last executing test programs:

6m8.177895508s ago: executing program 1 (id=13):
syz_mount_image$nilfs2(&(0x7f0000000480), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x1, 0xeec, &(0x7f0000001e40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1000002, 0x11, r0, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000001300)='./file0\x00', 0x1000801, &(0x7f0000000000)=ANY=[], 0x0, 0x1cc, &(0x7f0000000400)="$eJzsmD/v0kAYx793LeVPjImLg4smkogJlLaocXHAV2AC/tskUglawEAHIHEgLi6+DN+CA5ODm5urDmpi4iCjk8OZa4/25J8yEIm/55Pw9Nu7567PPTTfoSAI4sTy5fOPTy9vXm+WAZxCEVk1/s1Ic7iW/zGnxIdXb/unn81X92N7Pt8E8KZuIFT3QgihzxfVtQme6NvguKz0XTDYSj8Axx2lfTDcV/qxpgd5JQLffjgI2o+6ge/I4MrgyVBbrW8xY2gDkEcXxu/1jybTJ60g8IerIiOWz1mb2lf8oX/mos5xQ+uf/L/uvXg+k/fL3jha/1xwuErXwNBY9gRZ2LadtkQ7/zkz3d/4m/MfgzhT2ZVT3r3857+p2VKNPZYe/oeCaSN5KaRpJSNnF/N366u+HrKwC4c9MpRnr029LxzwXU39U9rLJc2fTJiJf1TD3tPqaDKtdHutjt/x+55Xu+ZccZyrXjUyojju8L9c5E8Fbf/MllyLWRi3wnDojoFw6Cb3Xhw1x228HnyP1vDI/zhKF+M95KtixVa5EaZ+PLpKVTK2Fk8QBEEQBEEQBEEQBEEQBLEX58Gir6BCCKY+iG7CuxVl/woAAP//vphcsA==")
read(r0, &(0x7f0000001400)=""/4096, 0x1000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc6842, 0x1e8)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000006e40), 0x2000, 0x0)
sendfile(r1, r2, 0x0, 0x20fffe82)

6m6.839110845s ago: executing program 1 (id=17):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_pressure(r2, &(0x7f00000000c0)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r3, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)
r4 = openat$cgroup_procs(r2, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f00000005c0), 0x12)

6m6.342900693s ago: executing program 1 (id=21):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x2, 0x40)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6m6.121165366s ago: executing program 1 (id=24):
syz_mount_image$f2fs(&(0x7f000000e000), &(0x7f0000000080)='./file0\x00', 0x10, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x4, 0x550c, &(0x7f00000089c0)="$eJzs3M1rI2UYAPAn7Xa/XYt48LYDi9DKJjT9WPRWdRc/sEtZ9eBJ0yQN2U0ypUnT2pMHj+LB/0QUPHn0b/Dg2Zt4ULwJSmYmuvUDhKaN3f5+MHnmffPmmecNy8IzUxLAuTWf/PJTKW7ElYiYjYjrEdl5qTgy63l4LiJuRsTMY0epmP9j4mJEXI2IG6Pkec5S8dZnt4e31n588+evv7104drnX303vV0D0/Z8RHR38vP9bh7TVh4fFvO1YTuL3dVhEfM3uo+KcZrH/eZWlmG/Nl5Xy+JKK1+f7uz1R3G7U6uPYqu9nc3v9PIL9oetcZ7sAw9ru9m40dzKYrufZrF1mNd1cJj/33bYH+R5GkW+D7P0MRiMYz7fPGjm+9l5lMV6b1DM53nTRvNgFIdFLC4X9bTTyOrYOs43/f/2Vru3d5AMm7v9dtpL1irVFyvVO+XqbtpoDpqr5Vq3cWc1WWh1RsvKg2atu95K01anWamn3cVkoVWvl6vVZOFuc6td6yXVamWlslReWyzObiev3X836TSShVF8pd3bG7Q7/WQ73U3yTywmy5WVlxaTW9Xk7Y3NZPPBvXsbm++8f/e9+y9vvPFqsehvZb0Qy0vLy+XqUnm5uniO9v9xUXSyMLH9w7GUpl0AwNmj/wem4eT6/90HESff/4f+fyLOVP87LmuC/e953z8ci/4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAODc+n7ui9ezk/l8fK2Yf6qYeqYYlyJiJiJ++wezcfFIztkiz9y/rJ/7Sw3flCLLMLrGpeK4GhHrxfHr0yf9LQAAAMCT68uPbn6ad+v5y/y0C+I05TdtZq5/MKF8pYiYm/9hQtlmRi/PTihZ9u/7QhxMKFt2A+vyhJLlt9wuTCrbfzJ7JFx+LJTyMHOq5QAAAKfiaCdwul0IAAAAp+mTaRfAdJRi/Chz/Cw4+8v7Px8IXjkyAgAAAM6g0rQLAAAAAE5c1v/7/T8AAAB4suW//wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPzOzv3cJg5EcQB+Nnhh/2nRau/byt6gjC1hj3uMKCBNUEAOpIU0QA3klhIiiPA4BCIOkTy2lej7JGcylvnxBsFhZqQBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACALt1X68Xt1e/rtjm7fTt5RgMAAABcsq3Wi/qfWep/be5/b279bPpFRJQRcWnuPopPZ5mjJqd6ef7m9PnqVQ13EXXC4T0mzfUlIv401+OPrj8FAAAA+Lg2y9U8zdbTn9nQBdGntGhTfvubKa+IiGr2kCmtPOT9yhRWf7/H8T9TWr2ANc0UlpbcxrnS3qT+uR9X7aYnTZGa8uLLjkVmGzsAANCj0VnT7ywEAACAPv0bugCGUcTzVuZxK3CSmmZ77/NZDwAAAHiHiqELAAAAADpXz/97Ov9v7/w/AAAAGEY6/w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAubav1YrNczdvm7Pbt5BkNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwxP68o0AIhEEY7F3fmcz9DysNmpqaVIHw8TcGAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJvf/eX/xNQ4k8y9NpaeR5K1U2Pr1Ng7N47+ML5+DQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAX+/OSAiEQBFEwZ/zvpO9/WEnQM4gQAQ2PKmrRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwRb/75f/E1DiTzJ02lo5HkrWrxtZVY+9B4+jBePs3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXO/fzGkcVBwD8zc7OxlbFNcoeIqLgQS92u62tvYkHJXjwTxBCuq2xW3+0OdhSxFy8Sc69iB5FBCXe+j/0nEAu8ZbDHiJ4jszszO7kB7j+6Mwm+XzgzfvuMMz7vlkI+c57CQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEBh+O4kjtNDexQ38nObew+W037rUJ96tL69kLY0jqpM+mR4ufwh6ozDvTqSAQAA4GyIi/o+hLCTbCymfaOd1f9JcU1a83//7Cgu6vnDdX/RF7V/2n77dffF8UDt0TjpTW+sDPoXj6bSfHKznG3P/e0VzezJZ+9e4uwLaXyw9sIwyZ5n9O3jx++1snCuimwBgH/jQtHnQfH7UNr36kwMgDOjWSq8i/o/btebEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAVhmvh6SKOQggLzUmc2tp7sHxc/2h9e6FoVx8+XA9fT+6Z3iIJIdxYGfQvVjqb2Xb33v1bS4NB/071wSshhLpGfyef/q2Pprg4hFqej+D/Cfbn8i97RvI5IUGNP5QAADiVkryldf1OsrGYnovmQ9j/4WD9/3opDlPW/7sfX90sj1Wu/3uVzXD2dVdvf969e+/+myu3l272b/Y/fetS7+3e5WtXrlzrZu9Kut6YAAAA8N+08lau/xvzR9f/z5fiMGX9/8V3va/KY8Xq/2NNFv3qzgQAAOBse/7VP/+IjjkftVrhy6XV1Tu90XH8+dLoWEOq/9hc3sr1fzxfd1YAAABAFYZr0YH1/+ulOEy5/v/Mjy/9XL5nHEI4l6//X1j+bHC9uunMtCr+nLjuOQIAAFCvc3krr/8n2f7/xnjLQyOE8MZrozj/N4BT1f/x+9/8VB6rvP//cnVTnEmNzuh5ZH0nhGan7owAAAA4zZ7KW1rs/55sLH7yy/kPW/b/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFTtrwAAAP//RAE/8A==")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000002b40)=ANY=[@ANYBLOB="0200000001000000000000040400000000000000100000000000000020"], 0x24, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000440)='./bus\x00', 0x41)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

6m5.245923226s ago: executing program 32 (id=26):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006180)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x4000001, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r2, r3, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0d000003005a"], 0x50)
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x3c04c590, 0x40, 0x3, 0x10, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r4, 0x80044d07, 0x0)

6m3.626990538s ago: executing program 1 (id=36):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000280)='./file0/../file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x28a5291, 0x0)
unshare(0x22020400)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x1)

5m59.275452087s ago: executing program 1 (id=49):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chdir(&(0x7f0000000140)='./file0\x00')
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)

5m59.017119302s ago: executing program 33 (id=49):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chdir(&(0x7f0000000140)='./file0\x00')
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)

5m49.107239669s ago: executing program 2 (id=78):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000340)={'bond_slave_0\x00', &(0x7f0000000000)=@ethtool_channels={0x3d, 0x3, 0x0, 0x894, 0x1ff, 0x1, 0x2}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f00000000c0)="b882008ee8f3cf66b80500000066b9f10000000f01c10fc7ba8c9eba610066ed0f01f766b80500000066b90b0000000f01c1ba6100eddfdfbaa10066b80098000066ef", 0x43}], 0x1, 0x5c, 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m48.782713707s ago: executing program 2 (id=80):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x2}}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0xfff9, 0x1000, 0xfffffffd, 0x2, 0x0, 0x0, 0x100, 0x7}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0), 0x2010004, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid}], [], 0x6b}})
r3 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r3, &(0x7f0000002780)={0x2020}, 0x5ecfb203)

5m48.531145231s ago: executing program 2 (id=82):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0xe0000000, 0x5, 0xb7, 0x2, 0x1, 0x1, 0x4, 0x3, 0x1}}}}]}, 0x58}}, 0x4000)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000008840)=@newtfilter={0x4c, 0x2c, 0xd2b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xb, 0x3}, {}, {0x1, 0x9}}, [@filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x14439}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_RSHIFT={0x8, 0x4, 0x6}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x81}, 0x800)

5m46.789548101s ago: executing program 2 (id=89):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000640)={[{@lazytime}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@barrier_val}, {@journal_dev={'journal_dev', 0x3d, 0x5}}, {@dioread_lock}, {@nodelalloc}, {@noinit_itable}, {@resgid={'resgid', 0x3d, 0xee00}, 0x32}]}, 0x9b, 0x4fc, &(0x7f0000000140)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x49adc51, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
pivot_root(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000740)='./file0/file0/file0\x00')
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f00000008c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
read$FUSE(r1, &(0x7f0000006b40)={0x2020}, 0x2020)

5m45.728121242s ago: executing program 2 (id=91):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file1\x00', 0x80000, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file3\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file0/file3\x00', 0x0)

5m44.797440825s ago: executing program 2 (id=93):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@updsa={0x14c, 0x1a, 0x1, 0x0, 0x0, {{@in=@loopback, @in6=@empty}, {@in=@local, 0x0, 0x33}, @in6=@rand_addr=' \x01\x00', {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_auth_trunc={0x5c, 0x14, {{'xcbc(aes)\x00'}, 0x80, 0x0, "97a2c2df58bf2babea45840d4da5d432"}}]}, 0x14c}}, 0x0)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2, 0x0, 0xa}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc}}, 0x0)
write$tun(r0, &(0x7f0000000840)={@val={0x8, 0x800}, @val={0x6, 0x0, 0x6, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x2, 0x2, 0xfc0, 0x66, 0x0, 0xb, 0x89, 0x0, @rand_addr=0x64010102, @broadcast}, "3297e3ba0fa8a2e71bd9fe1a399b5110420b70460c0dad392d66248a43540df968e7fcaab34569c0e36170578c0d3c546a98b26295e2592f360905866eb4720fed03a977a3df4224895629fd6ccec64f13a999f18f518e3ee28798381975e862f1db9dccdb2f1c1fb60f5ffc7a339d40a8bd1f24cede8a32f186f142e194d4fb48224759faf813ea80e6a853e79b4fe27fe3e1aec5897b314a7f0d515b07b1835986b4885e9826d902c40f16cd77c58b6433ab039955ce9db11f36f459e7114ace6c9989eecea80a81fd39f339356c7c3391af83da2486503a7973f6db4806cf3e5ca94cf7e1f79fd00decd76100c18251a59d1474caabf4d3ca6a9a9885df710e68c5b0dc11832dbb5eecb5c88c2f8f02bdbd88569ad4a740359cbca8c378118220d73bdd1e661c3a74f77aa931b11cd38119b0f084bb96e84803fca6566c33ee1e4e34ab0253fbf24f9f5974af5e1fc2a43a4ec9dd9928a8f38a128ea27c429300ae5a6bd7740471f973d8224b2b07879f4fbe7dcbed776a72ebdc713bcf1d7aa45b01c32a1003e6670d58510bd79ba2fde5cb2b82cef2cc315648f4e9d96d848ba327949b8926253cbdef6888a8982108b6ac7a1108533dd3fe125002e2e286362d1055082a9d73ec5ac3080f2a501ff27250b62c8965f371cf92b32d6422d79f66261eb08a2f8fe50049e102c69ce703d116d0834208cc957d0f1376457a90245816d7642412897fdd2f982fdfbc3af65aa0446b00c767b79aec40e460887ea02188e3a0960eea39b144859467b881978378c9fd593259e0f63148179fe2c2f6d40987b63a6e384e63027f03d8039d707522942d5dc88fd842524d006290b6a65e9cc86cc5b401a60ec4aedfb3bf4d0447bb681810a16b9684b72c2f4593ef834a0203e78cd1d9dbc978e9ae8f3ab62c07f1e41d59470decee7b0cc41ac49e4b7589ab6da65849f62ec217bb39ed161e7d337822d96badbd74d66451ea9a74bed591dc9631bf639dcf7846ee428a9fa55bfceedf3b1c23642f3b58dd0a7273664c6c49c9160a4b9cc5b72d0210e305b94e2cb09ae1d4af9d365b5093851f229c8c30aef75d45ccdbab4b86d801a9ad3b27f26ba601d531c0743717aa7aae29d37f496fec7682c5a1abd321ad61941a2d23fcac6af1d1875e308c8d8c64a5152be47b59c09d293f46b857310a99f1885f0a49d432aa0d39a3e8fc885e75e66b63215133175a19267c8d0adf7d8f644e742ed5369d1405e99e63b78727f135e0243f24d9ce354a1562102ee8de4c191508343b86bf7e7519ddd770ce55e17e590561b2f437194c97ad46622a6ae3dd68d9993e6744954f4cd308bd6594fdccedc578e80aed274a65219697229059723ac37d535cca0e9c314e7941b4160bbd2ffba71f26ffe3228431bc81463078ad70583277ef18bce23ca2e5b9a00670956ea8e0e2c739c006106c8c9ee3f92ba728d8490742b74a9a18cbedfc4e69bb87e0da4c7dfb964374c28c837d4641fb99a19b233675f8526af395335e0185cf3934805442ac379980b687a7128e53284ba9e741b5fe9bc969bfbd55cbce76842915e076e2adf844338d16d3802c681bafdcc60465bd34dfc2d1c069ceee40060e0570fc1275ccabfe3f9be3e84ceedf72cd649c082232008e2b0c94594588c00e0fe911bbf1c12eb6c37ce05674a7597feecf27f5e051ffa824d9ff93638dfa9a84c77562aa2cf897f55a97b79c18544ad03480e1011b8f93e0ead9c2c6672448f585c5803ae99be777fbc662ef4450c1e936ed8b3c8047f00e72adc84561f417f8e5e1dde4967005d96a64fc75d9f486b3ebdb5904a0a56ec48542f0efce939f66fd69259e7376ad37e84434ea90f35b2d3bd63b5c36b267d8f2c7dc5a50b46e00ed086dff8b039e07b84c60611269d4f282ad04dc8e0b481eece2f8a614734be73617f0ad5be195446b09dca4cf1f32653dd3e188aece76f3014deb2ba61744835c0f735234b6a4637c948a7b4fd4203b286ca87d669e325d70277075b094f59eb1dff6c9c05c40d5e464c563df79486e1a32e6ed9bcf675aac7968b4e98dc4e210215b0d3b6a2525b2e3df11f3f1490eb39cabffbe32e23659121fde8e4e346e0f595aaf3666a5f6f118c1a1128039502ac04c40b85eb4c54e6c95b8d1c2aac74ae9e1c355ccde9d54d5d833293f5df09224482179e5bcd8e227c99172a6e14c2cd4e6462ceb0a905a1d64804840ce62e350c6efac10a7fcb029f84af64e2256d45afd3b3f59379895740e0cd2fd24c63264f785bb6e3f40ec72ed67d1a7d87dd264743d9c951cb5aa8bc6f1d1bc9b23303d5aa7f8f6f961326757456057000cb2bacf78cc229002777e932c2640b8dfa793846ca49fa93996db95104a8808a1906b19df17e754b90582b6c49efb3ddce067dd9292291cfd2bb0323ce8098f29e4fce0de31cf5c7e2e2da5d0d0996a8be776de8fecfd3ce68e80d21f1701f6b90ac51278abbd727d19415e0ebe001b990b177b8db0c592b18a4b5e4a6221902362e5b20e6e6f2131a5a5e03c1150b179ef40c933c2fef1b79de738652ec4c32565f5cf751a11db177099c4e2e5bd7616cd0dd501d5bfccf5691de3cca590365328648baf8a9487a3c212193c9bb837594460967e823067a9465eba7001eaf609a810488ef5c147aaa5e9e8c75b585ac3582b6915e20b5aa2f79b7a94857122988c56dbce1ea52de1a56652e839bb853be3ee16052b33fb83ca54d8e4e19440a5e81492107043a66286f63ca87a1f7b8a4e9547a7eb6005419cfd28cb37e9e374f4d0143973286e87070754025c1a6fccfdc6858eaca8c35ecb19584ce7141cc79a5bc813469161b87a19fc21f3373d1f25b3427916dd1be2a589b70ea3b39fcc7801e13beaf19b76164faf3dc4ab8faa5648d24eddd6caceaa0d5ac9cad633c19a4a4d059ee823a49b7cf82c5777d376c111f58ea8fd473429907852301a2c856f27bd0c687ab5be0e2bbef64ddee1601375a4440e3f59d60f57caebfe457f82432523ec4a61cdbb7f1e91e4b05fda892df131c274b19929d26f7a5a6d3ca487983f729601ed9bb4bf5c1cc3d453d406e9534688dec6a2dd0b9db149365c125a95e129565e62cc91f7d960abe1055b730ae0994e7eb08392d5745d0e4f529c4defc3d3e43d0815b0cc63effa88d20c13b14e780c2f6c89a1ee5e4db45a5c272186cc3e51b13dab3add5f467e8ca0f4c45a1fc76db2f0cbf794102946aafcd8cd8a3e935a606b9721645c4d550ae0907f345593736506efc626498c974753d474a73626041d3a54f8fb50de2a6335611a3779da3a02daceb2256d9b102d4d30dd3cd389a04b1a7a6076879f36534bb3379debb46ed1fa2c40096c752017dd024345c58313b43070ff7bef94dc3cafbe6ec20d59e5ea3c196ba3b783bfa87384407efc664cd350c80ac397516018e35371956e414755cde304d2a228c1540ba6fd6a7402d11c666964f024da4c016eb556ba2c5fab86c60c12efb1496295d80f0383526e8e0fc55a287bbd3cb966a916f57958d8b6ef97aa0c4b47f7746bab6b99698c1c96b25c4e2e084147866fe0970b109dd26984adc0758eb6442712cc46dcd8ed3038b0595252eed1b8a46525862662d1e67eba66ac341f8d27853eed54854f488f079bd48df6ce7a4be8b1b61fd23a2dc4d3ade0992011539cc63f80fcfc75008c20cb639348cb218f8f476a6d56917f4ca07e67fc20ea2e9642eaf2182b397e279f5f6c70438fb8aa39cba788588c181461ea7efe1a0dd5b95eb26f7158b91012f7ce0ee1b4e79ce4da377bea4551738a0f491a84f19b3be9827b4469c299527aa9c20b8bf12f919976a0356bba720fb91010763c79bcbb10d89280f0f97cdd19aa0d54828b308195fac170613cf4b515e340a9ef2c97f618a9f50b30ae34ebeed9a38b4c6969680accc740b154ecb014fb5d543a59ccb98a7de2823a2dec39f331cb503eb74fef61262c6d4050bc723caee834eb28c64ce007f6027375e936b62387cf1778970e88b0574a0106d4c855be7425767c551b2fa644d9d8a59f787e7610581b768057d229673344571c3d6e3f10975b2859f568398b1f38f89524d9ad0c1588617c3883a1227b714c81cdf28da54f33968c1c50f28da01c308eb31d319b3e77f96bec001c9300000000000000009cc0062283ac112868592619db14d629c47bfb793a723dcd2f7b07ae4ec14ca3ef4b955ea5b2b153a279b080f6236d418075b86850974c8850efb306d5c304e726bf2643b4403e6d46b0e0395b02e93308b4b2c3e957308d497dc51c753344a7878f1f0c91295fd76e3d1cc9ef813161c6b92b7ea6068ceb97d8f45a4ce57af7d7632d699951f7fe3c71c3a32b014c74425c67e5030546b10cf7edcec2eca5ba31dc62c08f83f35bc2e36b93f15f071bc2537ebe9ca19f86dce4e84272e10323d0ceaa2cc47fe4f6ad101d454c761f9863e94af91199ce5f12469bca7ba39314b84aa7efa4bdc18f7700c19511d48d6132450111d70401a8ac73565d5386ca12345e884d08b23f9c901000a95eb4167865e58c28b112f47c96beeaa6657c923e25e56529107c5c30e65bb485d5ed21b91332db4e09df7e59dcfa05c994570deb3f9b838e22ae4abbf9a9a8c319cc9112c8dba7c2278f78b9578b0254c46a4c04b8fa4fedad6bd275f70b1618971ef6503379bfb0a508c9944328af2c820091a89e3f75e68e7f980ddc9154d273f7f2ce7a6294aefe93136860786679b80e41f6636ff45efeacfb52e2ba2bd9bd9c9030079a46caca5c4b340c17d01ba8ecbc5c561b2038481a8321c009d12136a3ad5461881d998eeaac5236fdcd8f81fb5e53848bb096d9198fd0d38830d1809f2a632b31e2b67754140c907ed58aead048b2d8af9a1c407e48db815212cfdcca97222dabdfe01f311a73e1e82c3e189ec5add48d3f8190eb9e14b58e540f7f1388a7c687629eadb19fd8a133dc8177629270ecaabff79efb6c1f750d89b9e6c5f34c6238066f8e3e425e46a27b3c0d2e9e2ed3cffe2a6f39b8e0137ea5de689b94107fb4748a5feb3902f0feba64dae4c2e69bc8d86463575c6b0ef4a8a64fef41121e57a8c67eda07e9fc8f98299677de198ea0a649ef3c00591940b2c27ba1414aaa1633deb52e3a44cfa8d7a00d014317c026a7d7f42a34b97128e1bf9cda4d8315819ac73ed5061bf9b5631d07b09b85b78ff1b6eb86e9e8c4faa0f991cd6fa0b0eb71b39c20ca9bc7c156f3bd255a5b408df172396bafd7f0fb11c6eaf1eb0a06576d37bee00424bf699584b1dfed68f0d8d8a35f0427c783fe2d79b4373628971e87501a5e4bb05b5058d0b2132741f26e76065b6f4017d963c8ee5605c4c5b6eebb96fca0a41893cb6add3fb0d728abeb860f22cedbd36e464bdaf124a7041460f7af3d64b54e9ffd240b5afad9baf6e5dd8406bc1b205da5848f51fc9dd5197716e144e1b0386614bd3cfd5ddb80ada1e5ca74c8960093a553b1f6288aa7f53663cdd867f658e51b95772dc7a6fa45fa03e14988a33250e6c16fbf0351769080d64ddfbdbf77e1215563bf2e82ecc38a682846d7e2e2ac4e87d715f97f15e84c3df04affee49612a735907d3c4d310a54a6f609873ad56f29a138f4d5661f6865e030487"}}, 0xfce)

