last executing test programs:

20m38.575021104s ago: executing program 32 (id=12):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x4f3, &(0x7f00000005c0)="$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")
futex(0x0, 0x86, 0x0, &(0x7f00000002c0), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x1c3)
getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000300)=0x14)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x2208004, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
bind$bt_hci(r4, &(0x7f0000000340)={0x1f, 0x2, 0x3}, 0x6)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@name={'name', 0x3d, 'erspan0\x00'}}]})
r5 = creat(&(0x7f0000000200)='./file1\x00', 0x12e)
r6 = syz_open_dev$usbfs(&(0x7f0000000300), 0x77, 0x1501)
syz_init_net_socket$nfc_raw(0x27, 0x7, 0x0)
ioctl$USBDEVFS_CONTROL(r6, 0xc0185500, &(0x7f0000000040)={0x2, 0x30, 0x8a49, 0x1, 0x0, 0x6, 0x0})
syz_emit_ethernet(0x82, &(0x7f00000005c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "fc1046", 0x4c, 0x2f, 0x0, @private0, @mcast2, {[@fragment={0x87, 0x0, 0x9, 0x1, 0x0, 0x2, 0x66}], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x8100, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {0x8, 0x88be, 0x2, {{}, 0x1, {0x531}}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x7, 0x20}}}}}}}}}, 0x0)
close(r5)

17m31.725129032s ago: executing program 0 (id=241):
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$setregs(0xf, r3, 0xffffffffffffffff, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f00000005c0)={0x5, 0x4, {0x1ff, @struct={0x8, 0x5}, 0x0, 0x3, 0x401, 0x9, 0x8, 0x5, 0xd, @usage=0x5, 0x6, 0x9, [0x10001, 0x1, 0x8, 0x2, 0x7, 0x200]}, {0x3, @struct={0x8001, 0x24db40}, 0x0, 0x6, 0x1, 0x1000, 0x100000000, 0x8, 0xb, @struct={0xf0, 0x2}, 0x40, 0x1, [0xcc4, 0x8, 0x6, 0x12ccc, 0x2, 0x2]}, {0x4, @struct={0x401, 0x5}, 0x0, 0x100000000, 0x8000000400, 0x10000, 0xffffffffffffffff, 0x1955, 0x23, @usage=0x8, 0x2000002, 0x1, [0x1, 0x3, 0x71, 0xffff, 0x1]}, {0x8, 0xff, 0x80}})
ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, 0x0)
socket$key(0xf, 0x3, 0x2)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x3}, 0x0, 0x0, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
r5 = gettid()
rt_sigqueueinfo(r5, 0x21, &(0x7f0000001500)={0x1c, 0x2, 0x6})
bind$vsock_stream(r4, &(0x7f0000000440), 0x10)
socket$vsock_stream(0x28, 0x1, 0x0)

17m29.615298115s ago: executing program 0 (id=244):
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x3f, 0x30, 0x65, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @local}, @dest_unreach={0x3, 0x5, 0x0, 0x0, 0x1, 0x4, {0x5, 0x4, 0x2, 0x16, 0x7, 0x66, 0x6, 0x3c, 0x4, 0x1dc, @multicast1, @dev={0xac, 0x14, 0x14, 0x24}}}}}}}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$inet(0xa, 0x801, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000040)=@mangle={'mangle\x00', 0x44, 0x6, 0x398, 0x1f0, 0x288, 0x158, 0x0, 0x98, 0x320, 0x320, 0x158, 0x320, 0x320, 0x6, 0x0, {[{{@ip={@broadcast, @dev, 0xff, 0x0, 'pim6reg0\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x158}}, {{@ip={@rand_addr=0x64010100, @local, 0x0, 0x0, 'pim6reg1\x00', 'veth0_virt_wifi\x00', {0xff}, {}, 0x6, 0x3, 0x40}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @multicast2}}}, {{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0xfe, 0x7}}}, {{@ip={@rand_addr, @local, 0x0, 0x0, 'syzkaller0\x00', 'macvlan0\x00', {0xff}, {0xff}, 0x33, 0x3}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0xff, 'ip6tnl0\x00', 'batadv_slave_1\x00', {}, {0xff}}, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x4, 0x4, 0x5}, {0x0, 0x6, 0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f8)

17m28.083993761s ago: executing program 0 (id=251):
pipe2$9p(0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000040)='./file0\x00', 0x1818850, &(0x7f0000001080)=ANY=[@ANYBLOB="73686f72746e656d003d6d697865642c73686f721dc326facd8a423de6ee746e616d653d6c6f77655f6986b466323d302c00"], 0x1, 0x374, &(0x7f0000000600)="$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")
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_pidfd_open(r0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x28, r3, 0x1, 0x0, 0x25dfdbfe, {0x3}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x28}}, 0x40000000)
syz_usb_connect$uac1(0x0, 0x81, &(0x7f00000000c0)=ANY=[@ANYBLOB="12015dbca0bfe370500200000008410e4a4140000102030109026f0003010430070904000000010100000a240102000a00020102090401000001020000090401010101020000090501092000df04020725010c03020009040200000102000009040201010102000008240201fc04fe0707"], &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0})

17m22.018686288s ago: executing program 0 (id=256):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000100)={[{@utf8}, {@gid}, {}, {@iocharset={'iocharset', 0x3d, 'euc-jp'}}, {@errors_remount}, {@namecase}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@time_offset={'time_offset', 0x3d, 0x6}}, {@errors_remount}]}, 0x1, 0x152b, &(0x7f0000000a00)="$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")
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x2014050, 0x0)

17m19.921481394s ago: executing program 0 (id=259):
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(r0, &(0x7f00000021c0)='./file0\x00', 0x40, 0x90)
syz_mount_image$fuse(&(0x7f0000001a00), &(0x7f0000001a40)='./file0\x00', 0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0)

17m16.371795909s ago: executing program 0 (id=263):
mkdir(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000380), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

17m15.709538251s ago: executing program 33 (id=263):
mkdir(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000380), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

16m13.955810312s ago: executing program 1 (id=333):
r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f00000005c0)=&(0x7f0000000580))
r1 = eventfd(0x7fc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

16m13.782353601s ago: executing program 1 (id=334):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x4f3, &(0x7f00000005c0)="$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")
futex(0x0, 0x86, 0x0, &(0x7f00000002c0), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@name={'name', 0x3d, 'erspan0\x00'}}]})

16m5.915681336s ago: executing program 1 (id=344):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
clock_gettime(0x2, &(0x7f0000000040))
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x891b, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x1, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000180)={{0x4, 0x7, 0x97, 0x4}, 'syz1\x00', 0x2b})
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xd, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xff000000}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x6, 0x0, 0xb}, {0x65}}, [@printk={@lld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xc, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x4}}], {{0x7, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

16m4.866136729s ago: executing program 1 (id=348):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x22, 0x1d, {[@main=@item_012={0x2, 0x0, 0xa, "e08b"}, @global=@item_012={0x2, 0x1, 0xa, "41c7"}, @global=@item_012={0x2, 0x1, 0x8, '\t\x00'}, @main=@item_4={0x3, 0x0, 0xb, "c83e0503"}, @local=@item_4={0x3, 0x2, 0x1, "000600"}, @local=@item_4={0x3, 0x2, 0x1, "b9b07ce0"}, @global=@item_4={0x3, 0x1, 0x6, "ec00"}]}}, 0x0}, 0x0)

15m59.688983534s ago: executing program 1 (id=353):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000200)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0x2000000000000308, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1cbb}, 0x94)
capset(&(0x7f0000000000)={0x20071026, r1}, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x550b, &(0x7f00000079c0)="$eJzs3M1rI2UYAPAn/dhv1yIevO3AIrSwiU0/Fr1V3cUP7FJWPXjSNElDdpNMadK09uTBo3jwPxEFTx79Gzx49iYeFG+Ckpmpbv0AoWlj298PJs+8b94887xhWXhmSgK4sOaSX34qxc24GhHTEXEjIjsvFUdmLQ/PRcStiJh64igV839MXIqIaxFxc5Q8z1kq3vrszvD26o9v/vz1t5dnrn/+1XeT2zUwac9HRHc7P9/r5jFt5fFRMV8btrPYXRkWMX+j+7gYp3nca25mGfZqh+tqWVxu5evT7d3+KG51avVRbLW3svntXn7B/rB1mCf7wKPaTjZuNDez2O6nWWwd5HXtH+T/tx30B3meRpHvwyx9DAaHMZ9v7jfz/Ww/zmK9Nyjm87xpo7k/isMiFpeLetppZHVsHueb/n97q93b3U+GzZ1+O+0lq5Xqi5Xq3XJ1J200B82Vcq3buLuSzLc6o2XlQbPWXWulaavTrNTT7kIy36rXy9VqMn+vudmu9ZJqtbJcWSyvLhRnd5LXHrybdBrJ/Ci+0u7tDtqdfrKV7iT5JxaSpcrySwvJ7Wry9vpGsvHw/v31jXfev/feg5fX33i1WPS3spL5pcWlpXJ1sbxUXbhA+/+4KHqM+4djKU26AICzR/8PTMLJ9f87DyNOvv8P/f9YnKn+9/z1/3svREx0/3As+n8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAvr+9kvXs9O5vLx9WL+qWLqmWJcioipiPjtH0zHpSM5p4s8s/+yfvYvNXxTiizD6BqXi+NaRKwVx69Pn/S3AAAAAOfXlx/d+jTv1vOXuUkXxGnKb9pM3fhgTPlKETE798OYsk2NXp4dU7Ls3/dM7I8pW3YD68qYkuW33GbGle0/mT4SrjwRSnmYOtVyAACAU3G0EzjdLgQAAIDT9MmkC2AySnH4KPPwWXD2l/d/PhC8emQEAAAAnEGlSRcAAAAAnLis//f7fwAAAHC+5b//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv7NzP7eJA1EcgJ8NXth/WrTa+7ayNyhjS9jjHiMKSBMUkANpIQ1QA7mlhAgiPA6BiEMkj20l+j7JmYxlfrxBcJgZaQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAu3Vfrxe3V7+u2Obt9O3lGAwAAAFyyrdaL+p9Z6n9t7n9vbv1s+kVElBFxae4+ik9nmaMmp3p5/ub0+epVDXcRdcLhPSbN9SUi/jTX44+uPwUAAAD4uDbL1TzN1tOf2dAF0ae0aFN++5spr4iIavaQKa085P3KFFZ/v8fxP1NavYA1zRSWltzGudLepP65H1ftpidNkZry4suORWYbOwAA0KPRWdPvLAQAAIA+/Ru6AIZRxPNW5nErcJKaZnvv81kPAAAAeIeKoQsAAAAAOlfP/3s6/2/v/D8AAAAYRjr/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgC5tq/Vis1zN2+bs9u3kGQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADyxP+8oEAJhEAZ713cmc//DSoOmpiZVIHz8jcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAm9/95f/E1DiTzL02lp5HkrVTY+vU2Ds3jv4wvn4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMX+vKRACARBFMwZ/zvp+x9WEvQMIkRAw6OKWjQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBFv/vl/8TUOJPMnTaWjkeStavG1lVj70Hj6MF4+zcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMXO/bzGUcUBAP/OzM7WtooxSg4RUfCgF5tua2tv4kEJHvwThJBua+zWH20QW4qYizfJuRfRo4igxFv/h55b6KXeethDBc/KzM5kp23A9dfMNvl84M377jDM+75ZCPnOewkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAtfFb0zgrDguTOK3O3bp/bb3obz/UF25s31kuWhEnbSb9eHih+SFZioij3SUDAADAwZDV9X1E3M13Vos+XSjr/7y+pqj5v31qElf1/Gd1yfpw/V/X/kX75ed7z+0OtDAZp7jpuY3R8PijqfT+rznOu6f/8ope+eTLdy9Z+YWk7249O87L55l8ffPm2/0yPNRGtgDAP3Gs7qug/n2o6AddJgbAgdFrFN51/Z8tdJsTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQBvGW3G0jpOIWO5N48Lt+9fW9+pvbN9Zrtvp69e348vpPYtb5BFxbmM0PN7qbObb5StXL6yNRsNL7QcvRkRXo79ZTf/C+zNcHNHJ8xH8R0Fafdnzks/jEXT4QwkAgH0pr1pR19/Nd1aLc8lixB/fPVj/v9KIY8b6/94Hp281x2rW/4PWZjj/VjYvfrJy+crV1zYurp0fnh9+9PqJwRuDk2dOnTqzUr4rWfHGBAAAgH+nX7Vm/Z8uPrr+f6QRx4z1/6ffDL5ojpWp//c0XfTrOhMAAICD7ZmXfv8t2eN80u/H52ubm5cGk+Pu5xOTYwep/m2Hqtas/7PFrrMCAAAA2jDeSh5Y/z/biGPG9f8nv3/+x+Y9s4g4XK3/H1v/eHS2venMtTb+nLjrOQIAANCtw1Vrrv/n5f7/dHfLQxoRr748iat/AzhT/Z+989UPzbGa+/9PtjfFuZQuTZ5H2S9F9Ja6zggAAID97ImqFcX+r/nO6oc/HXmvb/8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQNv+DAAA///fxzxy")
r4 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
sendfile(r4, r4, 0x0, 0x1)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r6, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
renameat2(r6, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, &(0x7f0000000180)='./file1\x00', 0x4)
renameat2(r5, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, 0x0, 0x2)
syz_usb_disconnect(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x17, &(0x7f00000002c0)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x14}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@printk={@lu, {0x3, 0x3, 0x3, 0x4, 0x9}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffe}}], {{0x7, 0x1, 0x7, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

15m55.758799792s ago: executing program 1 (id=355):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000001c0)='./file0\x00', 0x2048c5, &(0x7f0000000b40)={[{@utf8no}, {@shortname_winnt}, {@uni_xlate}, {@rodir}, {@uni_xlateno}, {@shortname_winnt}, {@fat=@showexec}, {@shortname_mixed}, {@shortname_mixed}, {@shortname_mixed}, {@fat=@dos1xfloppy}, {@shortname_winnt}]}, 0x0, 0x2b5, &(0x7f00000012c0)="$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")
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
clock_getres(0x2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333406, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000004c40)={0x2020}, 0x2020)

15m42.750386999s ago: executing program 3 (id=366):
setresgid(0xffffffffffffffff, 0x0, 0xee00)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140))
bpf$PROG_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xd, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
tgkill(0x0, 0x0, 0x1b)
syz_open_procfs(0x0, 0x0)
memfd_create(0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f00000010c0)='./file1\x00', 0x818c14, &(0x7f00000003c0)={[{@uni_xlate}, {@shortname_win95}, {@rodir}, {@fat=@nocase}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@shortname_mixed}, {@shortname_win95}, {@shortname_mixed}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@utf8no}, {@numtail}, {@utf8no}]}, 0x81, 0x29b, &(0x7f00000015c0)="$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")

15m40.437669236s ago: executing program 34 (id=355):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000001c0)='./file0\x00', 0x2048c5, &(0x7f0000000b40)={[{@utf8no}, {@shortname_winnt}, {@uni_xlate}, {@rodir}, {@uni_xlateno}, {@shortname_winnt}, {@fat=@showexec}, {@shortname_mixed}, {@shortname_mixed}, {@shortname_mixed}, {@fat=@dos1xfloppy}, {@shortname_winnt}]}, 0x0, 0x2b5, &(0x7f00000012c0)="$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")
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
clock_getres(0x2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333406, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000004c40)={0x2020}, 0x2020)

15m37.731491682s ago: executing program 3 (id=373):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xe, 0x4100000000000004, 0x5, 0x2, 0x1000, 0xf1, 0x0, 0x7fffffffffffb, 0x5, 0x3, 0x40000000001, 0x7c6b, 0x3, 0xfffffffffffffffc, 0x100000bde], 0x60000, 0x3c4200})
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0x1, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x23)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x380000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000300)={@dev={0xfe, 0x80, '\x00', 0x2b}}, &(0x7f0000000040)=0x20)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@newqdisc={0x45c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x1, 0x8, 0x2, 0xff, 0x7}, {0x4, 0x0, 0x3, 0xa159, 0x1000, 0x7}, 0x3, 0x6, 0x41e}}, @TCA_TBF_PTAB={0x404, 0x3, [0x4, 0x2, 0x8, 0x1003, 0x0, 0x8ba, 0xa3, 0x4d91, 0x7fffffff, 0x63c4, 0x0, 0x8000, 0x8, 0x255, 0x7, 0xa, 0xd81, 0x0, 0xa, 0xa, 0x7, 0x6, 0x2, 0x200, 0x1, 0x3, 0xb97, 0x7, 0x0, 0xffffffff, 0x200, 0x23, 0x3, 0x7c, 0xfffffffc, 0x5, 0x1, 0x2, 0x8, 0x6, 0x1, 0xd, 0x80, 0xe, 0x80, 0x90000000, 0x3800000, 0x0, 0xfffff30b, 0x0, 0xf5, 0x81, 0x5, 0x80, 0x101, 0x3f, 0xfffffbff, 0x36a5, 0x4, 0x6, 0x200, 0x1ba, 0x9, 0xab, 0x6, 0xfffffff7, 0x7fffffff, 0x0, 0x3, 0x1, 0x963, 0x1ff, 0x2, 0xfffffffd, 0x6, 0x9, 0x0, 0x3, 0x9e, 0xb09, 0x3ff, 0x7, 0x8000, 0x4, 0x8, 0x1000, 0x101, 0x1, 0x4, 0x6, 0x9, 0x3, 0x1, 0x8762, 0x8e, 0x5, 0xfffff76b, 0x0, 0x4, 0x4275c4e9, 0x8, 0x5, 0x800, 0x0, 0x8, 0x5, 0x6cdf13a3, 0x7, 0x3, 0x5, 0x10001, 0xff, 0x80000001, 0xed2, 0x2, 0xfffffffa, 0x2, 0x18d1, 0x0, 0x10000, 0x9486, 0x80, 0x2, 0x7ffffffc, 0xdb, 0x3, 0x83, 0xffff8000, 0x6, 0x5, 0x7, 0x1, 0x2, 0x8, 0x7, 0x0, 0x2, 0x81, 0x3, 0x1, 0x6bf, 0x7, 0x3, 0x4, 0xc1, 0x9, 0x1, 0x5, 0x283, 0xb, 0x4, 0x3d, 0x7, 0x4, 0x7, 0xff, 0x400, 0x8, 0x7fffffff, 0xfffffff8, 0x8, 0xfffffff4, 0x8, 0xc, 0x96, 0x6, 0x4, 0x62cc, 0x2, 0x7, 0x2eb7, 0xfffd, 0xcbf, 0x4010000, 0xf, 0x9, 0xfffffff6, 0x1, 0x8, 0x800, 0x8001, 0xf, 0x5, 0x8, 0x8d, 0xffffffff, 0x8, 0x7, 0x1, 0x61, 0xffffffff, 0x494, 0xb, 0x1, 0x1, 0xd1, 0xd, 0x9, 0x1002, 0xffffffff, 0x6, 0x3, 0xfffffffb, 0xffff, 0x80ff, 0x5, 0xe, 0x401, 0x2, 0x8cc5, 0x8, 0x159, 0xfffffff8, 0x81, 0x382ae49b, 0x9, 0xffffffff, 0xffff, 0x9, 0xfffffffb, 0x6, 0x2, 0x8dc4, 0x20000005, 0x5, 0x9, 0x2, 0xfffff803, 0xfffffffe, 0x5, 0x2, 0x7, 0x200, 0x7f, 0x7, 0x1, 0x0, 0xffffffff, 0xdfed, 0xb, 0x77, 0x105, 0xff, 0xb331, 0x9, 0x6, 0x9, 0x7, 0x7, 0x400, 0xffffffff, 0x1, 0x800, 0x6000, 0xfe000000, 0x7]}]}}]}, 0x45c}}, 0x0)

15m30.60613141s ago: executing program 3 (id=379):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x2, &(0x7f0000000040))
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x891b, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x200000000000000)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x20000023896)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000180)={{0x4, 0x7, 0x97, 0x4}, 'syz1\x00', 0x2b})
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xd, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xff000000}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x6, 0x0, 0xb}, {0x65}}, [@printk={@lld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xc, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x4}}], {{0x7, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

