last executing test programs:

35.745454901s ago: executing program 3 (id=329):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000002640)=""/4107, 0x100b, 0x535)
bind$bt_hci(r0, &(0x7f0000000000)={0x27}, 0x74)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r7=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00', <r8=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r5, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x24, r6, 0x331, 0x70bd2a, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r8}]}, 0x24}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x3, 0x1b, 0x0, 0x0)

30.044789867s ago: executing program 3 (id=337):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, &(0x7f0000000040)='}\x00')
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x20002, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000500)={[{0x5, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x0, 0x5}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x4, 0x0, 0x0, 0x0, 0x800000000000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5}]})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, 0x0)
syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x800, &(0x7f0000000300)=ANY=[], 0x1, 0x1cf, &(0x7f0000000780)="$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")
syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000440)=ANY=[@ANYBLOB='errors=remount-ro,keep_last_dots,gid=', @ANYRESHEX=0x0, @ANYBLOB=',sys_tz,iocharset=cp949,errors=remount-ro,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c646d61736b3d30303030303030303030303030303030303030303030302c696f636861727365743d69736f383835592d392c646973636172642c756d9856ae04035d8955b8c8c761736b3d3030303030303030303030303030"], 0x1, 0x1529, &(0x7f0000001ac0)="$eJzs3AucTtX6OPDnWWvtMSbpbZLLsNZ6Nm8SyyRJLklySZIkSXJLSJrkSEJiyC1pSEKuQ3IZQnKLSeN+v18SkqRJkpDckvX/CH91qt/p/E6/43zOPN/PZ3+sZ9Z+1n7e93kve2/MNx0GVq1frVJdIoJ/CV74IxkAYgGgLwBcAwABAJSKLxV/fj67xOR/7SDsr/Vw2pWugF1J3P+sjfuftXH/szbuf9bG/c/auP9ZG/c/a+P+M5aVbZyS71resu7G9///+9X+wxn+/v8vkll81Beri1/fESDmz6Zw/7M27v9/reDP7MT9z9q4/1lV7JUugP0H4Pd/VpDtD2e4/1kb95+xrOxK33++0htEsvZzcKVff4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGsoZT/jIFAJfGV7ouxhhjjDHGGGOM/XV8titdAWOMMcYYY4wxxv7vIQiQoCCAGMgGsZAd4kAAwNWQE66BCFwL8XAd5ILrITfkgbyQDxIgPxQADQYsEIRQEApBFG6AwnAjFIGboCgUAwfFIRFuhhJwC5SEW6EU3Aal4XYoA2WhHJSHO6AC3AkV4S6oBHdDZagCVaEa3APV4V6oAfdBTbgfasEDUBsehDrwENSFh6EePAL14VFoAI9BQ2gEjaEJNP1f5b8IXeAl6ArdIBm6Qw94GXpCL+gNfaAvvAL94FXoD69BCgyAgfA6DII3YDC8CUNgKAyDt2A4jICRMApGwxhIhbEwDt6G8fAOTICJMAkmQxpMganwLkyD6TAD3oOZ8D7MgtkwB+bCPPgA5sMCSIcPYSF8BBmwCBbDElgKy2A5rICVsApWwxpYC+tgPWyAjbAJNsMW2ArbYDt8DDvgE9gJu2A3fAp74LN/Mv/k3+V3REBAgQIVKozBGIzFWIzDOMyBOTAn5sQIRjAe4zEX5sLcmBvzYl5MwAQsgAXQoEFCwoJYEKMYxcJYGItgESyKRdGhw0RMxBJ4C5bEklgKS2FpLI1lsCyWxfJYHitgBayIFbESVsLKWBmrYlW8B+/B7lgDa2BNrIm1sNal21NYF+tiPayH9bE+NsAG2BAbYmNsjE2xKTbDZtgcm2NLbImtsBW2xtaYhEnYBttgW2yL7bAdtsf22AE7YEfshJ0yX8wG+BK+hN2wsuiOPbAH9sSUbL2xD/bBV7Afvoqv4muYggNwIL6Or+MbOBhP4BAcisNwGFYQI3AkjkISYzAVU3EcjsPxOB4n4ESciJMxDafgVJyK03A6Tsf3cCa+j+/jbJyNc3EezsP5uADTMR0X4knMwEW4GJfgUlyGS3EFrsQVuBrX4Gpch+twA27ATbgJt+AW3Ibb8GNUAPgJ7sJdmIJ7cA/uxb24D/fhftyPmZiJB/AAHsSDeAgP4WE8jEfwKB7Do3gcj+MJPImn8BSewTN4Fp9P+KrexzetSgFxnhJKxIgYEStiRZyIEzlEDpFT5BQRERHxIl7kErlEbpFb5BV5RYJIEAVEAWGEESTCGAAQUREVhUVhUUQUEUVFUeGEE4kiUZQQJURJUVKUEreJ0uJ2UUaUFS1ceVFeVBAtXUVxl6gkKonKooqoKqqJaqK6qC5qiBqipqgpaolaorZ4UNQR3bE3PizOd6a+GIANxEBsKBoJefETrJkYjM1FC9FSPCmG4hBsLZq5JPGMaCNGYlvxNzEKnxPtxRjsIF4QHUUn0Vm8KLqI5q6r6CYmYHfRQ0zGnqKX6C36iGlYRbyHM7NXFa+JFDFADBSvi7n4hhgs3hRDxFAxTLwlhosRYqQYJUaLMSJVjBXjxNtivHhHTBATxSQxWaSJKWKqeFdME9PFDPGemCneF7PEbDFHzBXzxAdivlgg0sWHYqH4SGSIRWKxWCKWimViuVghVopVYrVYI9aKdWK92CA2ik1is9gitoptYrv4WOwQn4idYpfYLT4Ve8RnYq/4XOwTX4j94kuRKb4SB8TX4qD4RhwS34rD4jtxRBwVx8T34rj4QZwQJ8UpcVqcET+Ks+IncU54ARKlkFIqGcgYmU3GyuwyTl4lc8jg4rN7rYyX18lc8nqZW+aReWU+mSDzywJSSyOtJBnKgrKQjMobZGF5oywib5JFZTHpZHGZKG+WJeQtsqS8VZaSt8nS8nZZRpaV5WR5eYesIO+UELlwjMqyiqwqq8l7ZDLcK2vI+2RNeb+sJR+QteWDso58SNaVD8t68hFZXz4qG8jHZEPZSDaWTWRT+bhsJp+QzWUL2VI+KVvJp2Rr+bRMks/INtJffIk8J9vL52UH+YLsKDvJzvIneU562VV2k9AdZA/5suwpe8neso/sK1+R/eSrsr98TabIAXKgfF0Okm/IwfJNOUQOlcPkW3K4HCFHylFytBwjU+VYOU6+LcfLd+QEOVFOkpNlmpwie19caYaU/zD/7d/J7//z0TfIjXKT3Cy3yK1ym9wuP5Y75A65U+6Uu+VuuUfukXvlXrlP7pP75X6ZKTPlAXlAHpQH5SF5SB6Wh+UReVSelt/L4/IHeUKelCflaXlGnpFnLz4HoFAJJZVSgYpR2VSsyq7i1FUqh7pa5VTXqIi6VsWr61Qudb3KrfKovCqfSlD5VQGllVFWkQpVQVVIRdUNePEFo4qqYsqp4ipR3fzP5KvC6kZVRN30q/xL9SX/QX1NVVPVTDVTzVVz1VK1VK1UK9VatVZJKkm1UW1UW9VWtVPtVHvVXnVQHVRH1VF1Vp1VF9VFdVVdVbJKVj3Uy6qn6qV6qz6qr3pF9VP9VH/VX6WoFDVQDVSD1CA1WA1WQ9QQNUwNU8PVcDVSjVSj1WiVqlLVODVOjVfj1QQ1QU1Sk1SaSlNT1VQ1TU1TM9QMNVPNVLPULDVHzVHz1Dw1X81X6SpdLVQLVYZapBapJWqJWqaWqRVqhVqlVqk1ao1ap9apDLVRbVSb1Wa1VW1V29V2tUPtUDvVTrVb7VZ71B61V+1V+9Q+tV/tV5kqUx1QB9RBdVAdUofUYXVYHVFH1DF1TB1Xx9UJdUKdUqfUGXVGnVVn1Tl17vxpXyACEahABTFBTBAbxAZxQVyQI8gR5AxyBpEgEsQH8UGu4Pogd5AnyBvkCxKC/EGBQAcmsIG42PRocENQOLgxKBLcFBQNigUuKB4kBjcHJYJbgpLBrUGp4LagdHB7UCYoG5QLygd3BBWCO4OKwV1BpeDuoHJQJagaVAvuCaoH9wY1gvuCmsH9Qa3ggaB28GBQJ3goqBs8HNQLHgnqB48GDYLHgoZBo6Bx0CRo+peu7/2JPE+4rrqbTtbddQ/9su6pe+neuo/uq1/R/fSrur9+TafoAXqgfl0P0m/owfpNPUQP1cP0W3q4HqFH6lF6tB6jU/VYPU6/rcfrd/QEPVFP0pN1mp6ip+p39TQ9Xc/Q7+mZ+n09S8/Wc/RcPU9/oOfrBTpdf6gX6o90hl6kF+sleqleppfrFXqlXqVX6zV6rV6n1+sNeqPepDfrLXqr3qa364/1Dv2J3ql36d36U71Hf6b36s/1Pv2F3q+/1Jn6K31Af60P6m/0If2tPqy/00f0UX1Mf6+P6x/0CX1Sn9Kn9Rn9oz6rf9LntD9/cn/+690oo0yMiTGxJtbEmTiTw+QwOU1OEzERE2/iTS6Ty+Q2uU1ek9ckmARTwBQw55EhU9AUNFETNYVNYVPEFDFFTVHjjDOJJtGUMCVMSVPSlDKlTGlT2pQxZUw5U87cYe4wd5o7zV3mLnO3udtUMVVMNVPNVDfVTQ1Tw9Q0NU0tU8vUNrVNHVPH1DV1TT1Tz9Q39U0D08A0NA1NY9PYNDVNTTPTzDQ3zU1L09K0Mq1Ma9PaJJkk08a0MW1NW9POtDPtTXvTwXQwHU1H09l0Nl1MF9PVdDXJJtn0MD1MT9PT9Da9TYzpa/qZfqa/6W9STIoZaAaaQWaQGWwGmyFmqBl2/kTVjDAjzSgz2owxqSbVjDPjzHgz3kwwE8wkM8mkmTQz1Uw108w0M8PMMDPNTDPLzDJzzBwzz8wz8818k27SzUKz0GSYDLPYLDZLzVKz3Cw3K81Ks9qsNmthrVlv1puNZqPZbDabrWar2W62mx1mh9lpdprdZrfZY/aYvWav2Wf2mf1mv8k0meaAOWAOmoPmkDlkDpvD5og5Yo6ZY+a4OW5OmBPmlDllzpg8F78vvYm12W2cvcrmsFfbnPYa+/dxXpvPJtj8toDVNrfN86vYWGuL2JtsUVvMOlvcJtqbfxOXsWVtOVve3mEr2Dttxd/E1e29toa9z9a099tq9p5fxbXsA7a2fdTWQQSwjWw928TWt4/aBvYx29A2so1tE9vKPmVb26dtkn3GtrHP/iaebxfYlXaVXW3X2J12lz1lT9uD9ht7xv5ou9putq99xfazr9r+9jWbYgf8Jh5m37LD7Qg70o6yo+2Y38ST7GSbZqfYqfZdO81O/008z35gZ9p0O8vOtnPs3J/j8zWl2w/tQvuRzbABLLZL7FK7zC63K/5/rUvsOrvebrA77Cd2s91it9ptdvulE2G7y+62n9o99jN7wH5t99kv7H57yGbar36Ozz++Q/Zbe9h+Z4/Yo/aY/d4etz+on3NH9ASwP9rv7U/2nPUWCAlIkqKAYigbxVJ2iqOrKAddTTnpGorQtRRP11Euup5yUx7KS/kogfJTAdJkyBJRSAWpEEXpBrpUXlEqRo6KUyLdTCXoFipJt1Ipuo1K0+1UhspSOSpPd1AFupMq0l1Uie6mylSFqlI1uoeq071Ug+6jmnQ/1aIHqDY9SHXoIapLD1M9eoTq06PUgB6jhtSIGlMTakqPUzN6gppTC2pJT1Ireopa09OURM9QG3qW2tLfqB09R+3peepAL1BH6kSd6UXqQi9RV+pGydSdetDL1JN6UW/qQ33pFepHr1J/eo1SaAANpNdpEL1Bg+lNGkJDaRi9RcNpBI2kUTSaxlAqjaVx9DaNp3doAk2kSTSZ0mgKTaV3aRpNpxn0Hs2k92kWzaY5NJfm0Qc0nxZQOn1IC+kjyqBFtJiW0FJaRstpBa2kVbSa1tBaWkfraQNtpE20mbbQVtpG2+lj2kGf0E7aRbvpU9pDn9Fe+pz20Re0n76kTPqKDtDXdJC+oUP0re9G39EROkrH6Hs6Tj/QCTpJp+g0naEf6Sz9ROfIE4QYilCGKgzCmDBbGBtmD+PCq8Ic4dVhzvCaMBJeG8aH14W5wuvD3GGeMG+YL0wI84cFQh2a0IYUhmHBsFAYDW8IC4c3hkVCDIuGxUIXFg8Tw5vDEuEtYcnw1rBUeFtYOrw9LBOWDR+9v3x4R1ghvDOsGN4VVgrvDiuHVcKqYbXwnrB6eG9YI7wvrBneH5YMHwhrhw+GdcKHwrrhw2G98JGwfvho2CB8LGwYNgobh03CpuHjYbPwibB52CJsGT4ZtgqfCluHT4dJ4TNhm/DZn+cfWPDH88lh97BH+HL4cuj9fXJOdG50XvSD6Pzogmh69MPowuhH0Yzoouji6JLo0uiy6PLoiujK6Kro6uia6Nrouuj66Iao99WygUMnnHTKBS7GZXOxLruLc1e5HO5ql9Nd4yLuWhfvrnO53PUut8vj8rp8LsHldwWcdsZZRy50BV0hF3U3uMLuRlfE3eSKumLOueIu0TVxTV1T18w94Zq7Fq6le9I96Z5yT7mn3dPuGdfGPevaur+5du4519497553L7iOrpPr7F50XdzYnBfek8muh+vherqerrfr7fq6vq6f6+f6u/4uxaW4gW6gG+QGucFusBvihrhhbpgb7oa7kW6kG+1Gu1SX6sa5cW68Gu8muAlukpvk0lyam+qmumlumqsw/cJRZrlZbo6b4+a5eW6+O3/OmO4WuoUuw2W4xW6xW+qWuuVuuVvpVrrVbrVb69a69W692+g2us1us9vqtrrtbrvb4Xa4nf6aC4u6PW6v2+v2uX1uv/vSZbqv3AH3tTvovnGH3LfusPvOHXFH3TH3vTvufnAn3El3yp12Z9yP7qz7yZ1z3qVGxkbGRd6OjI+8E5kQmRiZFJkcSYtMiUyNvBuZFpkemRF5LzIz8n5kVmR2ZE5kbmRe5IPI/MiCSHrkw8jCyEeRjMiiyOLIksjSyLKI9/k3h76gL+Sj/gZf2N/oi/ibfFFfzDtf3Cf6m30Jf4sv6W/1pfxtvrS/3ZfxZX05/5hv6Bv5xr6Jb+of9838E765b+Fb+id9K/+Ub+2f9kn+Gd/GP+vb+r/5dv45394/7zv4F3xH38l39i/6Lv4l39V388m+u+/hX/Y9fS/f2/fxff0rvp9/1ff3r/kUP8AP9K/7Qf4NP9i/6Yf4oX5YzFt++KVLZBjjU/1YP86/7cf7d/wEP9FP8pN9mp/ip/p3/TQ/3c/w7/mZ/n0/y8/2c/xcBP+Bn+8X+HT/oV/oP/IZftGlm8p+uV/hV/pVfrVf49f6dX693+A3+k1+s9/it/ptfrv/2O/wn/idfpff7T/1e/xnfq//3O/zX/j9/kuf6b/yB/zX/qD/xh/y3/rD/jt/xB/1x/z3/rj/wZ/wJ/0pf9qf8T/6s/4nf47/zxpjjDHG2J8y9vJQ/Hrmwu387r+TI36xcw8AuHpLvsxfzp8/o1yb+8K4l0hoFQGAZ7p1ePjSVrlycnLyxX0zJASFZgNc+pug82LgcrwIWsJTkAQtoMTv1t9LdDpD/2D96G0Acb/IiYXL8eX1PwfA5N9Z//Enh80vHZ6K/x/Wnw1QpNDlnOxwOV4ELX++v9ICSv5B/Xma/bL+2N+un/2LVIDmv8jJAZfjy/UnwhPwLCT9ak/GGGOMMcYYY+yCXqJcu0vXn5f+xefvXZ8nqMs52eBy/I+uzxljjDHGGGOMMXblPdep89OPJyW1aPfPDyr+r7L+9KAB/F+tzIPfHXgPcOknCgD+xQUBzg/kv/NRbPq3HCvl4lvn76eWnvYB/Ge08q8YXOEPJsYYY4wxxthf7vJJ/69/rq5UQYwxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGWBb07/h1Ylf6MTLGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGNX2v8LAAD//5t8AKI=")
mkdir(0x0, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
chdir(&(0x7f00000010c0)='./bus\x00')
truncate(&(0x7f00000001c0)='./file2\x00', 0xaeb3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000009)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000002200), r0)
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000002240)={0x20, r2, 0xd61, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x200c051}, 0x2)