5m44.436508786s ago: executing program 34 (id=93):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@updsa={0x14c, 0x1a, 0x1, 0x0, 0x0, {{@in=@loopback, @in6=@empty}, {@in=@local, 0x0, 0x33}, @in6=@rand_addr=' \x01\x00', {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_auth_trunc={0x5c, 0x14, {{'xcbc(aes)\x00'}, 0x80, 0x0, "97a2c2df58bf2babea45840d4da5d432"}}]}, 0x14c}}, 0x0)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2, 0x0, 0xa}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc}}, 0x0)
write$tun(r0, &(0x7f0000000840)={@val={0x8, 0x800}, @val={0x6, 0x0, 0x6, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x2, 0x2, 0xfc0, 0x66, 0x0, 0xb, 0x89, 0x0, @rand_addr=0x64010102, @broadcast}, "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"}}, 0xfce)

5m25.745648104s ago: executing program 5 (id=165):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000780)=@newtfilter={0x8c, 0x2c, 0xd27, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x0, 0x10}, {}, {0x8, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0x5c, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x1e3a9}, @TCA_FLOW_ACT={0x50, 0x9, 0x0, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x3d1, 0x3, 0x5, 0x6, 0x6}, 0x7e}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x8c}}, 0x2)

5m25.094127362s ago: executing program 5 (id=169):
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000040))
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f}}, 0x20)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r3, 0xc0844123, &(0x7f00000001c0))
close_range(r0, 0xffffffffffffffff, 0x0)

5m24.899776883s ago: executing program 5 (id=170):
r0 = creat(&(0x7f0000000200)='./file1\x00', 0x12e)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000003000)=@file={0x1}, 0xc)
listen(r2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040), 0x200000, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

5m23.8967665s ago: executing program 5 (id=174):
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000001c0)='./file0\x00', 0x204818, &(0x7f0000000480)={[{@mode={'mode', 0x3d, 0x7}}, {@hide}, {@session={'session', 0x3d, 0x40}}, {@dmode={'dmode', 0x3d, 0x92fb}}, {@sbsector}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@session={'session', 0x3d, 0x45}}, {}]}, 0x1, 0x54e, &(0x7f00000008c0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x99501e, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000001a40)={0x2020}, 0x2020)

5m23.54296927s ago: executing program 5 (id=176):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000080), 0x1)
sendto$inet6(r0, &(0x7f0000000040)='l', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)='\x00', 0x1, 0x294c7d32f9c90c35, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000300)="a4", 0x1, 0x8000, 0x0, 0x0)
shutdown(r0, 0x1)

5m22.521904288s ago: executing program 5 (id=182):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000000c0)={[{@nojournal_checksum}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@dioread_lock}]}, 0x3, 0x439, &(0x7f0000002380)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x2, 0x2)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x4c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_SEQ_ADJ_REPLY={0x14, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x10001}]}, @CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc4}, 0x4000810)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000340)={0x5, 0x100000000, 0xf8})

5m22.250643154s ago: executing program 35 (id=182):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000000c0)={[{@nojournal_checksum}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@dioread_lock}]}, 0x3, 0x439, &(0x7f0000002380)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x2, 0x2)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x4c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_SEQ_ADJ_REPLY={0x14, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x10001}]}, @CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc4}, 0x4000810)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000340)={0x5, 0x100000000, 0xf8})

4m58.810612104s ago: executing program 7 (id=270):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x10b})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xee}], 0x0, 0x0, 0x0})

4m58.628996255s ago: executing program 7 (id=271):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000480)=@newqdisc={0x94, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {0xffff}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x4, [0xc, 0x5, 0x0, 0xf, 0x10, 0x2, 0x4, 0x2, 0xf, 0x16, 0x3, 0x7, 0x8, 0x4, 0x10, 0x4], 0x3, [0xb, 0x5, 0xad1e, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x2, 0xb, 0x3, 0x5, 0x6, 0xd, 0x100], [0xfff1, 0x5, 0xffff, 0xfff5, 0x4, 0x8, 0x1, 0x9, 0x5, 0x2, 0x81, 0x40, 0xfffc, 0x3, 0x1]}}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x68}}]}, 0x94}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

4m58.343015751s ago: executing program 7 (id=273):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x3, 0x180, 0x2, 0x10, 0xf1, 0x100000001, 0x4, 0xfffffffffffffff9, 0x3, 0x800000029, 0x0, 0x6, 0xfffffffffffffffe, 0xbd9], 0xe000, 0x47004})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$DEVLINK_CMD_RATE_SET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4008004)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x7, 0x1000000000, 0x0, 0x200000000000043, 0x2000004, 0x0, 0x2004cb, 0x0, 0xa7c, 0x68ff, 0x7, 0x8008000000009, 0x803, 0x0, 0x9], 0xeeee0000, 0x202})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0x1, 0x0, 0x8, 0xb, 0xe6, 0x40, 0x0, 0x0, 0x81, 0x80, 0x5}, {0x5000, 0x3000, 0x3, 0x0, 0x1, 0x5, 0x75, 0x6, 0x36, 0x0, 0x2, 0x87}, {0xa000, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa4, 0x5, 0x5}, {0x1, 0xeeee0000, 0x4, 0x6, 0x5, 0x7f, 0xb, 0xff, 0x8, 0x7, 0xe}, {0xf000, 0xd000, 0xf, 0x3, 0x16, 0x87, 0xab, 0x8, 0x9, 0x9, 0xf7, 0x97}, {0xeeefa000, 0x0, 0xe, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x82, 0x2f, 0x1, 0x7}, {0x3000, 0x18227000, 0xf, 0x5, 0x7, 0x85, 0x7, 0x3, 0x8, 0x81, 0x42, 0x70}, {0xdddd0000, 0x25000, 0xa, 0x5, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xc, 0xb0, 0x91}, {0xeeee0000, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x3000, 0x21605c, 0x2, 0x0, 0x100000, [0x6800000000000000, 0x4, 0x3, 0x8]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4m58.063077687s ago: executing program 7 (id=274):
r0 = socket(0x10, 0x2, 0x0)
syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000015c0)=ANY=[], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
getdents(0xffffffffffffffff, 0x0, 0x0)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
creat(&(0x7f0000000100)='./bus\x00', 0x44)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000100)='./file0/file0\x00')

4m56.7924267s ago: executing program 7 (id=280):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000d26a871dba07e83f343e14287a05"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)=ANY=[], 0xd0}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4276ef66ba420266b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000540)={0x2, 0x0, [{0x1, 0xd, 0x0, 0x1, 0x0, 0x24, 0x2}, {0x80000019, 0x4, 0x0, 0x7, 0xbb1c, 0x4, 0x5}]})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x3, 0xe, 0x8, 0x0, 0x8, 0x1, 0xe, 0x80, 0xe, 0x7, 0x4, 0x9, 0x0, 0x5, 0x3, 0x3, 0x7, 0x0, 0xdb, '\x00', 0x40, 0x6ea93ba1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4m56.026030574s ago: executing program 7 (id=283):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x100000000, 0x8, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200})
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0x7fffffff}}]}})
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@code={0x1, 0x81, {"0f22e5c744240060420000c744240233d8cecbc7442406000000000f011c24668f38896810c4027958b20000000064449966baf80cb83284af80ef66bafc0c66ed66baf80cb8cc07ff8aef66bafc0cb8d4000000ef48b8f8000000000000000f23c00f2135030009000f23f8450f2244"}}], 0x81})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x400000000000009, 0x7ffc, 0x80000001, 0x800000010000, 0x4, 0x4002004c2, 0x0, 0x654, 0x0, 0x3ffffc, 0xfffffffffffffffd, 0x7fffffff, 0x20000000009, 0xffff, 0xfffffffffffffff7], 0x100000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4m55.712809552s ago: executing program 36 (id=283):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x100000000, 0x8, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200})
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0x7fffffff}}]}})
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@code={0x1, 0x81, {"0f22e5c744240060420000c744240233d8cecbc7442406000000000f011c24668f38896810c4027958b20000000064449966baf80cb83284af80ef66bafc0c66ed66baf80cb8cc07ff8aef66bafc0cb8d4000000ef48b8f8000000000000000f23c00f2135030009000f23f8450f2244"}}], 0x81})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x400000000000009, 0x7ffc, 0x80000001, 0x800000010000, 0x4, 0x4002004c2, 0x0, 0x654, 0x0, 0x3ffffc, 0xfffffffffffffffd, 0x7fffffff, 0x20000000009, 0xffff, 0xfffffffffffffff7], 0x100000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3m49.593927062s ago: executing program 6 (id=620):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

3m44.609294437s ago: executing program 6 (id=650):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x90, &(0x7f00000003c0)=ANY=[], 0x3a, 0x304, &(0x7f0000000080)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x1, &(0x7f0000001000/0x4000)=nil)

3m41.091272758s ago: executing program 6 (id=661):
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
close(0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
socket$xdp(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = syz_io_uring_setup(0x74d, &(0x7f0000000100)={0x0, 0x59c3, 0x1, 0x2, 0x5cb}, &(0x7f00000004c0)=<r1=>0x0, &(0x7f0000000480)=<r2=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0xc, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1})
io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)

3m39.753804265s ago: executing program 6 (id=665):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000140)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@errors_continue}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000}}, {@stripe={'stripe', 0x3d, 0x3}}, {@bsdgroups}, {@oldalloc}]}, 0x3, 0x460, &(0x7f0000000780)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

3m39.201997846s ago: executing program 6 (id=669):
r0 = syz_clone(0x2000400, 0x0, 0xfffffebf, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f00000005c0)=r0, 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x1, 0x12)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r6 = openat$cgroup_ro(r5, &(0x7f0000000280)='cgroup.kill\x00', 0x275a, 0x0)
write$cgroup_int(r6, &(0x7f0000000040)=0x1, 0x12)

3m37.085277667s ago: executing program 6 (id=678):
syz_mount_image$cramfs(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xfc, 0x15e, &(0x7f0000000480)="$eJzs0U1rE0Ecx/Hv7E4ewIQoRggeTG5Gg5AH9CYhKwYDxgVFEE+BuKKQEDGgPTb02kOg1xz6cC19C0nbQ2lJLn0VveRW6HHL7CYs7Wv4f27zm+H3n519/3ZRVETeDfp//nrDofej8NltN79cTacNk8eB5J398PysAb/QzDQsR2Di0zT8/N3zrO6gZ9bLBiQA58Eqp59Zz3OympGGCr69zk4SwTlrNTLMnsA3el6NWLB+qsHJhH1lYL4Hz/FxHoVZBbgGbFDKXN5PhEWtUv6xgo1J6ejw4tP8vPXqZd3brjbHL1I5uwTs46jkmRU9yWLe/ui23UWtWn2TLFcsXl+aQjbH6A+pf/BdgTZ9FkFfnNwz/RW2FOwEs5bHKm0+YvfG7Yf3qJuC/3YBVH7S7eRiB53sQwu7qM2uzz3mFwU70YsIIYQQQgghhBBCCCGEEEIIIYQQkdsAAAD//7ILTbU=")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fcntl$getown(0xffffffffffffffff, 0x9)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x0)

3m36.666993061s ago: executing program 37 (id=678):
syz_mount_image$cramfs(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xfc, 0x15e, &(0x7f0000000480)="$eJzs0U1rE0Ecx/Hv7E4ewIQoRggeTG5Gg5AH9CYhKwYDxgVFEE+BuKKQEDGgPTb02kOg1xz6cC19C0nbQ2lJLn0VveRW6HHL7CYs7Wv4f27zm+H3n519/3ZRVETeDfp//nrDofej8NltN79cTacNk8eB5J398PysAb/QzDQsR2Di0zT8/N3zrO6gZ9bLBiQA58Eqp59Zz3OympGGCr69zk4SwTlrNTLMnsA3el6NWLB+qsHJhH1lYL4Hz/FxHoVZBbgGbFDKXN5PhEWtUv6xgo1J6ejw4tP8vPXqZd3brjbHL1I5uwTs46jkmRU9yWLe/ui23UWtWn2TLFcsXl+aQjbH6A+pf/BdgTZ9FkFfnNwz/RW2FOwEs5bHKm0+YvfG7Yf3qJuC/3YBVH7S7eRiB53sQwu7qM2uzz3mFwU70YsIIYQQQgghhBBCCCGEEEIIIYQQkdsAAAD//7ILTbU=")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fcntl$getown(0xffffffffffffffff, 0x9)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x0)

13.602011171s ago: executing program 9 (id=1324):
r0 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x8800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, 0x0, 0x4000010)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000000)={[{0x80000001, 0x4, 0xc2, 0x4f, 0x40, 0x1, 0x80, 0x1, 0x7f, 0x44, 0x8, 0x0, 0x9}, {0xb, 0xa7f2, 0x6, 0x8, 0x9, 0xff, 0x4, 0x3, 0xa, 0x13, 0x22, 0x6, 0x1}, {0x1ff, 0x7, 0xd, 0x0, 0x25, 0x9, 0x0, 0xfb, 0x4, 0x15, 0x0, 0x68, 0x4}], 0x9})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xfffffffffffffffe, 0x6, 0xfffffffffffffffd, 0x0, 0x2, 0xfffffffffffffffd, 0x4002004c4, 0x1000, 0x0, 0x1, 0x10, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff], 0xeeef0000, 0x2011c0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10.425981023s ago: executing program 4 (id=1330):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r5 = open(&(0x7f00000001c0)='./file0\x00', 0x4200, 0x64)
openat$cgroup_procs(r5, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x4001, 0x0)
umount2(&(0x7f0000000000)='./file0\x00', 0xc)
umount2(&(0x7f0000000180)='./file0\x00', 0xc)
bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x2000000b}, 0x1c)

9.668622276s ago: executing program 9 (id=1334):
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x10003}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x700, 0x2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x6, 0x43fb, 0x0, 0x0, 0xffffffff}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffffd}}]}}}]}, 0x58}}, 0x20000000)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x2, @empty, 0x2d}}, 0x7, 0x1, 0x200, 0x3, 0xb4, 0x7f, 0x9}, 0x9c)
pipe2$9p(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r6, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a)
splice(r5, 0x0, r0, 0x0, 0x20000000000002, 0x0)