15m29.708624499s ago: executing program 3 (id=380):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd27, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x8c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0xffff}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x4, [0xc, 0x5, 0xd, 0x8b, 0xd, 0x2, 0x4, 0x2, 0xf, 0x6, 0x3, 0x7, 0x8, 0x4, 0x10, 0x4], 0x3, [0xb, 0x3, 0xad1e, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x2, 0xb, 0x3, 0x5, 0x6, 0xe, 0x100], [0xfff1, 0x5, 0xffff, 0xfff5, 0x4, 0x8, 0x1, 0x9, 0x5, 0x2, 0xc, 0x4, 0xfffc, 0x3, 0x1]}}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=@newqdisc={0x8c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffe00, {0x0, 0x0, 0x0, r5, {0x6}, {0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xe, [0xc, 0x5, 0x0, 0xf, 0x10, 0x2, 0x4, 0xe, 0xf, 0x6, 0x6, 0x1, 0x8, 0x4, 0x10, 0x4], 0x3, [0xb, 0x5, 0x7fff, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x8000, 0xb, 0x3, 0x5, 0x6, 0xd, 0x101], [0x2, 0x5, 0x2, 0xfff5, 0x4, 0x8, 0x7, 0x9, 0x5, 0x2, 0xc, 0x40, 0xfffc, 0x3, 0x1, 0x1]}}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
close(0x3)

15m28.294008487s ago: executing program 3 (id=384):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x4, [@restrict, @datasec={0x2, 0x1, 0x0, 0xf, 0x2, [{0x4, 0x0, 0x7fff}], "25ff"}, @datasec={0x0, 0x0, 0x0, 0xf, 0x2, [], "b8b3"}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x50, 0x0, 0x1}, 0x28)
syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x800700, &(0x7f00000000c0)={[{@data_err_ignore}, {@dioread_nolock}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@prjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x3}}]}, 0x1, 0x47a, &(0x7f00000006c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x2010410, &(0x7f00000002c0)=ANY=[], 0x1, 0x214, &(0x7f0000000840)="$eJzs3D1rW1cYB/AjWa6tlhZPhXbpoV3a5bb10qVDS3GhVNCSRCEv0zWWEyFFAl8NksmgOVM+RwhkCWQL+QL+DFmymYDx5Ck3OJKs2NixE0dy4vx+ix6e/z1X5+jARVy9bP5+91ZjNUtW004ozRdC8Y/QDzuFsBCKYaQffnpwZfvOxavX/v2zUlm6MDvsx/jVd4+v377//ZPOF5cf7nYKIYStxWcbX298s/ni0s16FutZbLU7MY3L7XYnXW7W4ko9ayQx/t+spVkt1ltZbW1fvtpsj5861LIspq1ebNR6sdOOnbVeTG+k9VZMkiTOB06lem8nz8NWnuf5XD/kef62JyhMZl5Myyn3n4/c3kU97l5Nn/e71W518DjI//6nsvRLfGVhPGq7263O7OW/DvK4P58Nnw/zxUPzz8KPPwzy3eyv/yoH8nJYmfzyAQAAAADgXErinkPv7yfJUfmgeu3zgQP370vh29K4MzP5pQAAAABHyHrrjbS5Mrs2KJq1Myvmwv7Ob4+GUzxu+M9Pjz9mQsWXwyK843nKIYSjjymGM9+U6RSj75EPO6PfF5xseOl9TaP8gbwao2I+HBaVw3pjbjqbAgAAnC/jN/0nHlKc6IQAAAAAAAAAAAAAAAAAAADgEzSNPzM76zUCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALzJywAAAP//ixdW4w==")

15m25.719120437s ago: executing program 3 (id=386):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xe, 0x4100000000000004, 0x5, 0x2, 0x1000, 0xf1, 0x0, 0x7fffffffffffb, 0x5, 0x3, 0x40000000001, 0x7c6b, 0x3, 0xfffffffffffffffc, 0x100000bde], 0x60000, 0x3c4200})
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0x1, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x23)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x380000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000300)={@dev={0xfe, 0x80, '\x00', 0x2b}}, &(0x7f0000000040)=0x20)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@newqdisc={0x45c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x1, 0x8, 0x2, 0xff, 0x7}, {0x4, 0x0, 0x3, 0xa159, 0x1000, 0x7}, 0x3, 0x6, 0x41e}}, @TCA_TBF_PTAB={0x404, 0x3, [0x4, 0x2, 0x8, 0x1003, 0x0, 0x8ba, 0xa3, 0x4d91, 0x7fffffff, 0x63c4, 0x0, 0x8000, 0x8, 0x255, 0x7, 0xa, 0xd81, 0x0, 0xa, 0xa, 0x7, 0x6, 0x2, 0x200, 0x1, 0x3, 0xb97, 0x7, 0x0, 0xffffffff, 0x200, 0x23, 0x3, 0x7c, 0xfffffffc, 0x5, 0x1, 0x2, 0x8, 0x6, 0x1, 0xd, 0x80, 0xe, 0x80, 0x90000000, 0x3800000, 0x0, 0xfffff30b, 0x0, 0xf5, 0x81, 0x5, 0x80, 0x101, 0x3f, 0xfffffbff, 0x36a5, 0x4, 0x6, 0x200, 0x1ba, 0x9, 0xab, 0x6, 0xfffffff7, 0x7fffffff, 0x0, 0x3, 0x1, 0x963, 0x1ff, 0x2, 0xfffffffd, 0x6, 0x9, 0x0, 0x3, 0x9e, 0xb09, 0x3ff, 0x7, 0x8000, 0x4, 0x8, 0x1000, 0x101, 0x1, 0x4, 0x6, 0x9, 0x3, 0x1, 0x8762, 0x8e, 0x5, 0xfffff76b, 0x0, 0x4, 0x4275c4e9, 0x8, 0x5, 0x800, 0x0, 0x8, 0x5, 0x6cdf13a3, 0x7, 0x3, 0x5, 0x10001, 0xff, 0x80000001, 0xed2, 0x2, 0xfffffffa, 0x2, 0x18d1, 0x0, 0x10000, 0x9486, 0x80, 0x2, 0x7ffffffc, 0xdb, 0x3, 0x83, 0xffff8000, 0x6, 0x5, 0x7, 0x1, 0x2, 0x8, 0x7, 0x0, 0x2, 0x81, 0x3, 0x1, 0x6bf, 0x7, 0x3, 0x4, 0xc1, 0x9, 0x1, 0x5, 0x283, 0xb, 0x4, 0x3d, 0x7, 0x4, 0x7, 0xff, 0x400, 0x8, 0x7fffffff, 0xfffffff8, 0x8, 0xfffffff4, 0x8, 0xc, 0x96, 0x6, 0x4, 0x62cc, 0x2, 0x7, 0x2eb7, 0xfffd, 0xcbf, 0x4010000, 0xf, 0x9, 0xfffffff6, 0x1, 0x8, 0x800, 0x8001, 0xf, 0x5, 0x8, 0x8d, 0xffffffff, 0x8, 0x7, 0x1, 0x61, 0xffffffff, 0x494, 0xb, 0x1, 0x1, 0xd1, 0xd, 0x9, 0x1002, 0xffffffff, 0x6, 0x3, 0xfffffffb, 0xffff, 0x80ff, 0x5, 0xe, 0x401, 0x2, 0x8cc5, 0x8, 0x159, 0xfffffff8, 0x81, 0x382ae49b, 0x9, 0xffffffff, 0xffff, 0x9, 0xfffffffb, 0x6, 0x2, 0x8dc4, 0x20000005, 0x5, 0x9, 0x2, 0xfffff803, 0xfffffffe, 0x5, 0x2, 0x7, 0x200, 0x7f, 0x7, 0x1, 0x0, 0xffffffff, 0xdfed, 0xb, 0x77, 0x105, 0xff, 0xb331, 0x9, 0x6, 0x9, 0x7, 0x7, 0x400, 0xffffffff, 0x1, 0x800, 0x6000, 0xfe000000, 0x7]}]}}]}, 0x45c}}, 0x0)

15m9.527634805s ago: executing program 35 (id=386):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xe, 0x4100000000000004, 0x5, 0x2, 0x1000, 0xf1, 0x0, 0x7fffffffffffb, 0x5, 0x3, 0x40000000001, 0x7c6b, 0x3, 0xfffffffffffffffc, 0x100000bde], 0x60000, 0x3c4200})
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0x1, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x23)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x380000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000300)={@dev={0xfe, 0x80, '\x00', 0x2b}}, &(0x7f0000000040)=0x20)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@newqdisc={0x45c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x1, 0x8, 0x2, 0xff, 0x7}, {0x4, 0x0, 0x3, 0xa159, 0x1000, 0x7}, 0x3, 0x6, 0x41e}}, @TCA_TBF_PTAB={0x404, 0x3, [0x4, 0x2, 0x8, 0x1003, 0x0, 0x8ba, 0xa3, 0x4d91, 0x7fffffff, 0x63c4, 0x0, 0x8000, 0x8, 0x255, 0x7, 0xa, 0xd81, 0x0, 0xa, 0xa, 0x7, 0x6, 0x2, 0x200, 0x1, 0x3, 0xb97, 0x7, 0x0, 0xffffffff, 0x200, 0x23, 0x3, 0x7c, 0xfffffffc, 0x5, 0x1, 0x2, 0x8, 0x6, 0x1, 0xd, 0x80, 0xe, 0x80, 0x90000000, 0x3800000, 0x0, 0xfffff30b, 0x0, 0xf5, 0x81, 0x5, 0x80, 0x101, 0x3f, 0xfffffbff, 0x36a5, 0x4, 0x6, 0x200, 0x1ba, 0x9, 0xab, 0x6, 0xfffffff7, 0x7fffffff, 0x0, 0x3, 0x1, 0x963, 0x1ff, 0x2, 0xfffffffd, 0x6, 0x9, 0x0, 0x3, 0x9e, 0xb09, 0x3ff, 0x7, 0x8000, 0x4, 0x8, 0x1000, 0x101, 0x1, 0x4, 0x6, 0x9, 0x3, 0x1, 0x8762, 0x8e, 0x5, 0xfffff76b, 0x0, 0x4, 0x4275c4e9, 0x8, 0x5, 0x800, 0x0, 0x8, 0x5, 0x6cdf13a3, 0x7, 0x3, 0x5, 0x10001, 0xff, 0x80000001, 0xed2, 0x2, 0xfffffffa, 0x2, 0x18d1, 0x0, 0x10000, 0x9486, 0x80, 0x2, 0x7ffffffc, 0xdb, 0x3, 0x83, 0xffff8000, 0x6, 0x5, 0x7, 0x1, 0x2, 0x8, 0x7, 0x0, 0x2, 0x81, 0x3, 0x1, 0x6bf, 0x7, 0x3, 0x4, 0xc1, 0x9, 0x1, 0x5, 0x283, 0xb, 0x4, 0x3d, 0x7, 0x4, 0x7, 0xff, 0x400, 0x8, 0x7fffffff, 0xfffffff8, 0x8, 0xfffffff4, 0x8, 0xc, 0x96, 0x6, 0x4, 0x62cc, 0x2, 0x7, 0x2eb7, 0xfffd, 0xcbf, 0x4010000, 0xf, 0x9, 0xfffffff6, 0x1, 0x8, 0x800, 0x8001, 0xf, 0x5, 0x8, 0x8d, 0xffffffff, 0x8, 0x7, 0x1, 0x61, 0xffffffff, 0x494, 0xb, 0x1, 0x1, 0xd1, 0xd, 0x9, 0x1002, 0xffffffff, 0x6, 0x3, 0xfffffffb, 0xffff, 0x80ff, 0x5, 0xe, 0x401, 0x2, 0x8cc5, 0x8, 0x159, 0xfffffff8, 0x81, 0x382ae49b, 0x9, 0xffffffff, 0xffff, 0x9, 0xfffffffb, 0x6, 0x2, 0x8dc4, 0x20000005, 0x5, 0x9, 0x2, 0xfffff803, 0xfffffffe, 0x5, 0x2, 0x7, 0x200, 0x7f, 0x7, 0x1, 0x0, 0xffffffff, 0xdfed, 0xb, 0x77, 0x105, 0xff, 0xb331, 0x9, 0x6, 0x9, 0x7, 0x7, 0x400, 0xffffffff, 0x1, 0x800, 0x6000, 0xfe000000, 0x7]}]}}]}, 0x45c}}, 0x0)

14m32.77011791s ago: executing program 4 (id=455):
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r1, 0x400c4807, &(0x7f0000000100)={0x4, 0x1, 0x8})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000300)={&(0x7f0000681000/0x1000)=nil, &(0x7f0000a32000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000a6c000/0x1000)=nil, &(0x7f0000b59000/0x1000)=nil, &(0x7f000052d000/0x3000)=nil, &(0x7f0000238000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00007d8000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000eaa000/0x4000)=nil, 0x0}, 0x68)
r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x1, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@cgroup=r3, 0x2, 0x1, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x39000, 0x0)
write$P9_RLERRORu(r6, &(0x7f0000000640)=ANY=[@ANYRES16=0x0], 0xd)
write$binfmt_elf64(r5, &(0x7f0000000000)=ANY=[], 0xfffffe3e)

14m27.846289471s ago: executing program 4 (id=462):
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x3f, 0x30, 0x65, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @local}, @dest_unreach={0x3, 0x5, 0x0, 0x0, 0x1, 0x4, {0x5, 0x4, 0x2, 0x16, 0x7, 0x66, 0x6, 0x3c, 0x4, 0x1dc, @multicast1, @dev={0xac, 0x14, 0x14, 0x24}}}}}}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$inet(0xa, 0x801, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000040)=@mangle={'mangle\x00', 0x44, 0x6, 0x398, 0x1f0, 0x288, 0x158, 0x0, 0x98, 0x320, 0x320, 0x158, 0x320, 0x320, 0x6, 0x0, {[{{@ip={@broadcast, @dev, 0xff, 0x0, 'pim6reg0\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x158}}, {{@ip={@rand_addr=0x64010100, @local, 0x0, 0x0, 'pim6reg1\x00', 'veth0_virt_wifi\x00', {0xff}, {}, 0x6, 0x3, 0x40}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @multicast2}}}, {{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0xfe, 0x7}}}, {{@ip={@rand_addr, @local, 0x0, 0x0, 'syzkaller0\x00', 'macvlan0\x00', {0xff}, {0xff}, 0x33, 0x3}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0xff, 'ip6tnl0\x00', 'batadv_slave_1\x00', {}, {0xff}}, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x4, 0x4, 0x5}, {0x0, 0x6, 0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f8)

14m17.882962941s ago: executing program 4 (id=470):
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socket(0x10, 0x803, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
truncate(&(0x7f0000000940)='./file1\x00', 0x2fffffd)

14m16.631943138s ago: executing program 4 (id=471):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4, &(0x7f00000022c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRES32], 0x2, 0xc36, &(0x7f0000002540)="$eJzs3U9sHNd9B/DfGy3FldxWTOwoThoXm7ZIZcVy9S+mYhXuqqbZBpBlIRRzC8AVSakLUyRBUo1spAXTSw89BCiKHnIi0BoFUjQwmiLokWldILn4UOTUE9HCRlD0wBYBcgoYzOxbcUmRNi2SEmV9Pjb13Z19b/a9eeMZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxB+8cun0mfSwWwEAPEhXRr56+qz7PwA8Vq75/38AAAAAAAAAAAAAADjoUhTxZKSYvbKaxqr3HfXL7b7bd0aHhreudiRVNQ9V5cuf+pmz585/6YXBC9283J7+gPp77bPx2si1S42XZ27Nzk3Oz09ONEan2+MzE5M73sNu6292sjoAjVuv3564cWO+cfb5cxs+vjPwfv8TxwcuDj576plu2dGh4eGR9SL13vK1+25Ix3YzPA5HEacixXPf+2lqRUQRuz8W9Qc79psdqTpxsurE6NBw1ZGpdmt6ofzwavdAFBGNnkrN7jHaeiyi1vdA+7C9ZsRi2fyywSfL7o3MtuZa16cmG1dbcwvthfbM9NXUaW3Zn0YUcSFFLEXESv+9u+uLImqR4jvHVtP1iDjUPQ5frCYGb9+OYh/7uANlOxt9EUvFIzBmB1h/FPFqpPjZOydiPF9nqmvNFyJeLfMHEW+V+VJEKk+M8xHvbXEe8WiqRRF/WY7/xdU0UV0PuteVy19rfGX6xkxP2e515SPeH+65Ujyk+8ORTflgHPBrUz2KaFVX/NV0/7/ZAQAAAAAAAAAAAAAAAGCvHYkiPhMpXvmPP6nmFUc1L/3YxcE/HPjV3jnjT3/Ifsqyz0fEYrGzObmH88TAq+lqSg95LvHjrB5F/Gme//eth90YAAAAAAAAAAAAAAAAAACAx1oRP4kUL757Ii1F75ri7embjWut61OdVWG7a/9210xfW1tba6RONnOO5VzMuZRzOedKzihy/ZzNnGM5F3Mu5VzOuZIzDuX6OZs5x3Iu5lzKuZxzJWfUcv2czZxjORfLrK93dDlvX8kZB2TtXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAj5MiivhFpPj2N1ZTpIhoRoxFJ5f7H3brAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBSfyri+5Gi8UfNu9tqEZGqfztOlL+cj+bhMj8ZzcEyX4rmpZytKmvNbz2E9rM7famIH0eK/vrbdwc8j39f593d0yDe+ub6u8/WOnmo++HA+/1PHD92cXD4N57e7nXaqgEnL7enb99pjA4ND4/0bK7lb/9kz7aB/L3F3nSdiJh/483XW1NTk3P3/6I8BXZR/RF6kWqPS08f1ovFvTgh9+5F1A5EMx5O33kMlPf/9yLF7777n90bfuf+X49f6by7e4ePn//Z+v3/xc072uH9v7a5Xr7/l/f0re7/T/ZsezH/bqSvFlFfuDXbdzyiPv/Gm6fat1o3J29OTp8/ffrLg4NfPne673BE/UZ7arLn1Z4cLgAAAAAAAAAAAAAAAIAHJxXx+5Gi9ePV1IiIO9V8rYGLg8+eeuZQHKrmW22Yt/3ayLVLjZdnbs3OTc7PT040Rqfb4zMTkzv9uno13Wt0aHhfOvOhjuxz+4/UX56ZfWOuffOPF7b8/Gj90vX5hbnW+NYfx5EoIpq9W05WDR4dGq4aPdVuTVdVr245mf6j60tF/FekGD/fSJ/P2/L8/80z/DfM/1/cvKN9mv//iZ5t5XemVMTPI8Xv/NXT8fmqnUfjnmOWy/1dpDh54XO5XBwuy3Xb0HmuQGdmYFn2/yLFP/1iY9nufMgn18ue2fGBfUSU438sUnz/L74bv5m3bXz+w9bjf3TzjvZp/J/q2XZ0w/MKdt118vifihQvPfl2/Fbe9kHP/+g+e+NELnz3+Rz7NP6f6tk2kL/3t/em6wAAAAAAAAAAAI+0vlTE30eKHw7X0gt5207+/t/E5h3t09//+nTPtom9Wa/oQ1/s+qACAAAAwAHRl4r4SaS4ufD23TnUG+d/98z//L31+Z9DadOn1Z/z/Vr13IC9/PO/XgP5e8d2320AAAAAAAAAAAAAAAAAAAA4UFIq4oW8nvpYNZ9/Ytv11JcjxSv/81wul46X5brrwA9Uv9avzEyfujQ1NTPeWmhdn5psjMy2xifLuk9FitW//VyuW1Trq3fXm++s8b6+FvtcpBj+h27Zzlrs3bXJn1ove6Ys+4lI8d//uLFsdx3rT62XPVuW/ZtI8fV/2brs8fWy58qy340UP/p6o1v2aFm2+3zUT6+XfX58ptiHUQEAAAAAAAAAAAAAAAAAAOBx05eK+PNI8b+3lu7O5c/r//f1vK289c2e9f43uVOt8z9Qrf+/3ev7Wf+/eq7A4nbfCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH08pingzUsxeWU3L/eX7jvrl9vTtO6NDw1tXO5Kqmoeq8uVP/czZc+e/9MLghW5+cP299pl4beTapcbLM7dm5ybn5ycnGqPT7fGZickd72G39Tc7WR2Axq3Xb0/cuDHfOPv8uQ0f3xl4v/+J4wMXB5899Uy37OjQ8PBIT5la331/+z3SNtsPRxF/HSme+95P0w/7I4rY/bH4kHNnvx2pOnGy6sTo0HDVkal2a3qh/PBq90AUEY2eSs3uMXoAY7ErzYjFsvllg0+W3RuZbc21rk9NNq625hbaC+2Z6aup09qyP40o4kKKWIqIlf57d9cXRbweKb5zbDX9a3/Eoe5x+OKVka+ePrt9O4p97OMOlO1s9EUsFY/AmB1g/VHEP0eKn71zIv6tP6IWnZ/4QsSrZf4g4q3ojHcqT4zzEe9tcR7xaKpFEf9fjv/F1fROf3k96F5XLn+t8ZXpGzM9ZbvXlUf+/vAgHfBrUz2K+FF1xV9N/+6/awAAAAAAAAAAAAAAAIADpIhfjxQvvnsiVfOD784pbk/fbFxrXZ/qTOvrzv3rzpleW1tba6RONnOO5VzMuZRzOedKzihy/ZzNMutra2P5/WLOpZzLOVdyxqFcP2cz51jOxZxLOZdzruSMWq6fs5lzLOdizqWcyzlXcsYBmbsHAAAAAAAAAAAAAAAAAAB8vBTVPym+/Y3VtNbfWV96LDq5bD3Qj71fBgAA//8dq/O8")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