26.330126763s ago: executing program 3 (id=341):
socket$inet6(0xa, 0x80002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x20002, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{0x0}, {0x0}], 0x2)
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2210408, &(0x7f00000005c0)=ANY=[@ANYBLOB='codepage=874,nodots,dots,tz=UTC,dots,nodots,codepage=862,dots,dots,check=strict,allow_utime=000000000000000000001,sys_immutable,nodots,nfs,quiet,dots,nodots,nodots,debug,usefree,tz=UTC,flush,nodots,\x00'], 0xfd, 0x1bf, &(0x7f0000000940)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0x92b1a8a02eb55023, 0x0, 0x0, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='./bus\x00')
pipe2$9p(0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
ioctl$SNDRV_PCM_IOCTL_XRUN(r3, 0xc0984124, 0x1000000000000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_int(r6, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
sendmmsg$inet6(r6, 0x0, 0x0, 0x0)

24.521023471s ago: executing program 3 (id=344):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000002640)={0x14, 0x38, 0x1, 0x70bd2c, 0x25dfdbff, {0xc}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0xc804)

24.083240446s ago: executing program 3 (id=346):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x5e0, 0x0, &(0x7f0000000200)={0x11, 0x88a8, r1, 0x1, 0x7, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_io_uring_submit(0x0, 0x0, 0x0)
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x810000, &(0x7f0000000280)=ANY=[@ANYBLOB="6a6f75726e616c5f7472616e73616374696f6e5f6e616d65732c62747265655f6e6f64655f0dcbcc28b5ef6f8b2c6a6f75726e616c5f666c7573685f64697361626c65642c6673636b2c6a6f75726e616c5f666c7573685f64697361626c65642c726174656c696d69745f6572726f72732c7265636f766572795f706173735f6c6173743d7365745f6d61795f676f5f72772c7265636f6e7374727563745f616c6c6f632c6e6f5f646174615f696f2c00"], 0x1, 0x5903, &(0x7f00000043c0)="$eJzs3W2QXFXdIPBzu3synZm8TAJIBJkMgSiCmglvhS+l0fWtAKlYWErYKAxkgtEkpJJBIKAEF1wowEJLS1E/oIXUotGiClaJlMjLJqyiFKtLbSG1uot+8CnkISWQh7J8nKdm+p5Oz52+c3t6ekICv18lc/ucvv0/5957+vb9n+6ZDgAAALwm7Ll+275zjvrAr744/NI1H/7ZpmtDb3m8vhpX6EuXV7xSPeRA6q4sGV9mx8WbrvrBnwcuft8v7+75/su71x27/vfvP+zi+z9z5q7bvv3Qi/Pv/eczRXHjeDpxfzl5Lgmh+vO9X//S7seOHKtLQgjlpG9HCIuSxQ8tSjIhBv8eQliXFpZk7rznpVPWjy2vval7Qv3CzHrG+2tbNR1n2/ddflL4w3vXXPebpT/+UdfOZ3fsXyWpNoynEBZc2Pj4rhDC3PT/mDja4niMg3Z1CKGn4XFnFPTruBb7vyKnfHS6nJMuewvixPuXZcqlzHrZctSVWfYUtDdTef1od70i8zLl7MlopvL6GesXpcufpssTpxm/HP8noZSESr37G5P9YyQ0HLckJOPHslovl+rHNqTbnyknmXIpUy53ZbZrvN10oJWTZGJ9XC9TH0/HlbT+2MZzdRPn5tS/Pl1W0yfqy7EcsjdqeifdqG/XuNivvVP05UAoNZyDmtXXD3x6MHrTut5k8aTHjDYR79u95ubl5bUP7+nL6Udyd5LGT9qKv/3Xi+Z96oc3XpZ9Xa/Hv7CUxi+1Ff+PZz3+/Pk3fu9bufFvjfHLbcU/+YGe58565Ppluftnb9w/lbbiDz3z6C1LD79oZ27/b4/xq23FX7Xr8e75+x54MLf/g3H/zG0r/tPv/OCf7nryvmdz44cYv6et+Gt3bflyd/++E3LjPxj3T2974+eFnac/1d//l4G8+E/E+PPbin/njtveccfCm87MPb6r4/7payv+2cfff928ffcdk3fuTG7v1CsnwGvTYek11g1pud08c6Ya8oVvDlRq13zz0v/zO9lQ5uJzrJ0FnYwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACGEI076nx/6/x/ve66SlrvTG0+XastYPyeEZG4IYdvI0NaRDZsvGfjMpZdt3Ty0cWBoZGB488jWKwdOfcvA1uEtG4euHLt38K2n1B63OCS1ZXLMpLa7R0dHS30T62J7/+n4nX9Yfsa//DWEwSN+11/J7f+K2zbdcXiTnxnJqtH3bLrsnN+d9t10u/rSfvU16dfo6OhoyOnXv573jzu+uvfPJ4Qw+Lqp+vXo0+/+xYQOjVfsj5MqdYdah7qTnqb9qPc67U/cX5X1GzYOD069f8ceX87Zjv981bN/X3/FV/5R27/V3O1ocf/OXTW6sfSNNWf/+zeurlUU9euVOu5F+ztuRexf3H/VdH8vSLdrQc52VXK26/rfPPjkz4+68cUdYbDywtLJbRdtV1c6ALqS17fUbmyhJ1k0ob6arh+PeHzcipFNW1Zsu3L7WzdsGrpk+JLhzW9feerK0wdPO/20FeNbvqLD2x/bf2OL239gxtPCz+34afzZ2ngq6lfR/hjrV/H+aOxR3vOv59wvfe3ttz1yTq2iaJzHtevnk3TZM3acV4aG8TZ5XzXbrqL9EEIYaLYfnn/xzHDk/9lwXdF5qPHINP7MSFaNPrbsb9894ztL3lWrOCDn+cYOtXmer/d6f3/G91c1PR6jB+n+7Q7ldLt6m/Zr5WOPdN2856+fr/dvzpxwxdDIyNaVtZ/z0p7OS45u2q9sbdyupeM/yyHdLaE+TJuM1zFdoda/7Pkzrp7dq73pfb3J4qbblRXv273m5uXltQ/vydvTyd21FueG+bVl8oacNTdmHliud7hZ+wfr869ofPR/6Dv3fvzen5w6aXycXPtZtF1Jznb9+Mk7v/b9r/zXn3Ruuz707sf7/vZ/P728VnGonFfqvU77kzSeV04Ooej5tzQ0347c51+p+fYUPf+y7exfv3m8gUy5N5Tber6e/EDPc2c9cv2y3Ofr3lafr1dPKJULnq8Hy/jJPr+SysR+zN7za8JASVaN/vKGw3Y8dM3qo2oVReO6vnazcX1KC/lHznb94vyn+i8d+C//u3PnjR+85Z4Lfj+06gu1ivaPe+xLZ457Nd2/1Zz9W+91zDsb9+/bLr5047pa/cF7/ZsuC/KfeCrZduX2zw5t3Di8dVtr29Xq62lsJ7uX2309