last executing test programs:

1m26.886621523s ago: executing program 3 (id=3083):
syz_usb_connect(0x0, 0x24, &(0x7f0000002c80)={{0x12, 0x1, 0x0, 0x41, 0x7, 0xf5, 0x40, 0xcf3, 0x9375, 0x1a9e, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xbe, 0xe4, 0xf9}}]}}]}}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x8602, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r0)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, {[], {{0x0, 0xc001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x9}}}}}}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x60, r3, 0xb7a006d1969b963b, 0x1, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x44, 0x33, @probe_request={{{}, {}, @device_a, @device_b}, @val, @val, @void, @val={0x2d, 0x1a, {0x8802, 0x3, 0x6, 0x0, {0x6, 0xd, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x3, 0x1}, 0x1, 0x95ce, 0x9}}, @val={0x72, 0x6}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x8011}, 0x10)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='net/ip_tables_targets\x00')
socket$nl_generic(0x10, 0x3, 0x10)

1m21.536775995s ago: executing program 3 (id=3097):
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004840}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x1e, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000098", @ANYBLOB="0000000000000000b702000014000000b7030400000000008500000083000000bf09"], &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1m18.505615051s ago: executing program 3 (id=3107):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000000040)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r3, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
dup3(r3, r4, 0x0)

1m16.393316774s ago: executing program 3 (id=3112):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000440)=ANY=[@ANYBLOB="b0000000"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chdir(&(0x7f0000000100)='./file0\x00')
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

1m14.847875587s ago: executing program 3 (id=3116):
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @loopback}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='bbr\x00', 0x4)
getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000100))

1m14.106408509s ago: executing program 3 (id=3119):
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$igmp(0x2, 0x3, 0x2)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000f00)='./file0\x00', 0x2200458, &(0x7f0000000ec0)={[{@oldalloc}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}]}, 0x1, 0x251, &(0x7f0000000440)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
socket(0x10, 0x3, 0x4)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={r0, 0xffffffffffffffff, 0x5, 0x80000000})
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

1m13.139044873s ago: executing program 32 (id=3119):
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$igmp(0x2, 0x3, 0x2)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000f00)='./file0\x00', 0x2200458, &(0x7f0000000ec0)={[{@oldalloc}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}]}, 0x1, 0x251, &(0x7f0000000440)="$eJzs3T+IHFUcB/DvzO4aN1kkaiOIf0BE9OCInWATG4WAhCAiqBARsVESISbY3VnZWGitksomiJ3RUtIEG0WwipoiNoIeFh4WWozMzp2cd3uc3l5mjpvPB2ZnZve9+b1h5vt2m2ED9NbRJMeTDJIsJBklKTY2uL9Zjq7tXhxfPZ1U1TO/FdN2zX5jvd+RJMtJHktypSzy2jC5cPmFG39ce+qhd8+PHvz48vPjVk9yzcqN60+vfnTync9OPHrhm+9+OVnkeCb/Oq+9V8x4b1gkd9yMYvtEMex6BPwXp9769Ps693cmeWCa/1HKNBfvvXO3XBnlkQ+36/v+r9/e3eZYgb1XVaP6O3C52p3BLvsB+0CZZJKiXEzSbJfl4mLzG/6HweHy9bPn3lx49ez5M690PVMBe2WSXH/yi0OfH9mU/58HTf6Bg6vO/7OnLv1Yb68Ouh4N0Ip7mlWd/4WXlh7Odvmvqmqp5aEB7dgx/8CBJf/QX/IP/SX/0F/yD/0l/9Bf8g/9Jf/QX/IP/bUx/wBAv1SHun4CGehK1/MPAAAAAAAAAAAAAAAAAACw1cXx1dPrS1s1v/ogWXkiyXBW/cH0/4iTW6evh38v6mb/KJpuc3nxvjkPMKdPOn76+rafuq3/9b3d1l86kyy/PU6ODYdb779i7f7bvdt3+Hz08pwF/qdi0/7jz7Vbf7O/LnVb/8S15Mt6/jk2a/4pc9d0PXv+mdTXb876b/w55wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABozd8BAAD//01eb9A=")
openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
socket(0x10, 0x3, 0x4)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={r0, 0xffffffffffffffff, 0x5, 0x80000000})
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

19.795368308s ago: executing program 5 (id=3254):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r4 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x7}, 0x1c)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x2, @in=@broadcast, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x20, 0x4001c00)

17.67700547s ago: executing program 5 (id=3257):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x34)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0xc, &(0x7f0000000540)=@framed={{0x18, 0x8, 0x0, 0x0, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, @exit], {0x95, 0x0, 0xff85}}, &(0x7f0000000000)='GPL\x00'}, 0x94)

9.635282783s ago: executing program 0 (id=3274):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x2915048, 0x0, 0x1, 0x0, &(0x7f00000002c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$pidfd(0xffffffffffffff9c, 0x0, 0x80, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getresuid(0x0, 0x0, &(0x7f00000000c0))
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={<r4=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f00000000c0)={r4, 0x4}, 0x8)

9.627380023s ago: executing program 4 (id=3275):
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r4 = openat$cgroup_devices(r3, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r4, &(0x7f00000000c0)={'b', ' *:* ', 'r\x00'}, 0x8)
write$cgroup_devices(r4, &(0x7f0000000580)={'a', ' *:* ', 'w\x00'}, 0x8)

8.52601816s ago: executing program 0 (id=3278):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
r3 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r3, 0x84, 0xd, 0x0, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x109000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000980), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r4, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000009c0)={0x14, r5, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20040004}, 0x40000c0)

8.52537691s ago: executing program 2 (id=3279):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="130000001000000002"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x8, 0x17, &(0x7f0000000440)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [@printk={@li}], {{}, {}, {0x85, 0x0, 0x0, 0xa0}}}, &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r1, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

8.50311351s ago: executing program 5 (id=3280):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
getsockopt$llc_int(r5, 0x10c, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4)