14m16.006087666s ago: executing program 4 (id=473):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a42, 0x0)
fanotify_init(0x4, 0x1800)
ftruncate(r0, 0x6000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x4000)
openat$vimc1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x40400, 0x8)
fcntl$notify(r1, 0x402, 0x8000003b)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

14m9.078323388s ago: executing program 4 (id=482):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x169080, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/partitions\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x20000023896)

14m6.353613992s ago: executing program 36 (id=482):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x169080, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/partitions\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x20000023896)

12m58.668301163s ago: executing program 6 (id=613):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0x2000000000000308, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1cbb}, 0x94)
capset(&(0x7f0000000000)={0x20071026, r1}, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x550b, &(0x7f00000079c0)="$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")
r4 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
sendfile(r4, r4, 0x0, 0x1)
creat(&(0x7f0000000340)='./file0\x00', 0x28)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r6, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
renameat2(r6, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, &(0x7f0000000180)='./file1\x00', 0x4)
renameat2(r5, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, 0x0, 0x2)
syz_usb_disconnect(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x17, &(0x7f00000002c0)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x14}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@printk={@lu, {0x3, 0x3, 0x3, 0x4, 0x9}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffe}}], {{0x7, 0x1, 0x7, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

12m55.34689532s ago: executing program 6 (id=616):
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$igmp(0x2, 0x3, 0x2)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi0\x00', 0x109000, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket(0x10, 0x3, 0x0)
syz_open_dev$sg(&(0x7f0000007700), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$key(0xf, 0x3, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000140), 0x129202, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB], 0x50)
syz_io_uring_setup(0x3dec, &(0x7f0000000340)={0x0, 0x3019, 0x400, 0x2, 0x3b9}, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r1], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0), 0x0, 0x1})

12m54.041464367s ago: executing program 6 (id=621):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0x2000000000000308, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1cbb}, 0x94)
capset(&(0x7f0000000000)={0x20071026, r0}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

12m51.365179509s ago: executing program 6 (id=625):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="043e1f0a00c9000201"], 0x22)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

12m50.619958766s ago: executing program 6 (id=627):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0x2000000000000308, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1cbb}, 0x94)
capset(&(0x7f0000000000)={0x20071026, r1}, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x550b, &(0x7f00000079c0)="$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")
r4 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
sendfile(r4, r4, 0x0, 0x1)
creat(&(0x7f0000000340)='./file0\x00', 0x28)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r6, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
renameat2(r6, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, &(0x7f0000000180)='./file1\x00', 0x4)
renameat2(r5, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, 0x0, 0x2)
syz_usb_disconnect(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x17, &(0x7f00000002c0)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x14}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@printk={@lu, {0x3, 0x3, 0x3, 0x4, 0x9}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffe}}], {{0x7, 0x1, 0x7, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

12m47.322141277s ago: executing program 6 (id=631):
setresgid(0xffffffffffffffff, 0x0, 0xee00)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
tgkill(0x0, 0x0, 0x1b)
syz_open_procfs(0x0, 0x0)
memfd_create(0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f00000010c0)='./file1\x00', 0x818c14, &(0x7f00000003c0)={[{@uni_xlate}, {@shortname_win95}, {@rodir}, {@fat=@nocase}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@shortname_mixed}, {@shortname_win95}, {@shortname_mixed}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@utf8no}, {@numtail}, {@utf8no}]}, 0x81, 0x29b, &(0x7f00000015c0)="$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")

12m31.341208223s ago: executing program 37 (id=631):
setresgid(0xffffffffffffffff, 0x0, 0xee00)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
tgkill(0x0, 0x0, 0x1b)
syz_open_procfs(0x0, 0x0)
memfd_create(0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f00000010c0)='./file1\x00', 0x818c14, &(0x7f00000003c0)={[{@uni_xlate}, {@shortname_win95}, {@rodir}, {@fat=@nocase}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@shortname_mixed}, {@shortname_win95}, {@shortname_mixed}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@utf8no}, {@numtail}, {@utf8no}]}, 0x81, 0x29b, &(0x7f00000015c0)="$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")

1m35.656856357s ago: executing program 5 (id=3066):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x2, [@func_proto={0x0, 0x4, 0x0, 0xd, 0x0, [{0x10, 0x1}, {0xa, 0x1}, {0x1, 0x5}, {0xa, 0x1}]}]}}, 0x0, 0x46, 0x0, 0x1}, 0x28)

1m35.597277877s ago: executing program 5 (id=3068):
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001000010000000000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r4, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000100004006c6f616462616c616e6365"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)

1m35.345215492s ago: executing program 5 (id=3070):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0xa8}]}, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r0, 0x0, 0x0}, 0x10)

1m35.231465831s ago: executing program 5 (id=3071):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000000c0)={[{@grpquota}, {@nogrpid}, {@quota}, {@nobh}]}, 0xff, 0x511, &(0x7f0000000ac0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x80)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
quotactl_fd$Q_GETFMT(r0, 0xffffffff80000400, 0x0, &(0x7f0000000180))

1m34.626268923s ago: executing program 5 (id=3072):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000106a053103000000000001090224000100008000090400101c0300010009210000000122f80409058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000600)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x20, 0x1, 0x5e, "de0f76e893e8580bd3626b8730698eadef2ba35b627b39603324225b29a47eedbda2cf3115c5dff9eef8d2863fefe5d3de96b2d975113837fb89f764afcb0508a592598ebe99352153b52731155637da632de23f825dbbaf28e04ab62751"}, 0x0})
syz_usb_connect$cdc_ecm(0x2, 0x0, 0x0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x2, &(0x7f0000000380)=@string={0x2}}]})
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

1m33.894279092s ago: executing program 5 (id=3076):
openat$rtc(0xffffff9c, &(0x7f0000000040), 0xa200, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000e2793b10d105012000100102030109021200"], 0x0)
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
pipe(&(0x7f0000000040))
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x48, &(0x7f0000000440)='B'})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f00000004c0)={@fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r3}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})

1m33.390434411s ago: executing program 38 (id=3076):
openat$rtc(0xffffff9c, &(0x7f0000000040), 0xa200, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000e2793b10d105012000100102030109021200"], 0x0)
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
pipe(&(0x7f0000000040))
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x48, &(0x7f0000000440)='B'})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f00000004c0)={@fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r3}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})

3.372703894s ago: executing program 9 (id=3479):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000106a053103000000000001090224000100008000090400101c0300010009210000000122f80409058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000600)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x20, 0x1, 0x5e, "de0f76e893e8580bd3626b8730698eadef2ba35b627b39603324225b29a47eedbda2cf3115c5dff9eef8d2863fefe5d3de96b2d975113837fb89f764afcb0508a592598ebe99352153b52731155637da632de23f825dbbaf28e04ab62751"}, 0x0})
syz_usb_connect$cdc_ecm(0x2, 0x0, 0x0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x18, &(0x7f0000000380)=@string={0x18, 0x3, "bce94c85161ebdb58e44e2558e0212841859b689d626"}}]})
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0)

1.974712834s ago: executing program 7 (id=3493):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x7}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x78}, 0x1, 0x0, 0x0, 0x24000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000000d0a010300000000000000000a0000010900020073797a31000000000900010073797a31"], 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)

1.704079975s ago: executing program 8 (id=3494):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r0, 0x1)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}, 0x5}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, 0x0}}], 0x1, 0x20080058)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
listen(0xffffffffffffffff, 0x0)
listen(0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f6400947e570028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r1)

1.67315324s ago: executing program 2 (id=3495):
r0 = userfaultfd(0x80001)
fgetxattr(r0, &(0x7f0000001140)=@random={'user.', '&(\x00'}, 0x0, 0x0)

1.654730837s ago: executing program 7 (id=3496):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = socket$inet(0x2, 0x2, 0x1)
getsockopt$bt_hci(r0, 0x0, 0x3, 0x0, &(0x7f0000000240))

1.439520538s ago: executing program 8 (id=3497):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b0000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f00000000c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000200)={0x0, 0x93, "b18c4156eacc0a68c617cf9c3997d26c0ba27ce3808be410a633094b4d98c91ee61f65006989dacb6e56a40204e00fc3ba64fd8e991a79620d7d282963bb72e0ca3056462f2b9ce98ca6f0a400000a016f3f04260cfc5fcc262dc342c6f919722d452cbdcbdde3821b218cfdea0328b2beb85e89313de0b008fc4fd4db0a43cad079f5a25ce81a26562c86ca588318f49ce747"}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000005c0))
socket(0x2, 0x80805, 0x0)
socket$inet(0x2, 0x80001, 0x84)
socket$inet(0x2, 0x3, 0x30)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet6(0xa, 0x80002, 0x0)
socket$netlink(0x10, 0x3, 0x6)
socket$netlink(0x10, 0x3, 0x0)
socket$inet_icmp(0x2, 0x2, 0x1)
socket$inet6(0xa, 0x5, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000200fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x80)

1.346390411s ago: executing program 2 (id=3498):
r0 = fsopen(&(0x7f0000000180)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x6, 0x7fff8000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

1.23035576s ago: executing program 8 (id=3499):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adffa87d2255f674412d020000000000005ab527ee3697f1ec4436dd1164aa93cc5800075557165397000a63f6b9b3f427f6ba6b34f98125f30e697fffffffffffffffa30b273683626e0003254d570dca6b78ad833488cfe4109eaf009edd3e69613d3cd6aaa300006eee8501000000520a0000151d010000000100bf00000000cc587424363dc6ad7f3bbd424c6e6cafbe9309aba218a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e470a000517ebc406e89dcbb7677e6528b0856e31ed9474ac24cf609068f645ce971fc0480737a55ebb0bd701f7ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bed759ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56d06c759da324a39f7f51b870b2851c3f0a1aab71587a21c8f1b3369ebfcba105a6ccdd01b0f04edb256c604f068773f6ff000000000000006ffbfe5ca32142b0195531458b7d1e341c6f864f983d745f5865aad41d2915aae7602a2d6cd415e8351ebc4223f54d6bec664709ff03f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121ad6eb372713255012e028cb2654d493a0b4b35faae176c89b745eda2967199cc936859a537e8e4871d4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0cff28235a3cbb5d33b09bc30cf2880c586272c3f4d79bc36305745cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec66ea6c718bbd1aa59114000f0be4c6f8df084c5e9734ae30aa9afdc719bf01ab03a9b1074407136b4506000f0916a39d3057d50183612b39e73aeeb6eaf14652dda68e98ef938e6515a94a71836469e2051d9b7eb85f3f2d5ae2c51944da8d7391d6d6b97419a3b7660df4c5124ca425d374b371867a79b31c6617fc3327191fbf514573f0e30d1d60be2168fe6c2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257b84000000b749ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c786eeca22debc99335583b54c13c3130978fa069af8223b38ced735c2d905f51ca85ffa4add5647489b3960127696cf2f16625c0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c5341877386ec55d7dc958fd235d6071619a65d4b82d9c162f3556076b80550d961ca74f1ffdaccf0ea5f02e0fca8b27ff3983ab74fd3d560700a1fbb44e77e312b3b129e000302d613916c9bcf9f0000fac73adb6bfb27f88dba816020be760f7b45e001efada800000000000000fdaf4660402f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6542e597300eb82a184c96ffde5a30e5433d86666cb045bdd02c804c22ff2635c7bfbf5c0d586cda5e1e88a4d41dee7cc74f822278d124638fec58faeb48afe324369cc51204158bb440df2a694f4cdcaa4f65c22f000000000000000000000000000d503d79906958102000000000000000000001ffff0ef89b2a635edb2dd163e863315e84498dfb52b7f54da6398cbedaa42cc17c4563c859656a357770289a61faa95a82bf1cfb7f2fd7252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b226900110635376413c29f7c6f7b7e29b9f4bddd5e328661f4046e01f7d7dc22174e5e627a6f608ad53a4168d4d8f7fbc71104512efe8e5d7d934aa289b4db2b870000000000000000000000000000000000000000009b777883a0f9cf4ad155110cd3ace2b322ac31bfa27847dc99c8a69a1ea5b98e525e6393ad7fd9795170e7b11e4fa990b9386910a6a1a66a70eaff01247603c2ff49d3979676bffb3049166ab84a0f061991bd57c2566c10c282352a5105b6164e3f2491e4793e590dcc71de10da96fdff40dd44a2c9882d3aa0f8a797b8fea6efcfb5046b7679f15559cdaa977504c40b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22ade17556abb722d9c085b189b5fd1f30e8dc813f60400fde1f88d830b11002135e8e7262f299ed7923bfbe00ad88be179e56b41ff3792cee2fc37eee739c3e3af923e8738d93d583a9cf00b946960fc38cf85aae7cf708f9a9d166f2e352a06d99b8be476d1cc2a53a859ae4fdab2a987925d12422474ac044ffe9fe2bf9bf9bbdf36c4ca89c516647542ac45545337829fa7039d155ebda42d4c14f4ca7f8b5d5842658c62d0a03092b94fa1b19f190000000000000000000000000000009e75a32b9fafeffd890f2759b0fe3add33fa43a4c3995458f86a926ad56b23571c46728c039cd3b4bb7d69dfa27782b953a7b81cc161912b3e5716360686e126311a7e21bfa2efd0f57b90c203528c8f620d3c7b31c7abcffae382f53500f7cd5d00159e5f741d3e2d2cbd1a04b3f39b50a4683daa7d117b7f4a149c954d69d8ab001339e464c8eb5f0c63899010757c9a3b69f4920531b83f71d5a34ef9405819afee15b77c015ea755c95127ff2274bb9a8463ce4b8c08ad70596ad2b2b044e660ed144b9dce372450ea69d25da2b6deed67fac26e765aa7d5532ba1044f62db049486acde2294127cb767c23da7d8f9844d3be5b6aa83ee4ce1876af5130efe1b64ccb6bbd349bcc0e8deec8ab3bd1b35bbc8ab8a152771744baa576b9223d26b5603a7f091be1264cabaf661fe2dbe7990a61f710f923f2337818a3983d06c11a6bee7fccb78a53c56db5c18f920d2194374db665dcadf53b8d0014e682ec721d67a7ab6c817fe53c86f8900000000000000000000000000000060b7b827c56e973a2ab5bc5c558ada68c4ec3762f5957b20b919af5d53c87de056a397bdcb614c34761e2c815698e1f9f5521a385c2910850929040a4eba573e91ca21fc855358120ecd79a5d7007693ef3ff9d2b993d114443d53c53094e516f675b2a7074584714e7a2015e05e507811b4ca89c39281c9ada5f58ceb55893cca783ab09c9a19836a3a2c715b10436a5731549e364679ecd8461a68433ab52b1108831edb9654dc602183c1170d6881647f6dca15d57fb76357d815c5f1000000000000000000f49e327c0b6e511494466cec78650f0a"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000180)={r2, r0})
sendmsg$inet6(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)}, 0x0)

1.220156899s ago: executing program 9 (id=3500):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
listen(r0, 0x4)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r5, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x20, r7, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x48050}, 0x0)

1.219952539s ago: executing program 7 (id=3501):
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r3, @ANYRES32=r4, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000100004006c6f616462616c616e6365"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)

1.146174666s ago: executing program 2 (id=3502):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x12, 0x5, 0x4, 0x3}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r3, <r4=>0xffffffffffffffff}, 0x0, &(0x7f0000000140)=r2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1e, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000640)={r5, r1, 0x25, 0x0, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6fc}}, 0x40)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @random="429e82211cf8", @void, {@ipv6={0x86dd, @generic={0xa, 0x6, "7abd6a", 0x0, 0x67, 0x1, @private0, @mcast2}}}}, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000001780)={@local, @empty, @val={@val={0x88a8, 0x5, 0x0, 0x4}, {0x8100, 0x7, 0x1, 0x4}}, {@ipv6={0x86dd, @gre_packet={0x9, 0x6, "896df4", 0x44, 0x2f, 0xff, @private0, @private0={0xfc, 0x0, '\x00', 0x1}, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x1, {{0x4, 0x1, 0xfb, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x1, {0x3}}}, {0x8, 0x22eb, 0x4, {{0x1, 0x2, 0x8, 0x1, 0x0, 0x0, 0x7, 0x4}, 0x2, {0x3, 0x0, 0x0, 0x1a, 0x1, 0x1, 0x3, 0x1}}}, {0x8, 0x6558, 0x1}}}}}}}, 0x0)

1.00112067s ago: executing program 2 (id=3503):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x2)

916.586275ms ago: executing program 8 (id=3504):
r0 = socket$unix(0x1, 0x1, 0x0)
dup(0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0)
ioctl$LOOP_CLR_FD(0xffffffffffffffff, 0x4c01)
syz_open_dev$loop(0x0, 0xffff, 0x14f600)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000040)=@ethtool_regs={0x4, 0x0, 0xf, "f42a97b96d02674f51eae4da000000"}})

821.207197ms ago: executing program 9 (id=3505):
r0 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x40002)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000540)="75160ae057faefbb", 0x8}], 0x1)

810.661246ms ago: executing program 7 (id=3506):
rt_tgsigqueueinfo(0x0, 0x0, 0x26, &(0x7f0000000180)={0x24})

654.364518ms ago: executing program 2 (id=3507):
r0 = syz_open_dev$loop(&(0x7f0000003b80), 0x8000000000000000, 0x2)
lseek(r0, 0xd, 0x4)

578.883424ms ago: executing program 9 (id=3508):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)={0x10c, 0x0, 0x2, 0x301, 0x0, 0x0, {0x7, 0x0, 0x2}, [@CTA_EXPECT_NAT={0x90, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0x74, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1b}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}]}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}]}, @CTA_EXPECT_NAT={0x40, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x34, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_EXPECT_NAT_DIR={0x8}]}, @CTA_EXPECT_HELP_NAME={0xe, 0x6, 'sip-20000\x00'}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x3}, @CTA_EXPECT_MASTER={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, 0x10c}, 0x1, 0x0, 0x0, 0x48800}, 0x4008000)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x321}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000580)=""/106, 0x659}, {&(0x7f0000000980)=""/73, 0xd}, {&(0x7f0000000200)=""/77, 0x69}, {&(0x7f00000007c0)=""/141, 0xc4}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}, 0x5}], 0x4000000000003b4, 0x2000, &(0x7f0000003700)={0x77359400})

480.846426ms ago: executing program 2 (id=3509):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000106a053103000000000001090224000100008000090400101c0300010009210000000122f80409058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000600)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x20, 0x1, 0x5e, "de0f76e893e8580bd3626b8730698eadef2ba35b627b39603324225b29a47eedbda2cf3115c5dff9eef8d2863fefe5d3de96b2d975113837fb89f764afcb0508a592598ebe99352153b52731155637da632de23f825dbbaf28e04ab62751"}, 0x0})
syz_usb_connect$cdc_ecm(0x2, 0x0, 0x0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x18, &(0x7f0000000380)=@string={0x18, 0x3, "bce94c85161ebdb58e44e2558e0212841859b689d626"}}]})
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0)

346.288552ms ago: executing program 8 (id=3510):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000005ec0), 0xffffffffffffffff)
io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, &(0x7f0000000040)={&(0x7f0000001000), 0x0, 0x1}, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd0600ffdbdb252100000020000300", @ANYRES32=r3, @ANYBLOB="0600eb00000800000400ec000a00060008021100000100000600f70000ff000008009e"], 0x44}}, 0x28000)

345.918882ms ago: executing program 7 (id=3511):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x12, 0x5, 0x4, 0x3}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r3, <r4=>0xffffffffffffffff}, 0x0, &(0x7f0000000140)=r2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1e, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000640)={r5, r1, 0x25, 0x0, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6fc}}, 0x40)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @random="429e82211cf8", @void, {@ipv6={0x86dd, @generic={0xa, 0x6, "7abd6a", 0x0, 0x67, 0x1, @private0, @mcast2}}}}, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000001780)={@local, @empty, @val={@val={0x88a8, 0x5, 0x0, 0x4}, {0x8100, 0x7, 0x1, 0x4}}, {@ipv6={0x86dd, @gre_packet={0x9, 0x6, "896df4", 0x44, 0x2f, 0xff, @private0, @private0={0xfc, 0x0, '\x00', 0x1}, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x1, {{0x4, 0x1, 0xfb, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x1, {0x3}}}, {0x8, 0x22eb, 0x4, {{0x1, 0x2, 0x8, 0x1, 0x0, 0x0, 0x7, 0x4}, 0x2, {0x3, 0x0, 0x0, 0x1a, 0x1, 0x1, 0x3, 0x1}}}, {0x8, 0x6558, 0x1}}}}}}}, 0x0)

302.237134ms ago: executing program 9 (id=3512):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
fcntl$setlease(r1, 0x400, 0x1)

136.018045ms ago: executing program 8 (id=3513):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f0000000080), 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101642, 0x33)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
pwritev2(r0, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0x1}], 0x1, 0x9, 0xc, 0x1)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)

92.692157ms ago: executing program 9 (id=3514):
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r3, @ANYRES32=r4, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000100004006c6f616462616c616e6365"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)

0s ago: executing program 7 (id=3515):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x2)

kernel console output (not intermixed with test programs):

16296] ntfs3: loop7: Different NTFS sector size (4096) and media sector size (512).
[ 1167.978048][T16296] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1167.997381][T16296] ntfs3: loop7: Failed to initialize $Extend/$Reparse.
[ 1168.069609][T16296] overlayfs: upper fs does not support tmpfile.
[ 1168.095764][T16296] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1168.123104][T16296] ntfs3: loop7: ino=1b, "file0" attr_set_size
[ 1168.141024][T16296] overlayfs: failed to set uuid (/file0, err=-2); falling back to uuid=null.
[ 1168.151848][T16296] overlayfs: failed to get origin (-5)
[ 1168.158617][T16296] overlayfs: failed to verify origin (/, ino=5, err=-5)
[ 1168.184242][T16296] overlayfs: failed to verify upper root origin
[ 1168.436971][T16298] fuse: Bad value for 'rootmode'
[ 1168.588068][T16300] loop7: detected capacity change from 0 to 64
[ 1168.923078][T16308] team0: Unable to change to the same mode the team is in
[ 1169.057110][T16315] fuse: Bad value for 'rootmode'
[ 1169.199748][T16321] kAFS: unable to lookup cell ''
[ 1169.262635][T16322] vivid-000: disconnect
[ 1169.978774][T16317] vivid-000: reconnect
[ 1170.157703][T16327] loop7: detected capacity change from 0 to 4096
[ 1170.320068][T16335] team0: Unable to change to the same mode the team is in
[ 1170.529033][T16338] kAFS: unable to lookup cell ''
[ 1171.558277][T16350] kAFS: unable to lookup cell ''
[ 1171.619545][T16351] vivid-000: disconnect
[ 1172.288888][T16345] vivid-000: reconnect
[ 1172.577920][T16358] loop7: detected capacity change from 0 to 4096
[ 1172.597795][T16358] ntfs3: loop7: Different NTFS sector size (4096) and media sector size (512).
[ 1172.641248][T16358] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1172.656643][T16358] ntfs3: loop7: Failed to initialize $Extend/$Reparse.
[ 1172.697791][T16358] overlayfs: failed to resolve './bus': -2
[ 1172.849812][T16364] binder: BINDER_SET_CONTEXT_MGR already set
[ 1172.872097][T16364] binder: 16363:16364 ioctl 4018620d 2000000002c0 returned -16
[ 1173.144889][T16376] kAFS: unable to lookup cell ''
[ 1173.461342][T16386] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2606'.
[ 1173.475629][T16386] team0: Unable to change to the same mode the team is in
[ 1173.773954][T16396] tipc: Failed to remove unknown binding: 66,1,1/2886997028:3922315372/3922315374
[ 1173.849246][T16399] tipc: Failed to remove unknown binding: 66,1,1/2886997028:3922315372/3922315374
[ 1173.875806][T16399] tipc: Failed to remove unknown binding: 66,1,1/2886997028:3922315372/3922315374
[ 1174.075584][   T28] audit: type=1804 audit(1772862341.392:553): pid=16403 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.2614" name="file1" dev="hugetlbfs" ino=42657 res=1 errno=0
[ 1174.128578][   T28] audit: type=1804 audit(1772862341.392:554): pid=16403 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.2614" name="file1" dev="hugetlbfs" ino=42657 res=1 errno=0
[ 1174.237693][T16395] loop7: detected capacity change from 0 to 32768
[ 1174.396597][T16395] UFO tlock:0xffffc900028aa090
[ 1174.467812][T16395] MetaData crosses page boundary!!
[ 1174.512166][T16395] lblock = 6300000010, size  = -820051968
[ 1174.541726][T16395] CPU: 0 PID: 16395 Comm: syz.7.2610 Not tainted syzkaller #0
[ 1174.549232][T16395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1174.559310][T16395] Call Trace:
[ 1174.562692][T16395]  <TASK>
[ 1174.565658][T16395]  dump_stack_lvl+0x18c/0x250
[ 1174.570380][T16395]  ? __wake_up_bit+0x210/0x210
[ 1174.575183][T16395]  ? show_regs_print_info+0x20/0x20
[ 1174.580442][T16395]  ? load_image+0x400/0x400
[ 1174.585012][T16395]  ? folio_unlock+0x118/0x2e0
[ 1174.589734][T16395]  __get_metapage+0xaac/0xfa0
[ 1174.594460][T16395]  dtReadFirst+0xd5/0x920
[ 1174.598885][T16395]  jfs_readdir+0x919/0x3bb0
[ 1174.603474][T16395]  ? dtInitRoot+0x670/0x670
[ 1174.608042][T16395]  ? __up_read+0x2b6/0x6b0
[ 1174.612501][T16395]  ? down_write+0x16e/0x200
[ 1174.617125][T16395]  ? down_read_killable+0x340/0x340
[ 1174.622363][T16395]  ? end_current_label_crit_section+0x149/0x170
[ 1174.628637][T16395]  ? dtInitRoot+0x670/0x670
[ 1174.633165][T16395]  wrap_directory_iterator+0x92/0xd0
[ 1174.638475][T16395]  iterate_dir+0x1c2/0x580
[ 1174.642928][T16395]  __se_sys_getdents64+0xf6/0x270
[ 1174.647990][T16395]  ? __x64_sys_getdents64+0x80/0x80
[ 1174.653218][T16395]  ? filldir+0x660/0x660
[ 1174.657494][T16395]  ? lockdep_hardirqs_on+0x98/0x150
[ 1174.662718][T16395]  do_syscall_64+0x55/0xa0
[ 1174.667165][T16395]  ? clear_bhb_loop+0x40/0x90
[ 1174.671875][T16395]  ? clear_bhb_loop+0x40/0x90
[ 1174.676589][T16395]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1174.682510][T16395] RIP: 0033:0x7f6d29b9c799
[ 1174.686951][T16395] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1174.706580][T16395] RSP: 002b:00007f6d2aa14028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 1174.715021][T16395] RAX: ffffffffffffffda RBX: 00007f6d29e15fa0 RCX: 00007f6d29b9c799
[ 1174.723033][T16395] RDX: 0000000000001000 RSI: 0000200000000f80 RDI: 0000000000000004
[ 1174.731047][T16395] RBP: 00007f6d29c32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 1174.739050][T16395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1174.747038][T16395] R13: 00007f6d29e16038 R14: 00007f6d29e15fa0 R15: 00007ffeb23f0f58
[ 1174.755038][T16395]  </TASK>
[ 1174.775565][T16395] bread failed!
[ 1174.790943][T16395] jfs_readdir: unexpected rc = -5 from dtReadNext
[ 1175.126016][T16420] kAFS: unable to lookup cell ''
[ 1175.591316][T13915] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1175.609701][T13915] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1175.619440][T13915] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1175.629172][T13915] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1175.638735][T13915] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1175.646506][T13915] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1175.761016][T16428] kAFS: unable to lookup cell ''
[ 1176.707651][T16424] lo speed is unknown, defaulting to 1000
[ 1176.951136][T16439] loop7: detected capacity change from 0 to 1024
[ 1177.055214][T16424] chnl_net:caif_netlink_parms(): no params data found
[ 1177.146314][T16444] fuse: Bad value for 'fd'
[ 1177.263260][T16439] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1177.272274][T16439] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1177.287160][T16439] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1177.321041][T16439] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1177.441082][   T59] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1177.490555][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.500994][   T59] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1177.625747][T16424] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1177.650407][T16424] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1177.663121][T16424] bridge_slave_0: entered allmulticast mode
[ 1177.670473][T16424] bridge_slave_0: entered promiscuous mode
[ 1177.724371][T10042] Bluetooth: hci0: command tx timeout
[ 1177.733241][T16460] kAFS: unable to lookup cell ''
[ 1178.577051][T16424] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1178.647002][T16424] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1178.720649][T16424] bridge_slave_1: entered allmulticast mode
[ 1178.743679][T16424] bridge_slave_1: entered promiscuous mode
[ 1178.915663][T16478] loop7: detected capacity change from 0 to 512
[ 1178.929729][T16478] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1178.998950][T16424] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1179.013888][T16478] EXT4-fs error (device loop7): ext4_orphan_get:1424: comm syz.7.2636: bad orphan inode 131083
[ 1179.070897][T16424] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1179.100907][T16478] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1179.252286][T16478] EXT4-fs (loop7): shut down requested (1)
[ 1179.356073][T16424] team0: Port device team_slave_0 added
[ 1179.387561][T16424] team0: Port device team_slave_1 added
[ 1179.638609][T16424] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1179.659703][T16424] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1179.695263][T16424] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1179.697290][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1179.812085][T10042] Bluetooth: hci0: command tx timeout
[ 1179.860520][T16497] kAFS: unable to lookup cell ''
[ 1179.892763][T16424] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1179.935629][T16424] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1179.971301][T16424] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1180.213656][T16424] hsr_slave_0: entered promiscuous mode
[ 1180.242427][T16424] hsr_slave_1: entered promiscuous mode
[ 1180.261949][T16424] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1180.287409][T16424] Cannot create hsr debugfs directory
[ 1180.353449][ T7617] hsr_slave_0: left promiscuous mode
[ 1180.397136][ T7617] hsr_slave_1: left promiscuous mode
[ 1180.446585][ T7617] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1180.472757][ T7617] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1180.513621][ T7617] bridge_slave_1: left allmulticast mode
[ 1180.519306][ T7617] bridge_slave_1: left promiscuous mode
[ 1180.549247][ T7617] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1180.572350][ T7617] bridge_slave_0: left allmulticast mode
[ 1180.578134][ T7617] bridge_slave_0: left promiscuous mode
[ 1180.600543][ T7617] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1180.640228][T16519] loop7: detected capacity change from 0 to 4096
[ 1180.783893][T16519] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1180.814273][T16519] ntfs3: loop7: Failed to load $Extend (-22).
[ 1180.820401][T16519] ntfs3: loop7: Failed to initialize $Extend.
[ 1181.255838][T16531] loop7: detected capacity change from 0 to 256
[ 1181.462404][T16531] FAT-fs (loop7): Directory bread(block 64) failed
[ 1181.491120][T16531] FAT-fs (loop7): Directory bread(block 65) failed
[ 1181.529922][T16531] FAT-fs (loop7): Directory bread(block 66) failed
[ 1181.552410][T16531] FAT-fs (loop7): Directory bread(block 67) failed
[ 1181.559104][T16531] FAT-fs (loop7): Directory bread(block 68) failed
[ 1181.603239][T16531] FAT-fs (loop7): Directory bread(block 69) failed
[ 1181.630249][T16531] FAT-fs (loop7): Directory bread(block 70) failed
[ 1181.640259][T16531] FAT-fs (loop7): Directory bread(block 71) failed
[ 1181.656620][T16531] FAT-fs (loop7): Directory bread(block 72) failed
[ 1181.681870][T16531] FAT-fs (loop7): Directory bread(block 73) failed
[ 1181.898585][T10042] Bluetooth: hci0: command tx timeout
[ 1181.948614][T16535] kAFS: unable to lookup cell ''
[ 1182.440314][T16558] autofs4:pid:16558:autofs_fill_super: called with bogus options
[ 1182.777893][ T7617] team0 (unregistering): Port device team_slave_1 removed
[ 1182.896564][ T7617] team0 (unregistering): Port device team_slave_0 removed
[ 1183.010126][T16572] loop7: detected capacity change from 0 to 64
[ 1183.023352][ T7617] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1183.115133][ T7617] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1183.962119][T10042] Bluetooth: hci0: command tx timeout
[ 1184.075361][T16598] autofs4:pid:16598:autofs_fill_super: called with bogus options
[ 1184.108897][ T7617] bond0 (unregistering): Released all slaves
[ 1184.323836][T16593] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2675'.
[ 1184.383322][T16594] team0: Unable to change to the same mode the team is in
[ 1184.891920][ T5840] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[ 1184.917965][ T7617] IPVS: stop unused estimator thread 0...
[ 1185.106422][ T5840] usb 8-1: Using ep0 maxpacket: 16
[ 1185.119257][ T5840] usb 8-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1185.152231][ T5840] usb 8-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1185.181791][ T5840] usb 8-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1185.222697][ T5840] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1185.232090][ T5840] usb 8-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1185.256424][ T5840] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1185.291251][ T5840] usb 8-1: config 0 descriptor??
[ 1185.736193][T16424] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1185.770423][ T5840] hid (null): global environment stack underflow
[ 1185.779625][T16424] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1185.820843][T16424] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1185.855141][T16424] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1185.972812][ T5840] usb 8-1: USB disconnect, device number 25
[ 1186.079631][T16424] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1186.132357][T16424] 8021q: adding VLAN 0 to HW filter on device team0
[ 1186.175540][ T7616] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1186.182728][ T7616] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1186.213749][ T7616] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1186.220929][ T7616] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1186.690544][T16424] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1187.492789][T16424] veth0_vlan: entered promiscuous mode
[ 1187.530128][T16424] veth1_vlan: entered promiscuous mode
[ 1187.644281][T16424] veth0_macvtap: entered promiscuous mode
[ 1187.693669][T16678] overlayfs: failed to clone lowerpath
[ 1187.711883][T16424] veth1_macvtap: entered promiscuous mode
[ 1187.766154][T16424] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1187.825588][T16424] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1187.845216][T16424] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.856257][T16660] loop7: detected capacity change from 0 to 40427
[ 1187.861849][T16424] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.871410][T16424] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.894296][T16660] F2FS-fs (loop7): Invalid SB checksum offset: 0
[ 1187.910917][T16660] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[ 1187.941761][T16424] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.956313][T16660] F2FS-fs (loop7): invalid crc value
[ 1187.987127][T16683] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1188.224429][ T1332] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1188.271817][ T1332] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1188.321907][T16660] F2FS-fs (loop7): Try to recover 2th superblock, ret: 0
[ 1188.350291][ T1332] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1188.372078][T16660] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1188.384621][ T1332] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1188.679533][ T8222] syz-executor: attempt to access beyond end of device
[ 1188.679533][ T8222] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1188.755730][ T8222] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1189.172103][    T8] usb 9-1: new high-speed USB device number 31 using dummy_hcd
[ 1189.394956][    T8] usb 9-1: Using ep0 maxpacket: 8
[ 1189.443682][    T8] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1189.457039][    T8] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1189.467701][    T8] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1189.477966][    T8] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1189.516912][    T8] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1189.571860][    T8] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1189.711008][T16714] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1189.886951][    T8] usb 9-1: GET_CAPABILITIES returned 0
[ 1189.903022][    T8] usbtmc 9-1:16.0: can't read capabilities
[ 1190.052522][T13915] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1190.070101][T13915] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1190.080813][T13915] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1190.091908][T13915] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1190.099756][T13915] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1190.111421][T13915] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1190.173819][    T8] usb 9-1: USB disconnect, device number 31
[ 1190.553064][ T1302] tipc: Disabling bearer <udp:syz1>
[ 1190.569055][ T1302] tipc: Left network mode
[ 1191.127331][T16723] chnl_net:caif_netlink_parms(): no params data found
[ 1191.151749][ T5820] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[ 1191.353694][ T5820] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1191.374239][ T5820] usb 8-1: config 0 has no interfaces?
[ 1191.379783][ T5820] usb 8-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1191.411776][ T5820] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1191.429073][ T5820] usb 8-1: config 0 descriptor??
[ 1191.582641][T16745] loop8: detected capacity change from 0 to 40427
[ 1191.608844][T16745] F2FS-fs (loop8): Invalid SB checksum offset: 0
[ 1191.622032][T16745] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock
[ 1191.652185][T16745] F2FS-fs (loop8): invalid crc value
[ 1191.669813][T16750] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1191.699862][T16750] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1191.717132][ T1194] usb 8-1: USB disconnect, device number 26
[ 1191.810631][T16723] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1191.840658][T16723] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1191.860757][T16723] bridge_slave_0: entered allmulticast mode
[ 1191.894244][T16723] bridge_slave_0: entered promiscuous mode
[ 1191.992163][T16745] F2FS-fs (loop8): Try to recover 2th superblock, ret: 0
[ 1192.009464][T16745] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1192.012640][T16723] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1192.035318][T16723] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1192.051590][T16723] bridge_slave_1: entered allmulticast mode
[ 1192.072429][T16723] bridge_slave_1: entered promiscuous mode
[ 1192.180711][T16723] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1192.201995][T13915] Bluetooth: hci1: command tx timeout
[ 1192.221930][T16424] syz-executor: attempt to access beyond end of device
[ 1192.221930][T16424] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1192.260191][T16424] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[ 1192.260552][T16723] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1192.392946][T16788] loop7: detected capacity change from 0 to 256
[ 1192.417975][T16723] team0: Port device team_slave_0 added
[ 1192.450895][T16788] exFAT-fs (loop7): failed to load upcase table (idx : 0x00012c80, chksum : 0x8ff561f5, utbl_chksum : 0xe619d30d)
[ 1192.476408][T16723] team0: Port device team_slave_1 added
[ 1192.737008][T16723] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1192.762759][T16723] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1192.876429][T16723] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1192.948746][T16723] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1192.989620][T16723] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1193.015571][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1193.091182][T16723] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1193.145213][ T1302] hsr_slave_0: left promiscuous mode
[ 1193.153563][ T1302] hsr_slave_1: left promiscuous mode
[ 1193.290766][T16811] loop7: detected capacity change from 0 to 256
[ 1193.332548][T16811] exfat: Unknown parameter 'zero_size_dir'
[ 1194.283170][T13915] Bluetooth: hci1: command tx timeout
[ 1194.433404][T16815] loop7: detected capacity change from 0 to 40427
[ 1194.470739][T16815] F2FS-fs (loop7): heap/no_heap options were deprecated
[ 1194.484734][T16815] F2FS-fs (loop7): build fault injection attr: rate: 19, type: 0x7ffff
[ 1194.736506][T16821] loop8: detected capacity change from 0 to 32768
[ 1194.863560][T16821] JBD2: Ignoring recovery information on journal
[ 1194.945406][T16821] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[ 1195.050216][T16829] loop7: detected capacity change from 0 to 2048
[ 1195.100601][T16829] UDF-fs: error (device loop7): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1195.128647][T16829] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[ 1195.167068][T16829] UDF-fs: Scanning with blocksize 512 failed
[ 1195.234766][T16829] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1195.321977][   T28] audit: type=1800 audit(1772862362.632:555): pid=16829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2728" name="file1" dev="loop7" ino=838 res=0 errno=0
[ 1195.377581][T16424] ocfs2: Unmounting device (7,8) on (node local)
[ 1196.362085][T13915] Bluetooth: hci1: command tx timeout
[ 1196.655534][T16840] loop8: detected capacity change from 0 to 32768
[ 1196.759990][T16840] XFS (loop8): DAX unsupported by block device. Turning off DAX.
[ 1196.800497][T16840] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1196.895586][T16842] loop7: detected capacity change from 0 to 40427
[ 1196.928358][T16842] F2FS-fs (loop7): Invalid SB checksum offset: 0
[ 1196.983864][T16840] XFS (loop8): Ending clean mount
[ 1196.993259][T16842] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[ 1197.026607][T16842] F2FS-fs (loop7): invalid crc value
[ 1197.117582][T16840] XFS (loop8): Quotacheck needed: Please wait.
[ 1197.309087][T16840] XFS (loop8): Quotacheck: Done.
[ 1197.347755][T16842] F2FS-fs (loop7): Try to recover 2th superblock, ret: 0
[ 1197.360002][T16842] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1197.519806][T16424] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1197.569337][ T8222] syz-executor: attempt to access beyond end of device
[ 1197.569337][ T8222] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1197.615441][ T8222] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1197.934833][ T1302] bond0 (unregistering): Released all slaves
[ 1198.324331][T16871] loop7: detected capacity change from 0 to 65
[ 1198.369993][T16871] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop7
[ 1198.426696][T16723] hsr_slave_0: entered promiscuous mode
[ 1198.440485][T16723] hsr_slave_1: entered promiscuous mode
[ 1198.455841][T13915] Bluetooth: hci1: command tx timeout
[ 1198.561504][T16873] loop7: detected capacity change from 0 to 512
[ 1198.639604][T16873] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1198.809778][T16873] EXT4-fs (loop7): shut down requested (1)
[ 1198.837963][T16873] overlayfs: failed to resolve './bus': -2
[ 1198.981152][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1199.140999][T16880] loop8: detected capacity change from 0 to 1024
[ 1199.196264][T16880] EXT4-fs (loop8): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[ 1199.296077][T16880] EXT4-fs error (device loop8): ext4_map_blocks:608: inode #3: block 2: comm syz.8.2744: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1199.373559][T16880] Quota error (device loop8): qtree_write_dquot: dquota write failed
[ 1199.383446][T16880] EXT4-fs error (device loop8): ext4_map_blocks:608: inode #3: block 48: comm syz.8.2744: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1199.399361][T16880] Quota error (device loop8): v2_write_file_info: Can't write info structure