7.68123432s ago: executing program 9 (id=1340):
pwrite64(0xffffffffffffffff, &(0x7f00000002c0)="00e3", 0x2, 0x200006)
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=[@out_dx={0x6a, 0x28, {0x6769, 0x4, 0x2000000}}], 0x28})
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@code={0x1, 0x87, {"0f22e5c744240060420000c744240233d8cecbc7442406000000000f011c24660f38816810c4027958b20000000064449966baf80cb83284af80ef66bafc0c66ed66baf80cb8cc07ff8aef66bafc0cb8d4000000ef48b8f8000000000000000f23c00f21f835030009000f23f8450f2244c4417c50cc"}}], 0x87})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x36900, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x0, 0xaaa, &(0x7f0000000240), 0x0})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x9, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0xa], 0x10000, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000080)=@arm64={0x80, 0x1, 0x3, '\x00', 0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

7.679307201s ago: executing program 8 (id=1341):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000140)=0x40, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000180)=0x4, 0x4)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r5=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r3, &(0x7f0000000100)={0x2c, 0x0, r5}, 0x10)
bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x1, r2, 0x0, r3}, 0x60)

7.575943886s ago: executing program 3 (id=1342):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200010, &(0x7f00000004c0)=ANY=[@ANYBLOB="64656275672c757466383d312c757466383d302c757466383d312c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c002bc08d8cca74e8ecafb48437094fe1a4a2383bd9d85bff651d1101fd722e01b9b5d22f08b5fc0ac7cbf33fb553a90ae4d01d71ddeeb089f517aeaaa271899287d5b8949b22b23c2807b7d81714b89e9682f6c3faa6107733a77a4cf985560ed64ec24e255dee3654aa2ba55be4bf3ae257adba34bed8e32e4122bb46aa57a75dab0288098e42f886f09bdf63537db28a454b02a4204a7e7dac3c30a6d4b5c814916b02", @ANYRES64, @ANYRES32], 0x1, 0x286, &(0x7f0000000640)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x28, r2, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_RANN_INTERVAL={0x6, 0x10, 0x9}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x2400c050}, 0x18)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040302"], 0x4)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x44080)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
writev(r4, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

7.094021324s ago: executing program 9 (id=1343):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x881, 0x0)
ioctl$TIOCSETD(r3, 0x5423, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8002, 0x0)
io_setup(0x4, &(0x7f00000003c0)=<r4=>0x0)
io_submit(r4, 0x0, &(0x7f0000000180))
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(0xffffffffffffffff, 0x0, 0x840)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r5, 0x25, 0x0)
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)

6.494174638s ago: executing program 3 (id=1345):
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r0 = openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lseek(r0, 0x8, 0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0xb, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
bind$packet(r1, &(0x7f00000001c0)={0x11, 0x11, r2, 0x1, 0xf, 0x6, @broadcast}, 0x14)
pipe2(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r4, &(0x7f00000000c0)=ANY=[], 0xffffff6a)
splice(r3, 0x0, r1, 0x0, 0xfffd, 0x0)

6.492734528s ago: executing program 4 (id=1346):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
read$alg(0xffffffffffffffff, 0x0, 0x0)
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000340)=0x6)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r3, &(0x7f00000000c0)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@mask_fadd={0x58, 0x118, 0x8, {{0x0, 0x3}, 0x0, 0x0, 0x5c, 0x8}}], 0x58}, 0x0)
r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_OUTPUT(r4, 0x8004562e, &(0x7f0000000340))
pselect6(0x40, &(0x7f0000000200)={0x9, 0x93, 0x5, 0x0, 0x6200000000000000, 0x4, 0x8, 0x7fff}, 0x0, 0x0, 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, 0x0, 0x0)
setsockopt$sock_int(r5, 0x1, 0x1b, 0x0, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000200)={'nat\x00', 0x0, 0x0, 0x0, [0x3, 0x8, 0x9bc6, 0x8, 0x4, 0x7fffffff], 0x1, 0x0, 0x0, [{}]}, 0x88)
getsockopt$IP_SET_OP_GET_FNAME(r1, 0x1, 0x53, &(0x7f0000000380)={0x8, 0x7, 0x0, 'syz0\x00'}, 0x0)
ioctl$VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000080)={0xf0f041})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x20, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWRULE={0x3c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @bitwise={{0xc}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0xa4}}, 0x0)

5.844135315s ago: executing program 0 (id=1347):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000640)=""/4112, 0x1010}], 0x1, 0x4000, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setregid(0xffffffffffffffff, 0x0)
read$FUSE(r3, &(0x7f0000001680)={0x2020}, 0x2020)
setgroups(0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="340000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="008000006400000008001b00000000000c002b8008", @ANYRES32], 0x34}, 0x1, 0x0, 0x0, 0x5}, 0x0)

5.843835025s ago: executing program 8 (id=1348):
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x7})
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = socket$inet(0xa, 0x801, 0x84)
listen(r1, 0x8)
r2 = socket$inet(0xa, 0x801, 0x84)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
listen(r3, 0x100)
listen(r2, 0x8)
r4 = socket$inet(0xa, 0x801, 0x84)
listen(r4, 0x1)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)

5.7650036s ago: executing program 8 (id=1349):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r1)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0xb}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0xa, 0x7f61, 0xfffffffd, 0xc5, 0xe23, 0x1, 0x1, 0x7fff, 0x1}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20008001}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x80000, {0x0, 0x0, 0x0, r6, {}, {0xffe6, 0xb}, {0xfff2, 0x3}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x850}, 0x4048080)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)

5.065123889s ago: executing program 3 (id=1350):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
syz_open_procfs$namespace(0x0, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
ioctl$SG_IO(r2, 0x2285, 0x0)
writev(r2, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484ea0a00000f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb067a0689fff2a41cfbf0e9d85e44", 0x2b}], 0x2)

4.71728073s ago: executing program 0 (id=1351):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$packet(0x11, 0x2, 0x300)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000001800ef0100800000000000000a0000000000c800000000000c00090008000000", @ANYRES32=0x0, @ANYBLOB="1400050000000000000000000000000000000012"], 0x3c}, 0x1, 0x11, 0x0, 0x80}, 0x0)

4.71454473s ago: executing program 9 (id=1352):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x0, &(0x7f0000000200)})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_emit_ethernet(0x132, &(0x7f0000000780)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "dd000a", 0xfc, 0x11, 0x0, @remote, @mcast2, {[@hopopts={0xcc, 0x0, '\x00', [@padn]}, @hopopts={0x32, 0x2, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @srh={0x8, 0x4, 0x4, 0x2, 0x9, 0x20, 0x7f, [@private0={0xfc, 0x0, '\x00', 0x1}, @private2]}, @routing={0xff, 0x0, 0x0, 0xe}], {0x0, 0x4e22, 0x9c, 0x0, @wg=@initiation={0x1, 0x4, "c59bc603c2665bde63792e7f85063b8e60677269608d4dc78c97dc923be0c1d6", "e51ab62e9301369af3a9c6687e5ff228ec545ac2773b53671388172a52e080f8474b0f804fff51b7b96c5700220f2215", "3daa1dc3dbed0800f60148906b01c142ee1728132c8dbb276e51166e", {"9f1ec9139dc5109f60429edd013a5714", "bbdd3cac45ae33b4da703aec90e78805"}}}}}}}}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x104c3, 0x0)
ioctl$PPPIOCSFLAGS1(r3, 0x40047459, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
r4 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
ioctl$MON_IOCG_STATS(r4, 0x80089203, &(0x7f0000000000))
dup3(r4, r5, 0x0)

4.507198052s ago: executing program 3 (id=1353):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r0, 0x40082102, &(0x7f0000000040))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init(0x4, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x29, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB="6e617400000000000000000000000000000000000000000000000000000100000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000767c4a5830d3a2f700000000006ad99282c895e75e"], 0x68)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x141, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x24008000, &(0x7f00000001c0)={0xa, 0x2, 0x20398, @empty, 0xffffffff}, 0x1c)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r6=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010028bd7040010000000f00000005002e000000000008000300", @ANYRES32=r6, @ANYBLOB="05002f0000001a9b428edacb7e61f20000"], 0x2c}}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[], 0x48)

4.506591442s ago: executing program 8 (id=1354):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000100), 0xffffffffffffffff)

4.502586742s ago: executing program 4 (id=1363):
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
listen(0xffffffffffffffff, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
setrlimit(0xc, &(0x7f00000000c0)={0x101, 0xfff})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f00000003c0)={0x0, 0x0, 0x0, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0, r4})
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$mixer(0xffffffffffffff9c, 0x0, 0x101180, 0x0)

2.95382139s ago: executing program 0 (id=1355):
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x7})
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = socket$inet(0xa, 0x801, 0x84)
listen(r1, 0x8)
r2 = socket$inet(0xa, 0x801, 0x84)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
listen(r3, 0x100)
listen(r2, 0x8)
r4 = socket$inet(0xa, 0x801, 0x84)
listen(r4, 0x1)
r5 = socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)

2.324028616s ago: executing program 9 (id=1356):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x94, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x94}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

2.323606026s ago: executing program 8 (id=1357):
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000300), r0)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000340)={0x14, r3, 0xffffffffffffffff, 0x70bd2a, 0x25dfdbf8, {0x3, 0x0, 0x14}}, 0x14}, 0x1, 0x0, 0x0, 0x4005c}, 0x400c084)

2.243478671s ago: executing program 3 (id=1358):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, 0x0, r1)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000800), &(0x7f0000000000), &(0x7f0000000340)=<r5=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',privport,access=', @ANYRESDEC=r5])
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x1000)

2.176091225s ago: executing program 4 (id=1359):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

1.90830157s ago: executing program 4 (id=1360):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
syz_emit_ethernet(0xbe, 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r1, 0x541b, &(0x7f0000000100))
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x3)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_MAXSEG(r5, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={r6, 0xe1d1}, 0x8)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)

1.90494306s ago: executing program 0 (id=1371):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = eventfd2(0x4001, 0x800)
r3 = eventfd2(0x4, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000040)={r3, 0x7, 0x2, r2})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2, 0x0, 0x2, r2})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x9, 0xc0, 0x5, 0x7, 0x7f, 0x0, 0x1, 0x7, 0x1, 0x41, 0x3, 0x58, 0x7, 0x5, 0xb, 0x81}})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000003c0)={[0xcb, 0xd, 0x2000000000004, 0x6d, 0x2, 0x1002, 0x80000ef, 0x200, 0x7fffffffffffb, 0x8d, 0x2, 0x1, 0xfffffffffffffffe, 0x5, 0x3, 0xbdf], 0x2000, 0x67a64fa265d1c653})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.858162063s ago: executing program 0 (id=1361):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={0x98, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_DST={0x4}]}, 0x98}}, 0x0)

1.614843177s ago: executing program 3 (id=1362):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x94, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x94}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

612.359264ms ago: executing program 4 (id=1364):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
ioctl$VIDIOC_DBG_G_REGISTER(0xffffffffffffffff, 0xc0385650, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c0000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000004001004000024001a80200002801c00018008001a00060000000800160002000000080010000004000008001b"], 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x0)

163.53187ms ago: executing program 8 (id=1375):
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newqdisc={0x58, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x2}, {0xffff, 0xffff}, {0xfff1, 0x6}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x7, 0x79, 0x8, 0x8, 0x0, 0x41, 0xf}}, {0x4}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4008094}, 0x8840)
syz_mount_image$ext4(&(0x7f0000000580)='ext2\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000140)={[{@data_journal}, {@nogrpid}, {@grpquota}, {@nodiscard}, {@grpjquota_path={'grpjquota', 0x3d, './file0'}}, {@jqfmt_vfsold}, {@errors_continue}]}, 0x1, 0x56d, &(0x7f0000000fc0)="$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")

0s ago: executing program 0 (id=1365):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}]}, 0x3, 0x441, &(0x7f0000000440)="$eJzs3MtvG0UYAPBv10lLXyRUpdAHECiIikfSpKX0wAUEEgeQkOBQjiFJq1K3QXWQaBRBQKgcUSXuiCMSfwEHBBcEnJC4wh1VqlAuLZyM1vYmjmuncepkC/79pI1ndseZ+bw79sxOnAD61kj2I4nYHRG/R8RQPbu6wEj94ebSwtTfSwtTSVSrb/6V1MrdWFqYyovmz9uVZwYi0k+TONSm3srl+fOT5fLMpUZ+bO7Ce2OVy/PPnrsweXbm7MzFiVOnThwff/7kxHM9iTOL68bBD2cPH3j17auvT52++s7P3yR5/C1x9MjIWgefqFZ7XF2x9jSlk4ECG0JXSvVuGoO1/j8UpVg5eUPxyieFNg7YVNVqtbo/4rsOhxerwP9YEkW3AChG/kGfzX/zbetGH8W7/mJ9ApTFfbOx1Y8MRNooM9gyv+2lkYg4vfjPl9kWm3MfAgBgle+z8c8z7cZ/aexvKndvYw1lOCLui4i9EXEyIvZFxP0RtbIPRMSDXdbfukhy6/gnvdb+mdu7rKm9bPz3QmNta/X4Lx/9xXCpkdtTi38wOXOuPHOs8ZocjcHtWX58jTp+ePm3zzsdax7/ZVtWf/a4sjqUXhtoCXV6cm7yjoJucv3jiIMD7eJPllcCkog4EBEHN1jHuae+PtzpWKf41/WLe7DOVP0q4sn6+V+Mlvhzydrrk2P3RHnm2Fh+Vdzql1+vvNGp/juKvwey87+z7fW/HP9w0rxeW+m+jit/fNZxTnP7+Ntf/9uSt1bt+2Bybu7SeMS25LV6o5v3T7SUm1gpn8V/9Ej7/r83Vl6JQxGRXcQPRcTDEfFIo+2PRsRjEXFkjfh/eunxdzce/+bK4p/u6vyvJLZF6572idL5H79dVelwN/Fn5/9ELXW0sWc973/radfGrmYAAAD470kjYnck6ehyOk1HR+t/w78vdqbl2crc02dm3784Xf+OwHAMpvmdrqGm+6HjjWl9np9oyR9v3Df+orSjlh+dmi1PFx089LldHfp/5s9S0a0DNp3va0H/0v+hf+n/0L/0f+hfbfr/jiLaAWy9dp//HxXQDmDrtfR/y37QR8z/oX/p/9C/9H/oS5UdcfsvyUsUncj/GcPd0p7K5flI74pmSGxSouA3JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgB75NwAA//9wCOUr")
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x808}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x191)

kernel console output (not intermixed with test programs):