8.50239622s ago: executing program 4 (id=3281):
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f00000000c0)='./file0\x00', 0x1c802, &(0x7f0000002740)=ANY=[@ANYBLOB="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"], 0x1, 0x5f23, &(0x7f0000014380)="$eJzs3c2OHFfZB/Cnunt6PvLGsaJXkbFYOA6EhBB/2xC+4rBgAQuQkNfYmkwigwORbRCJLDyRF4gNcAmwyYZFbiRL1ogLwJLNKgtCoZo+x67p6XGPsaere87vJ42rnjpd06f8n5rqnqrqEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA/OD7PzldRcTlX6cFhyP+L/oRvYjVpj4WzczF/PhBRByJreZ4ISL6yxHN+lv/PBdxLiI+PRRx7/6t9WbxmT324/ypm9c//+H3/v67P9458rO3f/rxePuP///sJ7+/HXH4R2988vntp7PtAAAAUIq6rusqvc0/mt7f97ruFAAwE/n4Xyd5uVqtVqufav2H3nz1R11o3VZPdrtdRMRme53mNYPT8QCwYDbjs667QIfkX7RBRDzTdSeAuVZ13QH2xb37t9arlG/VPh4cG7Xnv1Nuy3+zenB/x27TacavMZnVz9ed6Mfzu/RndUZ9mCc5/954/pdH7cP0uP3Of1Z2y384uvWpODn//nj+Y7bl/6eIWNj8exPzL1XOf/A4+W/2F3j/lz8AAAAAAAdf/vv/4Y7P/y4/+absyaPO/x6bUR8AAAAAAAAA4Gl70vH/HjD+HwAAAMyt5r1648/vP/z0s90+i61ZfqmKeLZ5/KHZ9A+YQ+lmmbWu+wEAAAAAAAAAAAAAJRmMruG9VEUsRcSza2t1XTdfbeP143rS9Rdd6dsPJev6lzwAAIx8emjsXv4qYiUiLqXP+ltaW1ur65XVtXqtXl3Or2eHyyv1aut9bZ42y5aHe3hBPBjWzTdbaa3XNu398rT28e/XPNew7u+hY7PRYeAAEBGjo9E9R6QDpNrK9bno+lUOi8H+f/DY/9mLrn9OAQAAgP1X13VdpY/zPprO+fe67hQAMAsr+fg/fl5ArVar1Wr1wavb6slut4uI2Gyv07xmMBw/ACyYzfis6y7QIfkXbRARR7ruBDDXqq47wL64d//WepXyrdrHgzS+e74WZFv+m9XWenn9SdNpxq8xmdXP153ox/O79OeFGfVhnuT8e+P5Xx61D9Pj9jv/Wdkt/2Y7D3fQn67l/Pvj+Y85OPn3JuZfqpz/4LHy78sfAAAAAADmWP77/2Hnf/MmAwAAAAAAAMDCuXf/1nq+7zWf///ihMdV7Tn3fx4YOf9qz/m7//cgyfn3xvMfuyCn35q/+9bD/P91/9b6xzf/+YU8nfv8l/rD5rmXql5/kK75qZfeiatxLTbi1I7HD7a1n97RvrSt/cyU9rM72odN+2puPxHr8cu4Fm8/aF+ecmHUypT2ekp7zr9v/y9Szn/Q+mryX0vt1di0cfej3o79vj2d9DwX//rvl3fuXbN3J/oPtq2t2b7jHfRn6//kmWH86sbG9RO/uXLz5vXTkSbblp6JNHnKcv5L6Svn/8pLo/b8e7+9v979aPjY+c+LOzHYNf+XWvPN9r464751Iec/TF85/3wEmrz/L3L+u+//r3XQHwAAAAAAAAAAAAAAAHiUuq63bhG9GBEX0v0/Xd2bCQDMVj7+10lerlar1Wq1+uDVbfVkb279W22O1lvZvk7zmuG3k74ZADDP/hMR/+i6E3RG/gXLn/fXTL/UdWeAmbrxwYc/v3Lt2sb1G133BAAAAAAAAAD4X+XxP4+1xn/eug5obNzobeO/vhXHFnb8z96wvzXWedqgF+PR438fj0eP/z2Y8nxLU9qHU9qXdy76W7tYmbL+xBs9WnL+L6aMc/5H04aVNP7rKx30p2s5/+NprOec/1fGHtfOv/7LIuff25b/yZvvvX/yxgcfvn71vSvvbry78YvTpy6cO3v+3Nnz50++c/XaxqnRvx32eH/l/PPY164DLUvOP2cu/7Lk/L+cavmXJef/cqrlX5acf369J/+y5Pzzex/5lyXn/2qq5V+WnP9XUy3/suT8X0u1/MuS8/9aquVflpz/66mWf1ly/idSLf+y5PxPplr+Zcn55zNc8i9Lzj9f2SD/suT8z6Ra/mXJ+Z9NtfzLkvM/l2r5lyXnfz7V8i9Lzv9CquVflpz/11Mt/7Lk/L+RavmXJef/RqrlX5ac/zdTLf+y5Py/lWr5lyXn/+1Uy78sOf/vpFr+Zcn5fzfV8i9Lzv/NVMu/LA8//9+MGTNm8kzXv5kAAAAAAAAAAAAAgHGzuJy4620EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/ssOHAgAAAAAAPm/NkJVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVUVduBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrB3dzFylfcZwM9+2WtDghu+iQO2MWBgYXf9BQ4xmCSklLQpJSFtWlLj2GvjxF/1rhNAqCyFtkRBKlJ7QS+aJlEaRWorUBSpqUQjpEZq78pVIm6iVuLCUqFyUFIpVWCrM+d9352ZnZ1Zf6x95pzfD+G/d+bMzDtnzszus9YzAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAs/Ufm/rzgSzL8v8bf6zJsovzv6/KduVfzm6/0CsEAAAAzta7jT//4ZJ0wq4lXKhpm3+79j++Pzc3N5d94Z2T7/3l3Fw6Y12WDa3MssZ50b//8hdzzdsEz2ajA4NNXw/2uPmhHucP9zh/pMf5K3qcv7LH+aM9zl+wAxZYVfw+pnFlGxt/XVPs0uyybKRx3sYOl3p2YOXgYPxdTsNA4zJzI/uzg9mhbCqbWHCZgcZ/Wfbq+vy27s/ibQ023dbaLMtO/eypvXENA2Efb8xabqyh+bF7+95s3Ts/e2rvd2beurrT7LkbFqw0yzZtyNf5XJbN/7oqG8hWpn0S1znYtM61HdY51LLOgcbl8r+3r/PUEtcZ7/doWOfrXda5Npz2+PVZls1mi27T7tlsMFvddqtpf48WR0R+HflD+YFs+LSOk/VLOE7yy7x5fetx0n5Mxv2/PuyT4UXW0PxwvP3MigX7/UyPk/xel+FYza/7wfxGR0ebf7Xacqzm2zx1w+LHQMfHrsMxkI7lpmNgQ69jYHDFUOMYGJxf84aWY2BywWUGs4HGbZ28ofsxMD5z+Nj49BNP3nbw8J4DUwemjkxObN+6ZdvWLdu2je8/eGhqovjz9HZpH1mdDaZjcEN4rYnH4E1t2zYfknPfPHfPg9GSPA/y+/6ZG/MFXTyYLXKM59s8t+nsnwfp+37T82C46XnQ8TW1w/NgeAnPg3ybU5uW9j1zuOn/TmtYrtfCNU3HwIX8fpjf5iM3L/5auDas6/lbTvf74dCCYyDerYHw3MtPST/vjd4Z9svC4+Ka/IyLVmQnpqeO3/74npmZ45NZGOfFpU2PVfvxsrrpPmULjpfB0z5edv39r268psPpa8K+Gr21+2OVb7N1rPtj1Xh1b92fK7Jif7acujkL4xw73/uz03ezfH+mLNFlf+bbPHfb2f8smHJJ0+vfSK/Xv6GR4eL1byjtjZGW17+FD81QY2VZduq2pb3+jYT/z/fr32Ulef3L99Ujt3c/BvJtnh8/3WNguOvr3/VhDoT13BwSw2hT7n+vcf5scZg2PZY9j5vh4ZFw3AzHW2w9brYsuEx+bfltb5o4s+Nm0/Wtj1XLzy0VPG7yffVXE92Pm3yb1ybP/rVjVfxr02vHil7HwMjQiny9I+kgKF7v5lbFY+D2bG92NDuU7UuXyR/l/LbGNi/tGFgR/j/frx1XleQYyPfVS5u7HwP5Nj/acm5/dtoUTknbNP3s1P77hcUy/zXD89fXvtvOdebP1/nxH38qndYpQ+TbvLX1dHNG9/10azjlog77qf35s9gxvS87P/vpqrDOQ9u6/24q3+ay7Us8nnZlWfbG5BuN33eF3+9+78SPv9/ye99Ov1N+Y/KNB8Yf+snprB8AgDP3XuPP2RXFz5pN/2K9lH//BwAAAPpCzP2DYSbyPwAAAFRGzP1DYSbyPwAAAFRGzP3DYSY1yf+P3bnj5XefztK7Ac4F8fy4Gx68u9gudrxnw9fr5ublp3/02yMvf/Xppd32YJZlv3rggx23f+zuuK7CsbjOD7eevsBV1y3p9h99eH675vdPOLWjuP54f5Z6GMSu8qvjmxvXu+6JycZ87YGsMR+aff7Z4vqLr+P2J7cU2/9NeNOSXfsHWi6/KaxnY5jrwnvKPLhrfj/kM17u5bXX/uuln52/vXi5gQ3vb9zNl/64uN74HlEvXlpsH+/3Yuv/l6999+V8+8dv6Lz+pwc7r/9kuN43w/zlzmL75n3+1ab1/2lYf7y9eLnbv/XDjut/5cpi+1fCcfGNMNvXf+9ffOjdTo9XvJ1ddxWXi7c/8b9bG5eL1xevv339o09PtuyP9ut/7Z3ienZ++edDzdvH0+PtRI/e1Xp8D4THt6VHnmXZd/8sa9nP2UeKy/1z2/rj9R27q/P6b21b57GB6xqXn78/a1ru19f/bnPH+xvXs+sf17TcnxfvC/vvnfEf5dd78qFwPIbz/+/14vra38v0lftaX2/i9t9YUzxv4/WNt63/xbb1z16X77ve67//nWL9r9yzsmX9uz4Rjqf7i9lr/Qf+9pKWy3/zO8XjcfwrY0eOTp84uK9przY/j1eOrlp90cXve/8l4bW0/evdR2cemzq+bmLdRJat68O3DFzu9X8rzP8pxuy5v4XCT35eHHcvfLL4vnXTL4qvXwynPxoez/j98et/PdJyvLY/7rP3FPNs139LWMdSXfm1/7puSRue/PyrJ/7pT95q/7kg3p9jl4827t9L669onDfwWnF+++tVL/95eevz+qfDE435g7Bf58I7M2+4ori99uuP703ywqeL52/8SS5ePmt7P5E1Q63342zX/9Pwc8wPr2p9/YvHxw+ebns35zXZQL6E2fD6kM0W58et4v5+4dQVHW8vvg9PNnv16SxzUdNPTI8fOnjkxOPjM1PTM+PTTzy5+/DRE0dmdjfeu3T3F3tdfv75vbrx/N43tX1r1ni2Hy3GMrvQ6z/28N59d0zcuG9q/54T+2cePjZ1/MDe6em9U/umb9yzf//UV3pd/uC+nZObd2y5Y/PYgYP7dt65Y8eWHWMHjxzNl1EsqoftE18aO3J8d+Mi0zu37pjctm3rxNjho/umdt4xMTF2otflG9+bxvJLf3ns+NShPTMHD0+NTR98cmrn5I7t2zf3fPfHw8f2T68bP37iyPiJ6anj48V9WTfTODn/3tfr8tTD9NHwetdmIPx0/rlbt6f3x819+5lFr6rYpPXH0+zt8F5Q8ftbr69j7h8JM6lJ/gcAAIA6iLk/vPH//BnyPwAAAFRGzP0rw0zkfwAAAKiMmPuL5D+aPv69Lvn/XPX/n9H/b9D/1//P9P8T/X/9/0z/X/+/B/1//f9+Xr/+v/4/vZWt/x9yf7Yqy/z7PwAAAFRUzP2rw0zkfwAAAKiMmPsvCjOR/wEAAKAyYu6/OMykJvnf5//r/+v/d+v/x231/zP9/zL0/zf+t/7/Avr/+v+Z/v8Zu9D9+X5ffwn7/6v0/ymbsvX/Y+5/X5hJTfI/AAAA1EHM/e8PM5H/AQAAoDJi7r8kzET+BwAAgMqIuX9NmElN8r/+v/6//r/P/9f/75v+v8//70D/X/8/0/8/Yxe6P9/v6y9h/9/n/1M6Zev/x9z/a2EmNcn/AAAAUAcx938gzET+BwAAgMqIuf/SMBP5HwAAACoj5v7Lwkxqkv/r2f9/M8sy/f9M/1//v22d+v/6/8tB/1//vxv9f/3/fl6//r/+P72Vrf8fc//lYSY1yf8AAABQBzH3XxFmIv8DAABAZcTcf2WYifwPAAAAlRFz/1VhJjXJ//Xs//v8f/3/gv5/6zr1//X/l4P+v/5/N/r/+v/9vH79f/1/eitb/z/m/qvDTGqS/wEAAKAOYu6/JsxE/gcAAIDKiLn/g2Em8j8AAABURsz9a8NMapL/9f/1//X/9f/1//X/l1N/9f8HFz1H/7+g/9/q3PX/Z+cXoP/fN+vX/9f/p7ey9f9j7v9QmElN8j8AAADUQcz914aZyP8AAABQGTH3XxdmIv8DAABAZcTcvy7MpCb5X/9f/1//X/9f/1//fzn1V/9/cfr/Bf3/Vj7/X/9f/1//n+7K1v+PuX99mElN8j8AAADUQcz9G8JM5H8AAACojJj7rw8zkf8BAACgMmLu3xhmUpP8r/+v/6//r/+v/6//v5yq0f8f0P8P9P9b6f/r/+v/6//TXdn6/zH33xBmUpP8DwAAAHUQc/+NYSbyPwAAAFRGzP03hZnI/wAAAFAZMfdvCjOpSf7X/9f/1//v4/7/kP5/pv9fetXo//v8/3iy/n8r/X/9f/1//X+6K1v/P+b+m8NMapL/AQAAoA5i7r8lzET+BwAAgMqIuf/WMBP5HwAAACoj5v6xMJOa5H/9f/1//f8+7v/7/P+W9ev/l5P+v/5/N/r/+v/9vH79f/1/eitb/z/m/tvCTGqS/wEAAKAOYu6/PcxE/gcAAIDKiLl/PMxE/gcAAIDKiLl/IsykJvlf/1//X/9f/1//X/9/Oen/6/93o/+v/9/P69f/1/+nt7L1/2PunwwzqUn+BwAAgDqIuX9zmIn8DwAAAJURc/+WMBP5HwAAACoj5v6tYSY1yf/6/xXp/w/q/+v/6//r/5eT/r/+fzf6//r//bx+/X/9f1oNdjitbP3/mPu3hZnUJP8DAABAHcTcvz3MRP4HAACAyoi5/44wE/kfAAAAKiPm/jvDTGqS//X/K9L/9/n/+v/6//r/JaX/r//fjf6//n8/r1//X/+f3srW/4+5f0eYSU3yPwAAANRBzP0fDjOR/wEAAKAyYu6/K8xE/gcAAIC+0ulzCKOY+z8SZlKT/K//X/X+/9xK/X/9f/3/7uvX/19e+v/6/93o/+v/9/P69f/1/+mtbP3/mPt3hpnUJP8DAABAHcTcf3eYifwPAAAAlRFz/z1hJvI/AAAAVEbM/bvCTGqS//X/q97/9/n/+v/6/73Wr/+/vPT/9f+70f/vz/5/+LFF/79E/f/8GNL/p4zK1v+Puf/eMJOa5H8AAACog5j7PxpmIv8DAABAZcTc/7EwE/kfAAAAKiPm/o+HmdQk/+v/6//r/+v/6//r/y8n/f9l6/83Xgr1/wv6/2fmQvfn+339Zer/+/x/yqps/f+Y++9rzBXzV1ST/A8AAAB1UOT+0ewTYSbyPwAAAFRGzP2/HmYi/wMAAEBlxNx/f5hJTfK//r/+v/6//r/+v/7/ctL/9/n/3ej/6//38/r1//X/6a1s/f+Y+38jzKQm+R8AAADqIOb+B8JM5H8AAACojJj7PxlmIv8DAABAn1mx6Dkx9/9mmElN8r/+//np/w+m69f/1//X/9f/1/8/l/T/9f8z/f8z1qM//17bw7+A/r/+v/4/vZSt/x9z/2+FmdQk/wMAAEAdxNz/qTAT+R8AAAAqI+b+3w4zkf8BAACgMmLufzDMpCb5/1z3/9sv302d+v8+/1//P9P/1/9v2qv6/+eO/r/+f6b/f8YudH++39ev/6//T29l6//H3P87YSY1yf8AAABQBzH3PxRmIv8DAABAZcTc/+kwE/kfAAAAKiPm/s+EmdQk//v8f/1//X/9f/1//f/lpP+v/9+N/r/+fz+vX/9f/5/eytb/j7n/4TCTmuR/AAAAqIOY+z8bZiL/AwAAQGXE3P+7YSbyPwAAAFRGzP2/F2ZSk/yv/6//X5n+f7xS/X/9/3C6/n856P8v7P/nr2H6/wX9f/3/fl6//r/+P72Vrf8fc//nwkxqkv8BAACgDmLu//0wE/kfAAAAKiPm/j8IM5H/AQAAoDJi7n8kzKQm+V//X/+/Mv1/n/+v/6//X0r6/z7/vxv9f/3/fl6//r/+P72Vrf8fc//nw0xqkv8BAACgDmLu/8MwE/kfAAAAKiPm/t1hJvI/AAAAVEbM/Y+GmdQk/+v/6//r/+v/6//r/y8n/X/9/270//X/+3n9+v/6//RWtv5/zP17wkx2td4MAAAA0L9i7v9CmElN/v0fAAAA6iDm/r1hJvI/AAAAVEbM/fvCTGqS//X/9f/1//X/9f/1/5eT/r/+fzf6//r//bx+/X/9f3orW/8/5v6pMJOa5H8AAACog5j794eZyP8AAABQGTH3Hwgzkf8BAACgMmLufyzMpCb5X/9f/1//v7b9/9e/17ZO/X/9/+Wg/6//343+v/5/P69f/1//n97K1v+Puf9gmElN8j8AAADUQcz9Xwwzkf8BAACgMmLu/1KYifwPAAAAlRFz/6Ewk5rkf/1//X/9/9r2/33+f6D/v7z0//X/u9H/1//v5/Xr/+v/01vZ+v8x9x8OM6lJ/gcAAIA6iLn/SJiJ/A8AAACVEXP/0TAT+R8AAAAqI+b+Y2EmNcn/+v+n1/8fWKQbqP/fef36//r/+v/6//r/+v/d6P/r//fz+vX/9f/prWz9/5j7/yjMpCb5HwAAAOog5v7jYSbyPwAAAFRGzP3TYSbyPwAAAFRGzP0zYSY1yf/6/z7/X/9f/1//X/9/Oen/6/93o/+v/9/P69f/1/+nt7L1/2PuPxFmUpP8DwAAAHUQc///s3efuXadVRyHTxIsLCHEFGAIjCBDYABISAgmwBd6SeihQ+i9hd5CB9N77733Hgg9FCmIeK0FGHvv63t9fN79ruf5spQbIr+WEeiv6Kd937jF/gcAAIBp5O6/X9xi/wMAAMA0cvffP25psv/1//p//b/+/7L2//+VN+v/9f+Xgv5f/7/T/x/bofv5rb9f/6//Z91o/X/u/gfELU32PwAAAHSQu/+BcYv9DwAAANPI3f+guMX+BwAAgGnk7n9w3NJk/+v/9f/6f/2/7//r//dJ/6//X6L/1/9v+f36f/0/60br/3P3PyRuabL/AQAAoIPc/Q+NW+x/AAAAmEbu/ofFLfY/AAAATCN3/zVxS5P9r//X/+v/9f/6f/3/Pun/9f9L9P/6/y2/X/+v/2fdaP1/7v5r45Ym+x8AAAA6yN3/8LjF/gcAAIBp5O5/RNxi/wMAAMA0cvc/Mm5psv/1//p//b/+X/+v/98n/b/+f4n+X/+/5ffr//X/rBut/8/d/6i4pcn+BwAAgA5y9z86brH/AQAAYBq5+x8Tt9j/AAAAMI3c/Y+NW5rsf/2//l//r/9v1/+f878R+v/90v/r/5fo//X/W36//l//z7q99/93u+62e9T+P3f/dXFLk/0PAAAAHeTuf1zcYv8DAADANHL3Pz5usf8BAABgGrn7nxC3NNn/+n/9/3/6/1uv0P/r/1v0/+f8evr//dL/6/+X6P/1/wd9/730//p/9m3v/f9K73/uX+fuf2Lc0mT/AwAAQAe5+58Ut9j/AAAAMI3c/U+OW+x/AAAAmEbu/qfELU32v/5f/+/7//p//b/+f5/0//r/Jfp//f+W37/U/199hPfr/+lgtP4/d/9T45Ym+x8AAAA6yN3/tLjF/gcAAIBp5O6/Pm6x/wEAAGAaufufHrc02f/6f/2//l///7/9/5Ut+/9//0z/vx/6f/3/Ev2//n/s919xu6V/3vf/9f+sG63/z93/jLilyf4HAACADnL3PzNusf8BAABgGrn7nxW32P8AAAAwjdz9z45bmux//b/+X/+v/z/R9/+vmqP/9/3//dH/6/+X6P/1/1t+v/5f/8+60fr/3P3PiVua7H8AAADoIHf/c+MW+x8AAACmkbv/eXGL/Q8AAADTyN3//Lilyf7X/+v/9f/6/xP1/5N8/1//vz/6f/3/kqP2/zv9f/1e9P/jvF//r/9n3Wj9f+7+F8QtTfY/AAAAdJC7/4Vxi/0PAAAA08jd/6K4xf4HAACAaeTuf3Hc0mT/6//1//p//b/+X/+/T/p//f8S3//X/2/5/fp//T/rRuv/c/e/JG5psv8BAACgg9z9L41b7H8AAACYRu7+l8Ut9j8AAABMI3f/y+OWJvtf/6//1//r//X/+v990v/r/5fo/8/f/5++wK+n/x/r/fp//T/rRuv/c/ffELc02f8AAADQQe7+V8Qt9j8AAABMI3f/K+MW+x8AAACmkbv/VXFLk/1/of7/5juc/fv6/6PR/5///fp//b/+X/+v/9f/L9H/+/7/lt+v/9f/s260/j93/6vjlib7HwAAADrI3f+auMX+BwAAgGnk7n9t3GL/AwAAwDRy978ubmmy/y/99//vrP/X/+v/4+r/9f/6f/2//n+Z/l//v+X36//1/6wbrf/P3f/6uKXJ/gcAAIAOcve/IW6x/wEAAGAaufvfGLfY/wAAADCN3P1vilua7P9L3//7/r/+/yL7/yv1/0n/H3+u+n/9/0XQ/+v/d/r/Yzt0P7/19+v/9f+sG63/z91/Y9zSZP8DAABAB7n73xy32P8AAAAwjdz9b4lb7H8AAACYRu7+t8YtTfb///f/V+9m7v/z/fr/s4bo/33/v+j/489V/6//vwj6f/3/Tv9/bIfu57f+fv2//p91o/X/ufvfFrc02f8AAADQQe7+t8ct9j8AAABMI3f/O+IW+x8AAACmkbv/nXFLk/3v+//6f/3/8P3/jef+903/r//fEv2//n+J/l//v+X3j9P/xw+u0f8zntH6/9z974pbmux/AAAA6CB3/7vjFvsfAAAAppG7/0zcYv8DAADANM7ccpf73KP+qt/+1/9vvf+/503xAv3/vP2/7//H1f/r/89H/6//3+n/j+3Q/fzW3z9O/+/7/4xrtP7/Pbf9U6d3741bmux/AAAA6CB3//viFvsfAAAAppG7//1xi/0PAAAA08jd/4G4pcn+1/9vvf/3/X/9v/5f/z82/b/+f4n+X/+/5ffr//X/rBut/8/d/8G4pcn+BwAAgA5y938obrH/AQAAYBq5+z8ct9j/AAAAMI3c/R+JW5rsf/2//l//r/8/cf9/rf5/p/+/IP2//n+J/l//v+X36//1/6xb6f9PX+7+P3f/R+OWJvsfAAAAOsjd/7G4xf4HAACAaeTu/3jcYv8DAADANHL3fyJuuOsdD/ekS+vUBX4evbn+X/+v/9f/+/6//n+f9P/6/yX6f/3/lt+v/9f/s2607//n7v9k3OLf/wMAAMA0cvd/Km6x/wEAAGAaufs/HbfY/wAAADCN3P2fiVua7H/9v/5f/6//1//r//dJ/6//X6L/1/9v+f36f/0/60br/3P3fzZuabL/AQAAoIPc/Z+LW+x/AAAAmEbu/s/HLfY/AAAATCN3/xfilib7X/+v/9f/6/8P1f/ffaf/1/+fnP5f/7/T/x/bofv5rb9f/6//Z91o/X/u/i/GLU32PwAAAHSQu/9LcYv9DwAAANPI3f/luMX+BwAAgGnk7v9K3NJk/+v/9f/6f/2/7//r//dJ/6//X6L/1/9v+f36f/0/60br/3P3fzVuabL/AQAAoIPc/V+LW+x/AAAAmEbu/q/HLfY/AAAATCN3/zfilib7f+b+f+k/to3+/9Y76f/1//p//b/+f5n+X/+/0/8f26H7+a2/X/+v/2fdaP1/7v5vxi1N9j8AAAB0kLv/W3GL/Q8AAADTyN3/7bjF/gcAAIBp5O7/TtzSZP/P3P8v2Ub/7/v/+n/9/07/r/9fof/X/+/0/8d26H5+6+/X/+v/WXeg/v/U7gL9f+7+78YtTfY/AAAAdJC7/3txi/0PAAAA08jd//24xf4HAACAaeTu/0HcMs/+v/eZhb+p/9f/6//1//p//f8+6f/1/0v0//r/Lb9f/6//Z91o3//P3f/DuGWe/Q8AAADt5e7/Udxi/wMAAMA0cvf/OG6x/wEAAGAauft/Erc02f/6f/2//r9V/3/VTv+v/7/M9P/6/yX6f/3/lt+v/9f/s260/j93/0/jlib7HwAAADrI3f+zuMX+BwAAgGnk7v953GL/AwAAwDRy9/8ibmmy//X/+n/9f6v+3/f/9f+Xnf5f/79E/6//3/L79f/6f9aN1v/n7v9l3NJk/wMAAEAHuft/FbfY/wAAADCN3P2/jlvsfwAAAJhG7v7fxC1N9r/+X/+v/9f/6//1//uk/9f/L9H/6/+3/H79v/6fdaP1/7n7b4pbmux/AAAA6CB3/2/jFvsfAAAAppG7/3dxi/0PAAAA08jdf3Pc0mT/6//1/1P2/7fX/+v/9f+j0P8fp/8/4v+R6v/1/yd06H5+6+/X/+v/WTda/5+7//dxS5P9DwAAAB3k7v9D3GL/AwAAwDRy9/8xbrH/AQAAYBq5+/8UtzTZ//p//f/F9/+n6vc9bP/v+//6f/3/MPT/vv+/pHv/f/0NZ3+s/9/m+/X/+n/Wjdb/5+7/c9zSZP8DAABAB7n7/xK32P8AAAAwjdz9f41b7H8AAACYRu7+W+KWJvtf/6//n/L7//p//b/+fxj6f/3/ku79v+//b/v9+n/9P+tG6/9z9/8tbmmy/wEAAKCD3P1/j1vsfwAAAJhG7v5/xC32PwAAAEwjd/8/45Ym+1//r//X/+v/9f/6/33S/+v/l+j/9f9bfr/+X//PutH6/9z9/woAAP//LrA/zg==")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
mount(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2012024, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_procfs(0x0, 0x0)
rmdir(&(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00')