[ 1199.409797][T16880] EXT4-fs error (device loop8): ext4_acquire_dquot:6949: comm syz.8.2744: Failed to acquire dquot type 0
[ 1199.453401][T16880] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5920: Corrupt filesystem
[ 1199.489275][T16880] EXT4-fs error (device loop8): ext4_evict_inode:252: inode #11: comm syz.8.2744: mark_inode_dirty error
[ 1199.522011][T16880] EXT4-fs warning (device loop8): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[ 1199.551551][T16880] EXT4-fs (loop8): 1 orphan inode deleted
[ 1199.579010][ T1302] EXT4-fs error (device loop8): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1199.594394][T16880] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1199.651335][ T1302] Quota error (device loop8): remove_tree: Can't read quota data block 1
[ 1199.690200][T16894] loop7: detected capacity change from 0 to 128
[ 1199.700033][ T1302] EXT4-fs error (device loop8): ext4_release_dquot:6985: comm kworker/u4:7: Failed to release dquot type 0
[ 1199.730002][T16894] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 1199.758083][T16894] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1199.878916][T16424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1199.889495][T16894] ext4 filesystem being mounted at /525/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1199.911813][ T1302] EXT4-fs error (device loop8): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1199.973355][ T1302] Quota error (device loop8): remove_tree: Can't read quota data block 1
[ 1200.001020][ T1302] EXT4-fs error (device loop8): ext4_release_dquot:6985: comm kworker/u4:7: Failed to release dquot type 0
[ 1200.036542][T16424] EXT4-fs error (device loop8): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 1200.037234][T16894] EXT4-fs (loop7): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 ro.
[ 1200.077809][T16424] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5920: Corrupt filesystem
[ 1200.093297][T16894] EXT4-fs (loop7): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w.
[ 1200.098486][T16424] EXT4-fs error (device loop8): ext4_quota_off:7233: inode #3: comm syz-executor: mark_inode_dirty error
[ 1200.224354][ T8222] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1200.396046][T16723] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1200.408780][T16907] loop7: detected capacity change from 0 to 512
[ 1200.443264][T16723] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1200.478095][T16723] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1200.492972][T16907] EXT4-fs (loop7): 1 truncate cleaned up
[ 1200.540874][T16723] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1200.550900][T16907] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1200.645524][T16723] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1200.675221][T16723] 8021q: adding VLAN 0 to HW filter on device team0
[ 1200.688207][   T28] audit: type=1800 audit(1772862368.002:556): pid=16907 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2751" name="file0" dev="loop7" ino=13 res=0 errno=0
[ 1200.725513][ T1313] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1200.732710][ T1313] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1200.768440][ T1313] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1200.775642][ T1313] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1200.783669][T16907] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.2751: bg 0: block 465: padding at end of block bitmap is not set
[ 1200.827850][T16907] EXT4-fs (loop7): Delayed block allocation failed for inode 13 at logical offset 2 with max blocks 10 with error 28
[ 1200.876218][T16907] EXT4-fs (loop7): This should not happen!! Data will be lost
[ 1200.876218][T16907] 
[ 1200.899173][T16907] EXT4-fs (loop7): Total free blocks count 0
[ 1200.916481][T16907] EXT4-fs (loop7): Free/Dirty block details
[ 1200.931889][T16907] EXT4-fs (loop7): free_blocks=0
[ 1200.946715][T16907] EXT4-fs (loop7): dirty_blocks=10
[ 1200.958252][T16907] EXT4-fs (loop7): Block reservation details
[ 1200.987228][T16907] EXT4-fs (loop7): i_reserved_data_blocks=10
[ 1201.094538][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1201.557657][T16723] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1201.567237][T16930] loop8: detected capacity change from 0 to 512
[ 1201.611940][T16930] EXT4-fs (loop8): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[ 1201.621378][T16930] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1201.714571][T16930] EXT4-fs (loop8): Couldn't mount because of unsupported optional features (fffc1829)
[ 1201.726257][T16935] fuse: Bad value for 'group_id'
[ 1201.764786][T16930] EXT4-fs (loop8): couldn't mount as ext2 due to feature incompatibilities
[ 1202.223868][T16924] loop7: detected capacity change from 0 to 32768
[ 1202.289847][T16953] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2758'.
[ 1202.308882][T16924] UFO tlock:0xffffc900028aa0d8
[ 1202.343255][T16924] MetaData crosses page boundary!!
[ 1202.348523][T16924] lblock = 6300000010, size  = -820051968
[ 1202.380912][T16924] CPU: 0 PID: 16924 Comm: syz.7.2753 Not tainted syzkaller #0
[ 1202.388436][T16924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1202.398537][T16924] Call Trace:
[ 1202.401851][T16924]  <TASK>
[ 1202.404819][T16924]  dump_stack_lvl+0x18c/0x250
[ 1202.409548][T16924]  ? __wake_up_bit+0x210/0x210
[ 1202.414400][T16924]  ? show_regs_print_info+0x20/0x20
[ 1202.419656][T16924]  ? load_image+0x400/0x400
[ 1202.424208][T16924]  ? folio_unlock+0x118/0x2e0
[ 1202.428938][T16924]  __get_metapage+0xaac/0xfa0
[ 1202.433676][T16924]  dtReadFirst+0xd5/0x920
[ 1202.438055][T16924]  jfs_readdir+0x919/0x3bb0
[ 1202.442614][T16924]  ? verify_lock_unused+0x140/0x140
[ 1202.447872][T16924]  ? dtInitRoot+0x670/0x670
[ 1202.452437][T16924]  ? __up_read+0x2b6/0x6b0
[ 1202.456911][T16924]  ? down_write+0x16e/0x200
[ 1202.461457][T16924]  ? down_read_killable+0x340/0x340
[ 1202.466697][T16924]  ? end_current_label_crit_section+0x149/0x170
[ 1202.472987][T16924]  ? dtInitRoot+0x670/0x670
[ 1202.477524][T16924]  wrap_directory_iterator+0x92/0xd0
[ 1202.482851][T16924]  iterate_dir+0x1c2/0x580
[ 1202.487317][T16924]  __se_sys_getdents64+0xf6/0x270
[ 1202.492467][T16924]  ? __x64_sys_getdents64+0x80/0x80
[ 1202.497709][T16924]  ? filldir+0x660/0x660
[ 1202.502003][T16924]  ? lockdep_hardirqs_on+0x98/0x150
[ 1202.507269][T16924]  do_syscall_64+0x55/0xa0
[ 1202.511742][T16924]  ? clear_bhb_loop+0x40/0x90
[ 1202.516454][T16924]  ? clear_bhb_loop+0x40/0x90
[ 1202.521191][T16924]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1202.527133][T16924] RIP: 0033:0x7f6d29b9c799
[ 1202.531580][T16924] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1202.551217][T16924] RSP: 002b:00007f6d2aa14028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 1202.559672][T16924] RAX: ffffffffffffffda RBX: 00007f6d29e15fa0 RCX: 00007f6d29b9c799
[ 1202.567683][T16924] RDX: 0000000000001000 RSI: 0000200000000f80 RDI: 0000000000000004
[ 1202.575686][T16924] RBP: 00007f6d29c32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 1202.583692][T16924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1202.591691][T16924] R13: 00007f6d29e16038 R14: 00007f6d29e15fa0 R15: 00007ffeb23f0f58
[ 1202.599716][T16924]  </TASK>
[ 1202.665757][T16723] veth0_vlan: entered promiscuous mode
[ 1202.716523][T16723] veth1_vlan: entered promiscuous mode
[ 1202.786828][T16723] veth0_macvtap: entered promiscuous mode
[ 1202.795430][T16924] bread failed!
[ 1202.798934][T16924] jfs_readdir: unexpected rc = -5 from dtReadNext
[ 1202.816130][T16723] veth1_macvtap: entered promiscuous mode
[ 1202.874127][T16723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1202.896929][T16723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1202.923111][T16723] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1202.973802][T16723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1203.038643][T16723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1203.055424][T16723] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1203.085201][T16723] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1203.103069][T16939] loop8: detected capacity change from 0 to 32768
[ 1203.125908][T16723] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1203.174047][T16723] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1203.221979][T16723] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1203.248023][T16939] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1203.452252][ T1302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1203.460131][ T1302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1203.504977][T16939] XFS (loop8): Ending clean mount
[ 1203.531589][ T7617] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1203.546978][ T7617] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1203.564131][T16939] XFS (loop8): Quotacheck needed: Please wait.
[ 1203.681138][T16939] XFS (loop8): Quotacheck: Done.
[ 1203.768661][T16979] team0: No ports can be present during mode change
[ 1204.065306][T16981] loop5: detected capacity change from 0 to 4096
[ 1204.085769][T16981] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512).
[ 1204.176677][T16424] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1204.205230][T16981] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[ 1204.227802][T16981] ntfs3: loop5: ino=1f, "file2" failed to open parent directory r=5 to update
[ 1204.435505][ T1302] ntfs3: loop5: ino=1f, failed to open parent directory r=5 to update
[ 1204.649527][T16985] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2766'.
[ 1204.727081][T16983] loop7: detected capacity change from 0 to 4096
[ 1204.748605][T16983] ntfs3: loop7: Different NTFS sector size (4096) and media sector size (512).
[ 1204.862675][T16983] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1204.887552][T16983] ntfs3: loop7: Failed to initialize $Extend/$Reparse.
[ 1205.083314][T16995] loop5: detected capacity change from 0 to 512
[ 1205.181586][T16998] loop8: detected capacity change from 0 to 512
[ 1205.186503][T16995] EXT4-fs (loop5): 1 truncate cleaned up
[ 1205.246433][T16995] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1205.284013][T16998] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1205.333133][   T28] audit: type=1800 audit(1772862372.652:557): pid=16995 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2769" name="file0" dev="loop5" ino=13 res=0 errno=0
[ 1205.423460][T16998] EXT4-fs (loop8): shut down requested (1)
[ 1205.434248][T17002] team0: Unable to change to the same mode the team is in
[ 1205.451531][T16998] overlayfs: failed to resolve './bus': -2
[ 1205.466344][T16723] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1205.570777][T16424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1205.713212][T17008] loop8: detected capacity change from 0 to 512
[ 1205.731200][T17008] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1207.392448][T17010] loop5: detected capacity change from 0 to 40427
[ 1207.514139][T17010] F2FS-fs (loop5): build fault injection attr: rate: 771, type: 0x7ffff
[ 1207.525740][T17010] F2FS-fs (loop5): invalid crc value
[ 1207.590203][T17010] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1207.665633][T17010] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1207.899998][T17008] EXT4-fs (loop8): 1 truncate cleaned up
[ 1208.652881][T17008] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1209.308756][T16424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1209.359648][T16723] syz-executor: attempt to access beyond end of device
[ 1209.359648][T16723] loop5: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 1209.378400][T16723] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1209.385839][T16723] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1209.393113][T16723] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[ 1209.546584][T17027] autofs4:pid:17027:autofs_fill_super: called with bogus options
[ 1210.030945][T17035] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2782'.
[ 1210.065652][T17035] team0: No ports can be present during mode change
[ 1210.379457][T17041] loop7: detected capacity change from 0 to 1024
[ 1210.403125][T17041] EXT4-fs: inline encryption not supported
[ 1210.441829][T17041] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1210.482017][T16505] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[ 1210.524438][T17041] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1210.670377][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1210.707780][T16505] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1210.741701][T16505] usb 6-1: config 0 has no interfaces?
[ 1210.757557][T16505] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1210.771782][ T5840] usb 9-1: new high-speed USB device number 32 using dummy_hcd
[ 1210.787635][T16505] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1210.804820][T16505] usb 6-1: config 0 descriptor??
[ 1210.825359][T17058] fuse: Bad value for 'user_id'
[ 1210.952253][ T5840] usb 9-1: Using ep0 maxpacket: 16
[ 1210.968215][ T5840] usb 9-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1210.990437][ T5840] usb 9-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1211.002209][T17064] autofs4:pid:17064:autofs_fill_super: called with bogus options
[ 1211.015602][ T5840] usb 9-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1211.029742][ T5840] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1211.039769][ T5840] usb 9-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1211.059774][ T5840] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1211.078274][T17037] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1211.102733][ T5840] usb 9-1: config 0 descriptor??
[ 1211.109394][T17037] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1211.126550][T16505] usb 6-1: USB disconnect, device number 27
[ 1211.446421][T17065] loop7: detected capacity change from 0 to 32768
[ 1211.491572][T17065] JBD2: Ignoring recovery information on journal
[ 1211.539060][ T5840] hid (null): global environment stack underflow
[ 1211.551236][T17065] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1211.573965][ T5840] hid (null): report_id 61247 is invalid
[ 1211.580831][ T5840] hid (null): unknown global tag 0xe
[ 1211.748592][ T5840] usb 9-1: USB disconnect, device number 32
[ 1211.811093][T17071] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1211.841877][T17071] overlayfs: failed to set xattr on upper
[ 1211.861812][T17071] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1211.868710][T17071] overlayfs: ...falling back to index=off.
[ 1211.902015][T17071] overlayfs: ...falling back to uuid=null.
[ 1212.028132][ T8222] ocfs2: Unmounting device (7,7) on (node local)
[ 1212.112490][T17078] loop5: detected capacity change from 0 to 512
[ 1212.137499][T17078] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1212.172443][T17080] tipc: Failed to remove unknown binding: 66,1,1/0:1770763912/1770763914
[ 1212.195830][T17078] EXT4-fs (loop5): 1 truncate cleaned up
[ 1212.217053][T17080] tipc: Failed to remove unknown binding: 66,1,1/0:1770763912/1770763914
[ 1212.231549][T17078] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1212.274985][T17080] tipc: Failed to remove unknown binding: 66,1,1/0:1770763912/1770763914
[ 1212.357778][   T28] audit: type=1800 audit(1772862379.672:558): pid=17078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2799" name="file1" dev="loop5" ino=15 res=0 errno=0
[ 1212.493369][T16723] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1212.509515][T17086] loop8: detected capacity change from 0 to 1024
[ 1212.591802][   T28] audit: type=1800 audit(1772862379.892:559): pid=17086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2801" name="file1" dev="loop8" ino=20 res=0 errno=0
[ 1212.933021][T17084] loop7: detected capacity change from 0 to 40427
[ 1212.963963][T17084] F2FS-fs (loop7): Invalid SB checksum offset: 0
[ 1212.971781][T17084] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[ 1212.988617][T17084] F2FS-fs (loop7): invalid crc value
[ 1213.012639][ T8663] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[ 1213.071939][T16505] usb 9-1: new high-speed USB device number 33 using dummy_hcd
[ 1213.175148][T17084] F2FS-fs (loop7): Try to recover 2th superblock, ret: 0
[ 1213.188663][T17084] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1213.242160][ T8663] usb 6-1: Using ep0 maxpacket: 8
[ 1213.264165][ T8663] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1213.286825][T16505] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1213.300670][ T8663] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1213.311453][T16505] usb 9-1: config 0 has no interfaces?
[ 1213.317223][T16505] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1213.327823][ T8663] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1213.338614][T16505] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1213.346760][ T8663] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1213.369721][T16505] usb 9-1: config 0 descriptor??
[ 1213.382364][ T8663] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1213.393350][ T8663] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1213.613748][T17092] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1213.626242][ T8663] usb 6-1: GET_CAPABILITIES returned 0
[ 1213.646823][ T8663] usbtmc 6-1:16.0: can't read capabilities
[ 1213.653158][T17092] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1213.697733][ T8663] usb 9-1: USB disconnect, device number 33
[ 1213.843618][ T5820] usb 6-1: USB disconnect, device number 28
[ 1213.851629][T17107] loop7: detected capacity change from 0 to 64
[ 1214.302132][ T5840] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[ 1214.491864][ T5840] usb 8-1: Using ep0 maxpacket: 16
[ 1214.509288][T17118] loop5: detected capacity change from 0 to 1024
[ 1214.526212][ T5840] usb 8-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1214.562150][ T5840] usb 8-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1214.578790][   T28] audit: type=1800 audit(1772862381.892:560): pid=17118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2812" name="file1" dev="loop5" ino=20 res=0 errno=0
[ 1214.584036][ T5840] usb 8-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1214.630898][ T5840] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1214.637758][ T5840] usb 8-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1214.651922][ T5840] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1214.670082][ T5840] usb 8-1: config 0 descriptor??
[ 1214.938601][T17125] loop5: detected capacity change from 0 to 4096
[ 1215.016474][T17125] NILFS (loop5): invalid segment: Checksum error in segment payload
[ 1215.036649][T17125] NILFS (loop5): trying rollback from an earlier position
[ 1215.092356][T17125] NILFS (loop5): recovery complete
[ 1215.115731][ T5840] hid (null): global environment stack underflow
[ 1215.162854][ T5840] hid (null): report_id 61247 is invalid
[ 1215.169234][T17129] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1215.201717][ T5840] hid (null): unknown global tag 0xe
[ 1215.312071][ T5820] usb 8-1: USB disconnect, device number 27
[ 1215.446635][T17120] loop8: detected capacity change from 0 to 32768
[ 1215.515851][T17120] JBD2: Ignoring recovery information on journal
[ 1215.677077][T17120] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[ 1215.754842][T17134] loop5: detected capacity change from 0 to 512
[ 1215.818235][T17134] EXT4-fs (loop5): 1 truncate cleaned up
[ 1215.858170][T17134] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1215.915955][T16424] ocfs2: Unmounting device (7,8) on (node local)
[ 1215.938070][T16723] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1216.335700][T17150] loop8: detected capacity change from 0 to 256
[ 1216.383217][T17151] overlayfs: failed to get inode (-116)
[ 1216.412050][T17151] overlayfs: failed to get inode (-116)
[ 1216.418814][T17151] overlayfs: failed to get inode (-116)
[ 1216.463250][T17151] overlayfs: failed to get inode (-116)
[ 1216.626563][T17157] loop7: detected capacity change from 0 to 512
[ 1216.655920][T17157] EXT4-fs (loop7): 1 truncate cleaned up
[ 1216.670193][T17157] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1216.851319][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1216.873385][T17164] overlayfs: failed to clone upperpath
[ 1217.014632][T17166] loop7: detected capacity change from 0 to 256
[ 1217.071557][T17166] exfat: Unknown parameter 'zero_size_dir'
[ 1217.103991][T17155] loop8: detected capacity change from 0 to 32768
[ 1217.126581][T17170] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2833'.
[ 1217.160465][T17170] team0: No ports can be present during mode change
[ 1217.196669][T17155] JBD2: Ignoring recovery information on journal
[ 1217.400869][T17155] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[ 1217.475215][T17176] loop7: detected capacity change from 0 to 1024
[ 1217.532855][   T28] audit: type=1800 audit(1772862384.852:561): pid=17176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2834" name="file1" dev="loop7" ino=20 res=0 errno=0
[ 1217.708438][T16424] ocfs2: Unmounting device (7,8) on (node local)
[ 1217.715293][ T1194] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[ 1217.951922][ T1194] usb 6-1: Using ep0 maxpacket: 16
[ 1217.965557][ T1194] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1217.997520][ T1194] usb 6-1: config 0 has no interfaces?
[ 1218.015271][ T1194] usb 6-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[ 1218.038263][ T1194] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1218.061538][T17181] loop8: detected capacity change from 0 to 164
[ 1218.072895][ T1194] usb 6-1: Product: syz
[ 1218.081797][ T1194] usb 6-1: Manufacturer: syz
[ 1218.105303][ T1194] usb 6-1: SerialNumber: syz
[ 1218.121209][ T1194] usb 6-1: config 0 descriptor??
[ 1218.141448][T17181] Unable to read rock-ridge attributes
[ 1218.178845][T17181] Unable to read rock-ridge attributes
[ 1218.410679][T17178] loop7: detected capacity change from 0 to 32768
[ 1218.468470][T17178] ocfs2: Slot 0 on device (7,7) was already allocated to this node!
[ 1218.514787][T17178] JBD2: Ignoring recovery information on journal
[ 1218.622923][T17178] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1218.633605][T16504] usb 9-1: new high-speed USB device number 34 using dummy_hcd
[ 1218.688673][T17178] (syz.7.2836,17178,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214
[ 1218.774200][ T8222] ocfs2: Unmounting device (7,7) on (node local)
[ 1218.838070][T16504] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1218.856873][T16504] usb 9-1: config 0 has no interfaces?
[ 1218.862546][T16504] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1218.871616][T16504] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1218.897221][T16504] usb 9-1: config 0 descriptor??
[ 1219.079354][T17201] loop7: detected capacity change from 0 to 1024
[ 1219.109647][   T28] audit: type=1800 audit(1772862386.422:562): pid=17201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2844" name="file1" dev="loop7" ino=20 res=0 errno=0
[ 1219.139607][T17185] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1219.182058][T17185] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1219.210333][ T5820] usb 9-1: USB disconnect, device number 34
[ 1219.470808][T17205] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1219.489169][T17205] ntfs3: loop7: Failed to load $Extend (-22).
[ 1219.498089][T17205] ntfs3: loop7: Failed to initialize $Extend.
[ 1219.856891][T17214] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1219.916239][T17219] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1219.929398][T17214] EXT4-fs (loop8): shut down requested (1)
[ 1219.977793][T16424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1220.419074][ T5840] usb 6-1: USB disconnect, device number 29
[ 1220.478312][T17228] fuse: Invalid rootmode
[ 1220.802612][T17232] set_capacity_and_notify: 2 callbacks suppressed
