PID: 12744 Comm: syz.9.2116 Tainted: G    B             syzkaller #0
[  714.730078][T12744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  714.740152][T12744] Call Trace:
[  714.743454][T12744]  <TASK>
[  714.746408][T12744]  dump_stack_lvl+0x188/0x250
[  714.751114][T12744]  ? show_regs_print_info+0x20/0x20
[  714.756349][T12744]  ? load_image+0x400/0x400
[  714.760884][T12744]  panic+0x2e5/0x810
[  714.764799][T12744]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  714.770978][T12744]  ? bpf_jit_dump+0xd0/0xd0
[  714.775536][T12744]  ? _raw_spin_unlock_irqrestore+0x10d/0x120
[  714.781536][T12744]  ? _raw_spin_unlock+0x40/0x40
[  714.786394][T12744]  ? ax25_dev_device_down+0x35e/0x520
[  714.791796][T12744]  check_panic_on_warn+0x80/0xa0
[  714.796758][T12744]  ? ax25_dev_device_down+0x35e/0x520
[  714.802141][T12744]  end_report+0x6d/0xf0
[  714.806318][T12744]  kasan_report+0x102/0x130
[  714.810844][T12744]  ? ax25_dev_device_down+0x35e/0x520
[  714.816248][T12744]  kasan_check_range+0x235/0x290
[  714.821207][T12744]  ax25_dev_device_down+0x35e/0x520
[  714.826439][T12744]  ax25_device_event+0x4b4/0x4f0
[  714.831410][T12744]  raw_notifier_call_chain+0xcb/0x160
[  714.836824][T12744]  __dev_notify_flags+0x158/0x300
[  714.841864][T12744]  ? __dev_change_flags+0x6a0/0x6a0
[  714.847073][T12744]  ? __dev_change_flags+0x4d0/0x6a0
[  714.852284][T12744]  ? dev_get_flags+0x1c0/0x1c0
[  714.857106][T12744]  ? __mutex_lock_common+0x465/0x2400
[  714.862511][T12744]  dev_change_flags+0xe3/0x1a0
[  714.867311][T12744]  dev_ifsioc+0x130/0xd50
[  714.871683][T12744]  ? dev_ioctl+0xe30/0xe30
[  714.876109][T12744]  ? apparmor_capable+0x12c/0x190
[  714.881231][T12744]  ? full_name_hash+0x8e/0xe0
[  714.885928][T12744]  dev_ioctl+0x545/0xe30
[  714.890200][T12744]  ? _copy_from_user+0x111/0x170
[  714.895163][T12744]  sock_do_ioctl+0x245/0x320
[  714.899789][T12744]  ? sock_show_fdinfo+0xb0/0xb0
[  714.904667][T12744]  sock_ioctl+0x4d2/0x710
[  714.909055][T12744]  ? sock_poll+0x410/0x410
[  714.913493][T12744]  ? bpf_lsm_file_ioctl+0x5/0x10
[  714.918456][T12744]  ? security_file_ioctl+0x7c/0xa0
[  714.923589][T12744]  ? sock_poll+0x410/0x410
[  714.928027][T12744]  __se_sys_ioctl+0xfa/0x170
[  714.932644][T12744]  do_syscall_64+0x4c/0xa0
[  714.937095][T12744]  ? clear_bhb_loop+0x30/0x80
[  714.941797][T12744]  ? clear_bhb_loop+0x30/0x80
[  714.946532][T12744]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  714.952439][T12744] RIP: 0033:0x7f0720869819
[  714.956872][T12744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  714.976507][T12744] RSP: 002b:00007f071eaa2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  714.984943][T12744] RAX: ffffffffffffffda RBX: 00007f0720ae3090 RCX: 00007f0720869819
[  714.992930][T12744] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 0000000000000008
[  715.000913][T12744] RBP: 00007f07208ffc91 R08: 0000000000000000 R09: 0000000000000000
[  715.008906][T12744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  715.016887][T12744] R13: 00007f0720ae3128 R14: 00007f0720ae3090 R15: 00007fff6b9e2ea8
[  715.024987][T12744]  </TASK>
[  715.028346][T12744] Kernel Offset: disabled
[  715.032682][T12744] Rebooting in 86400 seconds..