8.000060288s ago: executing program 1 (id=3282):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x26, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000001c0)=@ccm_128={{0x303}, "4eff51afaef09474", "d373a417660000000000000021000008", "e8b29a2c", "662e229672253891"}, 0x28)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)

7.240941029s ago: executing program 2 (id=3283):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
shmget$private(0x0, 0x1000, 0x78000a42, &(0x7f0000ff2000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80043, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r3, 0x404c534a, &(0x7f0000000400)={0x0, 0x0, 0x5})
process_vm_writev(0x0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)

7.22094716s ago: executing program 0 (id=3284):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r3, 0x11, 0x68, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000001c00), 0x400000000000159, 0x40840)
io_setup(0x8, &(0x7f0000002740)=<r4=>0x0)
io_getevents(r4, 0x4, 0x4, &(0x7f0000000000)=[{}, {}, {}, {}], 0x0)
pread64(0xffffffffffffffff, &(0x7f0000002240)=""/237, 0xfecf, 0x4eb)
io_destroy(r4)

6.55774475s ago: executing program 5 (id=3285):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
lsetxattr$security_capability(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000240), 0x0, 0x0, 0x0)
eventfd2(0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
io_setup(0x81, &(0x7f0000000200)=<r1=>0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, 0x0, 0x0)
io_setup(0x401, 0x0)
io_submit(0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
readv(r2, &(0x7f0000000080)=[{&(0x7f0000000100)=""/161, 0xa1}], 0x1)
io_cancel(r1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendto(r3, 0x0, 0x0, 0x0, 0x0, 0x0)

6.175039586s ago: executing program 2 (id=3286):
socket$nl_netfilter(0x10, 0x3, 0xc)
mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000180)='.\x00', &(0x7f0000000200), 0x800, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=rdma'])
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000020000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x10000000, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe, 0xd}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x3f8, 0x0, 0x940c, 0x3002, 0x0, 0x2c0, 0x328, 0x3d8, 0x3d8, 0x328, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c8, 0x210, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x1, 0x1, 0x3, 'syz0\x00'}}, @common=@eui64={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd8, 0x118, 0x0, {}, [@common=@frag={{0x30}, {[0x5, 0x2], 0x80000001, 0x29, 0x1}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x458)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="240000006800090300000000000000d33188a43ac7000a00000000000000040004000800010001000000"], 0x24}}, 0x0)
close(0xffffffffffffffff)
mknod(&(0x7f0000000100)='./file0\x00', 0x1000, 0x5)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x4005, 0x0)

6.174279655s ago: executing program 1 (id=3287):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r5, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}}, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000140)={'veth0\x00', &(0x7f00000001c0)=@ethtool_perm_addr={0x20, 0x36, "acdaca03f6596a3f83eae60bb5bcd5784fd49b1202a00976d2f379ef338064b1a1872dba7e4c2a74e38bd0f7c32c31b878fc31ca2096"}})

6.060059407s ago: executing program 0 (id=3288):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000780), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000003c0)={0x14, r1, 0xffffffffffffffff, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000089}, 0x24000080)

5.260890509s ago: executing program 1 (id=3289):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x24040000)
r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x3, 0x800}, &(0x7f0000001200)=<r4=>0x0, &(0x7f0000001040)=<r5=>0x0)
socket$kcm(0x29, 0x7, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_UNLINKAT={0x24, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x200, 0x1})
io_uring_enter(r3, 0x47f9, 0x0, 0x0, 0x0, 0x0)

5.050610893s ago: executing program 0 (id=3290):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000280)=ANY=[])
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_open_procfs(0x0, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x1}], 0x1)
r3 = accept4$unix(r0, 0x0, 0x0, 0x0)
sendto$packet(r2, &(0x7f0000000600)="5f0efc3e1792a50972d2eb21bdff9ca4ac804c2847fe7bf05ddc63ff512d4074687760a5fbd1fc97772c6f5027dcea15b6658de3b024a6ea22baafb445bf8427c8055d00", 0xffffff3d, 0x0, 0x0, 0x0)
recvmsg(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r4, 0xffffffffffffffff, 0x0)

5.049807123s ago: executing program 2 (id=3291):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
fsopen(&(0x7f0000000280)='fuse\x00', 0x1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000001, 0x5, 0xfffffffffffffffe, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x0, 0x1c, 0x0, 0xffffffffffffffff, 0x6], 0x0, 0x41901})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4.991696874s ago: executing program 5 (id=3300):
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
syz_open_dev$vim2m(0x0, 0x800, 0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioprio_set$pid(0x1, 0x0, 0x4000)
r2 = socket(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x148, 0x178, 0xc, 0x0, 0x178, 0x258, 0x258, 0x258, 0x258, 0x258, 0x3, 0x0, {[{{@ipv6={@loopback={0x1f0}, @mcast2, [], [], 'team_slave_0\x00', 'wlan1\x00'}, 0x0, 0x118, 0x148, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x836, 0x0, 0x1, 0x0, 0xfffffffc}}, @common=@unspec=@addrtype1={{0x28}}]}, @common=@inet=@SET2={0x30}}, {{@ipv6={@private1, @mcast1, [], [], 'wg1\x00', 'hsr0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388)

4.176073226s ago: executing program 1 (id=3292):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x800000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r4, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000080)=0x15ff, 0x4)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000240)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000580)=0x1, r5, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r0, 0x0, 0x0)

4.120961747s ago: executing program 4 (id=3293):
syz_init_net_socket$bt_l2cap(0xffffffffffffffff, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
shutdown(r4, 0x2)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, 0x0)

3.728509223s ago: executing program 0 (id=3294):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, 0x0)
read(r1, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$vim2m(&(0x7f0000000280), 0x0, 0x2)
r2 = dup(0xffffffffffffffff)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000052e8e510b1134200c4dc0102030109021b00010000000009044400012eafb2000905"], 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
eventfd2(0x3ff, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f00000000c0)={0x1d, r4, 0x0, {0x0, 0x0, 0x2}, 0x1}, 0x18)
connect$can_j1939(r3, &(0x7f0000000140)={0x1d, r4, 0x0, {0x1, 0xff, 0xa8fe8ad4eea2351f}, 0x2}, 0x18)
sendmmsg(r3, &(0x7f0000003e40), 0x3fffffffffffe3d, 0xf5)

3.639796094s ago: executing program 5 (id=3295):
socket(0xa, 0x3, 0x3a)
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x46d, 0xc294, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xc0, 0x0, [{{0x9, 0x4, 0x0, 0x3, 0x3, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x3, 0x1, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x28, 0x5, 0x0)
socket(0x10, 0x802, 0x0)
socket$key(0xf, 0x3, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
ioctl$FIDEDUPERANGE(r3, 0xc0189436, &(0x7f0000000040)={0x2, 0x0, 0x1, 0x0, 0x0, [{{r3}, 0x1}]})
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040))

3.492840567s ago: executing program 2 (id=3296):
socket$nl_generic(0x10, 0x3, 0x10)
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000340)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x100000002}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x100000000}}], [{@uid_lt}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@audit}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000814}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x2c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x1b, &(0x7f0000001800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000000000008500000017000000180100002020690000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000700)={r2, r4, 0x25, 0x0, @val=@perf_event}, 0x18)

1.91316109s ago: executing program 1 (id=3297):
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000200009500000000000000"], &(0x7f00000001c0)='syzkaller\x00'}, 0x80)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r2, r3, 0x25, 0x0, @val=@netfilter}, 0x40)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r3, {}, {}, {0x0, 0xe}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
connect$llc(0xffffffffffffffff, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r5, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001540)=ANY=[@ANYBLOB="1c0000000706010800000000000000000a0000040500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x4008800)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100766c616e000000001800028006000100010000000c000200540a00001800000008000500", @ANYRES32=r4], 0x50}, 0x1, 0xba01}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x404c080)

1.502344507s ago: executing program 4 (id=3298):
syz_open_procfs(0x0, &(0x7f0000000080)='timerslack_ns\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x6, 0x3, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x19}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r1, &(0x7f0000000000), &(0x7f0000000500)=""/73}, 0x20)

1.354856959s ago: executing program 4 (id=3299):
r0 = epoll_create1(0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)
gettid()
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$sock(r4, &(0x7f0000003bc0), 0x4000000000002ca, 0x4040014)
close_range(r0, 0xffffffffffffffff, 0x0)

1.149481342s ago: executing program 2 (id=3301):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000005600)='./file0\x00', 0x10001, &(0x7f0000000500)={[{@nossd_spread}]}, 0x0, 0x559e, &(0x7f0000005680)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x2, 0x0, {0x1, 0xfffffffffffffffd}}, 0x28)
ioctl$vim2m_VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x1, 0x0, 0xa78a, 0x800})
landlock_create_ruleset(0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_INO_PATHS(r0, 0xd000943e, 0x0)

271.712286ms ago: executing program 4 (id=3302):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
pwrite64(0xffffffffffffffff, &(0x7f0000000040)="7bd62f3e5c03e3cc8581c2", 0xb, 0xfffffffffffffff9)
futex(0x0, 0x84, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
ioctl$KDSETMODE(r3, 0x4b3a, 0x1)
ioctl$TCXONC(r3, 0x4b3a, 0x2)

0s ago: executing program 1 (id=3303):
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x4000074, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r5}, 0x10)
syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0xa000000d})

kernel console output (not intermixed with test programs):