[ 1220.802623][T17232] loop7: detected capacity change from 0 to 32768
[ 1220.847244][T17232] JBD2: Ignoring recovery information on journal
[ 1220.909118][T17232] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1221.084495][ T8222] ocfs2: Unmounting device (7,7) on (node local)
[ 1221.334599][T17247] fuse: Invalid rootmode
[ 1221.359068][T17249] xt_hashlimit: size too large, truncated to 1048576
[ 1221.491910][ T5820] usb 9-1: new high-speed USB device number 35 using dummy_hcd
[ 1221.691815][ T5820] usb 9-1: Using ep0 maxpacket: 16
[ 1221.703739][ T5820] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1221.731838][ T5820] usb 9-1: config 0 has no interfaces?
[ 1221.760025][ T5820] usb 9-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[ 1221.769325][ T5820] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1221.797005][ T5820] usb 9-1: Product: syz
[ 1221.801219][ T5820] usb 9-1: Manufacturer: syz
[ 1221.821702][ T5820] usb 9-1: SerialNumber: syz
[ 1221.829359][ T5820] usb 9-1: config 0 descriptor??
[ 1222.006756][T17265] loop5: detected capacity change from 0 to 4096
[ 1222.028327][T17265] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[ 1222.129651][T17265] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[ 1222.157363][T17265] ntfs3: loop5: Failed to initialize $Extend/$Reparse.
[ 1222.229371][T17265] overlayfs: missing 'lowerdir'
[ 1222.286720][T17270] fuse: Invalid rootmode
[ 1222.478497][T17274] fuse: Bad value for 'user_id'
[ 1222.668395][T17277] xt_hashlimit: size too large, truncated to 1048576
[ 1224.138990][T17293] loop7: detected capacity change from 0 to 4096
[ 1224.155133][T17293] ntfs3: loop7: Different NTFS sector size (4096) and media sector size (512).
[ 1224.193324][T17293] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1224.206096][T17293] ntfs3: loop7: Failed to initialize $Extend/$Reparse.
[ 1224.257292][T17293] overlayfs: missing 'workdir'
[ 1224.261917][ T5820] usb 9-1: USB disconnect, device number 35
[ 1224.377514][T17295] fuse: Bad value for 'user_id'
[ 1224.543027][T17299] netlink: 'syz.8.2888': attribute type 13 has an invalid length.
[ 1224.564173][T17299] gretap0: refused to change device tx_queue_len
[ 1224.581837][T17299] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1224.738107][T17305] fuse: Bad value for 'rootmode'
[ 1224.864804][T17307] loop8: detected capacity change from 0 to 512
[ 1224.895661][T17307] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1224.911900][T17307] EXT4-fs (loop8): couldn't mount as ext2 due to feature incompatibilities
[ 1225.150557][T17312] autofs4:pid:17312:autofs_fill_super: called with bogus options
[ 1225.694407][T17320] loop7: detected capacity change from 0 to 512
[ 1225.715414][T17320] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1225.803140][T17320] EXT4-fs (loop7): shut down requested (1)
[ 1225.822341][T17320] overlayfs: missing 'lowerdir'
[ 1225.879063][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1226.063009][T10042] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1226.074107][T10042] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1226.109080][T10042] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1226.126045][T10042] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1226.134482][T10042] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1226.141875][T10042] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1226.320905][T17336] loop8: detected capacity change from 0 to 256
[ 1226.410493][T17338] gretap0: entered promiscuous mode
[ 1226.434137][T17338] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2901'.
[ 1226.450605][T17338] gretap0: left promiscuous mode
[ 1227.418829][T17330] chnl_net:caif_netlink_parms(): no params data found
[ 1227.436774][   T28] audit: type=1326 audit(1772862394.752:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.490281][   T28] audit: type=1326 audit(1772862394.752:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.561854][   T28] audit: type=1326 audit(1772862394.752:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.622423][   T28] audit: type=1326 audit(1772862394.752:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.682371][   T28] audit: type=1326 audit(1772862394.752:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.719687][   T28] audit: type=1326 audit(1772862394.752:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.758274][   T28] audit: type=1326 audit(1772862394.752:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.807425][T17330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1227.815368][T17330] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1227.822709][T17330] bridge_slave_0: entered allmulticast mode
[ 1227.830002][T17330] bridge_slave_0: entered promiscuous mode
[ 1227.839298][T17330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1227.846904][T17330] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1227.854188][T17330] bridge_slave_1: entered allmulticast mode
[ 1227.861409][T17330] bridge_slave_1: entered promiscuous mode
[ 1227.891547][   T28] audit: type=1326 audit(1772862394.752:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.921489][T17330] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1227.934964][T17330] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1227.966890][   T28] audit: type=1326 audit(1772862394.752:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1227.998338][T17330] team0: Port device team_slave_0 added
[ 1228.007332][T17330] team0: Port device team_slave_1 added
[ 1228.011932][   T28] audit: type=1326 audit(1772862394.752:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17348 comm="syz.7.2905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f6d29b9c799 code=0x7ffc0000
[ 1228.065444][T17330] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1228.078194][T17330] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1228.105371][T17330] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1228.129178][T17330] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1228.137205][T17330] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1228.165061][T17330] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1228.237892][T17330] hsr_slave_0: entered promiscuous mode
[ 1228.246776][T17330] hsr_slave_1: entered promiscuous mode
[ 1228.257761][T17330] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1228.269264][T17330] Cannot create hsr debugfs directory
[ 1228.281969][T10042] Bluetooth: hci2: command tx timeout
[ 1228.603718][T17367] loop7: detected capacity change from 0 to 128
[ 1229.000981][T17330] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1229.023950][T17330] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1229.041922][T17330] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1229.058001][T17330] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1229.179982][T17330] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1229.202769][T17330] 8021q: adding VLAN 0 to HW filter on device team0
[ 1229.218612][ T1296] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1229.225804][ T1296] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1229.244889][ T1343] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1229.252095][ T1343] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1229.466604][T17330] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1229.769473][T17330] veth0_vlan: entered promiscuous mode
[ 1229.788690][T17330] veth1_vlan: entered promiscuous mode
[ 1229.803707][T10042] Bluetooth: hci3: command 0x1003 tx timeout
[ 1229.844720][T13915] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 1229.894200][T17330] veth0_macvtap: entered promiscuous mode
[ 1229.899369][T17389] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1229.946094][T17330] veth1_macvtap: entered promiscuous mode
[ 1229.965849][T17330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1229.976626][T17330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1229.986849][T17330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1230.008787][T17330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1230.041634][T17330] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1230.106436][T17330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1230.120692][T17330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1230.131474][T17330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1230.158687][T17330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1230.179775][T17330] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1230.216406][T17330] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1230.311913][T17330] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1230.320816][T17330] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1230.339896][T17330] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1230.378378][T13915] Bluetooth: hci2: command tx timeout
[ 1230.802279][ T1313] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1230.810141][ T1313] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1230.899613][ T1313] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1230.914676][T17408] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1230.918662][ T1313] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1231.279482][T17416] bridge_slave_0: left allmulticast mode
[ 1231.285396][T17416] bridge_slave_0: left promiscuous mode
[ 1231.292058][T17416] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1231.384710][T17421] gretap0: entered promiscuous mode
[ 1231.656783][T17430] loop9: detected capacity change from 0 to 512
[ 1231.724834][T17430] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1231.796696][T17437] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1231.812131][T16504] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[ 1231.864693][T17430] EXT4-fs (loop9): shut down requested (1)
[ 1231.912920][T17430] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1231.939399][T17430] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1232.017816][T17330] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1232.064861][T16504] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1232.092295][T16504] usb 6-1: config 0 has no interfaces?
[ 1232.108147][T16504] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1232.119992][T16504] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1232.152591][T16504] usb 6-1: config 0 descriptor??
[ 1232.307246][T17449] netlink: 'syz.9.2939': attribute type 13 has an invalid length.
[ 1232.325771][T17449] gretap0: refused to change device tx_queue_len
[ 1232.337736][T17449] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1232.382509][T17426] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1232.422128][T17426] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1232.441966][T13915] Bluetooth: hci2: command tx timeout
[ 1232.455160][ T1194] usb 6-1: USB disconnect, device number 30
[ 1232.537218][T17433] loop7: detected capacity change from 0 to 32768
[ 1232.596070][T17433] UFO tlock:0xffffc900028aa090
[ 1233.274114][T17462] loop7: detected capacity change from 0 to 1024
[ 1233.314716][T17462] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1233.360941][T17462] EXT4-fs error (device loop7): ext4_lookup:1850: inode #2: comm syz.7.2942: bad inode number: 16
[ 1233.445054][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1233.572692][T17465] fuse: Invalid rootmode
[ 1234.094665][T17472] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2947'.
[ 1234.525377][T13915] Bluetooth: hci2: command tx timeout
[ 1234.788908][T17478] loop5: detected capacity change from 0 to 32768
[ 1234.860979][T17478] UFO tlock:0xffffc900028aa0d8
[ 1235.709265][T17453] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1236.133672][T17497] autofs4:pid:17497:autofs_fill_super: called with bogus options
[ 1237.965982][T17506] fuse: Bad value for 'fd'
[ 1238.215477][T17515] team0: No ports can be present during mode change
[ 1238.304413][T17517] netlink: 'syz.5.2961': attribute type 13 has an invalid length.
[ 1238.712623][T17517] gretap0: refused to change device tx_queue_len
[ 1238.720027][T17517] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1238.887823][T17525] loop5: detected capacity change from 0 to 512
[ 1238.924339][T17525] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1238.939956][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.145048][T16723] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1239.328582][T17535] fuse: Bad value for 'fd'
[ 1239.507739][T17541] fuse: Unknown parameter 'use00000000000000000000'
[ 1240.595638][T17565] fuse: Unknown parameter 'use00000000000000000000'
[ 1240.993806][T17579] loop5: detected capacity change from 0 to 2048
[ 1241.055116][T17579]  loop5: p1 < > p4
[ 1241.063055][T17579] loop5: p4 size 722688 extends beyond EOD, truncated
[ 1241.131767][ T1194] usb 10-1: new high-speed USB device number 33 using dummy_hcd
[ 1241.143412][T16723] __loop_clr_fd: partition scan of loop5 failed (rc=-16)
[ 1241.150955][T12147] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1241.153609][T11772] I/O error, dev loop5, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1241.172066][T12147] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1241.182807][T11772] I/O error, dev loop5, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1241.200872][T12147] Buffer I/O error on dev loop5p1, logical block 0, async page read
[ 1241.213463][T11772] Buffer I/O error on dev loop5p4, logical block 1, async page read
[ 1241.227837][T12147] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1241.242989][T12147] Buffer I/O error on dev loop5p1, logical block 0, async page read
[ 1241.251623][T12147] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1241.260873][T12147] Buffer I/O error on dev loop5p1, logical block 0, async page read
[ 1241.284528][T12147] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1241.319828][T12147] Buffer I/O error on dev loop5p1, logical block 0, async page read
[ 1241.331724][ T1194] usb 10-1: Using ep0 maxpacket: 8
[ 1241.346275][T12147] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1241.360001][ T1194] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1241.369134][T12147] Buffer I/O error on dev loop5p1, logical block 0, async page read
[ 1241.412700][ T1194] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1241.441830][ T1194] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1241.468050][ T1194] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1241.527575][ T1194] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1241.569991][ T1194] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1241.581916][T12147] udevd[12147]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[ 1241.593280][T11772] udevd[11772]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[ 1241.767984][T17588] fuse: Unknown parameter 'use00000000000000000000'
[ 1241.815145][ T1194] usb 10-1: GET_CAPABILITIES returned 0
[ 1241.822226][ T1194] usbtmc 10-1:16.0: can't read capabilities
[ 1241.949918][T17596] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2991'.
[ 1242.033688][ T5840] usb 10-1: USB disconnect, device number 33
[ 1242.199208][T17599] loop7: detected capacity change from 0 to 2048
[ 1242.244039][T17599] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1242.278973][T17608] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2996'.
[ 1242.292265][T17599] ext4 filesystem being mounted at /586/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1242.352207][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1243.641728][T17624] loop5: detected capacity change from 0 to 512
[ 1244.117345][T17624] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1244.428887][T17624] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1244.763623][T16723] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1244.884371][T17647] team0: Unable to change to the same mode the team is in
[ 1244.936420][T17649] fuse: Unknown parameter '0x0000000000000003'
[ 1245.162852][T17657] loop7: detected capacity change from 0 to 1024
[ 1245.243034][T17657] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1245.880160][T17673] netlink: 'syz.8.3020': attribute type 4 has an invalid length.
[ 1245.978823][   T28] kauditd_printk_skb: 47 callbacks suppressed
[ 1245.978838][   T28] audit: type=1800 audit(1772862413.292:620): pid=17657 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3015" name="file1" dev="loop7" ino=15 res=0 errno=0
[ 1246.005274][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1246.150061][ T8222] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1246.275973][T17680] fuse: Unknown parameter '0x0000000000000003'
[ 1247.199393][T17704] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3032'.
[ 1247.332421][T16505] usb 6-1: new full-speed USB device number 31 using dummy_hcd
[ 1247.348787][T17708] fuse: Unknown parameter '0x0000000000000003'
[ 1247.525538][T16505] usb 6-1: not running at top speed; connect to a high speed hub
[ 1247.547309][T16505] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1247.571695][T16505] usb 6-1: config 1 has no interface number 1
[ 1247.577847][T16505] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1247.634095][T16505] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1247.653343][T16505] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1247.667860][T16505] usb 6-1: Product: syz
[ 1247.685740][T16505] usb 6-1: Manufacturer: syz
[ 1247.690400][T16505] usb 6-1: SerialNumber: syz
[ 1247.959190][T16505] usb 6-1: 2:1: invalid format type 0x1022 is detected, processed as PCM
[ 1247.987337][T16505] usb 6-1: 2:1 : sample bitwidth 43 in over sample bytes 4
[ 1248.030336][T16505] usb 6-1: failed to enable PITCH for EP 0x82
[ 1248.144065][   T28] audit: type=1326 audit(1772862415.462:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17724 comm="syz.9.3041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf8799c799 code=0x7ffc0000
[ 1248.166740][T17725] mmap: syz.9.3041 (17725) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1249.006891][T16505] usb 6-1: USB disconnect, device number 31
[ 1249.068225][   T28] audit: type=1326 audit(1772862415.462:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17724 comm="syz.9.3041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf8799c799 code=0x7ffc0000
[ 1249.192238][   T28] audit: type=1326 audit(1772862415.482:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17724 comm="syz.9.3041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7fcf8799c799 code=0x7ffc0000
[ 1249.247659][T11764] udevd[11764]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1249.294824][   T28] audit: type=1326 audit(1772862415.482:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17724 comm="syz.9.3041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf8799c799 code=0x7ffc0000
[ 1249.355213][T17730] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3042'.
[ 1249.941963][T17740] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1250.233517][T17753] autofs4:pid:17753:autofs_fill_super: called with bogus options
[ 1250.829301][T17762] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3052'.
[ 1250.937748][T17762] team0: No ports can be present during mode change
[ 1251.721883][T16504] usb 10-1: new high-speed USB device number 34 using dummy_hcd
[ 1251.931798][T16504] usb 10-1: Using ep0 maxpacket: 16
[ 1251.953763][T16504] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1252.008777][T16504] usb 10-1: config 0 has no interfaces?
[ 1252.022677][ T5820] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[ 1252.038753][T16504] usb 10-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[ 1252.056163][T16504] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1252.074965][T16504] usb 10-1: Product: syz
[ 1252.087942][T16504] usb 10-1: Manufacturer: syz
[ 1252.110152][T16504] usb 10-1: SerialNumber: syz
[ 1252.143363][T16504] usb 10-1: config 0 descriptor??
[ 1252.365446][ T5820] usb 6-1: Using ep0 maxpacket: 16
[ 1252.383889][T17775] binder: BINDER_SET_CONTEXT_MGR already set
[ 1252.390297][ T5820] usb 6-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1252.402801][T17775] binder: 17774:17775 ioctl 4018620d 2000000002c0 returned -16
[ 1252.421680][ T5820] usb 6-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1252.431558][ T5820] usb 6-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1252.470854][ T5820] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1252.483640][ T5820] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1252.497170][ T5820] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1252.514014][ T5820] usb 6-1: config 0 descriptor??
[ 1252.535885][T10042] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1252.551885][T10042] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1252.560016][T10042] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1252.568309][T10042] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1252.576094][T10042] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1252.584324][T10042] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1252.988118][ T5820] hid (null): report_id 61247 is invalid
[ 1252.994066][ T5820] hid (null): unknown global tag 0xe
[ 1253.046236][ T1332] tipc: Disabling bearer <udp:syz1>
[ 1253.052394][ T1332] tipc: Left network mode
[ 1253.394120][ T8655] usb 6-1: USB disconnect, device number 32
[ 1253.937418][T17797] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1253.948857][T17797] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1253.959623][T17797] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1253.989258][T17787] chnl_net:caif_netlink_parms(): no params data found
[ 1254.203230][T17804] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3064'.
[ 1254.416715][T17813] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3068'.
[ 1254.429240][ T5820] usb 10-1: USB disconnect, device number 34
[ 1254.451621][T17813] team0: No ports can be present during mode change
[ 1254.681834][T10042] Bluetooth: hci3: command tx timeout
[ 1254.858808][T17787] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1254.866162][T17787] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1254.875769][T17787] bridge_slave_0: entered allmulticast mode
[ 1254.884249][T17787] bridge_slave_0: entered promiscuous mode
[ 1254.907547][T17832] loop5: detected capacity change from 0 to 512
[ 1254.958564][T17787] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1254.973132][T17832] EXT4-fs: Ignoring removed nobh option
[ 1254.989094][T17787] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1254.999330][T17787] bridge_slave_1: entered allmulticast mode
[ 1255.021010][T17787] bridge_slave_1: entered promiscuous mode
[ 1255.050249][T17832] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1255.085421][T17832] ext4 filesystem being mounted at /71/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1255.279199][T16723] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 3: comm syz-executor: path /71/bus: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0
[ 1255.392134][T17787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1255.482971][T16723] EXT4-fs error (device loop5): ext4_lookup:1858: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[ 1255.535475][T16723] EXT4-fs error (device loop5): ext4_lookup:1858: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[ 1255.536421][T17787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1255.663227][T17844] loop9: detected capacity change from 0 to 1024
[ 1255.718735][T17844] EXT4-fs: Ignoring removed orlov option
[ 1255.773836][T17844] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1255.918730][T16723] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1255.939723][T17330] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1256.238185][T17787] team0: Port device team_slave_0 added
[ 1256.312795][T17787] team0: Port device team_slave_1 added
[ 1256.473273][T17787] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1256.501738][T17787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1256.557423][T17787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1256.761808][T10042] Bluetooth: hci3: command tx timeout