jWe3xQXbVZq0XbN3o5X91erzLfZ/Xdv7a+LzrTckbb0ubP/1onmf+uGNl/VNelTa0IWlNH6prfh/POvx58+/8Xvfyo1/a4xfaSv+0DOP3rL08It25sa/PUnjV9uKv2rX493z9z3wYG78wdj/uW3Ff/qdH/zTXU/e92xu/BDj97a3/1/YefpT/f1/yY3/RJK2M3aNFMI9L52yvlZOQlf6fIv96JrQr5AtJ5lyKVMuN5ZLtbnWegPlJJlYH9dL649t6Eszn8ipj1dh1SW15cuxHLI3pq4/2JQazv3N6ouuUwEAXu3i+//xGjS+/z+cXijlzzTAfjPNw5bkxI152P75nDkT7l+Sxo+Pj/OA/W8Lg2PLawdqF/rTfR8hPh+y85yxnROOmxij3XnOovn3ZZly7FdtvrzSkIemJuc1ldDC/Pvkdqaef89sfvH8+MANk7o10DBvlT1+XemMWbPPO2T6WxmLkDc+svNi8fMc/QvC6vH2Whwf2c/RxOOQ/RxNbOeozImz3c/RzHR8xG5PMT7Gu1z8/sbk4xem2L/7j1/zaNnjN43jXR1bf7bfn+3AvGHTU9qBmzec3ffDzEvmxE+fYAf7vGGsj9tRaXE+8eM59Z2aT4yni9ivvVP05UAwnwi8WsX8P75GjOX/Yxfg/5ZZr+g6NHvVGOPlfk6o3Lw/RXnH5M/p9bT1Or5215Yvd/fvOyH3OufBVj/3s2VCqafgcz9F+3F5ply4H3MmaIryvWw7Rfs9+7mM3jC/rf1+547b3nHHwpvOzN3vq2svpMX7/WsTSvML9vshkC80jy9feE3kC7M9f/aK5SPpB59mKx/5WE79dPORnkk36ts17pDLR7oObL8AgENHzP/r75+l+f//iyuk1xFFeeuJmXKMl5u35lyf5OWtH0mXV2TW701/o2K6181nH3//dfP23XdMbt5ye6t56H+bUOorzENnljfn5hGrO/N58dw8op5nzSxPzO1/PU+cWZ6eG7+ep88sj87dP/U8embzALnx6/MAh3qeWzBfl2ksFludr3vV5tHpr8/OVh59bk79dPPo3kk36ts1Th4NAPDKivl/vIyL+f8jmfVm+j57bl7Qoev27N8Dqcd/4kDllbOd98123jrbef1sz0sc6nnxbM8Lze482Ws+L04blRcDAHAwi/n/3LScn//PLD9plr91TchP5OdN48vPD5L8/FCf/5L/e1+8mPwfAODVLeb/8dce49//+x9pOft36+XpOfHl6fL0qcZPy3l65+fZgs8BvLLzAHP3r28eAACAV0LXeKY0+ffsP5kus79nn/d7+efnrN+qSnp5fNHI1uHhCy7bsm5oZPiCzZeuG952weVbN4yMDG+urTfTvDE3b0nzxq5QSfdH8/WyedvC9O8hLMz5ewjZ9WPYo8dvTP57CNlm5xb8HYH9x6+1/uYdv9IU6zcbH3nHOy/+J3LWj+rH/+JPn3zB+m0XbNi8YWTD0MYN24cnrjeWtfZM43sz426Z1velZn5MUpr+93d2ph+lSf3oSvdH3vezJ5l+LEp7sijv+w9y+v2r//XVzx0/+o+7Qhg8ovyGGe2/ZNXofz9v+CMje363Zaz/pSn7X18z7VfR95Vm14/bU9l46baRk9Zfetnm7DdKtifOZ5Tq5Vmaz0if/uUW5yfW5tRP93MK5Uk3Dk4tz08AADBBfP8/Xs/G9w+/kl5AxfrW8/SZvX+cm6cPtpanZ7+XrChPz64ft7fVPL06wzw9235Rnt5s/WZ5el7enRf/YznrT1fr42Rmn/PIHScXtjZOst9nUDROsutPd5wkMxwn2faLxkmz9ZuNk7zjnhf/oznr52l9PMzsczm54+HW1sbDmzPlovGQXX+646E0w/GQbb9oPDRbv9l4yDu+efHPyVm/VRPHx9jAGB8XwxdcfunWzzasN9vffzHz/s3u93+0q/X+z+7nvma//7P7ubLZ7//MPleW2/8nZjYT1nr/Z/f7Xdp1wOZr0w+bFX3+rGged01O/XTncedMunFwMo8Lr5yY/8e3e2L+f1O67PTbQIf+96T5HrOm8Tv0PWZF1zFez6do7CDg9RwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgNd2VJePLPddv23fOUR/41ReHX7rmwz/bdO2brvrBnwcuft8v7+75/su71x27/vfvP+zi+z9z5q7bvv3Qi/Pv/eczhYH7xn9WTkyL1RCS55IQqj/f+/Uv7X7syLG6JIRQTvp2hLAoWfzQoiQTYfDvIYR19X5OvPOel05ZP7a89qbuCfULM0Gy2xV6y7E/jf0M4YrCLeIQVE3H2fZ9l58U/vDeNdf9ZumPf9S189kd+1dJqg3jKYQFFzY+viuEMDf9PyaOtiXxwelydQihp+FxZxT067gW+78ip3x0upyTLnsL4sT7l2XKpcx62XLUlVn2FLQ3U3n9aHe9IvMy5ezJaKby+hnrF6XLn6bLE6cZvxz/J6GUhEq9+xuT/WMkNBy3JCTjx7JaL5fqxzak258pJ5lyKVMud2W2a7zddKCVk2RifVwvUx9Px5W0/tjGc3UT5+bUvz5dVtMn6suxHLI3anon3ahv17jYr71T9OVAKDWcg5rV1w98ejB607reZPGkx4w2Ee/bvebm5eW1D+/py+lHcneSxk/air/914vmfeqHN162JC/+haU0fqmt+H886/Hnz7/xe9/KjX9rjF9uK/7JD/Q8d9Yj1y/L3T974/6ptBV/6JlHb1l6+EU7c/t/e4xfbSv+ql2Pd8/f98CDuf0fjPtnblvxn37nB/9015P3PZsbP8T4PW3FX7try5e7+/edkBv/wbh/etsbPy/sPP2p/v6/DOTFfyLGn99W/Dt33PaOOxbedGbu8V0d909fW/HPPv7+6+btu++YvHNncnunXjkBXpsOS6+xbkjL7eaZM9WQL3xzoFK75puX/p/fyYYyxtpZMIvxAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4dfrt1ad+8rz3fHRNJQkhyVlntIl4X3nOqlUDbbQ79Myjtyw9/KKdjXVL2ogDAAAAFIt5eKleUw1LwuXJ3HB00/XjHMHRsZRMrM/OIcQ42TmCduOUOhSn3KE4lQ7F6epQnDkditPdoTjVgjjV0FqcuVPEqYyNihb70zNlf1qP09uhOPM6FGd+h+Is6FCchR2K0zdlnNbH4aIOxVncoTiHdSjO4R2Kc0SH4ryuQ3GO7FCc7JzydMfh/HTNo/LijN8oF8apJOX6Hc3m049M2zlmhu30FrQzv+j1uMV25rbYznGZx5Wm2U61xXbeOMN2khbbefMM2ykVtBPH7RXZ/sV2YqnF8X9lh+Js71CcqzoU5+oOxfl8h+J8oUNxrplhHIBWxfx/f77XF7or7wo96RknOwsQ892l4z8nv97lnZBivDdk6ucUxcsm6pl4S6fbv+wEQibeskx914R4lXo+MkW8amO85Zk7C7c3O6GQ6d+JmfruonjZiQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmEW/vfrUT573no+uCUkY+9fUaBPxvvKcVasG2mh395qbl5fXPrynsa670kYgAAAAoFDMw7vqNdXQXVkZupM5E9arpvMA1bRc7qst+xeE1WPLZKA0Xu5JFk35uEr6uBUjm7as2Hbl9rdu2DR0yfAlw5vfvvLUlacPnnb6aSvWb9g4PFj7GUJ3QbwQwvj0w7Yrt392aOPG4a3bapXZ/i9JH7ckLSfp4/rfFgbHltem/V9c0F5pUnuzd6P46AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/Brt2FyHnVfwA/z8zszHTb/LN/+jYNzWbIS4laNIlbSbV0HxAstEnIUpDZ6lqCTbC4aUKblFjHNmBbExShJRAiuTASi63Fm77YIvaFQKRGA24M0hbthV4orVbSkgtJGcnunNmZ2ZnMOpamjZ/PxTwz5/zO+T1nLha+zw4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDBmqqOTFRGx8YHkxCSLjW1DuJcNp+m5T76fvn57d8vDJ9e2TxWyPWxEQAAANBTzOEDjZFiKOSyIRuumv60NDRNhNncDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/O+Zqo5MVEbHxi9OQki61NQ6iHPZfJqW++j7xjtPfubV4eG/No+V+tgHAAAA6C3m8ExjpBhKYVkYSK5qqYvPBha1rW+vi/ssnmdd+7ODbnXL5ll3zTzrPtajbkP9uisAAADAR1/M/7nGyFAo5BZ0zf+9cn2sW9JWl61f+/mtAAAAAPDfifm/0BgphUKu1Mjr8837S9vq4vpe/7eP61d0Wd/r//nr61f/pwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAj46p6shEZXRsPJuEkHSpqXUQ57L5NC330XfNC4N/v+XIQ0ubxwq5PjYCAAAAeoo5fDZ6F0MhNxgGwsXTuX/4poNPf/HpZ0dCCDMxP58Puzbt2HH3mpnXWLf62JGB7x1961tz6lbPvJ63AwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO+bqerIRGV0bPyiJISkS02tgziXzadpuY++r3/uC39+/ORzbzaPlfrYBwAAAOgt5vDZ7F8MpZAP+XDF9KfmrH9Wpm19t2cGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwIXjnm/c9/VNk5Ob7/bGG2+8abw533+ZAACA99uSkITaf+jKjef7rgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgA+DqerIRGV0bLyYhJB0qal1EOey+TQt99E3ff54YcHpF15qHiv1sQ8AAADQW8zhs9m/GEphIAyEy6c/dXomMJ3/hz7AmwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+VKaqIxOV0bHxBUkISZeaWgdxLptP03IffR/bfeCzhxd+9+bmsUKuj40AAACAnmIOzzdGiqGQ+3gohKvrnydbFyTZ+rXzc4HZddtblg3Oe121ZV123uv2tJ0sVz/NzLpi3G9o5tpYV567rty0rhQa7cst68K+llULetxnAAAAgPMo5v9CY2QoFHKFppz7k5b6ITkXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOhiqjoyURkdG0+SEJIuNbUO4lw2n6blPvre95v/v+QrP927s3ms1Mc+AAAAQG8xh89m/2IohcXh/8Li6dwfhlrrY90/KmcOP/rPv6wMYdUVJ4Zz7dv+ML751es3vtj+EkKmtToTwsJ6v6RLv1//7tF7l9fOPB7CqsuzV8/pF87dr3XLtPZMZfP6HUdPbO/x5QAAAMAFIub/gcbIUCjk7uqa/2Py7pH/G6YD+MJ7d//8svprPZG3rcgM1ftluvT7/PIn/7Ri7d/eOpv/z9XvUwe2Hr6speHMSJskrY1u3bnhxHWHMvHUM/2zbf3j9/Klb775ry27Hjkz078YivXxRblO/ee+trkorU1m9o+ve29/tbV/rsv5H/rtSyd/uWjvu2f7v7NksNH/mnOc/9z9B299eN/1B45saO0fQih36v/2uzeHK/9w54Pt5x9s27j5m29+bZOktWNLTx1ae7B0Q2v/pK1//P5/dvKxfT9+5DvPxv7xtyIrl823f6at/yt7Lt398gMbF7X2z3Q5/4u3vTq8rfzt37ef/46WXXNd72Lu+Z+49qnbX9uU3t8+BQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcGGZqo5MVEbHxjNJCEmXmloHcS6bT9NyH33fuOX427ft/dEPmsdKfewDAAAA9BZz+Gz2L4ZSyId8GJzO/c9UNq/fcfTE9jA0M5vUr7nJbffs+MSWbTvvuuM83TkAAAAwXzH/5xojQ6GQWx4G6vl/dOvODSeuO5SJ+T8T8/+WOyc3rwqNulf2XLr75Qc2Lmo8Jwhh+mcBxbN1n56tu+nG40On/vi1FR3r1szWHVt66tDag6UbYl1orlsdGs8nnrj2qdtf25Te37i/5rpPfnXbZP3xRNx38NaH911/4MiGxjnq18H6vrFuMrN/fN17+6uxLlu/FuvnBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADmmqqOTFRGx8ZDNoSkS02tgziXzadpuY++65b/4sFLTj+3uHmskOtjIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAf7MDBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWF/foJjaPs4wD+PLvJm202aZP2BaNimlZFqQeLgoheVFSkFSl4qhSptvYgCoKIUg+m0oqlKl4Eq5ciKqhRCgo2FkurpOK/4sWDCgrVg1CKAe1SPKhk95ntZrrj6qQK6ucDw5PnmZnv/GaeZ2ezAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/KMM9I0128M77m/ccs4NHz1614lHbnrn3m0XPfzqdxObrvtw7+BLJ2c2r9jy5fXLNu2/e8307ucP/TT81i9HewY/1GpWpW4thHg8hlB7d/aZx2Y+PmtuLIYQqnFkMoTRuPTQaMwlrP45hLC5Xef8nW+euHzLXLtt18C88SW5kPx9hXo1q6dlZH69/LvU0jrb2njwkvD1teu3f7r8jdf7p45Nnjok1jrWUwiLN3ae3x9CWJS2OdlqG8tOTu26EMJgx3lX9qjr/D9Y/6UF/XNT+7/U1nvkZPtX5vqV3HH5fqY/1w72uN5CFdVR9rhehnL9/MtooYrqzMZHU/t2alf9yfxqtsVQiaGvXf498dQaCR3zFkNszmWt3a+05zak+8/1Y65fyfWr/bn7al43LbRqjPPHs+Ny49nruC+Nr+h8V3dxa8H42amtpQ/qyawf8n+01E/7o31fTVlds79Ty9+h0vEO6jbenvg0GfU0Vo9LTzvn1y6yfTPrn7iwuuG9wyMFdcS9MeXHUvlbPxkduv21nQ+MFeVvrKT8Sqn8b9Ye+eG2nS88V5j/dJZfLZV/2YHB42vf37Gy8PnMZs+nr1T+HUc/eHL5/++c6jbXzfw9WX6tVP4100cGhhsHDhbWvzp7PotK5X919Y3fvvL5vmOF+SHLHyyVv2H6vqcGxhsXF+YfbH0U6s0VWmL9/Dh1xRfj499PFOV/lj3/4S75sWf+y5O7r3pxya41hetzXfZ8RkrVf/MF+7cPNfadV/TujHvO1DcnwH/TsvQ/1uOpX/Z35kJ1/F54dqKv9Q00lLbhM3mhnLnrLP4L8wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH5jBw5IAAAAAAT9f92OQAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgqAAD//2BzKEU=")
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000380)=ANY=[], 0x1, 0x152d, &(0x7f0000001f80)="$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")
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000040), 0x4)
ioctl$FBIO_WAITFORVSYNC(r3, 0x40044620, 0x0)
close(0xffffffffffffffff)
execveat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x218000, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r6 = memfd_create(&(0x7f0000000400)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x0)
execveat(r6, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