 multicast optimizations disabled
[  357.496061][ T8392] bridge0: port 1(batadv0) entered disabled state
[  357.853594][ T8399] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1191'.
[  357.925142][ T8402] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  361.656190][ T8454] loop1: detected capacity change from 0 to 1024
[  361.717266][ T8454] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  361.815378][ T8458] bridge0: port 1(batadv0) entered blocking state
[  361.964874][ T8458] bridge0: port 1(batadv0) entered disabled state
[  362.112855][ T8464] delete_channel: no stack
[  362.926337][ T8468] loop1: detected capacity change from 0 to 2048
[  363.018038][ T8468] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  363.155988][ T8444] loop3: detected capacity change from 0 to 2048
[  363.195931][ T8444] UDF-fs: bad mount option "00000000000000000000000��" or missing value
[  364.743673][ T8490] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1214'.
[  366.127922][ T6713] EXT4-fs (loop1): unmounting filesystem.
[  366.177408][ T8501] loop4: detected capacity change from 0 to 256
[  366.220709][ T8501] exfat: Deprecated parameter 'namecase'
[  366.262993][ T8501] exfat: Unknown parameter 'eprors'
[  366.375360][ T8506] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1221'.
[  366.423107][ T8501] xt_HMARK: proto mask must be zero with L3 mode
[  367.430134][ T8518] loop3: detected capacity change from 0 to 512
[  367.468962][ T8518] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  367.868701][ T8518] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  367.933630][ T8518] System zones: 0-2, 18-18, 34-34
[  368.008021][ T8518] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  368.068382][ T8518] ext4 filesystem being mounted at /226/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  368.842796][ T8542] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  368.945924][ T4279] EXT4-fs (loop3): unmounting filesystem.
[  370.438307][ T8558] netlink: 'syz.3.1232': attribute type 2 has an invalid length.
[  371.242042][ T8562] netlink: 'syz.3.1234': attribute type 4 has an invalid length.
[  371.716747][ T8574] delete_channel: no stack
[  372.476352][ T8580] syz.3.1239[8580] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  372.476836][ T8580] syz.3.1239[8580] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  374.202032][ T8590] netlink: 'syz.3.1243': attribute type 1 has an invalid length.
[  374.306187][ T8590] 8021q: adding VLAN 0 to HW filter on device bond1
[  374.973287][ T8599] bond1: (slave bridge2): making interface the new active one
[  375.046573][ T8599] bond1: (slave bridge2): Enslaving as an active interface with an up link
[  375.124311][ T4610] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  375.154083][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1244'.
[  375.196223][ T8590] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1243'.
[  375.733576][ T8620] delete_channel: no stack
[  377.274364][ T8635] loop4: detected capacity change from 0 to 64
[  377.927223][ T4286] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  378.444016][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  378.450417][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  379.529696][ T8657] loop4: detected capacity change from 0 to 2048
[  379.650091][ T8657]  loop4: p1 < > p3
[  379.672448][ T8657] loop4: p3 size 134217728 extends beyond EOD, truncated
[  382.819566][ T8701] loop4: detected capacity change from 0 to 1024
[  382.887754][ T4286] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  382.950086][ T8710] netlink: 'syz.0.1277': attribute type 1 has an invalid length.
[  382.979229][ T8710] 8021q: adding VLAN 0 to HW filter on device bond3
[  383.017413][ T8710] bond3: (slave bridge6): making interface the new active one
[  383.026757][ T8710] bond3: (slave bridge6): Enslaving as an active interface with an up link
[  383.041986][ T4893] IPv6: ADDRCONF(NETDEV_CHANGE): bond3: link becomes ready
[  383.069812][ T8710] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1277'.
[  383.338853][ T8718] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1279'.
[  384.595448][ T8727] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1281'.
[  387.492745][ T8759] loop1: detected capacity change from 0 to 256
[  388.205917][ T8761] xt_CT: No such helper "snmp_trap"
[  388.601381][   T27] kauditd_printk_skb: 60 callbacks suppressed
[  388.601396][   T27] audit: type=1326 audit(2000000168.300:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  388.680741][   T27] audit: type=1326 audit(2000000168.340:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  388.712864][   T27] audit: type=1326 audit(2000000168.340:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  388.789001][   T27] audit: type=1326 audit(2000000168.340:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  388.814339][ T8780] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1298'.
[  388.844160][   T27] audit: type=1326 audit(2000000168.340:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  388.883442][ T8783] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  388.911272][   T27] audit: type=1326 audit(2000000168.340:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  388.944629][ T8783] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  388.953796][ T8783] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  388.963354][   T27] audit: type=1326 audit(2000000168.340:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  388.993713][   T27] audit: type=1326 audit(2000000168.340:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  389.058476][   T27] audit: type=1326 audit(2000000168.340:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  389.081164][   T27] audit: type=1326 audit(2000000168.350:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8768 comm="syz.3.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  390.186549][ T8795] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1302'.
[  390.906705][ T8803] loop1: detected capacity change from 0 to 512
[  390.966194][ T8803] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  391.043641][ T8803] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  391.107437][ T8803] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  391.135188][ T8803] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  391.173964][ T8803] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e040e01c, mo2=0000]
[  391.183760][ T8803] EXT4-fs (loop1): failed to initialize system zone (-117)
[  391.191193][ T8803] EXT4-fs (loop1): mount failed
[  391.649336][ T8816] 9pnet_fd: p9_fd_create_unix (8816): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  393.597589][ T8841] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1316'.
[  399.415272][ T8880] dccp_close: ABORT with 32 bytes unread
[  401.730225][ T8906] overlayfs: failed to clone upperpath
[  402.562858][ T8912] orangefs_mount: mount request failed with -4
[  404.245274][ T8936] netlink: 'syz.1.1345': attribute type 7 has an invalid length.
[  404.539238][ T8936] loop1: detected capacity change from 0 to 40427
[  404.548450][ T8936] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  404.556307][ T8936] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  404.567870][ T8936] F2FS-fs (loop1): invalid crc value
[  404.599205][ T8936] F2FS-fs (loop1): Found nat_bits in checkpoint
[  404.652142][ T8936] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  404.659364][ T8936] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  404.715602][ T8936] syz.1.1345: attempt to access beyond end of device
[  404.715602][ T8936] loop1: rw=2049, sector=45096, nr_sectors = 96 limit=40427
[  404.747068][ T8936] syz.1.1345: attempt to access beyond end of device
[  404.747068][ T8936] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  404.811793][ T4902] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  404.840270][ T4902] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  409.196178][    C0] MPTCP: addr_signal error, add_addr=2, echo=1
[  409.197659][    C0] MPTCP: addr_signal error, add_addr=2, echo=1
[  409.220184][    C0] MPTCP: addr_signal error, add_addr=3, echo=1
[  409.445164][ T9009] xt_nat: multiple ranges no longer supported
[  409.600707][    C0] MPTCP: addr_signal error, add_addr=2, echo=1
[  409.605264][ T4880] tipc: Subscription rejected, illegal request
[  411.354065][   T27] kauditd_printk_skb: 17 callbacks suppressed
[  411.354254][   T27] audit: type=1326 audit(2000000190.980:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9020 comm="syz.3.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  411.667216][   T27] audit: type=1326 audit(2000000190.990:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9020 comm="syz.3.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  411.708038][   T27] audit: type=1326 audit(2000000190.990:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9020 comm="syz.3.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  411.778943][   T27] audit: type=1326 audit(2000000190.990:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9020 comm="syz.3.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  422.150870][ T9149] dccp_close: ABORT with 64 bytes unread
[  423.726249][ T9177] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  423.735562][ T9177] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  423.743424][ T9177] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  425.852879][ T9200] netlink: 'syz.2.1415': attribute type 1 has an invalid length.
[  425.897273][ T9200] 8021q: adding VLAN 0 to HW filter on device bond4
[  426.027973][ T9200] 8021q: adding VLAN 0 to HW filter on device bond4
[  426.471925][ T9200] bond4: (slave vti0): The slave device specified does not support setting the MAC address
[  427.039309][ T9200] bond4: (slave vti0): Error -95 calling set_mac_address
[  427.184638][ T9203] bond4: (slave gretap1): making interface the new active one
[  427.331850][ T9203] bond4: (slave gretap1): Enslaving as an active interface with an up link
[  428.665492][ T9234] loop1: detected capacity change from 0 to 256
[  431.311633][ T9257] loop3: detected capacity change from 0 to 1024
[  438.769223][ T9331] xt_nat: multiple ranges no longer supported
[  439.805915][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  439.812247][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  441.544439][ T9348] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  443.827815][ T9383] xt_nat: multiple ranges no longer supported
[  446.269543][ T4899] tipc: Subscription rejected, illegal request
[  446.671332][ T9413] netlink: 'syz.2.1475': attribute type 4 has an invalid length.
[  446.804133][ T9413] netlink: 'syz.2.1475': attribute type 4 has an invalid length.
[  447.613294][ T9432] xt_nat: multiple ranges no longer supported
[  449.427677][ T4895] tipc: Subscription rejected, illegal request
[  450.695329][ T9486] loop3: detected capacity change from 0 to 1024
[  453.151046][ T9497] ceph: No mds server is up or the cluster is laggy
[  455.216943][ T4909] tipc: Subscription rejected, illegal request
[  455.626312][ T9542] device vlan0 entered promiscuous mode
[  455.702483][ T9542] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1515'.
[  457.945758][    T7] libceph: connect (1)[c::]:6789 error -101
[  457.956314][    T7] libceph: mon0 (1)[c::]:6789 connect error
[  457.971336][    T7] libceph: connect (1)[c::]:6789 error -101
[  457.993107][    T7] libceph: mon0 (1)[c::]:6789 connect error
[  458.275175][    T7] libceph: connect (1)[c::]:6789 error -101
[  458.558623][    T7] libceph: mon0 (1)[c::]:6789 connect error
[  458.709634][ T9573] ceph: No mds server is up or the cluster is laggy
[  463.372359][ T9620] loop3: detected capacity change from 0 to 4096
[  466.766488][ T9658] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  472.182104][ T9725] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  472.210179][ T9725] Cannot find set identified by id 0 to match
[  473.043845][ T9733] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1563'.
[  473.241414][ T9740] loop3: detected capacity change from 0 to 128
[  474.420930][ T9740] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  474.435227][ T9740] ext4 filesystem being mounted at /289/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  475.307669][ T4279] EXT4-fs (loop3): unmounting filesystem.
[  481.301008][ T9814] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1593'.
[  483.961061][ T9837] binder: 9834:9837 ioctl c0306201 200000000280 returned -14
[  485.016267][ T9852] loop3: detected capacity change from 0 to 2048
[  485.141522][ T9852]  loop3: p1 < > p3
[  485.147484][ T9852] loop3: p3 size 134217728 extends beyond EOD, truncated
[  485.915828][ T9864] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1607'.
[  485.920647][ T9862] kvm: emulating exchange as write
[  486.014378][ T9869] bridge0: port 1(veth0_to_bond) entered blocking state
[  486.135249][ T9869] bridge0: port 1(veth0_to_bond) entered disabled state
[  486.143965][ T9869] device veth0_to_bond entered promiscuous mode
[  490.128701][ T9893] syz.3.1612 (9893): drop_caches: 2
[  490.348974][ T9914] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  491.985721][ T9934] device batadv_slave_1 entered promiscuous mode
[  492.006998][ T9934] device veth1_virt_wifi entered promiscuous mode
[  492.015016][ T9933] device veth1_virt_wifi left promiscuous mode
[  493.094356][ T9933] device batadv_slave_1 left promiscuous mode
[  493.686350][ T9965] loop3: detected capacity change from 0 to 4096
[  493.709909][ T9965] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  493.722126][ T9965] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  493.737822][ T9965] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  493.749529][ T9965] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  493.762744][ T9965] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  493.779354][ T9965] ntfs: volume version 3.1.
[  493.790649][ T9965] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  493.801801][ T9965] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  493.813212][ T9965] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  493.831596][ T9965] ntfs: (device loop3): ntfs_read_locked_index_inode(): $INDEX_ROOT attribute is corrupt.
[  493.841707][ T9965] ntfs: (device loop3): ntfs_read_locked_index_inode(): Failed with error code -5 while reading index inode (mft_no 0x18, name_len 2.
[  495.642714][ T4278] Bluetooth: min 6 > max 0
[  496.839247][T10003] syz.2.1649 sent an empty control message without MSG_MORE.
[  497.837132][ T4278] Bluetooth: hci1: command 0x2021 tx timeout
[  498.657265][T10027] tipc: Failed to remove unknown binding: 66,1,1/2886997007:3790378162/3790378164
[  498.941052][T10027] tipc: Failed to remove unknown binding: 66,1,1/2886997007:3790378162/3790378164
[  499.251216][T10027] tipc: Failed to remove unknown binding: 66,1,1/2886997007:3790378162/3790378164
[  499.747531][T10038] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1658'.
[  499.779527][T10038] device vxcan3 entered promiscuous mode
[  501.480201][T10062] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  502.157639][T10069] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1667'.
[  502.232134][T10074] loop3: detected capacity change from 0 to 164
[  502.564974][T10079] netlink: 'syz.1.1671': attribute type 10 has an invalid length.
[  503.396900][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  503.404847][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  503.842299][T10079] 8021q: adding VLAN 0 to HW filter on device batadv0
[  503.867842][T10079] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  505.245727][   T14] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  506.048375][   T14] usb 4-1: Using ep0 maxpacket: 32
[  506.083118][   T14] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[  506.102508][   T14] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  506.111154][   T14] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[  506.124632][   T14] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  506.462314][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805969b400: rx timeout, send abort
[  506.498915][    C0] vcan0: j1939_tp_rxtimer: 0xffff888058db0c00: rx timeout, send abort
[  506.507478][   T14] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  506.572132][   T14] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  506.736237][   T14] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  506.745817][   T14] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  506.757019][   T14] usb 4-1: config 0 descriptor??
[  507.162547][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805969b400: abort rx timeout. Force session deactivation
[  507.174888][    C0] vcan0: j1939_tp_rxtimer: 0xffff888058db0c00: abort rx timeout. Force session deactivation
[  507.283334][   T14] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  508.321005][   T14] usb 4-1: USB disconnect, device number 7
[  508.358360][   T14] usblp0: removed
[  508.448801][T10136] batman_adv: batadv0: Adding interface: dummy0
[  508.467357][T10136] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  508.642532][T10136] batman_adv: batadv0: Interface activated: dummy0
[  508.773352][T10143] batadv0: mtu less than device minimum
[  508.812002][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.824648][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.837190][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.849449][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.861668][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.873883][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.885968][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.897276][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.908572][T10143] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  508.931533][   T14] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  509.127703][   T14] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[  509.147615][   T14] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  509.176980][   T14] usb 4-1: config 0 descriptor??
[  510.157434][T10159] netlink: 'syz.3.1688': attribute type 10 has an invalid length.
[  510.337837][   T14] ath6kl: Failed to submit usb control message: -110
[  510.344612][   T14] ath6kl: unable to send the bmi data to the device: -110
[  510.424222][   T14] ath6kl: Unable to send get target info: -110
[  510.446509][   T14] ath6kl: Failed to init ath6kl core: -110
[  510.600818][   T14] ath6kl_usb: probe of 4-1:0.0 failed with error -110
[  510.664774][   T14] usb 4-1: USB disconnect, device number 8
[  511.521198][ T4278] Bluetooth: hci2: Unknown advertising packet type: 0x4b00
[  511.521313][ T4278] Bluetooth: hci2: Unknown advertising packet type: 0xa00
[  511.522125][T10170] netlink: 'syz.4.1695': attribute type 12 has an invalid length.
[  511.529170][ T4278] Bluetooth: hci2: Malformed LE Event: 0x0d
[  515.234860][T10210] fuse: Bad value for 'fd'
[  515.545264][T10218] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1708'.
[  515.625613][T10218] bridge3: port 1(veth0_to_bond) entered blocking state
[  515.663514][T10218] bridge3: port 1(veth0_to_bond) entered disabled state
[  515.697196][T10218] device veth0_to_bond entered promiscuous mode
[  517.287896][T10247] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  517.295213][T10247] IPv6: NLM_F_CREATE should be set when creating new route
[  517.308528][T10250] netlink: 'syz.4.1720': attribute type 1 has an invalid length.
[  517.719832][T10250] 8021q: adding VLAN 0 to HW filter on device bond6
[  517.769924][T10257] device veth0_to_bond left promiscuous mode
[  517.776702][T10257] bridge0: port 1(veth0_to_bond) entered disabled state
[  517.788516][T10257] bond0: (slave macvlan3): Releasing backup interface
[  517.797374][T10257] device batadv0 left promiscuous mode
[  517.828268][T10257] bond3: (slave bridge6): Releasing active interface
[  517.876172][T10254] bond6: (slave veth5): Enslaving as an active interface with a down link
[  517.898184][T10259] team0: Mode changed to "activebackup"
[  517.923593][T10250] device veth1 entered promiscuous mode
[  517.939058][T10250] device veth1 left promiscuous mode
[  517.956548][T10250] bond6: (slave vlan4): making interface the new active one
[  518.056612][T10250] device veth1 entered promiscuous mode
[  518.063065][T10250] device vlan4 entered promiscuous mode
[  518.071660][T10250] bond6: (slave vlan4): Enslaving as an active interface with an up link
[  518.088139][ T4880] IPv6: ADDRCONF(NETDEV_CHANGE): bond6: link becomes ready
[  518.767408][T10259] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1721'.
[  519.970649][T10277] xt_nfacct: accounting object `syz1' does not exists
[  522.878197][T10300] syz.0.1731[10300] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  522.878261][T10300] syz.0.1731[10300] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  522.944639][T10300] netlink: 'syz.0.1731': attribute type 4 has an invalid length.
[  527.477517][T10351] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1750'.
[  527.497171][T10351] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  531.265308][T10400] netlink: 6 bytes leftover after parsing attributes in process `syz.3.1760'.
[  531.274441][T10400] net_ratelimit: 10 callbacks suppressed
[  531.274471][T10400] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  531.824672][T10407] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1465880598/1465880600
[  532.368629][T10412] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1465880598/1465880600
[  532.390586][T10412] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1465880598/1465880600