[ 1257.989850][T13915] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1258.001364][T13915] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1258.023580][T13915] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1258.033545][T13915] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1258.041993][T13915] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1258.049404][T13915] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1258.846156][T10042] Bluetooth: hci3: command tx timeout
[ 1259.076508][ T1332] bond0 (unregistering): Released all slaves
[ 1259.173038][T17787] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1259.180036][T17787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1259.209555][T17787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1259.507484][T17890] netlink: 'syz.9.3081': attribute type 25 has an invalid length.
[ 1259.556611][T17787] hsr_slave_0: entered promiscuous mode
[ 1259.582994][T17787] hsr_slave_1: entered promiscuous mode
[ 1259.603302][T17787] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1259.611559][T17787] Cannot create hsr debugfs directory
[ 1259.811851][ T1194] usb 9-1: new high-speed USB device number 36 using dummy_hcd
[ 1260.001984][ T1194] usb 9-1: Using ep0 maxpacket: 16
[ 1260.044230][ T1194] usb 9-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1260.082597][ T1194] usb 9-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1260.092631][ T1194] usb 9-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1260.105778][ T1194] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1260.113643][ T1194] usb 9-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1260.124517][ T1194] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1260.133350][T10042] Bluetooth: hci1: command tx timeout
[ 1260.183347][ T1194] usb 9-1: config 0 descriptor??
[ 1260.306473][T17901] loop9: detected capacity change from 0 to 256
[ 1260.346150][T17901] FAT-fs (loop9): Directory bread(block 1285) failed
[ 1260.377771][T17901] FAT-fs (loop9): Directory bread(block 1286) failed
[ 1260.385054][T17901] FAT-fs (loop9): Directory bread(block 1287) failed
[ 1260.392625][T17901] FAT-fs (loop9): Directory bread(block 1288) failed
[ 1260.423469][T17901] FAT-fs (loop9): Directory bread(block 1285) failed
[ 1260.472995][T17901] FAT-fs (loop9): Directory bread(block 1286) failed
[ 1260.491221][T17901] FAT-fs (loop9): Directory bread(block 1287) failed
[ 1260.498184][T17901] FAT-fs (loop9): Directory bread(block 1288) failed
[ 1260.505478][T17901] FAT-fs (loop9): Directory bread(block 1285) failed
[ 1260.519505][T17901] FAT-fs (loop9): Directory bread(block 1286) failed
[ 1260.638108][ T1194] hid (null): report_id 61247 is invalid
[ 1260.667783][ T1194] hid (null): unknown global tag 0xe
[ 1260.835182][ T1194] usb 9-1: USB disconnect, device number 36
[ 1260.879648][T17878] chnl_net:caif_netlink_parms(): no params data found
[ 1260.925358][T10042] Bluetooth: hci3: command tx timeout
[ 1261.120696][ T1332] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1261.225446][ T1332] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1261.349400][T17878] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1261.357148][T17878] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1261.364867][T17878] bridge_slave_0: entered allmulticast mode
[ 1261.372506][T17878] bridge_slave_0: entered promiscuous mode
[ 1261.381360][T17878] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1261.389726][T17878] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1261.432235][T17878] bridge_slave_1: entered allmulticast mode
[ 1261.451494][T17878] bridge_slave_1: entered promiscuous mode
[ 1261.593363][ T1332] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1261.927167][T17930] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[ 1262.088391][T17931] loop8: detected capacity change from 0 to 512
[ 1262.236723][T10042] Bluetooth: hci1: command tx timeout
[ 1262.437212][T17787] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1262.489506][T17787] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1262.560803][ T1332] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1262.578866][T17929] lo speed is unknown, defaulting to 1000
[ 1262.584909][T17929] lo speed is unknown, defaulting to 1000
[ 1262.591271][T17929] lo speed is unknown, defaulting to 1000
[ 1262.608693][T17929] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1262.644878][T17878] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1262.657409][T17878] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1262.679056][T17787] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1262.692460][T17929] lo speed is unknown, defaulting to 1000
[ 1262.700092][T17929] lo speed is unknown, defaulting to 1000
[ 1262.707514][T17929] lo speed is unknown, defaulting to 1000
[ 1262.714764][T17929] lo speed is unknown, defaulting to 1000
[ 1262.721962][T17929] lo speed is unknown, defaulting to 1000
[ 1262.730085][T17929] lo speed is unknown, defaulting to 1000
[ 1262.822852][T17787] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1262.894687][T17878] team0: Port device team_slave_0 added
[ 1262.925302][T17878] team0: Port device team_slave_1 added
[ 1263.013236][T17938] vlan2: entered allmulticast mode
[ 1263.018418][T17938] veth0_to_bond: entered allmulticast mode
[ 1263.111085][T17878] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1263.133278][T17878] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1263.184860][T17878] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1263.199633][T17878] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1263.209023][T17878] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1263.239424][T17878] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1263.434201][T17946] hub 8-0:1.0: USB hub found
[ 1263.441501][T17946] hub 8-0:1.0: 1 port detected
[ 1263.646271][T17878] hsr_slave_0: entered promiscuous mode
[ 1263.660153][T17878] hsr_slave_1: entered promiscuous mode
[ 1263.668914][T17878] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1263.676995][T17878] Cannot create hsr debugfs directory
[ 1264.067907][T17787] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1264.283741][T10042] Bluetooth: hci1: command tx timeout
[ 1264.372469][T17956] loop9: detected capacity change from 0 to 4096
[ 1264.380476][T17956] EXT4-fs: Ignoring removed bh option
[ 1264.409517][T17956] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1264.441482][T17956] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1264.460338][T17787] 8021q: adding VLAN 0 to HW filter on device team0
[ 1264.635137][ T1302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1264.642407][ T1302] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1264.666684][ T1302] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1264.673890][ T1302] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1264.850537][T17787] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1265.045559][T17330] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1265.488094][T17987] loop9: detected capacity change from 0 to 512
[ 1265.728214][T17787] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1266.259106][ T1332] hsr_slave_0: left promiscuous mode
[ 1266.320300][ T1332] hsr_slave_1: left promiscuous mode
[ 1266.333091][ T1332] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1266.344477][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1266.366875][T10042] Bluetooth: hci1: command tx timeout
[ 1266.378351][ T1332] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1266.424747][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1266.462968][ T1332] bridge_slave_1: left allmulticast mode
[ 1266.468926][ T1332] bridge_slave_1: left promiscuous mode
[ 1266.478486][ T1332] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1266.511246][ T1332] bridge_slave_0: left allmulticast mode
[ 1266.517494][ T1332] bridge_slave_0: left promiscuous mode
[ 1266.526919][ T1332] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1266.611527][ T1332] veth1_macvtap: left promiscuous mode
[ 1266.617664][ T1332] veth0_macvtap: left promiscuous mode
[ 1266.626444][ T1332] veth1_vlan: left promiscuous mode
[ 1266.645062][ T1332] veth0_vlan: left promiscuous mode
[ 1267.812569][T18029] loop9: detected capacity change from 0 to 256
[ 1268.318743][ T1332] team0 (unregistering): Port device team_slave_1 removed
[ 1268.494170][ T1332] team0 (unregistering): Port device team_slave_0 removed
[ 1268.609966][ T1332] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1268.708047][ T1332] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1269.503824][ T1332] bond0 (unregistering): Released all slaves
[ 1269.831955][ T8655] usb 10-1: new high-speed USB device number 35 using dummy_hcd
[ 1269.986475][T17787] veth0_vlan: entered promiscuous mode
[ 1270.061916][ T8655] usb 10-1: Using ep0 maxpacket: 16
[ 1270.132181][ T8655] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1270.161736][ T8655] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1270.184595][ T8655] usb 10-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1270.223033][ T8655] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1270.247812][ T8655] usb 10-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1270.258462][ T8655] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1270.275068][ T8655] usb 10-1: config 0 descriptor??
[ 1270.369435][T17787] veth1_vlan: entered promiscuous mode
[ 1270.479902][T17787] veth0_macvtap: entered promiscuous mode
[ 1270.832966][ T8655] hid (null): report_id 61247 is invalid
[ 1270.838683][ T8655] hid (null): unknown global tag 0xe
[ 1270.907986][T17787] veth1_macvtap: entered promiscuous mode
[ 1270.978293][T17787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1270.988868][T17787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.008944][T17787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1271.029742][ T1194] usb 10-1: USB disconnect, device number 35
[ 1271.044286][T17787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.083244][T17787] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1271.154102][T17787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.191705][T17787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.201589][T17787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.241734][T17787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.271172][T17787] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1271.333716][T17787] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.391769][T17787] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.400521][T17787] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.431735][T17787] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.668320][ T1313] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1271.704442][ T1313] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1271.915967][T11905] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1271.938503][T17878] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1271.948996][T11905] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1272.448392][T17878] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1272.856967][T18072] loop8: detected capacity change from 0 to 512
[ 1272.882315][T17878] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1272.916723][T17878] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1272.924272][T18072] EXT4-fs (loop8): 1 truncate cleaned up
[ 1273.096080][T18072] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1273.222811][T18079] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1273.492815][T18083] vlan2: entered allmulticast mode
[ 1273.498090][T18083] veth0_to_bond: entered allmulticast mode
[ 1273.505654][   T28] audit: type=1800 audit(1772862440.822:625): pid=18080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.3119" name="file1" dev="loop8" ino=13 res=0 errno=0
[ 1273.629842][T16424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1273.719877][T18089] loop9: detected capacity change from 0 to 512
[ 1273.753406][T17878] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1273.779919][T18089] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1273.825064][T17878] 8021q: adding VLAN 0 to HW filter on device team0
[ 1273.855137][T18089] EXT4-fs (loop9): 1 orphan inode deleted
[ 1273.899789][  T206] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1273.906987][  T206] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1273.926291][T18089] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1273.993823][  T206] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1274.001089][  T206] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1274.181052][T17330] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1274.332264][T18104] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1274.438067][T18102] bridge_slave_0: left allmulticast mode
[ 1274.474483][T18102] bridge_slave_0: left promiscuous mode
[ 1274.480800][T18102] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1274.502435][T18102] bridge_slave_1: left allmulticast mode
[ 1274.508141][T18102] bridge_slave_1: left promiscuous mode
[ 1274.514499][T18102] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1274.655537][T18102] bond0: (slave bond_slave_0): Releasing backup interface
[ 1275.053230][T18102] bond0: (slave bond_slave_1): Releasing backup interface
[ 1275.417737][T18102] team0: Port device team_slave_0 removed
[ 1275.466998][T18102] team0: Port device team_slave_1 removed
[ 1275.504140][T18102] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1275.516566][T18102] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1275.553984][T18102] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1275.561438][T18102] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1275.808857][T18114] lo speed is unknown, defaulting to 1000
[ 1276.124125][T17878] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1276.250638][T17878] veth0_vlan: entered promiscuous mode
[ 1276.314523][T18143] Illegal XDP return value 4294967294 on prog  (id 128) dev syz_tun, expect packet loss!
[ 1276.317284][T17878] veth1_vlan: entered promiscuous mode
[ 1276.479074][T17878] veth0_macvtap: entered promiscuous mode
[ 1276.498591][T17878] veth1_macvtap: entered promiscuous mode
[ 1276.561305][T18148] tipc: Started in network mode
[ 1276.567748][T18148] tipc: Node identity 4, cluster identity 4711
[ 1276.582388][T18148] tipc: Node number set to 4
[ 1276.619022][T17878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1276.642034][T17878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1276.661695][T17878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1276.688330][T17878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1276.707617][T17878] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1276.741101][T17878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1276.761987][T17878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1276.782433][T17878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1276.802871][T17878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1276.843297][T17878] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1276.866679][T17878] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1276.881342][T17878] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1276.893808][T17878] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1276.912258][T17878] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1277.352092][ T1302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1277.359970][ T1302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1277.553203][ T1313] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1277.561098][ T1313] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1277.912202][T18170] loop8: detected capacity change from 0 to 512
[ 1277.978091][T18170] EXT4-fs: Ignoring removed bh option
[ 1277.998799][T18172] vlan2: entered allmulticast mode
[ 1278.049401][T18172] veth0_to_bond: entered allmulticast mode
[ 1278.081040][T18170] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1279.060116][T18170] EXT4-fs (loop8): 1 truncate cleaned up
[ 1279.094292][T18170] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1279.367812][T16424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1279.980326][   T28] audit: type=1326 audit(1772862447.292:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18208 comm="syz.8.3151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8b39c799 code=0x7ffc0000
[ 1280.022058][   T28] audit: type=1326 audit(1772862447.322:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18208 comm="syz.8.3151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8b39c799 code=0x7ffc0000
[ 1280.063648][   T28] audit: type=1326 audit(1772862447.322:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18208 comm="syz.8.3151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8b39c799 code=0x7ffc0000
[ 1280.115816][   T28] audit: type=1326 audit(1772862447.342:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18208 comm="syz.8.3151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f5e8b39c799 code=0x7ffc0000
[ 1280.140213][   T28] audit: type=1326 audit(1772862447.342:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18208 comm="syz.8.3151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8b39c799 code=0x7ffc0000
[ 1280.313580][   T28] audit: type=1326 audit(1772862447.342:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18208 comm="syz.8.3151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8b39c799 code=0x7ffc0000
[ 1280.336378][   T28] audit: type=1326 audit(1772862447.342:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18208 comm="syz.8.3151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5e8b39c799 code=0x7ffc0000
[ 1280.374599][   T28] audit: type=1326 audit(1772862447.342:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18208 comm="syz.8.3151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5e8b39c799 code=0x7ffc0000
[ 1280.740388][T18228] loop7: detected capacity change from 0 to 512
[ 1280.935895][T18228] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1282.219485][T18228] ext4 filesystem being mounted at /13/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1282.994758][T17787] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1283.130971][T18259] bridge_slave_0: left allmulticast mode
[ 1283.191839][T18259] bridge_slave_0: left promiscuous mode
[ 1283.218453][T18259] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1283.302902][T18259] bridge_slave_1: left allmulticast mode
[ 1283.351704][T18259] bridge_slave_1: left promiscuous mode
[ 1283.383010][T18259] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1283.445441][T18259] bond0: (slave bond_slave_0): Releasing backup interface
[ 1283.459704][T18273] netlink: 'syz.7.3166': attribute type 25 has an invalid length.
[ 1283.533854][T18259] bond0: (slave bond_slave_1): Releasing backup interface
[ 1283.784248][T18259] team0: Port device team_slave_0 removed
[ 1283.981603][T18259] team0: Port device team_slave_1 removed
[ 1283.991226][T18259] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1284.007795][T18259] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1285.694471][T18259] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1285.776111][T18259] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1286.342861][T18288] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1286.352902][T18288] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1286.362807][T18288] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1287.299114][T18377] loop7: detected capacity change from 0 to 1024
[ 1287.337415][T18377] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1287.413102][T18377] EXT4-fs (loop7): 1 truncate cleaned up
[ 1287.442426][T18377] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1287.471403][T18387] loop8: detected capacity change from 0 to 128
[ 1287.616972][T17787] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1288.672933][T18403] loop2: detected capacity change from 0 to 7
[ 1288.714769][T18403] Dev loop2: unable to read RDB block 7
[ 1288.720403][T18403]  loop2: AHDI p1 p2 p3
[ 1288.735350][T18408] vlan2: entered allmulticast mode
[ 1288.743168][T18403] loop2: partition table partially beyond EOD, truncated
[ 1288.750733][T18408] veth0_to_bond: entered allmulticast mode
[ 1288.757526][T18403] loop2: p1 start 1818582900 is beyond EOD, truncated
[ 1288.766259][T18406] netlink: 40 bytes leftover after parsing attributes in process `syz.8.3190'.
[ 1288.781793][T18403] loop2: p3 start 335544320 is beyond EOD, truncated
[ 1288.811865][ T5898] usb 10-1: new high-speed USB device number 36 using dummy_hcd
[ 1288.971750][ T5898] usb 10-1: device descriptor read/64, error -71
[ 1289.210660][T18421] netlink: 'syz.2.3196': attribute type 24 has an invalid length.
[ 1289.251867][ T5898] usb 10-1: new high-speed USB device number 37 using dummy_hcd
[ 1289.632030][ T5898] usb 10-1: device descriptor read/64, error -71
[ 1290.422147][T18436] siw: device registration error -23
[ 1291.382045][T18436] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[ 1291.702862][T18434] loop2: detected capacity change from 0 to 512
[ 1291.713187][ T5898] usb usb10-port1: attempt power cycle
[ 1292.189914][ T5898] usb 10-1: new high-speed USB device number 38 using dummy_hcd
[ 1292.466007][ T5898] usb 10-1: device not accepting address 38, error -71
[ 1292.573398][T18446] loop7: detected capacity change from 0 to 8192
[ 1292.773131][T18460] autofs4:pid:18460:autofs_fill_super: called with bogus options
[ 1293.641763][T18472] loop2: detected capacity change from 0 to 7
[ 1293.694069][T18472] Dev loop2: unable to read RDB block 7
[ 1293.699730][T18472]  loop2: unable to read partition table
[ 1293.706114][T18475] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3207'.
[ 1293.738252][T18475] netlink: 48 bytes leftover after parsing attributes in process `syz.7.3207'.
[ 1293.751897][T18472] loop2: partition table beyond EOD, truncated
[ 1293.792149][T18472] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[ 1294.316438][T18499] loop9: detected capacity change from 0 to 256
[ 1294.427077][T12147] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1295.688551][T18541] netlink: 320 bytes leftover after parsing attributes in process `syz.7.3230'.
[ 1298.200831][T18569] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3238'.
[ 1298.260782][T18569] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3238'.
[ 1298.343538][T18572] 8021q: VLANs not supported on ipvlan0
[ 1298.668687][T18578] capability: warning: `syz.7.3241' uses 32-bit capabilities (legacy support in use)
[ 1298.970490][T18578] program syz.7.3241 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1300.377866][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1301.279952][T18620] ip6tnl2: entered promiscuous mode
[ 1301.325118][T18620] ip6tnl2: entered allmulticast mode
[ 1302.283260][T18640] loop9: detected capacity change from 0 to 512
[ 1302.352717][T18640] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1302.410096][T18640] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1302.445947][T13915] Bluetooth: hci0: command 0x0406 tx timeout
[ 1302.729481][T17330] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1302.961066][T18660] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3268'.
[ 1303.397652][T18675] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3273'.
[ 1305.075579][T18697] fuse: Bad value for 'fd'
[ 1305.260501][T18698] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3280'.
[ 1305.333022][T18698] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3280'.
[ 1305.743936][T18718] loop2: detected capacity change from 0 to 512
[ 1305.835087][T18721] loop7: detected capacity change from 0 to 512
[ 1305.878754][T18718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1305.971987][T18718] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1305.991875][T18721] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1306.067667][T18721] EXT4-fs (loop7): 1 orphan inode deleted