21.720971125s ago: executing program 3 (id=351):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0xc1105511, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
getsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$apparmor_exec(r1, 0x0, 0x0)

17.050330432s ago: executing program 0 (id=356):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
fsopen(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000080000008500a7d4290000009500000000000000943cb00e3e67f653860f0e3f99754795e6005f5f45073e0d56a4c504ac7899b7dd23d8ecaa7f4b106d6c395b140a5851343b1b8fb96b7e1f23acfab1c8fbddf6f74f34fb42b21936042d7cba0c09baa0e10ab52307751f7420dee2326b2b8d388afdd1ac9eea5dddec98788a7f6ed063acf61ff88daf2fd0d8983cfc6108b77353"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x14, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
vmsplice(r4, &(0x7f0000000400)=[{0x0}, {&(0x7f00000003c0)="a677cfb035f617c102c481bb6a11fa8a583c79c5683fa237b5", 0x19}], 0x2, 0x5)
r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
read$FUSE(r5, &(0x7f000000cc40)={0x2020}, 0x2020)

15.835520272s ago: executing program 0 (id=357):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000002640)={0x14, 0x38, 0x1, 0x70bd2c, 0x25dfdbff, {0xc}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0xc804)

15.480431745s ago: executing program 0 (id=359):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x20}}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
gettid()
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x8003, 0x0)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(0xffffffffffffffff, 0x4020aed2, &(0x7f00000001c0)={0x8000000, 0x606000, 0x8})
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r2, &(0x7f0000000040)={0x1f, @fixed}, 0x8)
listen(r2, 0x0)
accept4(r2, 0x0, 0x0, 0x0)