[  532.970127][T10426] loop3: detected capacity change from 0 to 2048
[  533.022492][T10426] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  535.015356][T10462] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1780'.
[  535.543096][T10462] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1780'.
[  538.706334][T10511] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  538.713633][T10511] IPv6: NLM_F_CREATE should be set when creating new route
[  541.584150][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  542.062953][ T4902] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  542.196948][ T4907] device vlan4 left promiscuous mode
[  543.474363][ T4899] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.501366][   T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.599904][ T4907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.617234][ T4340] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.630394][T10556] loop3: detected capacity change from 0 to 1764
[  544.398426][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  545.170945][ T4902] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  545.690363][T10583] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1814'.
[  545.832536][T10583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1814'.
[  546.854406][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  547.615168][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  548.588086][T10616] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1823'.
[  548.913702][ T9992] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.625379][ T9992] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.655603][   T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.696928][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  550.662795][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  552.060524][T10655] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  552.091562][T10655] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  552.137258][T10655] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  552.184846][T10655] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  553.271391][ T4336] net_ratelimit: 1 callbacks suppressed
[  553.271409][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  553.391447][T10673] loop3: detected capacity change from 0 to 1764
[  555.068759][ T9571] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  555.375378][T10703] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1845'.
[  556.587945][ T9571] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.596105][ T9571] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  560.214290][T10733] xt_recent: hitcount (692) is larger than allowed maximum (255)
[  560.505200][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  560.633207][T10727] loop3: detected capacity change from 0 to 2048
[  561.271993][T10727] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  561.347300][ T4279] EXT4-fs (loop3): unmounting filesystem.
[  562.519437][T10759] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1861'.
[  563.874449][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  566.750007][ T4902] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  567.600875][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  568.748774][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  568.755279][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  568.907979][T10840] I/O error, dev loop3, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[  568.923881][T10840] EXT4-fs (loop3): unable to read superblock
[  569.302895][T10844] ������: renamed from vlan1
[  570.879351][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  572.715448][T10883] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  572.723120][T10883] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  572.733726][T10883] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  572.741536][T10883] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  572.749837][T10883] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  572.757585][T10883] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  572.846978][ T4610] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  573.274069][ T4278] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  573.283053][ T4278] Bluetooth: hci1: Injecting HCI hardware error event
[  573.292339][ T4278] Bluetooth: hci1: hardware error 0x00
[  573.312032][T10892] loop3: detected capacity change from 0 to 8
[  573.352512][T10892] SQUASHFS error: zstd decompression error: 10
[  573.359257][T10892] SQUASHFS error: zstd decompression failed, data probably corrupt
[  573.368073][T10892] SQUASHFS error: Failed to read block 0x62b: -5
[  573.374553][T10892] SQUASHFS error: Unable to read metadata cache entry [629]
[  573.381955][T10892] SQUASHFS error: Unable to read directory block [629:ff26]
[  574.140249][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  574.556756][T10901] batman_adv: batadv0: Interface deactivated: dummy0
[  574.588210][T10901] batman_adv: batadv0: Removing interface: dummy0
[  575.665571][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  576.321484][ T4278] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  576.946371][T10922] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1905'.
[  577.620683][T10934] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  577.670775][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  577.723231][T10922] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1905'.
[  577.816718][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  577.816732][   T27] audit: type=1326 audit(2000000350.873:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10903 comm="syz.2.1900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  577.851809][   T27] audit: type=1326 audit(2000000350.910:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10903 comm="syz.2.1900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  577.874728][   T27] audit: type=1326 audit(2000000350.910:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10903 comm="syz.2.1900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  577.897638][   T27] audit: type=1326 audit(2000000350.910:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10903 comm="syz.2.1900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  577.929016][   T27] audit: type=1326 audit(2000000350.910:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10903 comm="syz.2.1900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  578.004849][   T27] audit: type=1326 audit(2000000350.910:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10903 comm="syz.2.1900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  579.005319][T10622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  581.455416][T10622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  581.471211][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  585.174969][ T4904] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  585.470825][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  585.917669][T11008] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1929'.
[  585.928667][T11008] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1929'.
[  587.804958][T11034] loop3: detected capacity change from 0 to 256
[  587.926520][T11034] FAT-fs (loop3): Directory bread(block 64) failed
[  587.974352][T11034] FAT-fs (loop3): Directory bread(block 65) failed
[  587.981306][T11034] FAT-fs (loop3): Directory bread(block 66) failed
[  587.988362][T11034] FAT-fs (loop3): Directory bread(block 67) failed
[  587.996112][T11034] FAT-fs (loop3): Directory bread(block 68) failed
[  588.003062][T11034] FAT-fs (loop3): Directory bread(block 69) failed
[  588.734967][T11034] FAT-fs (loop3): Directory bread(block 70) failed
[  588.741532][T11034] FAT-fs (loop3): Directory bread(block 71) failed
[  588.771291][ T4907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  588.787048][T11034] FAT-fs (loop3): Directory bread(block 72) failed
[  588.801347][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  588.809926][T11034] FAT-fs (loop3): Directory bread(block 73) failed
[  589.101567][T11049] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1940'.
[  591.140502][ T4350] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  591.346779][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  591.407768][ T4350] usb 4-1: Using ep0 maxpacket: 8
[  591.416026][ T4350] usb 4-1: config 0 has no interfaces?
[  591.431628][ T4350] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  591.456008][ T4350] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  591.482534][ T4350] usb 4-1: Product: syz
[  591.491462][ T4350] usb 4-1: Manufacturer: syz
[  591.507282][ T4350] usb 4-1: SerialNumber: syz
[  591.534309][ T4350] usb 4-1: config 0 descriptor??
[  592.171491][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  592.282042][ T4340] usb 4-1: USB disconnect, device number 9
[  592.531066][T11091] xt_TCPMSS: Only works on TCP SYN packets
[  594.242793][ T4889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  595.428136][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  596.380350][T11119] netlink: 71 bytes leftover after parsing attributes in process `syz.2.1962'.
[  597.951879][T10622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  597.976396][T11127] netlink: 'syz.2.1965': attribute type 1 has an invalid length.
[  598.061533][T11132] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  598.144031][T11132] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  598.366417][T11132] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  598.421991][T11132] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  598.439128][T11132] bond5: (slave geneve2): making interface the new active one
[  598.618992][T11132] bond5: (slave geneve2): Enslaving as an active interface with an up link
[  598.859707][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  598.868819][T11127] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1965'.
[  598.890789][T11127] 8021q: adding VLAN 0 to HW filter on device bond5
[  601.336033][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  601.839222][T11171] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1977'.
[  601.891345][ T4904] smc: removing ib device syz2
[  602.100105][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  602.245342][T11176] unsupported nla_type 36
[  602.460431][T11180] ������: renamed from vlan1
[  603.687281][ T9571] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  603.781431][T11195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1980'.
[  605.359360][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  607.073037][ T4907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  608.600623][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  609.200382][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  611.851741][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  612.322640][   T14] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[  612.529124][   T14] usb 4-1: config 0 has an invalid interface number: 20 but max is 0
[  612.541422][   T14] usb 4-1: config 0 has no interface number 0
[  612.572989][   T14] usb 4-1: config 0 interface 20 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  612.594355][ T4609] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  612.676154][   T14] usb 4-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[  612.714591][   T14] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  613.253856][   T14] usb 4-1: Product: syz
[  613.258218][   T14] usb 4-1: Manufacturer: syz
[  613.262995][   T14] usb 4-1: SerialNumber: syz
[  613.277926][   T14] usb 4-1: config 0 descriptor??
[  613.288925][T11274] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  613.302753][   T14] usb-storage 4-1:0.20: USB Mass Storage device detected
[  613.871226][   T14] usb-storage 4-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[  613.911509][   T14] scsi host1: usb-storage 4-1:0.20
[  613.983075][   T14] usb 4-1: USB disconnect, device number 10
[  615.163192][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  615.273491][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  615.308685][T11316] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2028'.
[  616.096316][T11322] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  616.104087][T11322] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  616.384923][ T4889] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  616.465123][ T4889] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  616.505919][ T4893] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  618.448060][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  618.856411][ T4897] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  620.243545][   T27] audit: type=1326 audit(2000000390.547:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  620.507934][   T27] audit: type=1326 audit(2000000390.800:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  621.351053][   T27] audit: type=1326 audit(2000000391.352:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  621.431184][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  621.543490][   T27] audit: type=1326 audit(2000000391.361:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  621.566078][   T27] audit: type=1326 audit(2000000391.557:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  621.629524][   T27] audit: type=1326 audit(2000000391.557:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  621.684635][   T27] audit: type=1326 audit(2000000391.557:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f377738d3df code=0x7ffc0000
[  621.740264][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  621.752700][   T27] audit: type=1326 audit(2000000391.557:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  621.801570][   T27] audit: type=1326 audit(2000000391.557:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  622.757063][   T27] audit: type=1326 audit(2000000391.557:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11376 comm="syz.4.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  623.676240][T11418] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  623.685402][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  623.727208][T11418] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  623.736530][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  623.798072][ T4340] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  623.817606][ T4340] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  623.829696][T11413] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  623.839045][   T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  624.707612][T11449] xt_CT: You must specify a L4 protocol and not use inversions on it
[  627.589574][ T4278] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  627.598986][ T4278] Bluetooth: hci2: Injecting HCI hardware error event
[  627.664412][T11422] net_ratelimit: 6 callbacks suppressed
[  627.664428][T11422] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  627.680270][T10896] Bluetooth: hci2: hardware error 0x00
[  628.530522][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  629.079620][T11483] netlink: 168 bytes leftover after parsing attributes in process `syz.1.2066'.
[  629.925750][T10896] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  630.330899][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  630.463885][T11491] loop3: detected capacity change from 0 to 4096
[  630.817146][T11491] NILFS (loop3): invalid segment: Checksum error in segment payload
[  631.261419][T11491] NILFS (loop3): trying rollback from an earlier position
[  631.827813][T11491] NILFS (loop3): recovery complete
[  631.869785][T11509] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  631.892420][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  632.497360][T11516] xt_CT: You must specify a L4 protocol and not use inversions on it
[  632.548699][T11512] device batadv0 entered promiscuous mode
[  632.579953][T11512] device vlan0 entered promiscuous mode
[  632.609019][T11512] device bond0 entered promiscuous mode
[  632.961697][T11521] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2076'.
[  633.166208][ T4904] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  634.435222][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  634.441846][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  634.942971][T11544] device veth0_to_team entered promiscuous mode
[  635.138958][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  635.147211][T11550] device veth1_macvtap left promiscuous mode
[  635.986931][T11561] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2088'.
[  636.165490][T11568] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2088'.
[  636.629173][ T4610] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  636.832255][T11577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2092'.
[  638.516214][T11594] Cannot find set identified by id 0 to match
[  638.697297][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.744977][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.754402][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.764740][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.786790][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.816594][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.824967][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.846896][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.857695][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.866211][T11597] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  641.819651][T11622] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  643.467141][T11640] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2
[  643.476187][T11640] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0
[  643.939852][T11642] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2109'.
[  644.157213][T11648] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2112'.
[  644.161978][T11649] ptrace attach of "./syz-executor exec"[6713] was attempted by "./syz-executor exec"[11649]
[  644.948776][T11667] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  645.563715][   T22] net_ratelimit: 39 callbacks suppressed
[  645.563733][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  646.107349][ T4895] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  647.400826][T11708] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2125'.
[  649.034215][ T4887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  649.393071][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  652.729308][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  652.769863][ T4889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  653.942842][   T27] kauditd_printk_skb: 41 callbacks suppressed
[  653.942856][   T27] audit: type=1804 audit(2000000422.076:384): pid=11766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2144" name="/newroot/395/file1" dev="fuse" ino=1 res=1 errno=0
[  654.082330][T11770] overlayfs: failed to clone upperpath
[  654.421384][   T27] audit: type=1800 audit(2000000422.216:385): pid=11766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2144" name="/" dev="fuse" ino=1 res=0 errno=0
[  654.726594][T11780] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2147'.
[  654.965550][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  655.293648][T11778] device vlan1 entered promiscuous mode
[  655.323843][T11778] device team0 entered promiscuous mode
[  655.339737][T11778] device bond0 entered promiscuous mode
[  655.762200][T11791] 9pnet: p9_errstr2errno: server reported unknown error 18446744073709
[  656.471722][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  656.792055][T11805] netlink: 'syz.4.2157': attribute type 1 has an invalid length.
[  656.888240][T11805] 8021q: adding VLAN 0 to HW filter on device bond7
[  657.042299][T11809] 8021q: adding VLAN 0 to HW filter on device bond7
[  657.107147][T11809] bond7: (slave vxcan1): The slave device specified does not support setting the MAC address
[  657.152703][T11809] bond7: (slave vxcan1): Error -95 calling set_mac_address
[  657.981215][T11805] device gretap1 entered promiscuous mode
[  658.001468][T11805] bond7: (slave gretap1): making interface the new active one
[  658.061119][T11805] bond7: (slave gretap1): Enslaving as an active interface with an up link
[  658.187653][T11818] loop3: detected capacity change from 0 to 4096
[  658.256251][T11828] device vlan0 entered promiscuous mode
[  658.256397][T11818] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  658.262017][T11828] device team0 entered promiscuous mode
[  658.551826][T11834] xt_CT: You must specify a L4 protocol and not use inversions on it
[  659.692106][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  659.728660][T11835] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2164'.
[  659.729035][ T4279] EXT4-fs (loop3): unmounting filesystem.
[  659.751312][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  660.437668][ T4899] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  661.540308][   T27] audit: type=1326 audit(2000000429.184:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  661.611511][   T27] audit: type=1326 audit(2000000429.184:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  661.641142][T11864] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2174'.
[  661.667298][   T27] audit: type=1326 audit(2000000429.202:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  661.720059][   T27] audit: type=1326 audit(2000000429.202:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  661.794878][   T27] audit: type=1326 audit(2000000429.202:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  661.854464][   T27] audit: type=1326 audit(2000000429.202:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  661.917978][   T27] audit: type=1326 audit(2000000429.202:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  661.968703][   T27] audit: type=1326 audit(2000000429.202:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  662.166683][T11873] netlink: 'syz.4.2178': attribute type 6 has an invalid length.