returned -22
[  113.107222][ T4258] usb 7-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  113.126909][ T4258] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.147257][ T4258] usb 7-1: Product: syz
[  113.172077][ T4258] usb 7-1: Manufacturer: syz
[  113.176977][ T4258] usb 7-1: SerialNumber: syz
[  113.218154][ T4258] usb 7-1: config 0 descriptor??
[  113.271494][ T4560] usb 6-1: Using ep0 maxpacket: 32
[  113.278125][ T4258] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  113.333629][ T4645] microtek usb (rev 0.4.3): can only deal with bulk endpoints; endpoint 4 is not bulk.
[  113.351409][ T4645] microtek usb (rev 0.4.3): can only deal with bulk endpoints; endpoint 14 is not bulk.
[  113.391427][ T4645] microtek usb (rev 0.4.3): couldn't find two input bulk endpoints. Bailing out.
[  113.412146][ T4560] usb 6-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  113.431498][ T4645] usb 1-1: USB disconnect, device number 9
[  113.439198][ T4560] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.483871][ T4560] usb 6-1: config 0 descriptor??
[  113.785526][ T4560] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  113.826415][ T4560] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  113.872005][ T4560] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  113.879852][ T4560] usb 6-1: media controller created
[  113.987826][ T4560] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  114.331830][ T5212] loop0: detected capacity change from 0 to 256
[  114.411733][ T5212] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x8c4dac22, utbl_chksum : 0xe619d30d)
[  115.003670][ T4364] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  115.091431][ T4560] stb0899_attach: Driver disabled by Kconfig
[  115.099243][ T4560] az6027: no front-end attached
[  115.099243][ T4560] 
[  115.151536][ T4560] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  115.171201][ T4560] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input8
[  115.202892][ T4560] dvb-usb: schedule remote query interval to 400 msecs.
[  115.215306][ T4560] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  115.243699][ T4258] gspca_spca1528: reg_r err -71
[  115.248679][ T4258] spca1528: probe of 7-1:0.1 failed with error -71
[  115.261424][ T4364] usb 1-1: Using ep0 maxpacket: 8
[  115.312058][ T4258] usb 7-1: USB disconnect, device number 3
[  115.391599][ T4364] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  115.411207][ T4364] usb 1-1: config 0 has no interface number 0
[  115.432848][ T4364] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  115.464405][ T4364] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  115.477597][ T4364] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.498237][ T4364] usb 1-1: config 0 descriptor??
[  115.530212][ T4370] usb 6-1: USB disconnect, device number 5
[  115.564380][ T4364] iowarrior 1-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  115.633150][ T4370] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  115.813141][ T5249] loop3: detected capacity change from 0 to 32768
[  115.866286][ T5249] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.153 (5249)
[  115.917454][ T5249] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  115.926794][ T5249] BTRFS info (device loop3): using free space tree
[  115.933714][ T5249] BTRFS info (device loop3): has skinny extents
[  116.227695][ T5249] BTRFS info (device loop3): enabling ssd optimizations
[  116.402948][ T5281] loop5: detected capacity change from 0 to 512
[  116.443544][ T5250] udc-core: couldn't find an available UDC or it's busy
[  116.487525][ T5250] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  116.499538][ T5281] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  116.666358][ T4560] usb 1-1: USB disconnect, device number 10
[  117.335672][ T5301] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  118.063808][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[  118.092113][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!!
[  118.166213][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[  118.371042][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[  118.575824][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[  118.843183][ T5321] overlayfs: orphan index entry (index/00fb210001e42145c817d24cb69e14cdbe1f4321eeacbb9d8ce100000000000000, ftype=4000, nlink=2)
[  118.959918][ T5324] loop0: detected capacity change from 0 to 8192
[  119.022424][ T5324] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  119.127141][ T5324] REISERFS (device loop0): using ordered data mode
[  119.184585][ T5324] reiserfs: using flush barriers
[  119.203799][ T5324] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  119.382113][ T5324] REISERFS (device loop0): checking transaction log (loop0)
[  119.652026][ T5324] REISERFS (device loop0): Using tea hash to sort names
[  119.689618][ T5324] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  119.886889][   T26] audit: type=1800 audit(1769445489.015:10): pid=5324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.163" name="file1" dev="loop0" ino=4 res=0 errno=0
[  119.907390][    C1] vkms_vblank_simulate: vblank timer overrun
[  119.984053][   T26] audit: type=1800 audit(1769445489.075:11): pid=5324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.163" name="file1" dev="loop0" ino=4 res=0 errno=0
[  120.391383][ T4236] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  120.660362][ T5378] syz.7.173 uses obsolete (PF_INET,SOCK_PACKET)
[  120.756132][ T5385] loop5: detected capacity change from 0 to 164
[  120.762832][ T4236] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.781355][ T4236] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.801788][ T4236] usb 4-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.01
[  120.810980][ T4236] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.849948][ T4236] usb 4-1: config 0 descriptor??
[  121.050253][ T4409] iso9660: Corrupted directory entry in block 2 of inode 1920
[  121.158926][ T5392] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN
[  121.173155][ T4409] iso9660: Corrupted directory entry in block 2 of inode 1920
[  121.200043][ T4409] iso9660: Corrupted directory entry in block 2 of inode 1920
[  121.326282][ T4236] arvo 0003:1E7D:30D4.0001: unknown main item tag 0x0
[  121.371541][ T4236] arvo 0003:1E7D:30D4.0001: unknown main item tag 0x0
[  121.378446][ T4236] arvo 0003:1E7D:30D4.0001: unknown main item tag 0x0
[  121.403871][ T5399] loop6: detected capacity change from 0 to 4096
[  121.422803][ T5402] kvm [5401]: vcpu0, guest rIP: 0x9048 disabled perfctr wrmsr: 0xc0010004 data 0x8000
[  121.427326][ T4236] arvo 0003:1E7D:30D4.0001: unknown main item tag 0x0
[  121.440394][ T5402] kvm [5401]: vcpu0, guest rIP: 0x9048 disabled perfctr wrmsr: 0xc0010004 data 0x8000
[  121.450921][ T5402] kvm [5401]: vcpu0, guest rIP: 0x9048 disabled perfctr wrmsr: 0xc0010000 data 0x8000
[  121.460648][ T4236] arvo 0003:1E7D:30D4.0001: unknown main item tag 0x0
[  121.460960][ T5402] kvm [5401]: vcpu0, guest rIP: 0x8028 disabled perfctr wrmsr: 0xc0010002 data 0x8000
[  121.480332][ T5402] kvm [5401]: vcpu0, guest rIP: 0x9048 disabled perfctr wrmsr: 0xc0010004 data 0x8000
[  121.484299][ T4236] arvo 0003:1E7D:30D4.0001: unknown main item tag 0x0
[  121.490969][ T5402] kvm [5401]: vcpu0, guest rIP: 0x9048 disabled perfctr wrmsr: 0xc0010000 data 0x8000
[  121.506813][ T5402] kvm [5401]: vcpu0, guest rIP: 0x8028 disabled perfctr wrmsr: 0xc0010002 data 0x8000
[  121.519633][ T5402] kvm [5401]: vcpu0, guest rIP: 0x9048 disabled perfctr wrmsr: 0xc0010004 data 0x8000
[  121.529907][ T5402] kvm [5401]: vcpu0, guest rIP: 0x9048 disabled perfctr wrmsr: 0xc0010000 data 0x8000
[  121.540051][ T5402] kvm [5401]: vcpu0, guest rIP: 0x8028 disabled perfctr wrmsr: 0xc0010002 data 0x8000
[  121.556638][ T4236] arvo 0003:1E7D:30D4.0001: unknown main item tag 0x0
[  121.707326][ T4236] arvo 0003:1E7D:30D4.0001: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.3-1/input0
[  121.809241][ T5399] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  121.915785][   T26] audit: type=1804 audit(1769445491.045:12): pid=5399 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.178" name="/newroot/11/file1/file1" dev="loop6" ino=33 res=1 errno=0
[  122.009196][ T4258] usb 4-1: USB disconnect, device number 3
[  122.047503][   T26] audit: type=1804 audit(1769445491.045:13): pid=5399 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.178" name="/newroot/11/file1/file1" dev="loop6" ino=33 res=1 errno=0
[  122.135874][ T5411] fido_id[5411]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  122.161804][ T4364] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  122.379213][ T5421] loop0: detected capacity change from 0 to 128
[  122.482342][ T5421] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  122.561985][ T4364] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  122.599818][ T5421] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.611220][ T4364] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.760383][ T5436] loop6: detected capacity change from 0 to 256
[  122.767302][ T4364] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  122.788961][ T4364] usb 8-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  122.827458][ T4364] usb 8-1: Manufacturer: syz
[  122.840063][ T4364] usb 8-1: config 0 descriptor??
[  123.015935][ T5445] loop0: detected capacity change from 0 to 512
[  123.164900][ T5445] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 2: comm syz.0.189: invalid block
[  123.191452][ T4258] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  123.263327][ T5445] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.189: invalid indirect mapped block 10 (level 1)
[  123.281040][ T5445] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.189: invalid indirect mapped block 8 (level 1)
[  123.297578][ T5445] EXT4-fs (loop0): 1 truncate cleaned up
[  123.303550][ T5445] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,,errors=continue. Quota mode: writeback.
[  123.471374][ T4258] usb 4-1: Using ep0 maxpacket: 32
[  123.621747][ T4258] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  123.630019][ T4258] usb 4-1: config 0 has no interface number 0
[  123.667732][ T4258] usb 4-1: config 0 interface 12 has no altsetting 0
[  123.761891][ T4364] input: syz Pen as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:256C:006D.0002/input/input9
[  123.851868][ T4258] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  123.873781][ T4258] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.893879][ T4364] input: syz Pad as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:256C:006D.0002/input/input10
[  123.942080][ T4258] usb 4-1: Product: syz
[  123.946314][ T4258] usb 4-1: Manufacturer: syz
[  123.983741][ T5439] chnl_net:caif_netlink_parms(): no params data found
[  123.995935][ T4364] uclogic 0003:256C:006D.0002: input,hidraw0: USB HID v0.00 Keypad [syz] on usb-dummy_hcd.7-1/input0
[  124.011427][ T4258] usb 4-1: SerialNumber: syz
[  124.034977][ T4258] usb 4-1: config 0 descriptor??
[  124.086360][ T5294] usb 8-1: USB disconnect, device number 2
[  124.326510][ T5465] fido_id[5465]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/8-1/report_descriptor': No such file or directory
[  124.361141][ T5439] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.393410][ T5439] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.423154][ T5439] device bridge_slave_0 entered promiscuous mode
[  124.432684][ T5439] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.439905][ T5439] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.449509][ T5439] device bridge_slave_1 entered promiscuous mode
[  124.530857][ T5439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  124.569223][ T5439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  124.653405][   T26] audit: type=1326 audit(1769445493.785:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5475 comm="syz.6.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb791aeb9 code=0x7ffc0000
[  124.747026][ T5439] team0: Port device team_slave_0 added
[  124.761355][   T26] audit: type=1326 audit(1769445493.815:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5475 comm="syz.6.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb791aeb9 code=0x7ffc0000
[  124.812744][ T5439] team0: Port device team_slave_1 added
[  124.828240][ T5456] loop0: detected capacity change from 0 to 32768
[  124.906340][ T5456] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.193 (5456)
[  124.963674][ T5439] batman_adv: batadv0: Adding interface: batadv_slave_0
[  124.977865][ T5439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.036038][ T5456] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  125.051756][ T5294] Bluetooth: hci3: command 0x0409 tx timeout
[  125.058268][ T5456] BTRFS info (device loop0): using free space tree
[  125.073334][ T5456] BTRFS info (device loop0): has skinny extents
[  125.082848][ T5439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  125.114696][ T5439] batman_adv: batadv0: Adding interface: batadv_slave_1
[  125.134330][ T5439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.265452][ T5495] loop6: detected capacity change from 0 to 512
[  125.282659][ T5439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  125.380090][ T5495] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  125.451505][ T5495] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  125.481423][ T5456] BTRFS info (device loop0): enabling ssd optimizations
[  125.564634][ T5495] EXT4-fs warning (device loop6): ext4_expand_extra_isize_ea:2806: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  125.623565][ T5439] device hsr_slave_0 entered promiscuous mode
[  125.653610][ T5495] EXT4-fs (loop6): 1 truncate cleaned up
[  125.659351][ T5495] EXT4-fs (loop6): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,auto_da_alloc=0x0000000000000eb0,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,noquota,,errors=continue. Quota mode: none.
[  125.683109][ T5439] device hsr_slave_1 entered promiscuous mode
[  125.957502][ T5513] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  126.027914][ T5513] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  126.241773][ T4258] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  126.249470][ T4258] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  126.281428][ T4258] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  126.289360][ T4258] f81534: probe of 4-1:0.12 failed with error -71
[  126.320716][ T5439] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  126.362691][ T4258] usb 4-1: USB disconnect, device number 4
[  126.374367][ T5439] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  126.434036][ T5439] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  126.513723][ T5439] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  126.631816][ T4557] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  126.785251][ T5539] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  126.889752][ T4557] usb 7-1: Using ep0 maxpacket: 8
[  126.913792][ T5439] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.982758][ T4279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  127.012371][ T4279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  127.028952][ T5439] 8021q: adding VLAN 0 to HW filter on device team0
[  127.036352][ T4557] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  127.050569][ T4557] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  127.064620][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  127.074285][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  127.083551][ T4557] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  127.094348][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.101750][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  127.109704][ T4557] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  127.131759][ T5294] Bluetooth: hci3: command 0x041b tx timeout
[  127.133666][ T4557] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  127.148600][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  127.157579][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  127.166077][ T4557] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.175614][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  127.203141][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.210366][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  127.228002][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  127.237197][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  127.266779][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  127.283924][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  127.296950][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  127.307566][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  127.415212][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  127.437215][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  127.477328][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  127.486010][ T4557] usb 7-1: GET_CAPABILITIES returned 0
[  127.492275][ T4557] usbtmc 7-1:16.0: can't read capabilities
[  127.517871][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  127.532180][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  127.565423][ T5439] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  127.750443][ T4364] usb 7-1: USB disconnect, device number 4
[  127.969043][ T1235] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.073813][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  128.093025][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  128.140629][ T5439] 8021q: adding VLAN 0 to HW filter on device batadv0
[  128.207502][ T1235] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.298445][ T5574] loop7: detected capacity change from 0 to 40427
[  128.314398][   T26] audit: type=1800 audit(1769445497.445:16): pid=5558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.204" name="file1" dev="fuse" ino=5 res=0 errno=0
[  128.351563][ T5574] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  128.359483][ T5574] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  128.381873][ T5574] F2FS-fs (loop7): invalid crc value
[  128.410506][ T1235] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.440172][ T5574] F2FS-fs (loop7): Found nat_bits in checkpoint
[  128.527980][ T5574] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  128.535594][ T5574] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  128.636740][ T1235] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.746537][ T5574] attempt to access beyond end of device
[  128.746537][ T5574] loop7: rw=2049, want=45104, limit=40427
[  128.854508][ T5574] attempt to access beyond end of device
[  128.854508][ T5574] loop7: rw=2049, want=40976, limit=40427
[  129.211844][ T4258] Bluetooth: hci3: command 0x040f tx timeout
[  129.276380][ T5610] loop6: detected capacity change from 0 to 2048
[  129.388989][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  129.405249][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  129.469091][ T4454] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  129.483533][ T4454] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  129.531770][ T5613] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  129.554622][ T4454] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  129.600760][   T26] audit: type=1800 audit(1769445498.725:17): pid=5610 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.215" name="file1" dev="loop6" ino=15 res=0 errno=0
[  129.663635][ T4454] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  129.702570][   T26] audit: type=1800 audit(1769445498.765:18): pid=5610 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.215" name="file1" dev="loop6" ino=15 res=0 errno=0
[  129.751910][ T5439] device veth0_vlan entered promiscuous mode
[  129.763114][ T5610] NILFS error (device loop6): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[  129.828960][ T5439] device veth1_vlan entered promiscuous mode
[  129.857291][ T5610] Remounting filesystem read-only
[  130.003433][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  130.005253][ T5622] loop7: detected capacity change from 0 to 128
[  130.042459][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  130.067862][ T5610] syz.6.215 (5610) used greatest stack depth: 20432 bytes left
[  130.097788][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  130.112888][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  130.134405][ T4552] NILFS (loop6): disposed unprocessed dirty file(s) when detaching log writer
[  130.158189][ T5439] device veth0_macvtap entered promiscuous mode
[  130.199769][ T5622] EXT4-fs (loop7): Ignoring removed nobh option
[  130.274136][ T5439] device veth1_macvtap entered promiscuous mode
[  130.316284][ T5622] EXT4-fs (loop7): mounted filesystem without journal. Opts: nobh,max_dir_size_kb=0x0000000000000004,,errors=continue. Quota mode: none.
[  130.335747][ T5622] ext4 filesystem being mounted at /12/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  130.410177][   T13] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  130.443728][   T26] audit: type=1800 audit(1769445499.575:19): pid=5622 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.214" name="file1" dev="loop7" ino=12 res=0 errno=0
[  130.504691][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  130.533984][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  130.599803][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.620241][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.635291][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.649786][ T5637] loop6: detected capacity change from 0 to 512
[  130.651663][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.670820][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.688660][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.707217][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.725180][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.737379][   T13] usb 4-1: Using ep0 maxpacket: 8
[  130.755926][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.800524][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.821123][ T5439] batman_adv: batadv0: Interface activated: batadv_slave_0
[  130.871710][   T13] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  130.912552][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  130.939672][ T5637] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.217: inode has both inline data and extents flags
[  130.985163][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  130.999057][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.999081][   T13] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  131.075976][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.091437][ T5637] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.217: couldn't read orphan inode 15 (err -117)
[  131.117634][   T13] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  131.132096][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.132131][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.132154][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.132169][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.132187][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.132200][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.132218][ T5439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.132232][ T5439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.136863][ T5439] batman_adv: batadv0: Interface activated: batadv_slave_1
[  131.168645][   T13] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  131.191652][ T5637] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  131.288039][ T4364] Bluetooth: hci3: command 0x0419 tx timeout