14.160815247s ago: executing program 0 (id=361):
syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000040)='./file2\x00', 0x3200400, &(0x7f0000000c00)=ANY=[], 0x1, 0xa56, &(0x7f0000001c80)="$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")
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000002640)=""/4107, 0x100b, 0x535)
bind$bt_hci(r0, &(0x7f0000000000)={0x27}, 0x74)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00', <r7=>0x0})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r5, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x24, r6, 0x331, 0x70bd2a, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}]}, 0x24}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x3, 0x1b, 0x0, 0x0)

14.061193837s ago: executing program 1 (id=363):
accept4$netrom(0xffffffffffffffff, 0x0, 0x0, 0x80800)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4})
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$sock(r1, 0x0, 0x0, 0x48094)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000000), 0xffffff6a)
sendfile(r1, r2, 0x0, 0xffffffff000)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x140, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r4, 0xc0045516, &(0x7f0000000b00)=0x6)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

11.7986553s ago: executing program 4 (id=366):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[], 0x10}}, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x40}, @in6=@dev={0xfe, 0x80, '\x00', 0x3b}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffe}, {0x0, 0x7e000000000}, 0x40000, 0x0, 0x1}, {{@in6=@empty, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)

10.597520616s ago: executing program 2 (id=367):
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_BASE(r1, 0x4008af04, &(0x7f0000000740)=0xffffffffffffffff)
syz_open_procfs(0xffffffffffffffff, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f00000003c0)={0x3, 0x0, [{0x4, 0x0, 0x0}, {0xdddd6000, 0x65, &(0x7f00000001c0)=""/101}, {0xf000, 0x0, 0x0}]})
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r3, 0x4020565b, &(0x7f0000000040)={0x5, 0x7, 0x3})
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1)
sendmmsg(r0, &(0x7f0000001340), 0x0, 0x24048084)

9.388700877s ago: executing program 4 (id=368):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000200)='cgroup.clone_children\x00', 0x2, 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000080)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r3, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000040)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
write$cgroup_subtree(r2, &(0x7f0000000240)={[{0x2b, 'net'}, {0x2d, 'cpu'}]}, 0xa)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r8=>0x0})
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x3, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r9, 0x0, 0x0}, 0x10)
sendfile(r1, r2, 0x0, 0x38)
socket$inet6_udp(0xa, 0x2, 0x0)

8.128708106s ago: executing program 4 (id=369):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
fsopen(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000080000008500a7d4290000009500000000000000943cb00e3e67f653860f0e3f99754795e6005f5f45073e0d56a4c504ac7899b7dd23d8ecaa7f4b106d6c395b140a5851343b1b8fb96b7e1f23acfab1c8fbddf6f74f34fb42b21936042d7cba0c09baa0e10ab52307751f7420dee2326b2b8d388afdd1ac9eea5dddec98788a7f6ed063acf61ff88daf2fd0d8983cfc6108b77353"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x14, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
vmsplice(r4, &(0x7f0000000400)=[{0x0}, {&(0x7f00000003c0)="a677cfb035f617c102c481bb6a11fa8a583c79c5683fa237b5", 0x19}], 0x2, 0x5)
r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
read$FUSE(r5, &(0x7f000000cc40)={0x2020}, 0x2020)

7.707034913s ago: executing program 1 (id=370):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d7, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x10}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000040)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
write$cgroup_subtree(r1, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x3, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r6, 0x0, 0x0}, 0x10)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x8, 0x0, &(0x7f0000000080))

7.706467935s ago: executing program 2 (id=371):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x20}}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
gettid()
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x8003, 0x0)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(0xffffffffffffffff, 0x4020aed2, &(0x7f00000001c0)={0x8000000, 0x606000, 0x8})
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r2, &(0x7f0000000040)={0x1f, @fixed}, 0x8)
listen(r2, 0x0)
accept4(r2, 0x0, 0x0, 0x0)

6.86362229s ago: executing program 4 (id=372):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000002640)={0x14, 0x38, 0x1, 0x70bd2c, 0x25dfdbff, {0xc}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0xc804)

6.485531395s ago: executing program 32 (id=351):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0xc1105511, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
getsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$apparmor_exec(r1, 0x0, 0x0)

6.401283724s ago: executing program 1 (id=374):
capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8a00fe00000000bfa200000000000007020000f8ffffffb703000008000000b704000002ec0000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000000000008500000008000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

6.226931055s ago: executing program 2 (id=375):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, 0x0, 0x0)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)

6.038492611s ago: executing program 1 (id=376):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x5e0, 0x0, &(0x7f0000000200)={0x11, 0x88a8, r1, 0x1, 0x7, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_io_uring_submit(0x0, 0x0, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x4000, 0xd1b511a5396722a5, &(0x7f0000000500))
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000380)=ANY=[], 0x1, 0x152d, &(0x7f0000001f80)="$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")
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000040), 0x4)
ioctl$FBIO_WAITFORVSYNC(r3, 0x40044620, 0x0)
close(0xffffffffffffffff)
execveat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x218000, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r6 = memfd_create(&(0x7f0000000400)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x0)
execveat(r6, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

4.834186457s ago: executing program 4 (id=377):
ioctl$vim2m_VIDIOC_STREAMON(0xffffffffffffffff, 0x40045612, &(0x7f0000000080)=0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x0)
syz_emit_ethernet(0xfe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r1, 0x6, 0x3, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg$inet(r1, &(0x7f0000002f00)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000600)=[{&(0x7f0000000040)}], 0x1}}], 0x1, 0x20004000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x2000, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0700000040008100000002000000200001801400040000000000000000000000ffffac1414aa060001000a"], 0x34}, 0x1, 0x0, 0x0, 0x8081}, 0x24000800)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
migrate_pages(0x0, 0x5, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000100)={'caif0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x15}})
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)

4.698151486s ago: executing program 2 (id=378):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, &(0x7f0000000040)='}\x00')
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x20002, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000500)={[{0x5, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x0, 0x5}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x4, 0x0, 0x0, 0x0, 0x800000000000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5}]})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, 0x0)
syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x800, &(0x7f0000000300)=ANY=[], 0x1, 0x1cf, &(0x7f0000000780)="$eJzKKC4sZmdgYPj7sSaZQYABDBgZeBguMDAysDAwMKgzQsQYmCDUeij/BZSeCZW2gfKbofRCKF1xS3vdmlN+Z0566motk2VmaPXUlkcWk0vtMXKTXMwjwcwQmnpkUXFlVXZiTk5qUfFChopbyUkVp08wsFy3v6bSLMHp8EeewyFJ00GH6YiPR9aMxhLOSVKaYmxsmQpnz3yQX8emcYTh0QrmjXWeeY11halT89LykqqyqrLmTZy4cWZjZ2Pjyol1UWl+qxhbUlw2NXUyMjlsURPYzGyoPslGe8K79lUPkxxYezz8mk8ZK71OZb5kvLBI6tSKqpkTvijNZjT8znCHp2yFhIaGk8QVCYsGE4YjdbYNriAnpjQwpCmEMSapsYm1bTkzJ4SZn81tgUJL8gmm0KMcS2dKWBwQqjr501LzrUOi24xtTx3YzvAcPs6zpqBP0Oh4LIPTQsH/MiBjEhoayjTWMi21XfClSOOvhNdqY6cMBnd7pmWwAGVpAJEroTxZsJ6E5BUerAyaRinJCQ2bJBKS3AoMlRm27uFcLdDAgBRtKgwMDNsZYXELAddgjFEwCkbBKBgFo2AUjIJRMApGwSgYBSMCAAIAAP//tkmYwA==")
syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000440)=ANY=[@ANYBLOB='errors=remount-ro,keep_last_dots,gid=', @ANYRESHEX=0x0, @ANYBLOB=',sys_tz,iocharset=cp949,errors=remount-ro,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c646d61736b3d30303030303030303030303030303030303030303030302c696f636861727365743d69736f383835592d392c646973636172642c756d9856ae04035d8955b8c8c761736b3d3030303030303030303030303030"], 0x1, 0x1529, &(0x7f0000001ac0)="$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")
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
mkdir(0x0, 0x0)
chdir(&(0x7f00000010c0)='./bus\x00')
truncate(&(0x7f00000001c0)='./file2\x00', 0xaeb3)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000009)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000002200), r0)
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000002240)={0x20, r2, 0xd61, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x200c051}, 0x2)