[  662.181016][   T27] audit: type=1326 audit(2000000429.212:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  662.207287][   T27] audit: type=1326 audit(2000000429.212:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.1.2172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  663.002972][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  663.072340][T11878] device vlan0 entered promiscuous mode
[  663.078202][T11878] device team0 entered promiscuous mode
[  665.913612][ T4902] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  666.324942][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  667.044352][ T4904] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  669.754623][T11968] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2203'.
[  670.278026][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  670.521438][T11977] netlink: 'syz.1.2207': attribute type 1 has an invalid length.
[  670.679599][T11977] bond1: (slave veth3): Enslaving as an active interface with a down link
[  670.795254][T11981] bond1: (slave veth5): Enslaving as an active interface with a down link
[  670.833300][T11977] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2207'.
[  670.866238][T11977] 8021q: adding VLAN 0 to HW filter on device bond1
[  672.936701][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  672.961015][T11422] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  673.312821][T12003] overlayfs: failed to clone upperpath
[  674.231129][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  674.372483][T12015] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  674.381836][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  674.472320][T12016] loop3: detected capacity change from 0 to 512
[  675.466215][T12016] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  675.475330][T12016] ext4 filesystem being mounted at /405/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  675.636958][T12038] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  675.645849][T12038] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  675.653469][T12038] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  675.673538][T12038] device veth0_to_bond left promiscuous mode
[  675.681171][T12038] bridge3: port 1(veth0_to_bond) entered disabled state
[  675.802926][T12040] __quota_error: 87 callbacks suppressed
[  675.802960][T12040] Quota error (device loop3): do_check_range: Getting block 134217728 out of range 0-5
[  676.071897][T12038] bond0: (slave macvlan3): Releasing backup interface
[  676.117520][T12038] device batadv0 left promiscuous mode
[  676.170201][T12038] bond4: (slave gretap1): Releasing active interface
[  676.198342][ T4279] EXT4-fs (loop3): unmounting filesystem.
[  676.204665][T12038] bond5: (slave geneve2): Releasing active interface
[  676.217617][T12038] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  676.226688][T12038] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  676.245309][T12038] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  676.254417][T12038] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  676.278307][T12036] team0: Failed to send options change via netlink (err -105)
[  676.286422][T12036] team0: Mode changed to "loadbalance"
[  677.551790][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  678.921852][ T4610] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  678.931051][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.260937][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.272941][T12090] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2237'.
[  681.286019][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.294806][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.318497][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  684.066427][T12120] netlink: 'syz.1.2246': attribute type 4 has an invalid length.
[  684.074212][T12120] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.2246'.
[  684.567485][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  685.072760][ T4880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  685.081727][T11422] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  686.361686][T12152] netlink: 'syz.2.2256': attribute type 6 has an invalid length.
[  687.152832][T12155] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2257'.
[  687.161930][T12155] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2257'.
[  687.175199][T10622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  687.190134][   T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  687.199495][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  687.578937][T12162] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  688.399291][T12175] pit: kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  688.410179][T12175] pit: kvm: requested 12571 ns i8254 timer period limited to 200000 ns
[  688.425975][T12175] pit: kvm: requested 12571 ns i8254 timer period limited to 200000 ns
[  688.435174][T12175] pit: kvm: requested 85485 ns i8254 timer period limited to 200000 ns
[  688.541361][T12175] pit: kvm: requested 93028 ns i8254 timer period limited to 200000 ns
[  688.549849][T12175] pit: kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[  688.572316][T12175] pit: kvm: requested 10057 ns i8254 timer period limited to 200000 ns
[  688.628854][T12175] pit: kvm: requested 155047 ns i8254 timer period limited to 200000 ns
[  688.664335][T12175] pit: kvm: requested 160914 ns i8254 timer period limited to 200000 ns
[  689.609771][T12188] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2267'.
[  690.459294][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.243752][T11422] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.254288][ T4909] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.493059][T12208] netlink: 'syz.4.2271': attribute type 12 has an invalid length.
[  691.587227][   T27] audit: type=1326 audit(2000000457.279:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  691.691418][   T27] audit: type=1326 audit(2000000457.308:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  691.741093][   T27] audit: type=1326 audit(2000000457.308:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  691.805136][   T27] audit: type=1326 audit(2000000457.308:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  691.836473][   T27] audit: type=1326 audit(2000000457.308:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  691.863745][   T27] audit: type=1326 audit(2000000457.336:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2dd53858e7 code=0x7ffc0000
[  691.959885][   T27] audit: type=1326 audit(2000000457.336:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2dd532ab19 code=0x7ffc0000
[  692.234842][   T27] audit: type=1326 audit(2000000457.336:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  692.679254][   T27] audit: type=1326 audit(2000000457.336:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  692.722152][   T27] audit: type=1326 audit(2000000457.336:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12211 comm="syz.2.2274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  692.816958][T12235] netlink: 'syz.3.2281': attribute type 1 has an invalid length.
[  692.929755][T12235] 8021q: adding VLAN 0 to HW filter on device bond2
[  693.144637][T12237] 8021q: adding VLAN 0 to HW filter on device bond2
[  693.152828][T12237] bond2: (slave vxcan1): The slave device specified does not support setting the MAC address
[  693.284333][T10622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  693.323951][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  693.773469][T12237] bond2: (slave vxcan1): Error -95 calling set_mac_address
[  694.047620][T12242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2283'.
[  694.092704][T12242] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  694.093064][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  694.257487][T12240] device gretap1 entered promiscuous mode
[  696.111474][T12270] loop3: detected capacity change from 0 to 1024
[  696.242397][T12270] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  697.060888][   T27] kauditd_printk_skb: 59 callbacks suppressed
[  697.060902][   T27] audit: type=1800 audit(2000000462.405:552): pid=12270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2292" name="bus" dev="loop3" ino=18 res=0 errno=0
[  697.082548][T12270] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3841: comm syz.3.2292: Allocating blocks 385-513 which overlap fs metadata
[  697.126216][   T27] audit: type=1326 audit(2000000462.452:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12286 comm="syz.2.2296" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x0
[  697.275133][T12270] EXT4-fs (loop3): pa ffff888075352c40: logic 16, phys. 129, len 24
[  697.284080][T12270] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 8
[  697.301172][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  697.458211][ T4889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  697.479635][T10622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  697.502483][T12294] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2299'.
[  698.377216][ T4880] bio_check_ro: 11 callbacks suppressed
[  698.377230][ T4880] Trying to write to read-only block-device loop3
[  698.377985][ T4279] Trying to write to read-only block-device loop3
[  698.413105][ T4279] Trying to write to read-only block-device loop3
[  698.416081][ T4880] Trying to write to read-only block-device loop3
[  698.419573][ T4279] Trying to write to read-only block-device loop3
[  698.426826][ T4880] Trying to write to read-only block-device loop3
[  698.492277][T12299] netlink: 'syz.4.2298': attribute type 4 has an invalid length.
[  698.500217][T12299] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.2298'.
[  699.073759][ T4279] Trying to write to read-only block-device loop3
[  699.080331][ T4279] Trying to write to read-only block-device loop3
[  699.097274][ T4279] Trying to write to read-only block-device loop3
[  699.120547][ T4880] Trying to write to read-only block-device loop3
[  699.131483][ T4279] EXT4-fs (loop3): unmounting filesystem.
[  699.298424][T12305] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  699.341553][T12305] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  700.177354][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  700.183677][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  700.480577][T12325] loop3: detected capacity change from 0 to 128
[  700.501270][T12305] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  700.509614][T12305] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  700.517886][T12305] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  700.530582][T12305] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  700.538855][T12305] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  701.201539][T12325] 9pnet: Could not find request transport: f
[  703.585743][ T4904] net_ratelimit: 1018 callbacks suppressed
[  703.585760][ T4904] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  704.089965][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  705.103842][ T4609] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  705.170486][T12387] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  705.179584][T12387] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  706.093918][T12397] netlink: 'syz.2.2318': attribute type 1 has an invalid length.
[  706.248548][T12397] 8021q: adding VLAN 0 to HW filter on device bond6
[  706.310281][T12400] 8021q: adding VLAN 0 to HW filter on device bond6
[  706.336752][T12400] bond6: (slave vxcan5): The slave device specified does not support setting the MAC address
[  706.369466][T12400] bond6: (slave vxcan5): Error -95 calling set_mac_address
[  706.520572][T12403] device gretap2 entered promiscuous mode
[  706.536630][T12403] bond6: (slave gretap2): making interface the new active one
[  706.545619][T12410] syz.0.2321[12410] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  706.545710][T12410] syz.0.2321[12410] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  706.575027][T12403] bond6: (slave gretap2): Enslaving as an active interface with an up link
[  706.761535][T12397] bond6: (slave vlan0): the slave hw address is in use by the bond; giving it the hw address of gretap2
[  708.081124][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  708.243174][T12432] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2328'.
[  708.274125][T12432] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2328'.
[  708.280667][   T14] Process accounting resumed
[  708.308194][T12432] device netdevsim0 entered promiscuous mode
[  708.330101][T12434] Process accounting resumed
[  708.350939][T12432] device bond0 entered promiscuous mode
[  708.382016][T12432] device bond0 left promiscuous mode
[  708.427906][T12432] device netdevsim0 left promiscuous mode
[  708.678053][T12436] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2330'.
[  708.747811][T12436] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2330'.
[  709.050733][T12446] netlink: 'syz.2.2332': attribute type 4 has an invalid length.
[  709.832750][T11409] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  709.901995][T12455] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  709.911504][T12455] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  709.920402][T12455] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  709.922188][T12461] 9pnet_fd: Insufficient options for proto=fd
[  709.929195][T12455] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  710.015359][T12455] bond0: (slave vxlan0): Enslaving as an active interface with an up link
[  710.027081][T12459] netlink: 'syz.1.2335': attribute type 1 has an invalid length.
[  710.252426][T12459] 8021q: adding VLAN 0 to HW filter on device bond2
[  710.274950][T12472] loop3: detected capacity change from 0 to 512
[  710.282154][T12472] /dev/loop3: Can't open blockdev
[  710.333269][T12473] overlayfs: failed to clone upperpath
[  710.391194][T12462] 8021q: adding VLAN 0 to HW filter on device bond2
[  710.415578][T12462] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[  710.427754][T12462] bond2: (slave vxcan3): Error -95 calling set_mac_address
[  710.461589][T12463] device gretap1 entered promiscuous mode
[  710.470681][T12463] bond2: (slave gretap1): making interface the new active one
[  710.479004][T12463] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  711.073071][ T4880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  711.395269][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  712.679419][T12501] Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  715.097949][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  715.418466][T12532] loop3: detected capacity change from 0 to 256
[  715.494239][T12532] random: crng reseeded on system resumption
[  715.862662][ T4887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  717.232184][ T4887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  718.420095][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  718.833896][T12562] netlink: 'syz.4.2373': attribute type 1 has an invalid length.
[  718.903954][T12562] 8021q: adding VLAN 0 to HW filter on device bond8
[  718.980545][T12571] bond8: (slave veth7): Enslaving as an active interface with a down link
[  719.055060][T12575] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 12575 comm: syz.2.2375)
[  719.073764][   T27] audit: type=1800 audit(2000000482.990:554): pid=12575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2375" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=56059 res=0 errno=0
[  719.123533][T12575] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2375'.
[  719.439761][T12580] ip6t_srh: unknown srh invflags 7863
[  720.770996][   T27] audit: type=1326 audit(2000000484.580:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  720.898059][   T27] audit: type=1326 audit(2000000484.608:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  721.017080][   T14] Process accounting resumed
[  721.066215][   T27] audit: type=1326 audit(2000000484.608:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  721.159388][T12598] Process accounting resumed
[  721.205394][   T27] audit: type=1326 audit(2000000484.608:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  721.376287][   T27] audit: type=1326 audit(2000000484.608:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  721.399283][   T27] audit: type=1326 audit(2000000484.608:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  721.421764][   T27] audit: type=1326 audit(2000000484.608:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  721.448516][   T27] audit: type=1326 audit(2000000484.608:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  721.496213][   T27] audit: type=1326 audit(2000000484.627:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12595 comm="syz.3.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f218bb8e929 code=0x7ffc0000
[  721.565377][T12603] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  721.681538][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  722.027495][T12338] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  723.390685][ T4889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  725.033735][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  728.695723][ T4880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  728.704355][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  728.867421][ T4904] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  728.919272][ T4336] Process accounting resumed
[  729.362428][T12650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  729.377956][T12650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  729.391914][T12650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  729.407713][T12650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  729.423228][T12650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  729.438530][T12650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  729.453602][T12650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  730.485318][T12642] Process accounting resumed
[  731.162603][T12672] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  733.054998][   T27] kauditd_printk_skb: 44 callbacks suppressed
[  733.070116][   T27] audit: type=1326 audit(2000000496.038:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12674 comm="syz.1.2408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  733.186808][   T27] audit: type=1326 audit(2000000496.038:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12674 comm="syz.1.2408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  734.921184][ T4880] net_ratelimit: 780 callbacks suppressed
[  734.921199][ T4880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  735.098128][ T4889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  735.224538][T12715] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2417'.
[  736.885927][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  736.954412][T12720] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  740.494207][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  741.182851][ T4911] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  741.194544][ T4889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  741.422215][T12755] netlink: 'syz.2.2431': attribute type 11 has an invalid length.
[  741.891523][T12767] ipt_REJECT: ECHOREPLY no longer supported.
[  743.922060][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  744.388300][T12796] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2439'.
[  744.888784][   T27] audit: type=1326 audit(2000000507.121:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12791 comm="syz.0.2441" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x0
[  747.736264][ T4880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  747.744633][ T4610] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  747.769817][ T4336] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  748.393245][T12832] ipt_REJECT: ECHOREPLY no longer supported.
[  752.071449][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  752.368340][ T4336] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  752.802802][ T4336] usb 4-1: Using ep0 maxpacket: 8
[  752.811149][ T4336] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  752.844051][ T4336] usb 4-1: config 0 has no interfaces?
[  752.866107][ T4336] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  752.889272][ T4336] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  753.008234][ T4336] usb 4-1: config 0 descriptor??
[  753.596091][ T9992] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  753.612317][ T4887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  754.738604][ T4350] usb 4-1: USB disconnect, device number 11
[  755.318403][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  757.175756][    C0] hrtimer: interrupt took 42517 ns
[  758.612121][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  758.723544][T12944] loop3: detected capacity change from 0 to 512
[  760.357814][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  762.106396][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  763.076656][T12982] No source specified
[  765.908109][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  765.923357][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  765.925841][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  766.012472][T13021] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2500'.