[  131.296636][   T13] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  131.316021][ T4487] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  131.362742][ T4487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  131.404107][   T13] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  131.427122][ T5439] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  131.427942][   T13] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.504478][ T5439] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  131.517105][ T5439] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  131.536744][ T5439] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.762709][   T13] usb 4-1: usb_control_msg returned -32
[  131.787500][   T13] usbtmc 4-1:16.0: can't read capabilities
[  131.894646][ T4454] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.947999][ T4454] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.019617][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  132.055674][ T4454] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.078797][ T5643] loop7: detected capacity change from 0 to 32768
[  132.099103][ T4454] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.186974][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  132.319797][ T5643] XFS (loop7): Mounting V5 Filesystem
[  132.429593][ T4364] usb 4-1: USB disconnect, device number 5
[  132.481425][ T4258] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  132.598569][ T1235] device hsr_slave_0 left promiscuous mode
[  132.615466][ T1235] device hsr_slave_1 left promiscuous mode
[  132.707806][ T1235] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  132.762403][ T1235] batman_adv: batadv0: Removing interface: batadv_slave_0
[  132.779740][ T5643] XFS (loop7): Ending clean mount
[  132.782341][ T4258] usb 1-1: Using ep0 maxpacket: 32
[  132.805518][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  132.815668][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  132.831048][ T1235] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  132.861476][ T1235] batman_adv: batadv0: Removing interface: batadv_slave_1
[  132.870084][ T5679] loop6: detected capacity change from 0 to 128
[  132.883162][ T1235] device bridge_slave_1 left promiscuous mode
[  132.890165][ T1235] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.938273][ T4258] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  132.953875][ T4364] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  132.977122][ T1235] device bridge_slave_0 left promiscuous mode
[  133.009735][ T4258] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  133.030034][ T5679] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  133.057576][ T5679] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.088836][ T1235] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.182895][ T4258] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  133.261045][ T4258] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.282332][ T4364] usb 9-1: Using ep0 maxpacket: 32
[  133.320688][ T4258] usb 1-1: config 0 descriptor??
[  133.356620][ T1235] device veth1_macvtap left promiscuous mode
[  133.369749][ T5643] xfs: Unknown parameter '�����������	Z*��� m�.Dc�8�'�@��C9G�9���?�9�S�{�1��J���լ��5æ�Ԍ�����qq���Y�糔����'
[  133.387738][ T1235] device veth0_macvtap left promiscuous mode
[  133.394146][ T1235] device veth1_vlan left promiscuous mode
[  133.400019][ T1235] device veth0_vlan left promiscuous mode
[  133.437130][ T4364] usb 9-1: config 0 has no interfaces?
[  133.461257][ T4364] usb 9-1: New USB device found, idVendor=1630, idProduct=0042, bcdDevice= 0.13
[  133.510369][ T4364] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.548664][ T4364] usb 9-1: config 0 descriptor??
[  133.567685][ T4877] XFS (loop7): Unmounting Filesystem
[  133.884586][ T4258] savu 0003:1E7D:2D5A.0003: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  133.930030][ T4297] usb 9-1: USB disconnect, device number 2
[  134.158808][ T4258] usb 1-1: USB disconnect, device number 11
[  134.181185][ T5684] loop3: detected capacity change from 0 to 32768
[  134.329721][ T5684] XFS (loop3): Mounting V5 Filesystem
[  134.386340][ T5699] loop7: detected capacity change from 0 to 512
[  134.400012][ T1235] team0 (unregistering): Port device team_slave_1 removed
[  134.423513][ T1235] team0 (unregistering): Port device team_slave_0 removed
[  134.472787][ T1235] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  134.518977][ T1235] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  134.543946][ T5710] loop8: detected capacity change from 0 to 256
[  134.553936][ T5699] FAT-fs (loop7): Unrecognized mount option "shoptname=mixe��fMush" or missing value
[  134.622481][ T5684] XFS (loop3): Ending clean mount
[  134.690660][ T5710] exFAT-fs (loop8): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1599abd0)
[  134.739440][ T5710] exFAT-fs (loop8): invalid boot region
[  134.762317][ T5710] exFAT-fs (loop8): failed to recognize exfat type
[  134.927857][ T5715] loop5: detected capacity change from 0 to 671
[  134.945788][ T1235] bond0 (unregistering): Released all slaves
[  134.990786][ T5717] loop5: detected capacity change from 671 to 1863
[  135.080594][ T5716] kvm: vcpu 0: requested 1668 ns lapic timer period limited to 200000 ns
[  135.135695][ T5716] kvm: pic: non byte write
[  135.311769][ T4186] XFS (loop3): Unmounting Filesystem
[  137.411479][ T4648] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  137.672211][ T4648] usb 7-1: Using ep0 maxpacket: 32
[  137.691392][ T4369] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  137.791734][ T4648] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  137.840899][ T4648] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  137.895890][ T4648] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  137.928333][ T5766] loop3: detected capacity change from 0 to 32768
[  137.959866][ T4648] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.999174][ T4648] usb 7-1: config 0 descriptor??
[  138.013249][ T4369] usb 1-1: Using ep0 maxpacket: 32
[  138.123528][ T5766] XFS (loop3): Mounting V5 Filesystem
[  138.211580][ T4369] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  138.222604][ T4369] usb 1-1: config 0 has no interface number 0
[  138.351687][ T5772] loop7: detected capacity change from 0 to 32768
[  138.378423][ T5766] XFS (loop3): Ending clean mount
[  138.412561][ T4369] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  138.507383][ T4369] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.518113][ T4648] savu 0003:1E7D:2D5A.0004: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.6-1/input0
[  138.581345][ T4369] usb 1-1: Product: syz
[  138.587621][ T4369] usb 1-1: Manufacturer: syz
[  138.594466][ T4369] usb 1-1: SerialNumber: syz
[  138.609277][ T4369] usb 1-1: config 0 descriptor??
[  138.652383][ T5772] XFS (loop7): Mounting V5 Filesystem
[  138.667347][ T4369] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  138.831755][ T4648] usb 7-1: USB disconnect, device number 5
[  138.874480][ T4369] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  138.927856][ T5813] fido_id[5813]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/7-1/report_descriptor': No such file or directory
[  138.981914][ T4369] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  139.116525][ T5772] XFS (loop7): Ending clean mount
[  139.148297][ T5766] xfs: Unknown parameter '�����������	Z*��� m�.Dc�8�'�@��C9G�9���?�9�S�{�1��J���լ��5æ�Ԍ�����qq���Y�糔����'
[  139.200252][ T5772] XFS (loop7): Quotacheck needed: Please wait.
[  139.329431][ T5824] loop8: detected capacity change from 0 to 256
[  139.429255][ T5824] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  139.522644][ T5772] XFS (loop7): Quotacheck: Done.
[  139.577654][ T4186] XFS (loop3): Unmounting Filesystem
[  139.594015][ T4258] usb 1-1: USB disconnect, device number 12
[  139.603858][    C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  139.683346][ T4258] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  139.734088][ T5828] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  139.822324][ T4258] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  139.889164][ T4877] XFS (loop7): Unmounting Filesystem
[  139.939469][ T4258] quatech2 1-1:0.51: device disconnected
[  140.095218][ T5836] loop6: detected capacity change from 0 to 128
[  140.270884][ T5836] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  140.351708][ T5836] ext4 filesystem being mounted at /31/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  141.037725][   T26] audit: type=1326 audit(1769445510.165:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb860491eb9 code=0x7ffc0000
[  141.120965][   T26] audit: type=1326 audit(1769445510.165:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb860491eb9 code=0x7ffc0000
[  141.154928][ T5863] loop3: detected capacity change from 0 to 512
[  141.314612][   T26] audit: type=1326 audit(1769445510.205:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7fb86044e3ac code=0x7ffc0000
[  141.406841][ T5863] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.246: inode has both inline data and extents flags
[  141.441927][ T5863] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.246: couldn't read orphan inode 15 (err -117)
[  141.499683][ T5863] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  141.563736][   T26] audit: type=1326 audit(1769445510.205:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb86044e40e code=0x7ffc0000
[  141.736728][   T26] audit: type=1326 audit(1769445510.205:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb860491b4b code=0x7ffc0000
[  141.778617][ T5867] loop7: detected capacity change from 0 to 32768
[  141.829624][   T26] audit: type=1326 audit(1769445510.205:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb860491eb9 code=0x7ffc0000
[  142.030488][ T5867] jfs_strtoUCS: char2uni returned -22.
[  142.040097][   T26] audit: type=1326 audit(1769445510.205:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb860491eb9 code=0x7ffc0000
[  142.079738][ T5867] charset = cp936, char = 0xd4
[  142.197235][   T26] audit: type=1326 audit(1769445510.205:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb860491eb9 code=0x7ffc0000
[  142.337062][   T26] audit: type=1326 audit(1769445510.215:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb860491eb9 code=0x7ffc0000
[  142.494369][   T26] audit: type=1326 audit(1769445510.215:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5853 comm="syz.8.254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb860491eb9 code=0x7ffc0000
[  142.811426][ T4236] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  142.911566][ T4646] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  143.061228][ T5876] loop8: detected capacity change from 0 to 32768
[  143.061387][ T4236] usb 4-1: Using ep0 maxpacket: 32
[  143.172782][ T4646] usb 8-1: Using ep0 maxpacket: 32
[  143.181688][ T4236] usb 4-1: config 0 has no interfaces?
[  143.189328][ T4236] usb 4-1: New USB device found, idVendor=1630, idProduct=0042, bcdDevice= 0.13
[  143.211772][ T4236] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.242538][ T4236] usb 4-1: config 0 descriptor??
[  143.259774][ T5876] XFS (loop8): Mounting V5 Filesystem
[  143.291573][ T4646] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.325438][ T4646] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.388661][ T4646] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  143.399966][ T4646] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.422928][ T5876] XFS (loop8): Ending clean mount
[  143.442610][ T4646] usb 8-1: config 0 descriptor??
[  143.462774][ T5876] XFS (loop8): Quotacheck needed: Please wait.
[  143.584002][ T4258] usb 4-1: USB disconnect, device number 6
[  143.592145][ T5876] XFS (loop8): Quotacheck: Done.
[  143.956839][ T5439] XFS (loop8): Unmounting Filesystem
[  143.973750][ T4646] savu 0003:1E7D:2D5A.0005: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.7-1/input0
[  144.271652][ T4646] usb 8-1: USB disconnect, device number 3
[  144.284047][ T5945] loop3: detected capacity change from 0 to 512
[  144.361844][ T5945] EXT4-fs (loop3): Ignoring removed oldalloc option
[  144.396448][ T5945] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.264: dx entry: limit 1024 != root limit 124
[  144.431528][ T5945] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.264: Corrupt directory, running e2fsck is recommended
[  144.464813][ T5945] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  144.559152][ T5945] EXT4-fs error (device loop3): ext4_iget_extra_inode:4566: inode #15: comm syz.3.264: corrupted in-inode xattr
[  144.623485][ T5945] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.264: couldn't read orphan inode 15 (err -117)
[  144.698324][ T5945] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,journal_ioprio=0x0000000000000000,jqfmt=vfsv1,oldalloc,noquota,grpjquota=.usrquota,grpid,grpid,delalloc,,,errors=continue. Quota mode: writeback.
[  144.864066][ T5933] loop0: detected capacity change from 0 to 32768
[  145.002152][ T5945] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.264: dx entry: limit 1024 != root limit 124
[  145.043782][ T5933] XFS (loop0): Mounting V5 Filesystem
[  145.124070][ T5945] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.264: Corrupt directory, running e2fsck is recommended
[  145.229432][ T5933] XFS (loop0): Ending clean mount
[  145.254274][ T5933] XFS (loop0): Quotacheck needed: Please wait.
[  145.337488][ T5945] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 3: comm syz.3.264: path /54/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  145.520999][ T5933] XFS (loop0): Quotacheck: Done.
[  145.700746][ T4184] XFS (loop0): Unmounting Filesystem
[  145.798740][ T5951] loop6: detected capacity change from 0 to 32768
[  146.154197][ T5951] JBD2: Ignoring recovery information on journal
[  146.303577][ T5951] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  146.690277][ T6004] loop7: detected capacity change from 0 to 2048
[  146.863983][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #10!!!
[  146.930473][ T6004] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  147.069186][ T5951] syz.6.265 (5951) used greatest stack depth: 20408 bytes left
[  147.186665][ T4552] ocfs2: Unmounting device (7,6) on (node local)
[  147.386716][ T6004] UDF-fs: error (device loop7): udf_read_inode: (ino 1) failed !bh
[  147.824461][ T4877] UDF-fs: error (device loop7): udf_read_inode: (ino 1) failed !bh
[  147.918660][ T4877] UDF-fs: error (device loop7): udf_read_inode: (ino 1) failed !bh
[  148.076763][ T6045] loop3: detected capacity change from 0 to 128
[  148.269653][ T6045] attempt to access beyond end of device
[  148.269653][ T6045] loop3: rw=2049, want=148, limit=128
[  148.416002][ T4277] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.459200][ T6045] attempt to access beyond end of device
[  148.459200][ T6045] loop3: rw=2049, want=697, limit=128
[  148.543300][ T4277] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.560247][ T6045] attempt to access beyond end of device
[  148.560247][ T6045] loop3: rw=0, want=159, limit=128
[  148.637927][ T6045] attempt to access beyond end of device
[  148.637927][ T6045] loop3: rw=524288, want=697, limit=128
[  148.680359][ T4277] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.828293][ T4277] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.051093][ T6060] netlink: 64 bytes leftover after parsing attributes in process `syz.3.285'.
[  149.240851][ T6067] device syzkaller1 entered promiscuous mode
[  149.264264][ T6060] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  150.130648][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  150.143485][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  150.160683][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  150.912475][ T6072] loop8: detected capacity change from 0 to 40427
[  150.986134][ T6072] F2FS-fs (loop8): build fault injection attr: rate: 684, type: 0x1ffff
[  151.051595][ T6072] F2FS-fs (loop8): build fault injection attr: rate: 0, type: 0x35f7
[  151.067836][ T6076] chnl_net:caif_netlink_parms(): no params data found
[  151.103640][ T6072] F2FS-fs (loop8): invalid crc value
[  151.159696][ T6072] F2FS-fs (loop8): Found nat_bits in checkpoint
[  151.369880][ T6072] F2FS-fs (loop8): Start checkpoint disabled!
[  151.359782][ T6076] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.421757][ T4236] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  151.442221][ T6076] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.469042][ T6072] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  151.479545][ T6076] device bridge_slave_0 entered promiscuous mode
[  151.491843][ T4364] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  151.517554][ T4277] device hsr_slave_0 left promiscuous mode
[  151.554896][ T4277] device hsr_slave_1 left promiscuous mode
[  151.592283][ T4277] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.603848][ T5294] Bluetooth: hci4: command 0x0409 tx timeout
[  151.620789][ T4277] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.633664][ T4277] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.656859][ T6072] F2FS-fs (loop8) : inject kvmalloc in f2fs_kvmalloc of f2fs_insert_range+0x2e7/0x3b0
[  151.684319][ T4277] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.699938][ T4277] device bridge_slave_1 left promiscuous mode
[  151.717076][ T4277] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.752738][ T4277] device bridge_slave_0 left promiscuous mode
[  151.779258][ T4277] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.801805][ T4236] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  151.822946][ T4236] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  151.849332][ T4236] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.864141][ T1235] attempt to access beyond end of device
[  151.864141][ T1235] loop8: rw=2049, want=40976, limit=40427
[  151.883500][ T4236] usb 1-1: config 0 descriptor??
[  151.898874][ T4277] device veth1_macvtap left promiscuous mode
[  151.912685][ T4277] device veth0_macvtap left promiscuous mode
[  151.931788][ T4364] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  151.933490][ T4236] pwc: Askey VC010 type 2 USB webcam detected.
[  151.959890][ T4277] device veth1_vlan left promiscuous mode
[  151.975942][ T4364] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  151.992160][ T4277] device veth0_vlan left promiscuous mode
[  152.209687][ T4364] usb 7-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  152.249290][ T4364] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.266884][ T4364] usb 7-1: Product: syz
[  152.273500][ T4364] usb 7-1: Manufacturer: syz
[  152.280471][ T4364] usb 7-1: SerialNumber: syz
[  152.330017][ T4364] usb 7-1: config 0 descriptor??
[  152.361578][ T4236] pwc: recv_control_msg error -32 req 02 val 2b00
[  152.364217][ T6122] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  152.406902][ T6122] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  152.421584][ T4236] pwc: recv_control_msg error -32 req 02 val 2700
[  152.471556][ T4236] pwc: recv_control_msg error -32 req 02 val 2c00
[  152.521643][ T4236] pwc: recv_control_msg error -32 req 04 val 1000
[  152.539820][ T4277] team0 (unregistering): Port device team_slave_1 removed
[  152.569237][ T4277] team0 (unregistering): Port device team_slave_0 removed
[  152.581886][ T4236] pwc: recv_control_msg error -32 req 04 val 1300
[  152.600849][ T4277] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.624903][ T4277] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.632303][ T4236] pwc: recv_control_msg error -32 req 04 val 1400
[  152.655105][ T6122] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  152.666831][ T6122] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  152.711689][ T4236] pwc: recv_control_msg error -32 req 02 val 2000
[  152.776550][ T4277] bond0 (unregistering): Released all slaves
[  152.846821][ T6076] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.857332][ T6076] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.868433][ T6076] device bridge_slave_1 entered promiscuous mode
[  152.931855][ T6076] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  152.958158][ T6076] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  152.992087][ T4236] pwc: recv_control_msg error -71 req 04 val 1500
[  153.014082][ T4236] pwc: recv_control_msg error -71 req 02 val 2500
[  153.061772][ T4236] pwc: recv_control_msg error -71 req 02 val 2400
[  153.092943][ T6076] team0: Port device team_slave_0 added
[  153.104998][ T4236] pwc: recv_control_msg error -71 req 02 val 2600
[  153.116555][ T6076] team0: Port device team_slave_1 added
[  153.131527][ T4236] pwc: recv_control_msg error -71 req 02 val 2900
[  153.158333][ T6076] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.170664][ T6076] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.214382][ T4236] pwc: recv_control_msg error -71 req 02 val 2800
[  153.223828][ T6076] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.246640][ T4236] pwc: recv_control_msg error -71 req 04 val 1100
[  153.259904][ T6076] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.274697][ T6076] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.316493][ T4236] pwc: recv_control_msg error -71 req 04 val 1200
[  153.342234][ T4236] pwc: Registered as video103.
[  153.350246][ T4236] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input11
[  153.365171][ T6076] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.453661][ T4236] usb 1-1: USB disconnect, device number 13
[  153.615610][ T6076] device hsr_slave_0 entered promiscuous mode
[  153.691641][ T4645] Bluetooth: hci4: command 0x041b tx timeout
[  153.996518][ T6076] device hsr_slave_1 entered promiscuous mode
[  154.038798][ T6076] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  154.061542][ T6076] Cannot create hsr debugfs directory
[  154.701028][ T6076] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  154.754774][ T6076] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  154.823358][ T6076] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  154.880174][ T6076] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  154.892950][ T4364] dm9601 7-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[  155.142045][ T4364] dm9601 7-1:0.0 eth21: register 'dm9601' at usb-dummy_hcd.6-1, Davicom DM96xx USB 10/100 Ethernet, 06:00:00:00:00:00
[  155.223096][ T4364] usb 7-1: USB disconnect, device number 6
[  155.264158][ T4364] dm9601 7-1:0.0 eth21: unregister 'dm9601' usb-dummy_hcd.6-1, Davicom DM96xx USB 10/100 Ethernet
[  155.438202][ T6175] loop8: detected capacity change from 0 to 256
[  155.603244][ T6175] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  155.748701][ T6177] loop6: detected capacity change from 0 to 1024
[  155.833826][ T6076] 8021q: adding VLAN 0 to HW filter on device bond0
[  155.845096][ T4645] Bluetooth: hci4: command 0x040f tx timeout
[  156.113392][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  156.135449][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  156.142662][ T6177] EXT4-fs (loop6): cluster size (1024) smaller than block size (2048)
[  156.185172][ T6076] 8021q: adding VLAN 0 to HW filter on device team0
[  156.273658][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  156.307930][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  156.403498][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[  156.412518][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  156.562557][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  156.636868][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  156.747157][ T6185] fuse: Bad value for 'fd'
[  156.748879][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  156.842461][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[  156.851659][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  156.911906][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  156.970226][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  157.012699][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  157.104046][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  157.120744][ T6189] overlayfs: failed to clone upperpath