[ 1307.593303][T18721] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1308.325160][T17878] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1308.364060][T17787] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1308.454077][T18739] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3293'.
[ 1308.564126][T18739] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3293'.
[ 1309.241895][T17404] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[ 1310.151734][T17404] usb 8-1: Using ep0 maxpacket: 8
[ 1310.169377][T17404] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1310.187594][T17404] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1310.198800][ T1194] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[ 1310.207172][T17404] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1310.217639][T17404] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1310.235539][T17404] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1310.248804][T17404] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1310.262926][T17404] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1310.273975][T18788] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3305'.
[ 1310.294444][T17404] usbtmc: probe of 8-1:16.0 failed with error -22
[ 1310.324020][T18788] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3305'.
[ 1310.411677][ T1194] usb 3-1: Using ep0 maxpacket: 16
[ 1310.424728][ T1194] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1310.481820][ T1194] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1310.499165][ T1194] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1310.519483][ T1194] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1310.526446][ T1194] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1310.536893][ T1194] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1310.554508][ T1194] usb 3-1: config 0 descriptor??
[ 1310.730943][T18804] loop2: detected capacity change from 0 to 7
[ 1310.738946][T12147] Dev loop2: unable to read RDB block 7
[ 1310.750409][T12147]  loop2: unable to read partition table
[ 1310.756551][T12147] loop2: partition table beyond EOD, truncated
[ 1310.781274][T18804] Dev loop2: unable to read RDB block 7
[ 1310.791872][T18804]  loop2: unable to read partition table
[ 1310.809947][T18804] loop2: partition table beyond EOD, truncated
[ 1310.817739][T18804] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑච) failed (rc=-5)
[ 1310.992677][T18808] netlink: 'syz.9.3312': attribute type 25 has an invalid length.
[ 1311.014367][    C1] raw-gadget.1 gadget.2: ignoring, device is not running
[ 1311.021968][    C1] raw-gadget.1 gadget.2: ignoring, device is not running
[ 1311.030523][ T1194] usbhid 3-1:0.0: can't add hid device: -71
[ 1311.036670][ T1194] usbhid: probe of 3-1:0.0 failed with error -71
[ 1311.056818][ T1194] usb 3-1: USB disconnect, device number 2
[ 1312.310788][T18296] usb 8-1: USB disconnect, device number 28
[ 1312.700604][T18843] netlink: 'syz.7.3323': attribute type 25 has an invalid length.
[ 1312.869502][T18855] bridge_slave_1: left allmulticast mode
[ 1312.878534][T18855] bridge_slave_1: left promiscuous mode
[ 1312.888483][T18855] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1312.914175][T18855] bond0: (slave bond_slave_0): Releasing backup interface
[ 1312.971392][T18855] bond0: (slave bond_slave_1): Releasing backup interface
[ 1313.082982][T18855] team0: Port device team_slave_0 removed
[ 1313.123630][T18855] team0: Port device team_slave_1 removed
[ 1313.144168][T18855] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1313.158142][T18855] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1313.177702][T18855] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1313.187331][T18855] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1313.261479][T18856] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3326'.
[ 1313.281780][ T5898] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[ 1313.651700][ T5898] usb 8-1: Using ep0 maxpacket: 16
[ 1313.795788][ T5898] usb 8-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1314.144782][ T5898] usb 8-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1314.362337][ T5898] usb 8-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1314.453321][ T5898] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1314.491685][ T5898] usb 8-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1314.539362][ T5898] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1314.576524][ T5898] usb 8-1: config 0 descriptor??
[ 1314.613325][ T8663] usb 9-1: new high-speed USB device number 37 using dummy_hcd
[ 1314.777664][T18889] autofs4:pid:18889:autofs_fill_super: called with bogus options
[ 1314.835785][ T8663] usb 9-1: Using ep0 maxpacket: 8
[ 1314.930740][ T8663] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1315.103531][ T8663] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1315.162269][ T5898] usbhid 8-1:0.0: can't add hid device: -71
[ 1315.260666][ T5898] usbhid: probe of 8-1:0.0 failed with error -71
[ 1315.302982][ T8663] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1315.451272][ T5898] usb 8-1: USB disconnect, device number 29
[ 1315.476039][ T8663] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1315.545412][ T8663] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1315.827678][ T8663] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1315.841669][ T8663] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1315.883163][ T8663] usbtmc: probe of 9-1:16.0 failed with error -22
[ 1317.722460][T16504] usb 9-1: USB disconnect, device number 37
[ 1318.011180][T18950] loop2: detected capacity change from 0 to 7
[ 1318.036811][T18950] Dev loop2: unable to read RDB block 7
[ 1318.071848][T18950]  loop2: AHDI p1 p2 p3
[ 1318.215453][T18950] loop2: partition table partially beyond EOD, truncated
[ 1318.264834][T18950] loop2: p1 start 1818582900 is beyond EOD, truncated
[ 1318.341782][T18950] loop2: p3 start 335544320 is beyond EOD, truncated
[ 1319.174776][T18960] ip6tnl2: entered promiscuous mode
[ 1319.180036][T18960] ip6tnl2: entered allmulticast mode
[ 1320.017216][T16504] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[ 1320.844409][T18984] siw: device registration error -23
[ 1321.601871][T18984] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[ 1321.943838][T18982] loop2: detected capacity change from 0 to 512
[ 1322.172926][T18988] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3357'.
[ 1322.221905][T16504] usb 8-1: Using ep0 maxpacket: 8
[ 1322.279282][T16504] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1322.340401][T16504] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1322.378279][T16504] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1322.408642][T16504] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1322.461649][T16504] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1322.543647][T16504] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1322.631710][T16504] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1323.413352][T16504] usb 8-1: can't set config #16, error -71
[ 1323.433074][T16504] usb 8-1: USB disconnect, device number 30
[ 1323.580936][T19008] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3363'.
[ 1323.665265][T19008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1323.711806][T19008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1325.167235][T19026] team0: Mode "loadbal" not found
[ 1325.345030][ T1194] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[ 1325.971744][ T1194] usb 3-1: Using ep0 maxpacket: 8
[ 1325.985672][ T1194] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1325.997534][ T1194] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1326.009728][ T1194] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1326.089925][ T1194] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1326.340603][ T1194] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1326.381824][ T1194] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1326.661797][ T1194] usb 3-1: usb_control_msg returned -32
[ 1326.681938][ T1194] usbtmc 3-1:16.0: can't read capabilities
[ 1326.733481][ T1194] usb 3-1: USB disconnect, device number 3
[ 1326.837279][T19054] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3377'.
[ 1327.077706][T19068] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3380'.
[ 1331.170933][T19096] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3388'.
[ 1331.260369][T19100] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3389'.
[ 1331.733941][T19121] ip6tnl1: entered promiscuous mode
[ 1331.749816][T19121] ip6tnl1: entered allmulticast mode
[ 1331.802775][ T5898] usb 8-1: new high-speed USB device number 31 using dummy_hcd
[ 1331.940086][T19128] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3398'.
[ 1331.983484][T19128] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3398'.
[ 1332.059550][ T5898] usb 8-1: Using ep0 maxpacket: 8
[ 1332.076955][ T5898] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1332.115414][ T5898] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1332.292803][ T5898] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1332.303233][ T5898] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1332.317537][ T5898] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1332.328710][ T5898] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1332.435589][T19141] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3401'.
[ 1332.562908][ T5898] usb 8-1: usb_control_msg returned -32
[ 1332.568828][ T5898] usbtmc 8-1:16.0: can't read capabilities
[ 1332.620096][ T5898] usb 8-1: USB disconnect, device number 31
[ 1333.152055][T19167] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3409'.
[ 1333.190367][T19167] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3409'.
[ 1333.566312][T19183] autofs4:pid:19183:autofs_fill_super: called with bogus options
[ 1334.742166][T19205] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3421'.
[ 1334.767109][T19205] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3421'.
[ 1334.861053][T19210] loop9: detected capacity change from 0 to 128
[ 1336.758515][T19242] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3430'.
[ 1337.183426][T19256] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3435'.
[ 1339.117274][T19293] ip6tnl1: entered promiscuous mode
[ 1339.161135][T19293] ip6tnl1: entered allmulticast mode
[ 1341.653133][T19317] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3453'.
[ 1342.243011][T19340] loop2: detected capacity change from 0 to 7
[ 1342.306250][T19340] Dev loop2: unable to read RDB block 7
[ 1342.317124][T19340]  loop2: AHDI p2
[ 1342.320836][T19340] loop2: partition table partially beyond EOD, truncated
[ 1343.363032][ T5840] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[ 1344.377040][T19355] netlink: 'syz.9.3464': attribute type 1 has an invalid length.
[ 1344.480564][T19355] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3464'.
[ 1344.534280][ T5840] usb 3-1: Using ep0 maxpacket: 8
[ 1344.768189][ T5840] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1344.857450][T19354] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1344.866919][T19354] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1344.876663][T19354] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1344.898520][ T5840] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1344.911687][ T5840] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1344.923518][ T5840] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1344.947774][ T5840] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1344.967018][ T5840] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1345.194952][ T5840] usb 3-1: usb_control_msg returned -32
[ 1345.200596][ T5840] usbtmc 3-1:16.0: can't read capabilities
[ 1345.262125][ T5840] usb 3-1: USB disconnect, device number 4
[ 1345.918062][T19393] netlink: 'syz.9.3475': attribute type 1 has an invalid length.
[ 1346.085443][T19393] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3475'.
[ 1346.971934][T16504] usb 10-1: new high-speed USB device number 40 using dummy_hcd
[ 1347.200652][T16504] usb 10-1: Using ep0 maxpacket: 16
[ 1347.237747][T16504] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1347.267321][T16504] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1347.292082][T16504] usb 10-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1347.341705][T16504] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1347.368817][T16504] usb 10-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1347.409326][T16504] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1347.440719][T16504] usb 10-1: config 0 descriptor??
[ 1348.082189][T16504] usbhid 10-1:0.0: can't add hid device: -71
[ 1348.096680][T16504] usbhid: probe of 10-1:0.0 failed with error -71
[ 1348.130180][T16504] usb 10-1: USB disconnect, device number 40
[ 1348.526659][T19405] Bluetooth: hci2: command 0x0406 tx timeout
[ 1348.643057][T19478] netlink: 'syz.8.3497': attribute type 25 has an invalid length.
[ 1349.203223][T19496] bridge0: port 3(bond0) entered blocking state
[ 1349.229454][T19496] bridge0: port 3(bond0) entered disabled state
[ 1349.260501][T19496] bond0: entered allmulticast mode
[ 1349.305575][T19496] bond_slave_0: entered allmulticast mode
[ 1349.314772][T19496] bond_slave_1: entered allmulticast mode
[ 1349.334018][T19496] bond0: entered promiscuous mode
[ 1349.339106][T19496] bond_slave_0: entered promiscuous mode
[ 1349.375587][T19496] bond_slave_1: entered promiscuous mode
[ 1349.404485][T19496] bridge0: port 3(bond0) entered blocking state
[ 1349.410958][T19496] bridge0: port 3(bond0) entered forwarding state
[ 1349.683148][T19511] netlink: 'syz.8.3510': attribute type 3 has an invalid length.
[ 1349.842001][ T5840] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[ 1349.930736][T19520] loop8: detected capacity change from 0 to 512
[ 1350.010414][T19520] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1350.041796][ T5840] usb 3-1: Using ep0 maxpacket: 16
[ 1350.049421][ T5840] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1350.070689][ T5840] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1350.081054][ T5840] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 1350.100704][T19520] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1350.107968][ T5840] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1350.118314][ T5840] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1350.127677][ T5840] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1350.145923][ T5840] usb 3-1: config 0 descriptor??
[ 1350.289680][T19520] 
[ 1350.292068][T19520] ======================================================
[ 1350.299124][T19520] WARNING: possible circular locking dependency detected
[ 1350.306168][T19520] syzkaller #0 Not tainted
[ 1350.310599][T19520] ------------------------------------------------------
[ 1350.317652][T19520] syz.8.3513/19520 is trying to acquire lock:
[ 1350.323739][T19520] ffff88805c6f14c8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_xattr_get+0x10b/0x6a0
[ 1350.332929][T19520] 
[ 1350.332929][T19520] but task is already holding lock:
[ 1350.340311][T19520] ffff888079536bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_ext_migrate+0x321/0x1080
[ 1350.350547][T19520] 
[ 1350.350547][T19520] which lock already depends on the new lock.
[ 1350.350547][T19520] 
[ 1350.360971][T19520] 
[ 1350.360971][T19520] the existing dependency chain (in reverse order) is:
[ 1350.370001][T19520] 
[ 1350.370001][T19520] -> #1 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 1350.378469][T19520]        percpu_down_read+0x44/0x1a0
[ 1350.383901][T19520]        ext4_writepages+0x1a4/0x350
[ 1350.389230][T19520]        do_writepages+0x3b3/0x630
[ 1350.394388][T19520]        __writeback_single_inode+0x153/0xec0
[ 1350.400488][T19520]        writeback_single_inode+0x21f/0x760
[ 1350.406419][T19520]        write_inode_now+0x183/0x210
[ 1350.411724][T19520]        iput+0x5ae/0x920
[ 1350.416081][T19520]        ext4_xattr_block_set+0x273f/0x32b0
[ 1350.422001][T19520]        ext4_expand_extra_isize_ea+0x12c5/0x1e80
[ 1350.428439][T19520]        __ext4_expand_extra_isize+0x306/0x400
[ 1350.434621][T19520]        __ext4_mark_inode_dirty+0x45d/0x6e0
[ 1350.440629][T19520]        ext4_evict_inode+0x7f3/0xea0
[ 1350.446023][T19520]        evict+0x4ca/0x8d0
[ 1350.450457][T19520]        ext4_orphan_cleanup+0xbec/0x1420
[ 1350.456191][T19520]        ext4_fill_super+0x5ed0/0x6790
[ 1350.461666][T19520]        get_tree_bdev+0x3f3/0x520
[ 1350.466790][T19520]        vfs_get_tree+0x8c/0x280
[ 1350.471736][T19520]        do_new_mount+0x24b/0xa40
[ 1350.476781][T19520]        __se_sys_mount+0x2e7/0x3d0
[ 1350.481987][T19520]        do_syscall_64+0x55/0xa0
[ 1350.486934][T19520]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1350.493370][T19520] 
[ 1350.493370][T19520] -> #0 (&ei->xattr_sem){++++}-{3:3}:
[ 1350.500967][T19520]        __lock_acquire+0x2df1/0x7d40
[ 1350.506368][T19520]        lock_acquire+0x19e/0x420
[ 1350.511410][T19520]        down_read+0x46/0x2e0
[ 1350.516107][T19520]        ext4_xattr_get+0x10b/0x6a0
[ 1350.521324][T19520]        ext4_get_acl+0x84/0x670
[ 1350.526280][T19520]        __get_acl+0x273/0x400
[ 1350.531071][T19520]        posix_acl_create+0x131/0x440
[ 1350.536461][T19520]        ext4_init_acl+0xbb/0x330
[ 1350.541505][T19520]        __ext4_new_inode+0x2f27/0x3ac0
[ 1350.547093][T19520]        ext4_ext_migrate+0x6f0/0x1080
[ 1350.552580][T19520]        ext4_ioctl+0x1ee3/0x3b80
[ 1350.557632][T19520]        __se_sys_ioctl+0xfd/0x170
[ 1350.562794][T19520]        do_syscall_64+0x55/0xa0
[ 1350.567761][T19520]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1350.574198][T19520] 
[ 1350.574198][T19520] other info that might help us debug this:
[ 1350.574198][T19520] 
[ 1350.584440][T19520]  Possible unsafe locking scenario:
[ 1350.584440][T19520] 
[ 1350.591899][T19520]        CPU0                    CPU1
[ 1350.597309][T19520]        ----                    ----
[ 1350.602682][T19520]   lock(&sbi->s_writepages_rwsem);
[ 1350.607890][T19520]                                lock(&ei->xattr_sem);
[ 1350.614786][T19520]                                lock(&sbi->s_writepages_rwsem);
[ 1350.622530][T19520]   rlock(&ei->xattr_sem);
[ 1350.626958][T19520] 
[ 1350.626958][T19520]  *** DEADLOCK ***
[ 1350.626958][T19520] 
[ 1350.635114][T19520] 3 locks held by syz.8.3513/19520:
[ 1350.640335][T19520]  #0: ffff88802fccc418 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write_file+0x63/0x200
[ 1350.650028][T19520]  #1: ffff88805c6f4a10 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: ext4_ioctl+0x1edb/0x3b80
[ 1350.660423][T19520]  #2: ffff888079536bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_ext_migrate+0x321/0x1080
[ 1350.671056][T19520] 
[ 1350.671056][T19520] stack backtrace:
[ 1350.676948][T19520] CPU: 1 PID: 19520 Comm: syz.8.3513 Not tainted syzkaller #0
[ 1350.684422][T19520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1350.694493][T19520] Call Trace:
[ 1350.697784][T19520]  <TASK>
[ 1350.700722][T19520]  dump_stack_lvl+0x18c/0x250
[ 1350.705421][T19520]  ? load_image+0x400/0x400
[ 1350.709946][T19520]  ? show_regs_print_info+0x20/0x20
[ 1350.715163][T19520]  ? print_circular_bug+0x12b/0x1a0
[ 1350.720369][T19520]  check_noncircular+0x2fc/0x400
[ 1350.725317][T19520]  ? print_deadlock_bug+0x5d0/0x5d0
[ 1350.730531][T19520]  ? lockdep_lock+0xf5/0x230
[ 1350.735137][T19520]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[ 1350.741048][T19520]  ? _find_first_zero_bit+0xd3/0x100
[ 1350.746359][T19520]  __lock_acquire+0x2df1/0x7d40
[ 1350.751238][T19520]  ? ext4_write_dquot+0x207/0x370
[ 1350.756279][T19520]  ? verify_lock_unused+0x140/0x140
[ 1350.761488][T19520]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1350.767567][T19520]  ? verify_lock_unused+0x140/0x140
[ 1350.772790][T19520]  lock_acquire+0x19e/0x420
[ 1350.777302][T19520]  ? ext4_xattr_get+0x10b/0x6a0
[ 1350.782176][T19520]  ? __might_sleep+0xe0/0xe0
[ 1350.786787][T19520]  ? read_lock_is_recursive+0x20/0x20
[ 1350.792194][T19520]  ? get_cached_acl+0xe5/0x540
[ 1350.796979][T19520]  down_read+0x46/0x2e0
[ 1350.801152][T19520]  ? ext4_xattr_get+0x10b/0x6a0
[ 1350.806013][T19520]  ext4_xattr_get+0x10b/0x6a0
[ 1350.810725][T19520]  ? get_cached_acl+0xe5/0x540
[ 1350.815508][T19520]  ? get_cached_acl+0x4fb/0x540
[ 1350.820372][T19520]  ext4_get_acl+0x84/0x670
[ 1350.824804][T19520]  ? ext4_orphan_file_empty+0x250/0x250
[ 1350.830354][T19520]  __get_acl+0x273/0x400
[ 1350.834609][T19520]  ? get_inode_acl+0x30/0x30
[ 1350.839212][T19520]  ? dquot_alloc_inode+0x15e/0xa40
[ 1350.844335][T19520]  ? __lock_acquire+0x7d40/0x7d40
[ 1350.849368][T19520]  posix_acl_create+0x131/0x440
[ 1350.854240][T19520]  ext4_init_acl+0xbb/0x330
[ 1350.858761][T19520]  ? __ext4_set_acl+0x650/0x650
[ 1350.863629][T19520]  ? insert_inode_locked+0x389/0x3e0
[ 1350.868932][T19520]  ? ext4_has_metadata_csum+0x132/0x1d0
[ 1350.874504][T19520]  __ext4_new_inode+0x2f27/0x3ac0
[ 1350.879542][T19520]  ? ext4_has_group_desc_csum+0x1f0/0x1f0
[ 1350.885289][T19520]  ? rcu_is_watching+0x15/0xb0
[ 1350.890069][T19520]  ? from_kgid+0x16d/0x690
[ 1350.894512][T19520]  ? make_kgid+0x660/0x660
[ 1350.898946][T19520]  ext4_ext_migrate+0x6f0/0x1080
[ 1350.903910][T19520]  ? rcu_read_lock_any_held+0xb4/0x140
[ 1350.909381][T19520]  ? rcu_read_lock_bh_held+0x100/0x100
[ 1350.914853][T19520]  ? mb_regenerate_buddy+0x510/0x510
[ 1350.920157][T19520]  ? down_read_killable+0x340/0x340
[ 1350.925364][T19520]  ? sb_start_write+0x110/0x1c0
[ 1350.930233][T19520]  ? mnt_want_write_file+0x16a/0x200
[ 1350.935550][T19520]  ext4_ioctl+0x1ee3/0x3b80
[ 1350.940070][T19520]  ? ext4_fileattr_set+0x16d0/0x16d0
[ 1350.945362][T19520]  ? mark_lock+0x94/0x320
[ 1350.949713][T19520]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1350.955717][T19520]  ? do_vfs_ioctl+0x1573/0x1cc0
[ 1350.960591][T19520]  ? __ia32_compat_sys_ioctl+0x8a0/0x8a0
[ 1350.966248][T19520]  ? tomoyo_path_number_perm+0x217/0x620
[ 1350.971917][T19520]  ? __lock_acquire+0x7d40/0x7d40
[ 1350.976953][T19520]  ? slab_free_freelist_hook+0x130/0x1a0
[ 1350.982605][T19520]  ? tomoyo_path_number_perm+0x500/0x620
[ 1350.988266][T19520]  ? __kmem_cache_free+0xba/0x1e0
[ 1350.993335][T19520]  ? tomoyo_path_number_perm+0x5b4/0x620
[ 1350.998993][T19520]  ? tomoyo_path_number_perm+0x217/0x620
[ 1351.004661][T19520]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 1351.010163][T19520]  ? __fget_files+0x28/0x4b0
[ 1351.014782][T19520]  ? __fget_files+0x28/0x4b0
[ 1351.019392][T19520]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1351.024344][T19520]  ? security_file_ioctl+0x80/0xa0
[ 1351.029495][T19520]  ? ext4_fileattr_set+0x16d0/0x16d0
[ 1351.034791][T19520]  __se_sys_ioctl+0xfd/0x170
[ 1351.039400][T19520]  do_syscall_64+0x55/0xa0
[ 1351.043837][T19520]  ? clear_bhb_loop+0x40/0x90
[ 1351.048554][T19520]  ? clear_bhb_loop+0x40/0x90
[ 1351.053264][T19520]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1351.059192][T19520] RIP: 0033:0x7f5e8b39c799
[ 1351.063625][T19520] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1351.083246][T19520] RSP: 002b:00007f5e8c319028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1351.091678][T19520] RAX: ffffffffffffffda RBX: 00007f5e8b615fa0 RCX: 00007f5e8b39c799
[ 1351.099671][T19520] RDX: 0000000000000000 RSI: 0000000000006609 RDI: 0000000000000004
[ 1351.107661][T19520] RBP: 00007f5e8b432bd9 R08: 0000000000000000 R09: 0000000000000000
[ 1351.115647][T19520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1351.123645][T19520] R13: 00007f5e8b616038 R14: 00007f5e8b615fa0 R15: 00007ffde03535a8
[ 1351.131899][T19520]  </TASK>
[ 1351.304632][T16424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1351.589484][ T5840] usbhid 3-1:0.0: can't add hid device: -71
[ 1351.597571][ T5840] usbhid: probe of 3-1:0.0 failed with error -71
[ 1351.624024][ T5840] usb 3-1: USB disconnect, device number 5