[  766.550319][ T4893] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  766.611535][T13029] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  766.639998][T13029] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  768.005402][T13045] No source specified
[  768.458303][T13046] loop3: detected capacity change from 0 to 512
[  768.487921][T13046] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  768.652093][T13046] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  768.691972][T13046] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  768.703968][T13046] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  768.851483][T13046] [EXT4 FS bs=4096, gc=2, bpg=35, ipg=32, mo=e040e01c, mo2=0000]
[  769.127722][T13046] EXT4-fs (loop3): failed to initialize system zone (-117)
[  769.135327][T13046] EXT4-fs (loop3): mount failed
[  769.148905][T13057] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  769.161754][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  772.676442][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  773.417152][ T4350] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  773.611815][T13095] netlink: 180900 bytes leftover after parsing attributes in process `syz.0.2522'.
[  773.663058][T13095] openvswitch: netlink: Flow actions attr not present in new flow.
[  774.255242][T11422] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  775.155139][T13111] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2529'.
[  775.392149][T13111] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2529'.
[  777.181252][T13127] bond0 speed is unknown, defaulting to 1000
[  777.187285][T13127] bond0 speed is unknown, defaulting to 1000
[  777.194650][T13127] bond0 speed is unknown, defaulting to 1000
[  777.203846][T13127] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  777.215525][T13127] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[  777.231703][T13127] bond0 speed is unknown, defaulting to 1000
[  777.238831][T13127] bond0 speed is unknown, defaulting to 1000
[  777.246932][T13127] bond0 speed is unknown, defaulting to 1000
[  777.253410][T13127] bond0 speed is unknown, defaulting to 1000
[  777.259958][T13127] bond0 speed is unknown, defaulting to 1000
[  783.668702][T13233] loop3: detected capacity change from 0 to 64
[  784.432451][T13236] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  789.018115][T13277] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2566'.
[  789.133315][T13277] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2566'.
[  789.497355][T13292] overlayfs: failed to clone lowerpath
[  790.179537][T13297] loop3: detected capacity change from 0 to 4096
[  791.545589][T13297] loop3: detected capacity change from 0 to 16
[  791.561663][T13297] /dev/loop3: Can't open blockdev
[  794.196531][T13332] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  794.548847][T13332] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  794.626601][T13332] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  795.644179][T13357] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2590'.
[  795.666867][T10896] Bluetooth: hci3: command 0x0c1a tx timeout
[  796.273384][T13357] device vlan0 entered promiscuous mode
[  796.288966][T13357] device bond0 entered promiscuous mode
[  797.317079][T13381] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  797.893389][T10896] Bluetooth: hci3: command 0x0406 tx timeout
[  798.176955][T13386] loop3: detected capacity change from 0 to 512
[  798.227515][T13386] /dev/loop3: Can't open blockdev
[  798.234086][T13388] overlayfs: failed to clone upperpath
[  801.493578][T13418] Cannot find add_set index 0 as target
[  802.583549][T13431] batman_adv: batadv0: Adding interface: dummy0
[  802.605486][T13431] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  802.702650][T13431] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  816.037644][T13558] blktrace: Concurrent blktraces are not allowed on loop2
[  817.195388][T13577] netlink: 1272 bytes leftover after parsing attributes in process `syz.3.2651'.
[  827.937868][T13684] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  827.946121][T13684] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  827.954296][T13684] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  827.962520][T13684] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  829.487037][T13692] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2677'.
[  829.749442][T13696] netlink: 'syz.0.2678': attribute type 10 has an invalid length.
[  831.529496][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  831.537349][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  834.542081][T13739] loop3: detected capacity change from 0 to 512
[  834.602299][T13739] ext4: Unknown parameter 'dont_hash'
[  834.847167][T13744] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  843.809423][T13827] 9pnet_virtio: no channels available for device syz
[  844.148769][T13826] loop3: detected capacity change from 0 to 64
[  850.270356][T13887] ptrace attach of "./syz-executor exec"[4279] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  851.466762][T13893] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  851.562398][T13893] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  851.571157][T13893] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  851.579880][T13893] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  852.428919][T12204] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  852.516236][T13907] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2737'.
[  852.557470][T13907] device dummy0 entered promiscuous mode
[  852.576223][T13907] device macvtap1 entered promiscuous mode
[  852.592908][T13907] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap1: link becomes ready
[  852.642068][T12204] usb 4-1: Using ep0 maxpacket: 32
[  852.649326][T12204] usb 4-1: config 0 has no interfaces?
[  852.660529][T12204] usb 4-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  852.678740][ T4907] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap1: link becomes ready
[  852.701713][T13908] device dummy0 left promiscuous mode
[  852.703109][T12204] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  852.747765][T12204] usb 4-1: config 0 descriptor??
[  853.075514][T13898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  853.134669][T13898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  853.162013][T13898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  853.800263][T13898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  853.893511][   T27] audit: type=1326 audit(2000000865.079:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  853.982067][   T26] usb 4-1: USB disconnect, device number 12
[  853.998827][   T27] audit: type=1326 audit(2000000865.079:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  854.022673][   T27] audit: type=1326 audit(2000000865.079:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  854.046762][   T27] audit: type=1326 audit(2000000865.079:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  854.085456][   T27] audit: type=1326 audit(2000000865.079:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  854.184471][   T27] audit: type=1326 audit(2000000865.079:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  854.598027][   T27] audit: type=1326 audit(2000000865.079:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  854.641282][   T27] audit: type=1326 audit(2000000865.079:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  854.697033][   T27] audit: type=1326 audit(2000000865.079:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  854.751919][   T27] audit: type=1326 audit(2000000865.079:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13915 comm="syz.0.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7fc00000
[  856.105461][T13956] netlink: 'syz.0.2753': attribute type 2 has an invalid length.
[  856.299066][T13963] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2752'.
[  858.006611][T13985] Cannot find add_set index 0 as target
[  859.547077][T14012] netlink: 856 bytes leftover after parsing attributes in process `syz.0.2769'.
[  860.977656][T14027] device veth0_vlan left promiscuous mode
[  860.986313][T14027] device veth0_vlan entered promiscuous mode
[  861.022534][   T27] kauditd_printk_skb: 57 callbacks suppressed
[  861.022552][   T27] audit: type=1326 audit(2000000871.655:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  861.059084][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  861.422540][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  861.625983][   T27] audit: type=1326 audit(2000000871.655:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  862.143828][T12204] Process accounting resumed
[  862.152880][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): ������: link becomes ready
[  862.236019][T14031] Process accounting resumed
[  862.264679][   T27] audit: type=1326 audit(2000000871.665:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  862.307668][   T27] audit: type=1326 audit(2000000871.665:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  862.330523][   T27] audit: type=1326 audit(2000000871.665:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  862.361566][   T27] audit: type=1326 audit(2000000871.665:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  862.389976][   T27] audit: type=1326 audit(2000000871.665:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  862.790103][   T27] audit: type=1326 audit(2000000871.665:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  862.918920][   T27] audit: type=1326 audit(2000000871.665:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  862.944312][   T27] audit: type=1326 audit(2000000871.665:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14014 comm="syz.2.2765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  863.460318][T14055] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  863.469928][T14055] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  863.478720][T14055] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  863.487468][T14055] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  866.635957][T14094] device vlan1 entered promiscuous mode
[  866.800669][T14096] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2786'.
[  867.637463][T14109] loop3: detected capacity change from 0 to 2048
[  867.717696][T14109]  loop3: p1 < > p3
[  867.722990][T14109] loop3: p3 size 134217728 extends beyond EOD, truncated
[  868.203442][T14119] tipc: Started in network mode
[  868.223441][T14119] tipc: Node identity 080211000001, cluster identity 4711
[  868.267403][T14119] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  868.753590][T14128] IPv6: Can't replace route, no match found
[  870.060538][T12204] tipc: Node number set to 134418688
[  870.215959][T14140] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  873.622462][T14178] loop3: detected capacity change from 0 to 128
[  878.508910][T14231] loop3: detected capacity change from 0 to 4096
[  878.546899][T14231] ntfs3: Invalid value for fmask.
[  878.771469][T14235] Cannot find add_set index 0 as target
[  880.082933][T14245] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2826'.
[  884.378717][T14290] loop3: detected capacity change from 0 to 128
[  884.403332][T14290] /dev/loop3: Can't open blockdev
[  885.184761][T14290] loop3: detected capacity change from 0 to 256
[  885.215175][T14290] /dev/loop3: Can't open blockdev
[  886.396645][T14306] netlink: 'syz.2.2850': attribute type 10 has an invalid length.
[  886.484008][T14306] device veth0_vlan left promiscuous mode
[  886.530971][T14306] device veth0_vlan entered promiscuous mode
[  886.761691][T14306] team0: Device veth0_vlan failed to register rx_handler
[  887.537122][T14310] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2849'.
[  887.559945][T14318] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2849'.
[  888.645566][T14335] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2856'.
[  891.970041][   T27] kauditd_printk_skb: 1 callbacks suppressed
[  892.004121][   T27] audit: type=1326 audit(2000000900.568:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.2.2863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  892.060089][   T27] audit: type=1326 audit(2000000900.568:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.2.2863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  892.162203][   T27] audit: type=1326 audit(2000000900.568:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.2.2863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  892.195945][   T27] audit: type=1326 audit(2000000900.568:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.2.2863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  892.377158][   T27] audit: type=1326 audit(2000000900.568:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.2.2863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  892.400680][   T27] audit: type=1326 audit(2000000900.568:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.2.2863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  892.439235][   T27] audit: type=1326 audit(2000000900.568:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.2.2863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  893.089071][   T27] audit: type=1326 audit(2000000900.568:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.2.2863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd538e929 code=0x7ffc0000
[  894.597804][T14397] netlink: 'syz.1.2870': attribute type 10 has an invalid length.
[  896.124929][T14397] device veth0_vlan left promiscuous mode
[  896.239188][   T27] audit: type=1326 audit(2000000904.675:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14409 comm="syz.4.2877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  896.798489][T14397] device veth0_vlan entered promiscuous mode
[  896.993643][T14397] team0: Device veth0_vlan failed to register rx_handler
[  897.034922][   T27] audit: type=1326 audit(2000000904.675:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14409 comm="syz.4.2877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f377738e929 code=0x7ffc0000
[  897.192390][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  897.198732][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  903.504117][T14483] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2895'.
[  904.083899][T14483] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2895'.
[  905.875495][T14502] xt_hashlimit: max too large, truncated to 1048576
[  905.946170][T14502] loop3: detected capacity change from 0 to 2048
[  906.060891][T14502] /dev/loop3: Can't open blockdev
[  910.941472][T14549] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2915'.
[  911.341391][T14560] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2915'.
[  912.542104][T14577] tipc: Started in network mode
[  912.547065][T14577] tipc: Node identity ac1414aa, cluster identity 4711
[  912.562358][T14577] tipc: Enabled bearer <udp:syz2>, priority 10
[  913.442653][T14583] loop3: detected capacity change from 0 to 40427
[  914.140959][   T14] tipc: Node number set to 2886997162
[  914.596920][T14596] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095
[  915.824155][T14611] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  915.855262][T14611] device syzkaller0 entered promiscuous mode
[  916.450140][T14616] tipc: Resetting bearer <eth:syzkaller0>
[  916.718891][T14610] tipc: Resetting bearer <eth:syzkaller0>
[  916.776282][T14610] tipc: Disabling bearer <eth:syzkaller0>
[  918.159807][T14646] xt_nfacct: accounting object `syz1' does not exists
[  919.975195][T14652] device gtp0 entered promiscuous mode
[  922.401405][   T27] kauditd_printk_skb: 4 callbacks suppressed
[  922.414458][   T27] audit: type=1326 audit(2000000929.173:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14689 comm="syz.0.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7ffc0000
[  922.571406][   T27] audit: type=1326 audit(2000000929.173:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14689 comm="syz.0.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7ffc0000
[  922.597829][   T27] audit: type=1326 audit(2000000929.173:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14689 comm="syz.0.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f0f2f98e929 code=0x7ffc0000
[  923.118550][   T27] audit: type=1326 audit(2000000929.173:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14689 comm="syz.0.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7ffc0000
[  923.257985][   T27] audit: type=1326 audit(2000000929.173:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14689 comm="syz.0.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7ffc0000
[  923.406818][T14711] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2958'.
[  924.421768][   T27] audit: type=1326 audit(2000000929.173:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14689 comm="syz.0.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f0f2f98e929 code=0x7ffc0000
[  924.479713][   T27] audit: type=1326 audit(2000000929.173:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14689 comm="syz.0.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7ffc0000
[  924.984565][   T27] audit: type=1326 audit(2000000929.173:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14689 comm="syz.0.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f2f98e929 code=0x7ffc0000
[  925.105212][T14729] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap0
[  928.212206][   T27] audit: type=1326 audit(2000000934.589:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14727 comm="syz.3.2962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218bb8e929 code=0x7fc00000
[  928.542606][T14760] loop3: detected capacity change from 0 to 128
[  934.720009][T14804] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2984'.
[  936.865625][T14833] device vlan1 entered promiscuous mode
[  936.896823][T14835] netlink: 87 bytes leftover after parsing attributes in process `syz.2.2994'.
[  936.924837][T14833] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2993'.
[  938.299925][T14849] loop3: detected capacity change from 0 to 4096
[  938.331305][T14853] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2999'.
[  940.182706][   T27] audit: type=1326 audit(2000000945.393:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14856 comm="syz.4.3000" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f377738e929 code=0x0
[  946.481572][T14930] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  951.886576][T14962] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3028'.
[  952.036410][T14967] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  952.045174][T14967] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  953.829920][T15000] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[  955.230664][T15006] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  955.360130][T15015] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  956.557829][T15032] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3044'.
[  959.469840][T15067] overlayfs: failed to clone upperpath
[  960.061103][T15082] trusted_key: encrypted_key: insufficient parameters specified
[  960.496123][T15086] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  962.875730][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  962.882170][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  965.203402][T15129] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  965.247329][T15129] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  965.286451][T15129] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  965.325897][T15129] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  965.475007][T15129] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  966.132958][T15143] trusted_key: encrypted_key: insufficient parameters specified
[  966.299153][T15129] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  970.517319][   T26] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  971.342239][   T26] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[  971.373438][   T26] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  971.493363][   T26] usb 4-1: config 0 descriptor??
[  972.514006][T15220] netlink: 'syz.3.3083': attribute type 10 has an invalid length.
[  972.753891][T15225] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  972.883068][   T26] ath6kl: Failed to submit usb control message: -110
[  972.894689][   T26] ath6kl: unable to send the bmi data to the device: -110
[  972.933194][   T26] ath6kl: Unable to send get target info: -110
[  974.147244][   T26] ath6kl: Failed to init ath6kl core: -110
[  974.665441][   T26] ath6kl_usb: probe of 4-1:0.0 failed with error -110
[  974.756568][   T26] usb 4-1: USB disconnect, device number 13
[  975.976406][T15242] kvm [15241]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x0
[  975.991321][T15242] kvm [15241]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc1 data 0x0
[  976.031402][T15242] kvm [15241]: vcpu0, guest rIP: 0x18e ignored wrmsr: 0x11e data 0x0
[  976.057172][T15242] kvm [15241]: vcpu0, guest rIP: 0x1b8 ignored wrmsr: 0x11e data 0xbe702111
[  976.128375][T15242] kvm [15241]: vcpu0, guest rIP: 0x18e ignored wrmsr: 0x11e data 0x20
[  979.489474][   T27] audit: type=1326 audit(2000000982.575:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15286 comm="syz.0.3109" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0f2f98e929 code=0x0