[  157.151579][ T4236] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[  157.175710][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  157.216392][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  157.276804][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  157.349561][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  157.374194][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  157.438055][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  157.456971][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  157.493295][ T6076] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  157.581762][ T4236] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  157.631621][ T4236] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  157.689100][ T4236] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  157.784631][ T4236] usb 7-1: New USB device found, idVendor=0b05, idProduct=17e0, bcdDevice= 0.00
[  157.840906][ T4236] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.193902][ T4487] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  158.230416][ T4487] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  158.311111][ T6076] 8021q: adding VLAN 0 to HW filter on device batadv0
[  158.347461][ T4236] usb 7-1: config 0 descriptor??
[  158.356521][ T4557] Bluetooth: hci4: command 0x0419 tx timeout
[  158.372007][ T6187] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  158.731560][ T4236] usbhid 7-1:0.0: can't add hid device: -71
[  158.751561][ T4236] usbhid: probe of 7-1:0.0 failed with error -71
[  158.801568][ T4236] usb 7-1: USB disconnect, device number 7
[  158.964030][ T6220] tc_dump_action: action bad kind
[  159.009033][ T6220] netlink: 4 bytes leftover after parsing attributes in process `syz.8.324'.
[  159.059450][ T6220] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  159.222709][ T6220] batman_adv: batadv0: Removing interface: batadv_slave_1
[  159.374270][ T6222] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  159.615893][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  159.664590][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  159.682904][ T6239] overlayfs: failed to clone upperpath
[  159.803283][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  159.852703][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  159.892145][ T6076] device veth0_vlan entered promiscuous mode
[  159.926937][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  159.941130][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  159.966886][ T6076] device veth1_vlan entered promiscuous mode
[  160.035704][ T6250] netlink: 4 bytes leftover after parsing attributes in process `syz.0.331'.
[  160.528121][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  160.736256][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  160.991930][ T6076] device veth0_macvtap entered promiscuous mode
[  161.143475][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  161.174445][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  161.223232][ T5329] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  161.286512][ T6271] loop3: detected capacity change from 0 to 1024
[  161.310860][ T6076] device veth1_macvtap entered promiscuous mode
[  161.453875][ T6271] EXT4-fs (loop3): mounted filesystem without journal. Opts: usrquota,data_err=ignore,,errors=continue. Quota mode: writeback.
[  161.459442][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  161.513843][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.532224][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  161.548926][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.561212][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  161.576746][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.590912][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  161.610545][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.630468][ T6076] batman_adv: batadv0: Interface activated: batadv_slave_0
[  161.653682][ T4279] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  161.677662][ T6282] overlayfs: failed to clone upperpath
[  161.688666][ T4279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  161.737110][ T4279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  161.780512][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.815091][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.891895][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.962204][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.987385][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.049648][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.117569][ T6076] batman_adv: batadv0: Interface activated: batadv_slave_1
[  162.185954][ T4279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  162.222855][ T4279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  162.248884][ T6076] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  162.278255][ T6076] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  162.316131][ T6076] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  162.344919][ T6076] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  162.603336][ T6303] loop3: detected capacity change from 0 to 128
[  162.686590][  T155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  162.701939][  T155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  162.725999][ T4279] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  162.763901][ T4279] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  162.780630][ T6303] EXT4-fs (loop3): Ignoring removed orlov option
[  162.819214][ T6305] netlink: 12 bytes leftover after parsing attributes in process `syz.8.346'.
[  162.836802][ T6303] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  162.853275][ T6305] Zero length message leads to an empty skb
[  162.859118][ T6303] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  162.869118][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  162.925300][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  162.942673][ T6303] EXT4-fs (loop3): mounted filesystem without journal. Opts: orlov,max_dir_size_kb=0x0000000000000002,nomblk_io_submit,nomblk_io_submit,mb_optimize_scan=0x0000000000000001,nouid32,,errors=continue. Quota mode: none.
[  163.032481][ T6303] ext4 filesystem being mounted at /71/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  163.593712][ T6316] loop6: detected capacity change from 0 to 65536
[  163.829312][ T6316] XFS (loop6): Mounting V5 Filesystem
[  164.186353][ T6354] binder: BINDER_SET_CONTEXT_MGR already set
[  164.198082][ T6316] XFS (loop6): Ending clean mount
[  164.208583][ T6316] XFS (loop6): Quotacheck needed: Please wait.
[  164.212157][ T6354] binder: 6352:6354 ioctl 4018620d 200000000040 returned -16
[  164.468834][ T6316] XFS (loop6): Quotacheck: Done.
[  164.558587][ T4552] XFS (loop6): Unmounting Filesystem
[  164.649471][ T6368] device veth1_to_hsr entered promiscuous mode
[  164.702841][ T6368] device macvtap1 entered promiscuous mode
[  165.127675][ T6374] loop9: detected capacity change from 0 to 4096
[  165.995792][ T6374] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[  166.514931][ T6382] team0: Port device vlan2 added
[  167.744659][ T6388] loop0: detected capacity change from 0 to 2048
[  167.802837][ T6374] EXT4-fs: error -4 creating inode table initialization thread
[  167.822747][ T6374] EXT4-fs (loop9): mount failed
[  167.939330][ T6388] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  168.117545][   T26] kauditd_printk_skb: 57 callbacks suppressed
[  168.117562][   T26] audit: type=1800 audit(1769445537.245:87): pid=6388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.368" name="file1" dev="loop0" ino=1346 res=0 errno=0
[  168.220276][ T6400] overlayfs: failed to clone upperpath
[  168.284321][ T6402] binder_alloc: 6401: binder_alloc_buf size 17432 failed, no address space
[  168.326907][ T6402] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 12288 (num: 1 largest: 12288)
[  168.970803][ T6429] netlink: 68 bytes leftover after parsing attributes in process `syz.0.380'.
[  169.062803][ T6432] loop9: detected capacity change from 0 to 128
[  170.373697][ T6453] tipc: Started in network mode
[  170.409436][ T6453] tipc: Node identity 16e7b521b353, cluster identity 4711
[  170.431876][ T6453] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  170.463223][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  170.546354][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  170.610409][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  170.674165][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  170.708788][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  170.788619][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  170.815921][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  170.933448][ T6447] tipc: Resetting bearer <eth:syzkaller0>
[  171.053159][ T6447] tipc: Disabling bearer <eth:syzkaller0>
[  172.791545][ T6520] loop3: detected capacity change from 0 to 65536
[  173.082429][ T6520] XFS (loop3): Mounting V5 Filesystem
[  173.295397][ T6520] XFS (loop3): Ending clean mount
[  173.510387][ T4186] XFS (loop3): Unmounting Filesystem
[  173.853426][ T6512] loop6: detected capacity change from 0 to 40427
[  173.878518][ T6512] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  173.961468][ T6512] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  174.079760][ T6512] F2FS-fs (loop6): Found nat_bits in checkpoint
[  174.364370][ T6512] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  174.381376][ T6512] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  174.393621][ T6485] loop9: detected capacity change from 0 to 32768
[  175.654008][ T6599] loop9: detected capacity change from 0 to 1024
[  175.758525][ T6608] loop3: detected capacity change from 0 to 256
[  175.903690][ T6599] EXT4-fs (loop9): mounted filesystem without journal. Opts: nodelalloc,nodioread_nolock,noquota,barrier,auto_da_alloc,nodioread_nolock,,errors=continue. Quota mode: none.
[  175.997798][ T6599] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.389103][ T5242] udevd[5242]: incorrect jbd checksum on /dev/loop9
[  176.423531][ T6599] EXT4-fs error (device loop9): __ext4_get_inode_loc:4327: comm syz.9.417: Invalid inode table block 0 in block_group 0
[  176.567266][ T6599] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5854: Corrupt filesystem
[  177.400606][ T6635] loop3: detected capacity change from 0 to 8192
[  177.531121][ T6635] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  177.571739][ T6635] REISERFS (device loop3): using ordered data mode
[  177.663784][ T6635] reiserfs: using flush barriers
[  177.682399][ T6635] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  177.764350][ T6635] REISERFS (device loop3): checking transaction log (loop3)
[  177.932152][ T4646] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  178.189592][ T6635] REISERFS (device loop3): Using tea hash to sort names
[  178.252341][ T6635] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  178.341656][ T4646] usb 1-1: config index 0 descriptor too short (expected 1042, got 18)
[  178.371362][ T4646] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  178.446701][ T4646] usb 1-1: config 0 has no interfaces?
[  178.641934][ T4646] usb 1-1: New USB device found, idVendor=1235, idProduct=0018, bcdDevice=fc.ee
[  178.679367][ T4646] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=255
[  178.741365][ T4646] usb 1-1: Product: syz
[  178.769236][ T4646] usb 1-1: Manufacturer: syz
[  178.799774][ T4646] usb 1-1: SerialNumber: syz
[  178.841495][ T4646] usb 1-1: config 0 descriptor??
[  179.087561][ T6654] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  179.280727][ T6686] device syzkaller0 entered promiscuous mode
[  179.388327][ T4646] usb 1-1: USB disconnect, device number 14
[  179.451729][ T6653] tipc: Resetting bearer <eth:syzkaller0>
[  179.618212][ T6653] tipc: Disabling bearer <eth:syzkaller0>
[  180.606621][ T6736] kvm: emulating exchange as write
[  182.135860][ T6764] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  182.837431][ T6790] loop2: detected capacity change from 0 to 7
[  182.888792][ T5242]  loop2:
[  182.893272][ T5242] loop2: partition table partially beyond EOD, truncated
[  183.042809][ T6790]  loop2:
[  183.048090][ T6790] loop2: partition table partially beyond EOD, truncated
[  183.139457][ T3560]  loop2:
[  183.145337][ T3560] loop2: partition table partially beyond EOD, truncated
[  183.443411][ T6819] tipc: Started in network mode
[  183.489576][ T6819] tipc: Node identity e62fa4958b24, cluster identity 4711
[  183.543049][ T6819] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  183.729937][ T6823] device syzkaller0 entered promiscuous mode
[  183.779450][ T6817] tipc: Resetting bearer <eth:syzkaller0>
[  184.481780][ T4364] Bluetooth: hci4: command 0x0405 tx timeout
[  184.773617][ T6817] tipc: Disabling bearer <eth:syzkaller0>
[  184.830615][ T6825] device syzkaller0 entered promiscuous mode
[  184.859466][ T4308] tipc: Node number set to 1829479573
[  185.400399][ T6847] binder: BINDER_SET_CONTEXT_MGR already set
[  185.457769][ T6847] binder: 6843:6847 ioctl 4018620d 200000000100 returned -16
[  185.493813][ T6852] binder: BINDER_SET_CONTEXT_MGR already set
[  185.514268][ T6852] binder: 6843:6852 ioctl 4018620d 200000004a80 returned -16
[  185.721413][ T4258] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  185.787427][ T6856] loop6: detected capacity change from 0 to 8
[  185.992247][ T4258] usb 1-1: Using ep0 maxpacket: 32
[  186.151500][ T4258] usb 1-1: unable to get BOS descriptor or descriptor too short
[  186.291640][ T4258] usb 1-1: config 7 has an invalid interface number: 128 but max is 0
[  186.328168][ T4258] usb 1-1: config 7 contains an unexpected descriptor of type 0x1, skipping
[  186.373729][ T4258] usb 1-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  186.445873][ T4258] usb 1-1: config 7 has no interface number 0
[  186.491448][ T4258] usb 1-1: config 7 interface 128 altsetting 2 has an invalid endpoint with address 0x17, skipping
[  186.568145][ T4258] usb 1-1: config 7 interface 128 altsetting 2 endpoint 0x87 has an invalid bInterval 209, changing to 11
[  186.614751][ T4258] usb 1-1: config 7 interface 128 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  186.661445][ T4258] usb 1-1: config 7 interface 128 has no altsetting 0
[  186.778449][ T6886] loop3: detected capacity change from 0 to 164
[  186.831560][ T4258] usb 1-1: New USB device found, idVendor=6033, idProduct=4108, bcdDevice=cc.13
[  186.875382][ T4258] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.941510][ T4364] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  186.957819][ T4258] usb 1-1: Product: syz
[  186.991825][ T4258] usb 1-1: Manufacturer: syz
[  187.024894][ T4258] usb 1-1: SerialNumber: syz
[  187.092511][ T6851] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  187.311598][ T4364] usb 7-1: config 0 interface 0 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  187.396952][ T6846] loop0: detected capacity change from 0 to 512
[  187.406353][ T4364] usb 7-1: config 0 interface 0 has no altsetting 0
[  187.449853][ T4364] usb 7-1: New USB device found, idVendor=04f2, idProduct=1123, bcdDevice= 0.00
[  187.489012][ T4364] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.543258][ T4364] usb 7-1: config 0 descriptor??
[  187.613612][ T6846] EXT4-fs (loop0): corrupt root inode, run e2fsck
[  187.641522][ T6846] EXT4-fs (loop0): mount failed
[  187.673368][ T6912] overlayfs: failed to clone lowerpath
[  187.865258][ T4258] usb 1-1: MIDIStreaming interface descriptor not found
[  188.114960][ T4258] usb 1-1: USB disconnect, device number 15
[  188.161677][ T4364] usbhid 7-1:0.0: can't add hid device: -71
[  188.202332][ T4364] usbhid: probe of 7-1:0.0 failed with error -71
[  188.266150][ T4364] usb 7-1: USB disconnect, device number 8
[  188.425806][ T6927] loop0: detected capacity change from 0 to 256
[  188.552296][ T6927] exfat: Deprecated parameter 'utf8'
[  188.636453][ T6927] exFAT-fs (loop0): failed to read sector(0x100)
[  188.636453][ T6927] 
[  188.688278][ T6927] exFAT-fs (loop0): failed to load upcase table
[  188.703370][ T6920] udevd[6920]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:7.128/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  188.772867][ T6927] exFAT-fs (loop0): failed to recognize exfat type
[  189.247665][ T6950] device syzkaller0 entered promiscuous mode
[  189.539569][ T6959] loop9: detected capacity change from 0 to 1024
[  189.655547][ T6959] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  189.676357][   T26] audit: type=1800 audit(1769445558.805:88): pid=6959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.495" name="bus" dev="loop9" ino=18 res=0 errno=0
[  189.707404][    C1] vkms_vblank_simulate: vblank timer overrun
[  189.735046][ T6940] tipc: Started in network mode
[  189.740566][ T6940] tipc: Node identity 4, cluster identity 4711
[  189.747057][ T6959] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:3887: comm syz.9.495: Allocating blocks 385-513 which overlap fs metadata
[  189.769847][ T6940] tipc: Node number set to 4
[  189.770601][ T6959] EXT4-fs (loop9): pa ffff88807348e0e0: logic 16, phys. 129, len 24
[  189.786617][ T6959] EXT4-fs error (device loop9): ext4_mb_release_inode_pa:4904: group 0, free 0, pa_free 8
[  190.115484][  T155] Trying to write to read-only block-device loop9
[  190.115631][ T6076] Trying to write to read-only block-device loop9
[  190.169000][  T155] Trying to write to read-only block-device loop9
[  190.179174][ T6076] Trying to write to read-only block-device loop9
[  190.233348][ T6076] Trying to write to read-only block-device loop9
[  190.264788][  T155] Trying to write to read-only block-device loop9
[  190.301505][ T6076] Trying to write to read-only block-device loop9
[  190.332642][ T6076] Trying to write to read-only block-device loop9
[  190.376476][  T155] Trying to write to read-only block-device loop9
[  190.384384][ T6993] loop6: detected capacity change from 0 to 256
[  190.418524][ T6076] Trying to write to read-only block-device loop9
[  190.514598][ T6993] FAT-fs (loop6): Directory bread(block 64) failed
[  190.592329][ T6993] FAT-fs (loop6): Directory bread(block 65) failed
[  190.599018][ T6993] FAT-fs (loop6): Directory bread(block 66) failed
[  190.611647][ T6993] FAT-fs (loop6): Directory bread(block 67) failed
[  190.618564][ T6993] FAT-fs (loop6): Directory bread(block 68) failed
[  190.781621][ T6993] FAT-fs (loop6): Directory bread(block 69) failed
[  191.049444][ T7004] loop9: detected capacity change from 0 to 32768
[  191.058703][ T6993] FAT-fs (loop6): Directory bread(block 70) failed
[  191.070548][ T6993] FAT-fs (loop6): Directory bread(block 71) failed
[  191.096918][ T6993] FAT-fs (loop6): Directory bread(block 72) failed
[  191.110586][ T6993] FAT-fs (loop6): Directory bread(block 73) failed
[  191.136280][ T7004] /dev/loop9: Can't open blockdev
[  191.205670][ T4369] Bluetooth: hci0: command 0x0406 tx timeout
[  191.246201][ T4258] Bluetooth: hci2: command 0x0406 tx timeout
[  192.081714][ T7036] loop0: detected capacity change from 0 to 512
[  192.104430][ T7043] binder_alloc: 7042: binder_alloc_buf, no vma
[  192.235727][ T7036] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  192.272557][ T7048] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  192.324042][ T7036] ext4 filesystem being mounted at /110/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  192.435406][ T7056] fuse: Bad value for 'fd'
[  192.693137][ T7061] netlink: 76 bytes leftover after parsing attributes in process `syz.3.512'.
[  193.109037][ T7069] device syzkaller0 entered promiscuous mode
[  193.308041][   T26] audit: type=1804 audit(1769445562.435:89): pid=7076 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.518" name="/newroot/112/bus/bus" dev="overlay" ino=647 res=1 errno=0
[  193.357559][ T7076] Invalid ELF header magic: != ELF
[  193.683988][ T7086] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  193.707778][    C1] vkms_vblank_simulate: vblank timer overrun
[  193.733701][ T7089] loop6: detected capacity change from 0 to 256
[  193.953826][ T7089] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  194.245856][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  194.252418][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  194.727355][   T26] audit: type=1804 audit(1769445563.855:90): pid=7117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.530" name="/newroot/85/bus/bus" dev="overlay" ino=508 res=1 errno=0
[  196.355860][ T7163] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[  196.443700][ T7165] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=393216 (786432 ns) > initial count (524288 ns). Using initial count to start timer.
[  198.297315][ T7215] device syzkaller0 entered promiscuous mode
[  198.379273][ T7219] device syzkaller0 entered promiscuous mode
[  198.677511][ T7229] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  198.696796][ T7229] device batadv_slave_0 entered promiscuous mode
[  199.191457][ T7242] netlink: 8 bytes leftover after parsing attributes in process `syz.6.554'.
[  199.268753][ T7242] bond0: option arp_all_targets: invalid value (16711680)
[  199.584621][ T7254] netlink: 8 bytes leftover after parsing attributes in process `syz.3.559'.
[  200.055207][ T4258] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  200.572839][ T7254] netlink: 14 bytes leftover after parsing attributes in process `syz.3.559'.
[  201.001649][ T4258] usb 7-1: unable to get BOS descriptor or descriptor too short
[  201.068764][ T7278] syzkaller0: create flow: hash 880268630 index 1
[  201.101594][ T4258] usb 7-1: unable to read config index 0 descriptor/start: -71
[  201.161992][ T4258] usb 7-1: can't read configurations, error -71
[  201.247070][ T7272] syzkaller0: delete flow: hash 880268630 index 1
[  204.063680][ T4557] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  204.471583][ T4557] usb 10-1: device descriptor read/all, error -71
[  205.161588][ T4557] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  205.472325][ T4557] usb 10-1: Using ep0 maxpacket: 16
[  205.571938][ T7330] netlink: 8 bytes leftover after parsing attributes in process `syz.0.577'.
[  205.607056][ T4557] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  205.661977][ T4557] usb 10-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  205.677767][ T4557] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.726292][ T4557] usb 10-1: config 0 descriptor??
[  205.794823][ T4557] input: bcm5974 as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/input/input12
[  205.998075][ T7318] input: syz0 as /devices/virtual/input/input13
[  206.614187][ T7369] loop3: detected capacity change from 0 to 736
[  206.768860][ T7372] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  207.213344][ T7384] netlink: 28 bytes leftover after parsing attributes in process `syz.8.590'.
[  207.251531][ T7384] netlink: 28 bytes leftover after parsing attributes in process `syz.8.590'.
[  207.613386][ T3545] bcm5974 10-1:0.0: could not read from device
[  207.665608][ T4557] usb 10-1: USB disconnect, device number 3
[  207.666489][ T3545] bcm5974 10-1:0.0: could not read from device
[  207.816399][ T7401] netem: change failed
[  208.563159][ T7426] loop9: detected capacity change from 0 to 256
[  208.584191][ T7419] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  208.658362][ T7426] /dev/loop9: Can't open blockdev
[  208.658621][ T7377] loop0: detected capacity change from 0 to 40427
[  208.798019][ T7377] F2FS-fs (loop0): invalid crc value
[  208.924024][ T7377] F2FS-fs (loop0): Found nat_bits in checkpoint
[  209.135463][ T7377] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[  209.215053][ T7377] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  209.297728][ T7377] F2FS-fs (loop0): Unrecognized mount option "�����������	Z*��� m�.Dc�8�'�@��C9G�9���?�9�S�{�1��J���լ��5æ�Ԍ�����qq���Y�糔����" or missing value
[  211.981330][ T4308] Bluetooth: hci1: command 0x0406 tx timeout
[  214.043387][ T7498] loop6: detected capacity change from 0 to 16
[  214.252306][ T7498] erofs: Unknown parameter '01777777777777777777777'
[  214.777402][ T7511] device syzkaller0 entered promiscuous mode
[  214.926076][ T7484] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  215.337841][ T7533] loop9: detected capacity change from 0 to 24
[  215.547095][ T7533] /dev/loop9: Can't open blockdev
[  216.835786][ T7587] loop0: detected capacity change from 0 to 1024
[  216.938444][ T7587] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  217.610916][ T7587] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,nodioread_nolock,discard,max_dir_size_kb=0x00000000004007b1,data_err=ignore,nolazytime,quota,user_xattr,nouid32,dioread_nolock,,errors=continue. Quota mode: writeback.
[  217.919261][ T7587] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3887: comm syz.0.637: Allocating blocks 497-513 which overlap fs metadata
[  218.264373][ T7606] loop9: detected capacity change from 0 to 4096
[  218.312347][ T7587] EXT4-fs (loop0): pa ffff8880735d9460: logic 128, phys. 385, len 8
[  218.325542][ T7587] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4904: group 0, free 0, pa_free 1
[  219.748484][ T7620] 9pnet: p9_errstr2errno: server reported unknown error 
[  219.824393][ T7613] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  220.108402][ T7626] netlink: 216 bytes leftover after parsing attributes in process `syz.8.648'.
[  220.128359][ T7626] netlink: 40 bytes leftover after parsing attributes in process `syz.8.648'.
[  221.898776][ T7639] loop6: detected capacity change from 0 to 128
[  222.038135][ T7639] FAT-fs (loop6): bogus number of FAT sectors
[  222.057072][ T7639] FAT-fs (loop6): Can't find a valid FAT filesystem
[  222.136915][ T7656] loop3: detected capacity change from 0 to 256
[  222.377722][ T7656] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  224.900363][ T7690] device syzkaller0 entered promiscuous mode
[  224.930854][ T7689] loop6: detected capacity change from 0 to 512
[  225.030437][ T7689] EXT4-fs (loop6): Ignoring removed oldalloc option
[  225.063562][ T7689] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  225.123766][ T7689] EXT4-fs (loop6): 1 truncate cleaned up
[  225.251143][ T7689] EXT4-fs (loop6): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,errors=continue,inode_readahead_blks=0x0000000000004000,stripe=0x0000000000000003,bsdgroups,oldalloc,,errors=continue. Quota mode: none.
[  225.345972][ T4552] EXT4-fs error (device loop6): ext4_lookup:1858: inode #11: comm syz-executor: iget: bad extra_isize 46 (inode size 256)
[  225.510655][ T4552] EXT4-fs error (device loop6): ext4_lookup:1858: inode #11: comm syz-executor: iget: bad extra_isize 46 (inode size 256)
[  226.842877][ T7715] overlayfs: failed to clone upperpath
[  227.649694][ T5329] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.854759][ T5329] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.508931][ T7755] IPv6: NLM_F_REPLACE set, but no existing node found!
[  230.086776][ T5329] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.176970][ T5329] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.224949][ T7759] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  230.354743][ T7759] kvm: pic: non byte read
[  230.375039][ T7759] kvm: pic: level sensitive irq not supported
[  230.375113][ T7759] kvm: pic: non byte read
[  230.439122][ T7759] kvm: pic: level sensitive irq not supported
[  230.439231][ T7759] kvm: pic: non byte read
[  230.490491][ T7759] kvm: pic: level sensitive irq not supported
[  230.490547][ T7759] kvm: pic: non byte read
[  230.547152][ T7759] kvm: pic: level sensitive irq not supported
[  230.548087][ T7759] kvm: pic: non byte read
[  230.637098][ T7759] kvm: pic: level sensitive irq not supported
[  230.638441][ T7759] kvm: pic: non byte read
[  230.830916][ T5329] tipc: Left network mode
[  231.108879][ T7780] device syzkaller1 entered promiscuous mode
[  232.023813][ T7805] binder: 7804:7805 ioctl c018620c 0 returned -14
[  232.128816][ T7807] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in;
[  232.128816][ T7807]    program syz.9.692 not setting count and/or reply_len properly
[  232.881588][ T4308] Bluetooth: hci1: command 0x0409 tx timeout
[  233.105520][ T7769] chnl_net:caif_netlink_parms(): no params data found
[  233.423093][ T7833] netlink: 12 bytes leftover after parsing attributes in process `syz.8.699'.
[  233.499254][ T5329] device hsr_slave_0 left promiscuous mode
[  233.532102][ T5329] device hsr_slave_1 left promiscuous mode
[  233.580162][ T5329] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  233.594990][ T5329] batman_adv: batadv0: Removing interface: batadv_slave_0
[  233.643019][ T5329] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  233.658687][ T5329] batman_adv: batadv0: Removing interface: batadv_slave_1
[  233.692290][ T5329] device bridge_slave_1 left promiscuous mode
[  233.716466][ T5329] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.739365][ T5329] device bridge_slave_0 left promiscuous mode
[  233.758319][ T5329] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.819043][ T5329] device veth1_macvtap left promiscuous mode
[  233.838815][ T5329] device veth0_macvtap left promiscuous mode
[  233.865408][ T5329] device veth1_vlan left promiscuous mode
[  233.885260][ T5329] device veth0_vlan left promiscuous mode
[  234.169697][ T7814] loop9: detected capacity change from 0 to 32768
[  234.571824][ T7814] /dev/loop9: Can't open blockdev
[  235.228316][   T13] Bluetooth: hci1: command 0x041b tx timeout
[  236.470853][ T7814] loop9: detected capacity change from 0 to 4096
[  236.617479][ T7868] MPTCP: kernel_bind error, err=-22
[  236.744566][ T5329] team0 (unregistering): Port device team_slave_1 removed
[  236.847205][ T5329] team0 (unregistering): Port device team_slave_0 removed
[  236.886000][ T5329] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  236.949508][ T5329] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  238.072645][ T4308] Bluetooth: hci1: command 0x040f tx timeout
[  238.103533][ T5329] bond0 (unregistering): Released all slaves
[  238.155947][ T7888] loop9: detected capacity change from 0 to 16
[  238.200178][ T7888] erofs: (device loop9): mounted with root inode @ nid 36.
[  238.213064][ T7769] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.228080][ T7769] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.241191][ T7769] device bridge_slave_0 entered promiscuous mode
[  238.274698][ T7769] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.285599][ T7769] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.300938][ T7769] device bridge_slave_1 entered promiscuous mode
[  238.467136][ T7769] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  238.653853][ T7898] attempt to access beyond end of device
[  238.653853][ T7898] loop9: rw=0, want=24, limit=16
[  238.978828][ T7769] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  239.052884][ T7899] overlayfs: failed to clone upperpath
[  239.132648][ T7900] overlayfs: failed to clone lowerpath
[  239.336765][ T7769] team0: Port device team_slave_0 added
[  239.442084][ T7769] team0: Port device team_slave_1 added
[  239.581167][ T7769] batman_adv: batadv0: Adding interface: batadv_slave_0
[  239.629589][ T7769] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  239.666084][ T7769] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  239.700912][ T7769] batman_adv: batadv0: Adding interface: batadv_slave_1
[  239.733465][ T7769] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  239.798856][ T7769] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  239.999615][ T7769] device hsr_slave_0 entered promiscuous mode
[  240.020240][ T7769] device hsr_slave_1 entered promiscuous mode
[  240.069008][ T7769] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  240.081554][   T13] Bluetooth: hci1: command 0x0419 tx timeout
[  240.095104][ T7769] Cannot create hsr debugfs directory
[  240.731378][   T13] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  241.029005][   T13] usb 10-1: Using ep0 maxpacket: 32
[  241.088228][ T7950] lo: MTU too low for tipc bearer
[  241.118311][ T7950] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  241.332141][   T13] usb 10-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  241.358075][   T13] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  241.380637][   T13] usb 10-1: Product: syz
[  241.391073][   T13] usb 10-1: Manufacturer: syz
[  241.409903][   T13] usb 10-1: SerialNumber: syz
[  241.424391][   T13] usb 10-1: config 0 descriptor??
[  241.479255][   T13] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  242.520093][ T7769] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  242.563690][ T7769] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  242.587183][ T7769] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  242.607119][ T7769] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  242.801810][ T7769] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.864769][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  242.883350][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  242.916619][ T7769] 8021q: adding VLAN 0 to HW filter on device team0
[  242.969438][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  242.997151][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  243.039067][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.046448][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.084934][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  243.141393][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  243.168689][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  243.201583][   T13] gspca_ov534_9: reg_w failed -71
[  243.225159][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.235188][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.301642][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  243.372530][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  243.392185][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  243.415886][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  243.492197][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  243.543397][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  243.677569][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  243.691528][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  243.723113][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  243.779143][ T7769] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  243.801995][   T13] gspca_ov534_9: Unknown sensor 0000
[  243.802069][   T13] ov534_9: probe of 10-1:0.0 failed with error -22
[  243.807502][ T7769] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  243.830726][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  243.909483][   T13] usb 10-1: USB disconnect, device number 4
[  243.930987][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  244.622767][ T8041] fuse: Bad value for 'fd'
[  244.988584][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  245.013460][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  245.116599][ T7769] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.222869][  T154] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.540805][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  246.594933][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  246.660806][ T8067] 9pnet: p9_errstr2errno: server reported unknown error 0x00000000
[  246.670374][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  246.699685][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  246.742511][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  246.772196][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  246.810244][ T7769] device veth0_vlan entered promiscuous mode
[  246.870052][ T7769] device veth1_vlan entered promiscuous mode
[  246.991090][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  247.013866][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  247.038987][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  247.069635][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  247.098477][ T7769] device veth0_macvtap entered promiscuous mode
[  247.128978][ T7769] device veth1_macvtap entered promiscuous mode
[  247.196132][ T7769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.232859][ T7769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.483912][ T7769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.521695][   T13] Bluetooth: hci3: command 0x0406 tx timeout
[  247.628103][ T7769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.706081][ T7769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.790491][ T7769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.957578][ T7769] batman_adv: batadv0: Interface activated: batadv_slave_0
[  248.040450][ T7769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  248.111318][ T7769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  248.130978][ T7769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  248.177572][ T7769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  248.218248][ T7769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  248.258738][ T7769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  248.281029][ T8137] overlayfs: failed to clone upperpath
[  248.288062][ T7769] batman_adv: batadv0: Interface activated: batadv_slave_1
[  248.351410][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  248.391915][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  248.403361][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  248.432378][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  248.457922][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  248.488404][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  248.525333][ T7769] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  248.708527][ T7769] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  248.717760][ T7769] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  249.502460][ T7769] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  249.519808][ T8148] netlink: 4 bytes leftover after parsing attributes in process `syz.3.766'.
[  250.649847][ T6012] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  250.822680][   T26] audit: type=1326 audit(1769445619.955:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e99abeb9 code=0x7ffc0000
[  250.881871][ T6012] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  251.762425][   T26] audit: type=1326 audit(1769445619.955:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5e996c78e code=0x7ffc0000
[  251.815307][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  251.867170][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  251.904406][   T26] audit: type=1326 audit(1769445619.955:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e99abeb9 code=0x7ffc0000
[  251.909232][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.056245][ T6012] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  252.061992][   T26] audit: type=1326 audit(1769445619.985:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5e996c78e code=0x7ffc0000
[  252.174931][   T26] audit: type=1326 audit(1769445619.985:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5e996c78e code=0x7ffc0000
[  252.213275][ T8202] A link change request failed with some changes committed already. Interface ip6gre0 may have been left with an inconsistent configuration, please check.
[  252.273297][   T26] audit: type=1326 audit(1769445619.985:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5e996c78e code=0x7ffc0000
[  252.357900][ T8204] device syzkaller0 entered promiscuous mode
[  252.519761][   T26] audit: type=1326 audit(1769445619.985:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5e996c78e code=0x7ffc0000
[  253.444806][   T26] audit: type=1326 audit(1769445619.985:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5e996c78e code=0x7ffc0000
[  253.489244][   T26] audit: type=1326 audit(1769445619.985:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5e996c78e code=0x7ffc0000
[  253.573940][   T26] audit: type=1326 audit(1769445619.985:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.9.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5e996c78e code=0x7ffc0000
[  253.890603][ T8231] overlayfs: failed to clone lowerpath
[  254.603395][ T8227] dccp_close: ABORT with 32 bytes unread
[  254.670963][ T8251] loop4: detected capacity change from 0 to 128
[  254.762936][ T8255] netlink: 'syz.3.792': attribute type 3 has an invalid length.
[  254.852266][ T8251] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  254.863162][ T8251] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  255.024522][ T8269] loop9: detected capacity change from 0 to 4096
[  255.108882][ T8269] NILFS (loop9): invalid segment: Checksum error in segment payload
[  255.117715][ T8269] NILFS (loop9): trying rollback from an earlier position
[  255.140588][ T8269] NILFS (loop9): write access unavailable, cannot proceed
[  255.684740][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  255.700472][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  256.864338][ T8281] loop4: detected capacity change from 0 to 40427
[  256.990351][ T8281] F2FS-fs (loop4): invalid crc value
[  257.039972][ T8281] F2FS-fs (loop4): Found nat_bits in checkpoint
[  257.213917][ T8281] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  257.543968][ T8341] overlayfs: orphan index entry (index/00fb2100015a9264329757429c954601bacba1efa0aae3f0fa0202000000000000, ftype=4000, nlink=2)
[  257.599019][ T7769] attempt to access beyond end of device
[  257.599019][ T7769] loop4: rw=2049, want=45176, limit=40427
[  257.664872][ T8346] netlink: 4 bytes leftover after parsing attributes in process `syz.8.811'.
[  257.700784][ T8346] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  258.756561][ T8371] loop9: detected capacity change from 0 to 128
[  258.911416][   T13] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  258.969848][ T8378] loop9: detected capacity change from 0 to 256
[  259.042372][ T8378] /dev/loop9: Can't open blockdev
[  259.186298][ T8384] loop5: detected capacity change from 0 to 2487
[  259.221398][   T13] usb 5-1: Using ep0 maxpacket: 8
[  259.271578][ T8387] loop5: detected capacity change from 2487 to 4415
[  259.361521][   T13] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  259.385129][   T13] usb 5-1: config 0 has no interface number 0
[  259.416994][   T13] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  259.476891][   T13] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  259.532297][   T13] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.597674][   T13] usb 5-1: config 0 descriptor??
[  259.702205][   T13] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  260.330200][ T8440] Disabled LAPIC found during irq injection
[  260.573891][ T8430] udc-core: couldn't find an available UDC or it's busy
[  260.580939][ T8430] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  261.493770][ T4308] usb 5-1: USB disconnect, device number 2
[  261.801614][ T8471] device syzkaller0 entered promiscuous mode
[  262.136768][ T8484] device ip6gre1 entered promiscuous mode
[  262.216455][ T8487] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  263.708618][ T8516] netlink: 'syz.4.848': attribute type 1 has an invalid length.
[  265.001448][ T8538] overlayfs: failed to clone upperpath
[  267.116539][    C0] vxcan1: j1939_simple_recv: Received already invalidated message
[  268.049630][ T8568] overlayfs: failed to resolve './bus': -2
[  269.067876][ T8583] binder: 8578:8583 ioctl c0306201 200000000300 returned -11
[  269.134045][   T26] kauditd_printk_skb: 59 callbacks suppressed
[  269.134245][   T26] audit: type=1326 audit(1769445638.265:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8580 comm="syz.8.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb860491eb9 code=0x7fc00000
[  269.253721][   T26] audit: type=1326 audit(1769445638.305:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8580 comm="syz.8.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb860491eb9 code=0x7fc00000
[  269.476817][ T8587] loop9: detected capacity change from 0 to 40427
[  269.498667][   T26] audit: type=1326 audit(1769445638.305:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8580 comm="syz.8.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb860491eb9 code=0x7fc00000
[  269.562729][ T4297] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  271.808173][ T4297] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  271.818225][ T4297] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  271.829316][ T4297] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  271.838993][ T4297] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  271.850319][ T4297] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  272.022835][ T4297] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  272.031952][ T4297] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  272.057555][ T4297] usb 5-1: Product: syz
[  272.061803][ T4297] usb 5-1: Manufacturer: syz
[  272.182959][ T4297] usb 5-1: can't set config #1, error -71
[  272.209966][ T4297] usb 5-1: USB disconnect, device number 3
[  273.907516][ T4557] Bluetooth: hci4: command 0x0406 tx timeout
[  274.534088][ T8642] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  275.579283][ T8656] netlink: 28 bytes leftover after parsing attributes in process `syz.0.886'.
[  275.591982][ T8656] netlink: 28 bytes leftover after parsing attributes in process `syz.0.886'.
[  276.394953][ T8659] syz.0.887 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  278.518595][ T8688] sctp: [Deprecated]: syz.8.893 (pid 8688) Use of int in max_burst socket option.
[  278.518595][ T8688] Use struct sctp_assoc_value instead
[  280.585354][ T8719] loop9: detected capacity change from 0 to 1024
[  281.321951][ T8749] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  281.855931][ T8768] overlayfs: failed to clone upperpath
[  284.209048][ T8776] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.219141][ T8776] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.334329][ T8776] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  287.313150][ T8776] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  287.329832][ T8776] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  287.338888][ T8776] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  287.378967][ T8870] CIFS: iocharset name too long
[  287.389764][ T8776] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  288.088653][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  290.918737][ T8925] device syzkaller0 entered promiscuous mode
[  290.984888][ T8930] overlayfs: failed to clone upperpath
[  295.143722][ T8996] sctp: [Deprecated]: syz.8.963 (pid 8996) Use of struct sctp_assoc_value in delayed_ack socket option.
[  295.143722][ T8996] Use struct sctp_sack_info instead
[  295.923580][ T8980] syz.4.961 (8980) used greatest stack depth: 19992 bytes left
[  296.662725][ T9028] loop4: detected capacity change from 0 to 1024
[  297.375951][ T9028] EXT4-fs (loop4): Mount option "data=journal" incompatible with ext2
[  301.795859][ T9066] xt_hashlimit: size too large, truncated to 1048576
[  302.682866][ T9069] loop4: detected capacity change from 0 to 256
[  302.734309][ T9069] exfat: Deprecated parameter 'utf8'
[  302.828813][ T9069] exfat: Deprecated parameter 'utf8'
[  302.834408][ T9069] exfat: Deprecated parameter 'utf8'
[  303.630389][    C1] sched: RT throttling activated