[  981.822403][T15317] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  982.487865][ T4521] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  982.551552][ T4521] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.677790][ T4521] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  982.723759][ T4521] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.976651][ T4521] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  983.012297][ T4521] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  983.217385][ T4521] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  983.260280][ T4521] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  983.329452][T15338] netlink: 'syz.1.3127': attribute type 10 has an invalid length.
[  983.348529][T15338] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3127'.
[  983.390136][T15338] device geneve0 entered promiscuous mode
[  983.413946][T15338] team0: Port device geneve0 added
[  983.568026][T15341] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  983.583817][T15341] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  983.612200][T15341] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  983.727303][T15341] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  983.746858][T15341] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  984.640143][T15341] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  985.174501][ T4521] tipc: Disabling bearer <udp:syz0>
[  985.184645][ T4521] tipc: Left network mode
[  987.328645][T10896] Bluetooth: hci4: command 0x0409 tx timeout
[  987.857692][T15339] bond0 speed is unknown, defaulting to 1000
[  987.871115][T15369] siw: device registration error -23
[  987.873703][T15370] siw: device registration error -23
[  989.557761][T10896] Bluetooth: hci4: command 0x041b tx timeout
[  989.763065][   T27] audit: type=1326 audit(2000000992.182:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  990.436139][   T27] audit: type=1326 audit(2000000992.182:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  990.516513][   T27] audit: type=1326 audit(2000000992.182:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  990.573350][   T27] audit: type=1326 audit(2000000992.182:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  990.669352][   T27] audit: type=1326 audit(2000000992.182:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  990.876750][T15410] ipt_REJECT: TCP_RESET invalid for non-tcp
[  990.899618][   T27] audit: type=1326 audit(2000000992.182:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  991.780966][   T27] audit: type=1326 audit(2000000992.182:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  991.814353][T10896] Bluetooth: hci4: command 0x040f tx timeout
[  991.835546][   T27] audit: type=1326 audit(2000000992.182:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  991.858560][   T27] audit: type=1326 audit(2000000992.256:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  991.882233][   T27] audit: type=1326 audit(2000000992.284:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15393 comm="syz.1.3143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca00d8e929 code=0x7ffc0000
[  992.749905][T15339] chnl_net:caif_netlink_parms(): no params data found
[  994.004773][T10896] Bluetooth: hci4: command 0x0419 tx timeout
[  994.640173][T15339] bridge0: port 1(bridge_slave_0) entered blocking state
[  994.678557][T15339] bridge0: port 1(bridge_slave_0) entered disabled state
[  994.701440][T15339] device bridge_slave_0 entered promiscuous mode
[  994.842104][T15339] bridge0: port 2(bridge_slave_1) entered blocking state
[  994.851476][T15339] bridge0: port 2(bridge_slave_1) entered disabled state
[  994.862847][T15339] device bridge_slave_1 entered promiscuous mode
[  995.069348][T15459] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3158'.
[  995.418857][T15339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  995.717567][T15339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  995.946813][T15472] netlink: 'syz.4.3161': attribute type 10 has an invalid length.
[  995.973307][T15472] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3161'.
[  996.056570][T15472] device geneve0 entered promiscuous mode
[  996.110558][T15472] team0: Port device geneve0 added
[  996.171429][T15339] team0: Port device team_slave_0 added
[  996.199129][ T4521] device hsr_slave_0 left promiscuous mode
[  996.214649][ T4521] device hsr_slave_1 left promiscuous mode
[  996.231341][ T4521] bridge0: port 1(vlan2) entered disabled state
[  996.311084][ T4521] device veth0_macvtap left promiscuous mode
[  996.322377][ T4521] device veth1_vlan left promiscuous mode
[  996.331868][ T4521] device veth0_vlan left promiscuous mode
[  996.534969][ T4521] bond0 (unregistering): (slave vxlan0): Releasing backup interface
[  996.917319][ T4521] bond2 (unregistering): Released all slaves
[  997.244591][T15495] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  997.801439][ T4521] bond1 (unregistering): (slave bridge2): Releasing active interface
[  999.012413][ T4521] bond1 (unregistering): Released all slaves
[  999.144633][T15509] overlayfs: failed to clone upperpath
[  999.731211][T15514] xt_TCPMSS: Only works on TCP SYN packets
[ 1000.867378][T15518] trusted_key: encrypted_key: insufficient parameters specified
[ 1001.412746][ T4521] team0 (unregistering): Port device bond0 removed
[ 1001.669279][ T4521] bond0 (unregistering): Released all slaves
[ 1001.750671][T15339] team0: Port device team_slave_1 added
[ 1001.760346][T15486] netlink: 14 bytes leftover after parsing attributes in process `syz.0.3163'.
[ 1001.805122][T15516] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1001.848650][T15516] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[ 1001.911880][T15516] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[ 1002.010489][T15516] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[ 1002.943043][T15516] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[ 1002.952226][T15516] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[ 1003.226407][T15516] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[ 1003.763760][T15339] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1003.792175][T15339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1003.824936][T15339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1003.839202][T15339] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1003.860663][T15339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1003.887398][T15339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1005.887150][T15556] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1005.973703][T15339] device hsr_slave_0 entered promiscuous mode
[ 1005.993431][T15339] device hsr_slave_1 entered promiscuous mode
[ 1006.049613][T15339] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1006.081940][T15339] Cannot create hsr debugfs directory
[ 1008.147200][T15339] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1008.211492][T15339] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1008.229694][T15339] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1008.295471][T15339] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1008.540802][T15339] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1008.568579][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1008.577475][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1008.588639][T15339] 8021q: adding VLAN 0 to HW filter on device team0
[ 1008.600400][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1008.609797][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1008.618313][T12338] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.625461][T12338] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1008.646476][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1008.655944][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1008.667279][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1008.679603][T12338] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1008.686767][T12338] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1008.696007][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1008.715850][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1008.725134][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1008.740913][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1008.750321][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1008.760417][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1008.769281][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1008.778077][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1008.792368][T15339] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1008.804634][T15339] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1008.815253][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1008.824219][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1008.833327][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1009.086876][ T4887] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1009.099045][ T4887] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1009.117239][T15339] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1009.474964][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1009.484341][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1009.511683][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1009.524697][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1009.535615][T15339] device veth0_vlan entered promiscuous mode
[ 1009.549442][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1009.557915][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1009.576193][T15339] device veth1_vlan entered promiscuous mode
[ 1009.600670][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1009.615384][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1009.627094][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1009.636945][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1009.651361][T15339] device veth0_macvtap entered promiscuous mode
[ 1009.663253][T15339] device veth1_macvtap entered promiscuous mode
[ 1009.680977][T15339] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1009.692144][T15339] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1009.699932][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1009.708194][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1009.722660][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1009.736328][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1009.746839][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1009.759252][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1009.775227][T15339] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.784969][T15339] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.793678][T15339] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.808165][T15339] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.909368][T12338] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1009.925997][T12338] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1009.948549][ T4897] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1009.968314][ T4897] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1009.977637][ T4897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1009.994226][T12338] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1010.278029][T15618] loop5: detected capacity change from 0 to 2048
[ 1010.413946][T15621] overlayfs: failed to clone upperpath
[ 1011.381548][T15618] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1013.176986][T15647] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3204'.
[ 1017.261594][T15677] netdevsim netdevsim5: Direct firmware load for ./file0 failed with error -2
[ 1017.270886][T15677] netdevsim netdevsim5: Falling back to sysfs fallback for: ./file0
[ 1017.912586][T15685] netlink: 'syz.1.3208': attribute type 1 has an invalid length.
[ 1018.277530][T15687] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3207'.
[ 1019.040045][T15703] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3210'.
[ 1019.472329][T15688] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link
[ 1019.628910][T15692] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1019.647297][ T4895] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1019.664463][T15703] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1019.674285][T15703] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1019.684079][T15703] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1022.140552][T15697] bond3 (unregistering): (slave ip6gretap1): Removing an active aggregator
[ 1022.182650][T15697] bond3 (unregistering): (slave ip6gretap1): Releasing backup interface
[ 1022.227123][T15697] bond3 (unregistering): Released all slaves
[ 1024.089269][T15741] __vm_enough_memory: pid: 15741, comm: syz.1.3219, no enough memory for the allocation
[ 1024.663283][T15746] kthread_run failed with err -4
[ 1025.771974][T15761] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3227'.
[ 1028.892822][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1028.900801][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1031.219543][T15826] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[ 1031.234978][T15826] Error parsing options; rc = [-22]
[ 1039.272743][T15894] bridge0: port 1(syz_tun) entered blocking state
[ 1039.354832][T15894] bridge0: port 1(syz_tun) entered disabled state
[ 1039.413876][T15894] device syz_tun entered promiscuous mode
[ 1039.423765][T15894] bridge0: port 1(syz_tun) entered blocking state
[ 1039.432131][T15894] bridge0: port 1(syz_tun) entered forwarding state
[ 1040.492890][T15896] kthread_run failed with err -4
[ 1040.498357][ T4904] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1041.671100][T15915] netlink: 14 bytes leftover after parsing attributes in process `syz.1.3262'.
[ 1049.598976][    T7] libceph: connect (1)[c::]:6789 error -101
[ 1049.605254][    T7] libceph: mon0 (1)[c::]:6789 connect error
[ 1049.896818][T15997] netlink: 'syz.2.3286': attribute type 13 has an invalid length.
[ 1049.975775][    T7] libceph: connect (1)[c::]:6789 error -101
[ 1049.981903][    T7] libceph: mon0 (1)[c::]:6789 connect error
[ 1050.151939][T15997] gretap0: refused to change device tx_queue_len
[ 1050.166066][T15997] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1050.491942][T15990] ceph: No mds server is up or the cluster is laggy
[ 1050.536870][T12204] libceph: connect (1)[c::]:6789 error -101
[ 1050.544394][T12204] libceph: mon0 (1)[c::]:6789 connect error
[ 1051.999209][T16016] Cannot find add_set index 0 as target
[ 1054.389503][T16036] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3297'.
[ 1054.438652][ T4269] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1054.479388][T16036] netlink: 'syz.1.3297': attribute type 10 has an invalid length.
[ 1054.537618][T16036] device bridge0 entered promiscuous mode
[ 1054.563336][T16036] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 1054.776551][ T4269] usb 6-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1054.802338][ T4269] usb 6-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1054.812154][ T4269] usb 6-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1054.974077][ T4269] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1054.981028][ T4269] usb 6-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[ 1054.992205][ T4269] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1055.009877][ T4269] usb 6-1: config 0 descriptor??
[ 1055.788152][ T4269] usbhid 6-1:0.0: can't add hid device: -71
[ 1055.805113][ T4269] usbhid: probe of 6-1:0.0 failed with error -71
[ 1055.827353][ T4269] usb 6-1: USB disconnect, device number 2
[ 1055.874651][T16056] 
[ 1055.877028][T16056] ======================================================
[ 1055.884127][T16056] WARNING: possible circular locking dependency detected
[ 1055.891157][T16056] 6.1.143-syzkaller #0 Not tainted
[ 1055.896269][T16056] ------------------------------------------------------
[ 1055.903292][T16056] syz.4.3302/16056 is trying to acquire lock:
[ 1055.909363][T16056] ffff8880595dede0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: process_measurement+0x33c/0x1a10
[ 1055.920119][T16056] 
[ 1055.920119][T16056] but task is already holding lock:
[ 1055.927493][T16056] ffff888029d108d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770
[ 1055.937523][T16056] 
[ 1055.937523][T16056] which lock already depends on the new lock.
[ 1055.937523][T16056] 
[ 1055.947910][T16056] 
[ 1055.947910][T16056] the existing dependency chain (in reverse order) is:
[ 1055.956907][T16056] 
[ 1055.956907][T16056] -> #1 (&mm->mmap_lock){++++}-{3:3}:
[ 1055.964447][T16056]        down_read_killable+0x4c/0x340
[ 1055.969892][T16056]        mmap_read_lock_killable+0x1d/0x60
[ 1055.975681][T16056]        lock_mm_and_find_vma+0x2b1/0x2f0
[ 1055.981380][T16056]        do_user_addr_fault+0x2db/0xb10
[ 1055.986904][T16056]        exc_page_fault+0x60/0x100
[ 1055.991998][T16056]        asm_exc_page_fault+0x22/0x30
[ 1055.997351][T16056]        fault_in_readable+0x13e/0x1f0
[ 1056.002795][T16056]        fault_in_iov_iter_readable+0xbb/0x2e0
[ 1056.008934][T16056]        generic_perform_write+0x1d2/0x560
[ 1056.014728][T16056]        __generic_file_write_iter+0x172/0x430
[ 1056.020864][T16056]        generic_file_write_iter+0xab/0x2e0
[ 1056.026738][T16056]        vfs_write+0x44c/0x960
[ 1056.031482][T16056]        ksys_write+0x143/0x240
[ 1056.036310][T16056]        do_syscall_64+0x4c/0xa0
[ 1056.041227][T16056]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1056.047621][T16056] 
[ 1056.047621][T16056] -> #0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}:
[ 1056.056287][T16056]        __lock_acquire+0x2cf8/0x7c50
[ 1056.061643][T16056]        lock_acquire+0x1b4/0x490
[ 1056.066653][T16056]        down_write+0x36/0x60
[ 1056.071315][T16056]        process_measurement+0x33c/0x1a10
[ 1056.077015][T16056]        ima_file_mmap+0x104/0x150
[ 1056.082108][T16056]        __se_sys_remap_file_pages+0x53e/0x770
[ 1056.088246][T16056]        do_syscall_64+0x4c/0xa0
[ 1056.093162][T16056]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1056.099555][T16056] 
[ 1056.099555][T16056] other info that might help us debug this:
[ 1056.099555][T16056] 
[ 1056.109764][T16056]  Possible unsafe locking scenario:
[ 1056.109764][T16056] 
[ 1056.117195][T16056]        CPU0                    CPU1
[ 1056.122537][T16056]        ----                    ----
[ 1056.127904][T16056]   lock(&mm->mmap_lock);
[ 1056.132221][T16056]                                lock(&sb->s_type->i_mutex_key#12);
[ 1056.140179][T16056]                                lock(&mm->mmap_lock);
[ 1056.147007][T16056]   lock(&sb->s_type->i_mutex_key#12);
[ 1056.152450][T16056] 
[ 1056.152450][T16056]  *** DEADLOCK ***
[ 1056.152450][T16056] 
[ 1056.160571][T16056] 1 lock held by syz.4.3302/16056:
[ 1056.165656][T16056]  #0: ffff888029d108d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770
[ 1056.176083][T16056] 
[ 1056.176083][T16056] stack backtrace:
[ 1056.181965][T16056] CPU: 1 PID: 16056 Comm: syz.4.3302 Not tainted 6.1.143-syzkaller #0
[ 1056.190097][T16056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1056.200157][T16056] Call Trace:
[ 1056.203424][T16056]  <TASK>
[ 1056.206336][T16056]  dump_stack_lvl+0x168/0x22e
[ 1056.211002][T16056]  ? load_image+0x3b0/0x3b0
[ 1056.215487][T16056]  ? show_regs_print_info+0x12/0x12
[ 1056.220667][T16056]  ? print_circular_bug+0x12b/0x1a0
[ 1056.225848][T16056]  check_noncircular+0x274/0x310
[ 1056.230774][T16056]  ? add_chain_block+0x940/0x940
[ 1056.235699][T16056]  ? lockdep_lock+0xdc/0x1e0
[ 1056.240275][T16056]  ? _find_first_zero_bit+0xcf/0x100
[ 1056.245539][T16056]  __lock_acquire+0x2cf8/0x7c50
[ 1056.250374][T16056]  ? ima_match_policy+0x104/0x2100
[ 1056.255466][T16056]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1056.261427][T16056]  ? verify_lock_unused+0x140/0x140
[ 1056.266607][T16056]  ? ima_match_policy+0x207a/0x2100
[ 1056.271793][T16056]  lock_acquire+0x1b4/0x490
[ 1056.276281][T16056]  ? process_measurement+0x33c/0x1a10
[ 1056.281635][T16056]  ? __might_sleep+0xd0/0xd0
[ 1056.286210][T16056]  ? __schedule+0x10f1/0x40d0
[ 1056.290878][T16056]  ? read_lock_is_recursive+0x10/0x10
[ 1056.296243][T16056]  ? ima_get_action+0x71/0xa0
[ 1056.300908][T16056]  down_write+0x36/0x60
[ 1056.305046][T16056]  ? process_measurement+0x33c/0x1a10
[ 1056.310399][T16056]  process_measurement+0x33c/0x1a10
[ 1056.315580][T16056]  ? ima_file_mmap+0x150/0x150
[ 1056.320326][T16056]  ? aa_file_perm+0x117/0xec0
[ 1056.324988][T16056]  ? mtree_range_walk+0x672/0x7b0
[ 1056.329997][T16056]  ? aa_get_current_label+0x110/0x1d0
[ 1056.335360][T16056]  ? apparmor_current_getsecid_subj+0xb1/0x110
[ 1056.341494][T16056]  ima_file_mmap+0x104/0x150
[ 1056.346072][T16056]  ? ima_file_free+0x3e0/0x3e0
[ 1056.350813][T16056]  ? common_file_perm+0x171/0x1c0
[ 1056.355816][T16056]  ? bpf_lsm_mmap_file+0x5/0x10
[ 1056.360648][T16056]  ? security_mmap_file+0x11b/0x180
[ 1056.365830][T16056]  __se_sys_remap_file_pages+0x53e/0x770
[ 1056.371453][T16056]  ? __x64_sys_remap_file_pages+0xc0/0xc0
[ 1056.377154][T16056]  ? lockdep_hardirqs_on+0x94/0x140
[ 1056.382332][T16056]  ? __x64_sys_remap_file_pages+0x1c/0xc0
[ 1056.388032][T16056]  do_syscall_64+0x4c/0xa0
[ 1056.392430][T16056]  ? clear_bhb_loop+0x60/0xb0
[ 1056.397090][T16056]  ? clear_bhb_loop+0x60/0xb0
[ 1056.401755][T16056]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1056.407633][T16056] RIP: 0033:0x7f377738e929
[ 1056.412042][T16056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1056.431632][T16056] RSP: 002b:00007f37781c4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8
[ 1056.440028][T16056] RAX: ffffffffffffffda RBX: 00007f37775b6160 RCX: 00007f377738e929
[ 1056.447981][T16056] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000800000
[ 1056.455939][T16056] RBP: 00007f3777410b39 R08: 0000000000000000 R09: 0000000000000000
[ 1056.463891][T16056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1056.471843][T16056] R13: 0000000000000000 R14: 00007f37775b6160 R15: 00007ffcfaa224f8
[ 1056.479816][T16056]  </TASK>