[  303.689317][ T9069] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  303.706445][ T9077] overlayfs: failed to clone upperpath
[  304.497304][ T9102] netlink: 4 bytes leftover after parsing attributes in process `syz.9.986'.
[  306.652680][ T9130] loop9: detected capacity change from 0 to 32768
[  312.609049][ T9211] loop9: detected capacity change from 0 to 512
[  318.102362][ T9291] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  318.140200][ T9291] kvm: pic: non byte read
[  318.153702][ T9291] kvm: pic: non byte read
[  318.168332][ T9291] kvm: pic: non byte read
[  318.182436][ T9291] kvm: pic: non byte read
[  318.199363][ T9291] kvm: pic: non byte read
[  318.212872][ T9291] kvm: pic: non byte read
[  318.225428][ T9291] kvm: pic: level sensitive irq not supported
[  318.225874][ T9291] kvm: pic: non byte read
[  318.253052][ T9300] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  319.106540][ T9343] netlink: 550 bytes leftover after parsing attributes in process `syz.4.1038'.
[  319.186060][ T9349] overlayfs: failed to clone upperpath
[  320.374599][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  320.385519][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  321.481808][ T9371] device syzkaller0 entered promiscuous mode
[  326.022347][ T9400] device syzkaller0 entered promiscuous mode
[  328.431166][ T9474] device syzkaller0 entered promiscuous mode
[  330.191297][ T9496] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  330.239663][ T9496] device batadv_slave_0 entered promiscuous mode
[  330.989007][ T9506] netlink: 'syz.4.1074': attribute type 21 has an invalid length.
[  333.470555][ T9548] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  333.610278][ T9550] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  335.814200][ T9573] tipc: Started in network mode
[  335.856940][ T9573] tipc: Node identity 7f000001, cluster identity 4711
[  335.900075][ T9573] tipc: Enabled bearer <udp:syz2>, priority 10
[  337.499885][ T4258] tipc: Node number set to 2130706433
[  338.736978][ T9608] loop4: detected capacity change from 0 to 8
[  338.960760][ T9608] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  339.174919][ T9155] udevd[9155]: incorrect cramfs checksum on /dev/loop4
[  340.253991][ T9627] tipc: Started in network mode
[  340.261958][ T9627] tipc: Node identity 0e6da872587f, cluster identity 4711
[  340.274069][ T9627] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  340.282619][ T9627] device syzkaller0 entered promiscuous mode
[  340.375574][ T9627] tipc: Resetting bearer <eth:syzkaller0>
[  340.482369][ T9626] tipc: Resetting bearer <eth:syzkaller0>
[  340.550482][ T9626] tipc: Disabling bearer <eth:syzkaller0>
[  342.129198][ T9650] overlayfs: failed to clone upperpath
[  343.514650][ T9672] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  344.520091][ T9678] device syzkaller0 entered promiscuous mode
[  344.593486][ T9678] 0: reclassify loop, rule prio 0, protocol 800
[  344.908866][ T9689] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  345.872881][ T9692] loop9: detected capacity change from 0 to 4096
[  347.634580][ T9714] device syzkaller0 left promiscuous mode
[  349.752387][ T9745] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1123'.
[  350.620545][ T4258] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  351.762906][ T9752] loop4: detected capacity change from 0 to 4096
[  352.811004][ T9752] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  353.112708][ T4258] usb 10-1: device descriptor read/all, error -71
[  353.587478][ T9774] device syzkaller0 entered promiscuous mode
[  355.529007][ T9796] loop9: detected capacity change from 0 to 128
[  358.206362][ T9810] device syzkaller0 entered promiscuous mode
[  358.349444][ T9807] xt_bpf: check failed: parse error
[  358.960884][ T9823] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1141'.
[  360.519048][ T9859] cgroup: Invalid name
[  360.611882][ T9861] overlayfs: failed to clone lowerpath
[  361.089688][ T4557] Bluetooth: hci1: command 0x0406 tx timeout
[  363.543954][ T9887] netlink: 'syz.8.1152': attribute type 3 has an invalid length.
[  363.911271][ T9905] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  363.956435][ T9905] device syzkaller0 entered promiscuous mode
[  364.910138][ T9905] tipc: Resetting bearer <eth:syzkaller0>
[  364.977317][ T9904] tipc: Resetting bearer <eth:syzkaller0>
[  365.160479][ T9904] tipc: Disabling bearer <eth:syzkaller0>
[  366.014411][ T5294] tipc: Node number set to 1444063346
[  366.100364][ T9930] netlink: 'syz.9.1159': attribute type 1 has an invalid length.
[  366.310802][ T9937] device syzkaller0 left promiscuous mode
[  366.649563][ T9946] loop9: detected capacity change from 0 to 4096
[  369.601451][ T9985] tipc: Started in network mode
[  369.615136][ T9985] tipc: Node identity 080211000001, cluster identity 4711
[  369.629452][ T9985] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  370.360948][ T9985] device syzkaller0 entered promiscuous mode
[  370.403182][ T9985] tipc: Resetting bearer <eth:syzkaller0>
[  370.904668][T10018] loop9: detected capacity change from 0 to 256
[  370.939736][T10018] /dev/loop9: Can't open blockdev
[  370.999651][ T4258] tipc: Node number set to 134418688
[  372.359236][T10029] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  373.281208][T10040] Cannot find add_set index 65532 as target
[  379.429709][T10095] loop4: detected capacity change from 0 to 256
[  379.500882][T10095] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  383.849438][T10133] loop9: detected capacity change from 0 to 64
[  386.162484][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  386.169286][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  387.841822][T10180] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  388.041284][T10193] loop9: detected capacity change from 0 to 128
[  389.500973][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  389.510042][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  389.522180][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  389.530693][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  389.539965][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  389.548760][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  389.558434][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  389.570780][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  389.580663][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  389.592486][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  390.691036][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  390.698729][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  390.707721][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  390.715448][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  390.724916][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  390.734445][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1217'.
[  390.744790][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  390.754591][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  390.762140][T10226] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  399.921641][ T4258] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  400.992699][ T4258] usb 10-1: device descriptor read/64, error -71
[  402.214564][T10369] loop9: detected capacity change from 0 to 32768
[  402.225958][ T4258] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  403.112804][T10382] fuse: Bad value for 'fd'
[  409.650769][T10446] loop9: detected capacity change from 0 to 2048
[  410.279891][T10452] __nla_validate_parse: 62 callbacks suppressed
[  410.279927][T10452] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1261'.
[  411.648619][   T26] audit: type=1326 audit(1769445771.352:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  411.915992][   T26] audit: type=1326 audit(1769445771.352:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  412.017801][   T26] audit: type=1326 audit(1769445771.352:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  412.127393][   T26] audit: type=1326 audit(1769445771.352:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  412.890843][   T26] audit: type=1326 audit(1769445771.352:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  413.227926][   T26] audit: type=1326 audit(1769445771.352:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  413.312942][   T26] audit: type=1326 audit(1769445771.352:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  413.394113][   T26] audit: type=1326 audit(1769445771.352:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  413.483604][   T26] audit: type=1326 audit(1769445771.361:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  413.515873][   T26] audit: type=1326 audit(1769445771.361:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10453 comm="syz.3.1262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a13f6eb9 code=0x7ffc0000
[  414.832609][T10494] loop9: detected capacity change from 0 to 32768
[  422.339069][T10550] loop9: detected capacity change from 0 to 128
[  422.636056][T10550] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1285'.
[  423.441744][T10575] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  423.737917][T10585] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  424.113517][T10592] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  424.292923][T10602] capability: warning: `syz.0.1294' uses deprecated v2 capabilities in a way that may be insecure
[  424.386546][T10606] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  424.703994][T10622] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  426.084432][T10653] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  426.627706][T10662] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  427.722497][T10672] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  428.681887][T10684] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  430.587426][   T26] kauditd_printk_skb: 58 callbacks suppressed
[  430.587540][   T26] audit: type=1326 audit(1769445789.314:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  431.186027][   T26] audit: type=1326 audit(1769445789.314:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  431.286927][   T26] audit: type=1326 audit(1769445789.333:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  431.342428][   T26] audit: type=1326 audit(1769445789.333:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  431.369704][   T26] audit: type=1326 audit(1769445789.333:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  431.552731][   T26] audit: type=1326 audit(1769445789.342:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  431.584745][   T26] audit: type=1326 audit(1769445789.342:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  433.023970][   T26] audit: type=1326 audit(1769445789.342:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  433.024013][   T26] audit: type=1326 audit(1769445789.351:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  433.024049][   T26] audit: type=1326 audit(1769445789.351:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.1320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc06ff8eb9 code=0x7ffc0000
[  435.117812][T10763] overlayfs: failed to clone lowerpath
[  436.633973][T10786] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  436.645905][T10786] xt_TPROXY: Can be used only with -p tcp or -p udp
[  438.116687][T10820] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  438.893572][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.902560][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.911869][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.920926][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.930281][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.939278][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.948303][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.957330][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.966375][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  438.975410][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'.
[  444.726927][    C0] ------------[ cut here ]------------
[  444.732533][    C0] WARNING: CPU: 0 PID: 10917 at net/mac80211/tx.c:4859 __ieee80211_beacon_get+0x179f/0x2000
[  444.742733][    C0] Modules linked in:
[  444.746669][    C0] CPU: 0 PID: 10917 Comm: syz.8.1375 Not tainted syzkaller #0
[  444.754186][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  444.764297][    C0] RIP: 0010:__ieee80211_beacon_get+0x179f/0x2000
[  444.770661][    C0] Code: 2a f8 0f 0b 4f 89 64 2f 04 4f 89 64 2f 0c 43 c6 44 2f 14 f8 e9 19 fe ff ff e8 0d c0 2a f8 0f 0b e9 03 ef ff ff e8 01 c0 2a f8 <0f> 0b e9 76 f2 ff ff e8 15 89 6d 00 89 d9 80 e1 07 80 c1 03 38 c1
[  444.790332][    C0] RSP: 0018:ffffc900000078e0 EFLAGS: 00010246
[  444.796470][    C0] RAX: ffffffff894e5f9f RBX: ffff888016e5e298 RCX: ffff888061151dc0
[  444.804507][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  444.812530][    C0] RBP: ffffc90000007b08 R08: ffff888061151dc0 R09: 0000000000000003
[  444.820554][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff888077bcf800
[  444.828573][    C0] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff92000000f2c
[  444.836597][    C0] FS:  00007fb85e6ed6c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  444.845569][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  444.852205][    C0] CR2: 0000001b2fd22ff8 CR3: 000000006289c000 CR4: 00000000003506f0
[  444.860249][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  444.868271][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  444.876267][    C0] Call Trace:
[  444.879591][    C0]  <IRQ>
[  444.882469][    C0]  ? ieee80211_beacon_get_template+0x30/0x30
[  444.888491][    C0]  ? verify_lock_unused+0x140/0x140
[  444.893752][    C0]  ? __lock_acquire+0x13bc/0x7d10
[  444.898840][    C0]  ieee80211_beacon_get_tim+0x48/0x840
[  444.904363][    C0]  mac80211_hwsim_beacon_tx+0xf4/0x920
[  444.909867][    C0]  __iterate_interfaces+0x243/0x500
[  444.915117][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  444.921413][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  444.927678][    C0]  ieee80211_iterate_active_interfaces_atomic+0xb3/0x140
[  444.934753][    C0]  mac80211_hwsim_beacon+0x9b/0x180
[  444.939993][    C0]  ? hw_scan_work+0xed0/0xed0
[  444.944738][    C0]  __hrtimer_run_queues+0x4eb/0xb70
[  444.949989][    C0]  ? hrtimer_interrupt+0x8d0/0x8d0
[  444.955166][    C0]  hrtimer_run_softirq+0x176/0x240
[  444.960312][    C0]  handle_softirqs+0x339/0x830
[  444.965131][    C0]  ? __irq_exit_rcu+0x13b/0x230
[  444.970026][    C0]  ? do_softirq+0x210/0x210
[  444.974587][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  444.979815][    C0]  __irq_exit_rcu+0x13b/0x230
[  444.984523][    C0]  ? irq_exit_rcu+0x20/0x20
[  444.989094][    C0]  irq_exit_rcu+0x5/0x20
[  444.993353][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  444.999058][    C0]  </IRQ>
[  445.002014][    C0]  <TASK>
[  445.004966][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  445.011001][    C0] RIP: 0010:rcu_read_lock_held+0x0/0x40
[  445.016582][    C0] Code: 0e 8f e8 43 05 5a 00 eb cf 90 0f b6 05 b5 ba 25 0c c3 0f 1f 84 00 00 00 00 00 e8 eb df 00 00 e9 c6 e1 00 00 66 0f 1f 44 00 00 <53> e8 7a cf 57 08 85 c0 74 26 31 db e8 7f b2 00 00 84 c0 74 20 e8
[  445.036258][    C0] RSP: 0018:ffffc90002def6f0 EFLAGS: 00000246
[  445.042383][    C0] RAX: ffffffff819e3a5a RBX: dffffc0000000000 RCX: ffff888061151dc0
[  445.050396][    C0] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  445.058393][    C0] RBP: 0000000000000000 R08: ffffea00017016b7 R09: 1ffffd40002e02d6
[  445.066434][    C0] R10: dffffc0000000000 R11: fffff940002e02d7 R12: 1ffff920005bdf05
[  445.074456][    C0] R13: ffffc90002def828 R14: 0000000000000000 R15: ffff8880255e0370
[  445.082517][    C0]  ? xas_next_entry+0x1ea/0x3d0
[  445.087404][    C0]  xas_next_entry+0x202/0x3d0
[  445.092206][    C0]  filemap_map_pages+0xecd/0x13b0
[  445.097294][    C0]  ? filemap_read_page+0x4c0/0x4c0
[  445.102434][    C0]  ? count_memcg_event_mm+0x324/0x370
[  445.107883][    C0]  ? follow_page_pte+0x320/0xc20
[  445.112864][    C0]  handle_mm_fault+0x25bc/0x4410
[  445.117892][    C0]  ? get_page+0xe0/0xe0
[  445.122082][    C0]  ? follow_page_mask+0xa6e/0x12d0
[  445.127261][    C0]  __get_user_pages+0x94b/0x11e0
[  445.132245][    C0]  ? populate_vma_page_range+0x290/0x290
[  445.137947][    C0]  ? read_lock_is_recursive+0x10/0x10
[  445.143447][    C0]  populate_vma_page_range+0x213/0x290
[  445.148970][    C0]  __mm_populate+0x275/0x3b0
[  445.153590][    C0]  ? check_vma_flags+0x480/0x480
[  445.158588][    C0]  ? up_write+0x1bb/0x420
[  445.162942][    C0]  vm_mmap_pgoff+0x212/0x2d0
[  445.167585][    C0]  ? account_locked_vm+0xe0/0xe0
[  445.172550][    C0]  ? __lock_acquire+0x7d10/0x7d10
[  445.177680][    C0]  ksys_mmap_pgoff+0x140/0x790
[  445.182476][    C0]  ? mmap_region+0x1650/0x1650
[  445.187279][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  445.192552][    C0]  do_syscall_64+0x4c/0xa0
[  445.197000][    C0]  ? clear_bhb_loop+0x30/0x80
[  445.201727][    C0]  ? clear_bhb_loop+0x30/0x80
[  445.206440][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  445.212399][    C0] RIP: 0033:0x7fb860491eb9
[  445.216852][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  445.236537][    C0] RSP: 002b:00007fb85e6ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  445.245030][    C0] RAX: ffffffffffffffda RBX: 00007fb86070cfa0 RCX: 00007fb860491eb9
[  445.253071][    C0] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[  445.261097][    C0] RBP: 00007fb8604ffc1f R08: ffffffffffffffff R09: 00000000b2570000
[  445.269148][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  445.277201][    C0] R13: 00007fb86070d038 R14: 00007fb86070cfa0 R15: 00007ffcf9af9468
[  445.285266][    C0]  </TASK>
[  445.288435][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  445.295738][    C0] CPU: 0 PID: 10917 Comm: syz.8.1375 Not tainted syzkaller #0
[  445.303241][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  445.313321][    C0] Call Trace:
[  445.316625][    C0]  <IRQ>
[  445.319495][    C0]  dump_stack_lvl+0x188/0x250
[  445.324260][    C0]  ? show_regs_print_info+0x20/0x20
[  445.329490][    C0]  ? load_image+0x400/0x400
[  445.334045][    C0]  panic+0x2e5/0x810
[  445.337987][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  445.342522][    C0]  ? __ieee80211_beacon_get+0x179f/0x2000
[  445.348272][    C0]  __warn+0x248/0x2b0
[  445.352289][    C0]  ? __ieee80211_beacon_get+0x179f/0x2000
[  445.358044][    C0]  report_bug+0x1b7/0x2e0
[  445.362424][    C0]  handle_bug+0x3a/0x70
[  445.366604][    C0]  exc_invalid_op+0x16/0x40
[  445.371141][    C0]  asm_exc_invalid_op+0x16/0x20
[  445.376017][    C0] RIP: 0010:__ieee80211_beacon_get+0x179f/0x2000
[  445.382378][    C0] Code: 2a f8 0f 0b 4f 89 64 2f 04 4f 89 64 2f 0c 43 c6 44 2f 14 f8 e9 19 fe ff ff e8 0d c0 2a f8 0f 0b e9 03 ef ff ff e8 01 c0 2a f8 <0f> 0b e9 76 f2 ff ff e8 15 89 6d 00 89 d9 80 e1 07 80 c1 03 38 c1
[  445.402014][    C0] RSP: 0018:ffffc900000078e0 EFLAGS: 00010246
[  445.408115][    C0] RAX: ffffffff894e5f9f RBX: ffff888016e5e298 RCX: ffff888061151dc0
[  445.416116][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  445.424125][    C0] RBP: ffffc90000007b08 R08: ffff888061151dc0 R09: 0000000000000003
[  445.432130][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff888077bcf800
[  445.440138][    C0] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff92000000f2c
[  445.448164][    C0]  ? __ieee80211_beacon_get+0x179f/0x2000
[  445.453940][    C0]  ? ieee80211_beacon_get_template+0x30/0x30
[  445.459946][    C0]  ? verify_lock_unused+0x140/0x140
[  445.465182][    C0]  ? __lock_acquire+0x13bc/0x7d10
[  445.470265][    C0]  ieee80211_beacon_get_tim+0x48/0x840
[  445.475798][    C0]  mac80211_hwsim_beacon_tx+0xf4/0x920
[  445.481296][    C0]  __iterate_interfaces+0x243/0x500
[  445.486529][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  445.492800][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  445.499075][    C0]  ieee80211_iterate_active_interfaces_atomic+0xb3/0x140
[  445.506129][    C0]  mac80211_hwsim_beacon+0x9b/0x180
[  445.511370][    C0]  ? hw_scan_work+0xed0/0xed0
[  445.516075][    C0]  __hrtimer_run_queues+0x4eb/0xb70
[  445.521333][    C0]  ? hrtimer_interrupt+0x8d0/0x8d0
[  445.526489][    C0]  hrtimer_run_softirq+0x176/0x240
[  445.531635][    C0]  handle_softirqs+0x339/0x830
[  445.536427][    C0]  ? __irq_exit_rcu+0x13b/0x230
[  445.541313][    C0]  ? do_softirq+0x210/0x210
[  445.545852][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  445.551082][    C0]  __irq_exit_rcu+0x13b/0x230
[  445.555814][    C0]  ? irq_exit_rcu+0x20/0x20
[  445.560357][    C0]  irq_exit_rcu+0x5/0x20
[  445.564621][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  445.570277][    C0]  </IRQ>
[  445.573226][    C0]  <TASK>
[  445.576308][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  445.582354][    C0] RIP: 0010:rcu_read_lock_held+0x0/0x40
[  445.587949][    C0] Code: 0e 8f e8 43 05 5a 00 eb cf 90 0f b6 05 b5 ba 25 0c c3 0f 1f 84 00 00 00 00 00 e8 eb df 00 00 e9 c6 e1 00 00 66 0f 1f 44 00 00 <53> e8 7a cf 57 08 85 c0 74 26 31 db e8 7f b2 00 00 84 c0 74 20 e8
[  445.607589][    C0] RSP: 0018:ffffc90002def6f0 EFLAGS: 00000246
[  445.613695][    C0] RAX: ffffffff819e3a5a RBX: dffffc0000000000 RCX: ffff888061151dc0
[  445.621725][    C0] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  445.629727][    C0] RBP: 0000000000000000 R08: ffffea00017016b7 R09: 1ffffd40002e02d6
[  445.637727][    C0] R10: dffffc0000000000 R11: fffff940002e02d7 R12: 1ffff920005bdf05
[  445.645881][    C0] R13: ffffc90002def828 R14: 0000000000000000 R15: ffff8880255e0370
[  445.653896][    C0]  ? xas_next_entry+0x1ea/0x3d0
[  445.658782][    C0]  xas_next_entry+0x202/0x3d0
[  445.663491][    C0]  filemap_map_pages+0xecd/0x13b0
[  445.668563][    C0]  ? filemap_read_page+0x4c0/0x4c0
[  445.673701][    C0]  ? count_memcg_event_mm+0x324/0x370
[  445.679102][    C0]  ? follow_page_pte+0x320/0xc20
[  445.684107][    C0]  handle_mm_fault+0x25bc/0x4410
[  445.689083][    C0]  ? get_page+0xe0/0xe0
[  445.693263][    C0]  ? follow_page_mask+0xa6e/0x12d0
[  445.698417][    C0]  __get_user_pages+0x94b/0x11e0
[  445.703400][    C0]  ? populate_vma_page_range+0x290/0x290
[  445.709075][    C0]  ? read_lock_is_recursive+0x10/0x10
[  445.714503][    C0]  populate_vma_page_range+0x213/0x290
[  445.720005][    C0]  __mm_populate+0x275/0x3b0
[  445.724629][    C0]  ? check_vma_flags+0x480/0x480
[  445.729604][    C0]  ? up_write+0x1bb/0x420
[  445.733968][    C0]  vm_mmap_pgoff+0x212/0x2d0
[  445.738586][    C0]  ? account_locked_vm+0xe0/0xe0
[  445.743549][    C0]  ? __lock_acquire+0x7d10/0x7d10
[  445.748636][    C0]  ksys_mmap_pgoff+0x140/0x790
[  445.753438][    C0]  ? mmap_region+0x1650/0x1650
[  445.758232][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  445.763452][    C0]  do_syscall_64+0x4c/0xa0
[  445.767888][    C0]  ? clear_bhb_loop+0x30/0x80
[  445.772602][    C0]  ? clear_bhb_loop+0x30/0x80
[  445.777375][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  445.783296][    C0] RIP: 0033:0x7fb860491eb9
[  445.787764][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  445.807394][    C0] RSP: 002b:00007fb85e6ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  445.815842][    C0] RAX: ffffffffffffffda RBX: 00007fb86070cfa0 RCX: 00007fb860491eb9
[  445.823844][    C0] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[  445.831835][    C0] RBP: 00007fb8604ffc1f R08: ffffffffffffffff R09: 00000000b2570000
[  445.839837][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  445.847834][    C0] R13: 00007fb86070d038 R14: 00007fb86070cfa0 R15: 00007ffcf9af9468
[  445.855848][    C0]  </TASK>
[  445.859217][    C0] Kernel Offset: disabled
[  445.863569][    C0] Rebooting in 86400 seconds..