4.507840458s ago: executing program 0 (id=379):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[], 0x10}}, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x40}, @in6=@dev={0xfe, 0x80, '\x00', 0x3b}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffe}, {0x0, 0x7e000000000}, 0x40000, 0x0, 0x1}, {{@in6=@empty, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)

3.457092922s ago: executing program 1 (id=380):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000200)='cgroup.clone_children\x00', 0x2, 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000080)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r3, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000040)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
write$cgroup_subtree(r2, &(0x7f0000000240)={[{0x2b, 'net'}, {0x2d, 'cpu'}]}, 0xa)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r8=>0x0})
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x3, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r9, 0x0, 0x0}, 0x10)
sendfile(r1, r2, 0x0, 0x38)
socket$inet6_udp(0xa, 0x2, 0x0)

1.336273574s ago: executing program 1 (id=381):
accept4$netrom(0xffffffffffffffff, 0x0, 0x0, 0x80800)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4})
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$sock(r1, &(0x7f0000000cc0)=[{{&(0x7f0000000100)=@l2tp={0x2, 0x0, @broadcast, 0x3}, 0x80, 0x0}}], 0x1, 0x48094)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000000), 0xffffff6a)
sendfile(r1, r2, 0x0, 0xffffffff000)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x140, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r4, 0xc0045516, &(0x7f0000000b00)=0x6)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.207830512s ago: executing program 0 (id=382):
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f0000000580)={0x0, 0x2000, 0x80, 0x3231564e, 0x3, [0x2], [0x80ffff], [], [0x400000000000001]})
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
write$tun(r1, &(0x7f0000000540)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d75a3d0000b110000000000000000000000000000000000ff0200000000000000000000000000014f1c4e20"], 0xd6)

1.105514367s ago: executing program 2 (id=383):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d7, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x10}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000040)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
write$cgroup_subtree(r1, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x3, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r6, 0x0, 0x0}, 0x10)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x8, 0x0, &(0x7f0000000080))

1.000691097s ago: executing program 4 (id=384):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x20}}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = gettid()
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x8003, 0x0)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(0xffffffffffffffff, 0x4020aed2, &(0x7f00000001c0)={0x8000000, 0x606000, 0x8})
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r2, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r3, &(0x7f0000000040)={0x1f, @fixed}, 0x8)
listen(r3, 0x0)
accept4(r3, 0x0, 0x0, 0x0)

0s ago: executing program 2 (id=385):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
fsopen(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000080000008500a7d4290000009500000000000000943cb00e3e67f653860f0e3f99754795e6005f5f45073e0d56a4c504ac7899b7dd23d8ecaa7f4b106d6c395b140a5851343b1b8fb96b7e1f23acfab1c8fbddf6f74f34fb42b21936042d7cba0c09baa0e10ab52307751f7420dee2326b2b8d388afdd1ac9eea5dddec98788a7f6ed063acf61ff88daf2fd0d8983cfc6108b77353"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x14, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
vmsplice(r4, &(0x7f0000000400)=[{0x0}, {&(0x7f00000003c0)="a677cfb035f617c102c481bb6a11fa8a583c79c5683fa237b5", 0x19}], 0x2, 0x5)
r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
read$FUSE(r5, &(0x7f000000cc40)={0x2020}, 0x2020)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.65' (ED25519) to the list of known hosts.
[  102.995234][ T5822] cgroup: Unknown subsys name 'net'
[  103.134443][ T5822] cgroup: Unknown subsys name 'cpuset'
[  103.146581][ T5822] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  104.850544][ T5822] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  107.560391][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  107.569488][ T5834] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  107.578243][ T5834] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  107.587322][ T5834] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  107.595566][ T5834] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.698243][   T56] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  107.707483][   T56] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  107.718861][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  107.727569][ T5841] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  107.737609][ T5841] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  107.746325][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  107.768489][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  107.799135][ T5156] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  107.821826][ T5156] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  107.831400][ T5156] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  107.854549][   T56] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  107.878841][ T5841] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  107.890905][ T5841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  107.902344][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  107.910658][   T56] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  107.919931][ T5841] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  107.928592][ T5842] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  107.939530][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  107.950431][ T5842] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  107.982035][ T5842] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  108.150205][   T24] cfg80211: failed to load regulatory.db
[  108.326852][ T5832] chnl_net:caif_netlink_parms(): no params data found
[  108.687435][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.696184][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.706803][ T5832] bridge_slave_0: entered allmulticast mode
[  108.716104][ T5832] bridge_slave_0: entered promiscuous mode
[  108.728289][ T5836] chnl_net:caif_netlink_parms(): no params data found
[  108.762344][ T5837] chnl_net:caif_netlink_parms(): no params data found
[  108.784008][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.793785][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.804533][ T5832] bridge_slave_1: entered allmulticast mode
[  108.813211][ T5832] bridge_slave_1: entered promiscuous mode
[  108.918545][ T5844] chnl_net:caif_netlink_parms(): no params data found
[  108.971054][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.025628][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.180995][ T5832] team0: Port device team_slave_0 added
[  109.235920][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.243588][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.253881][ T5837] bridge_slave_0: entered allmulticast mode
[  109.262883][ T5837] bridge_slave_0: entered promiscuous mode
[  109.277358][ T5832] team0: Port device team_slave_1 added
[  109.304228][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.312255][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.321204][ T5836] bridge_slave_0: entered allmulticast mode
[  109.331072][ T5836] bridge_slave_0: entered promiscuous mode
[  109.341322][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.348899][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.356535][ T5836] bridge_slave_1: entered allmulticast mode
[  109.364612][ T5836] bridge_slave_1: entered promiscuous mode
[  109.378566][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.386702][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.398980][ T5837] bridge_slave_1: entered allmulticast mode
[  109.407447][ T5837] bridge_slave_1: entered promiscuous mode
[  109.497898][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.505614][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.533190][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.546679][ T5846] chnl_net:caif_netlink_parms(): no params data found
[  109.562232][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.576621][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.603405][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.618486][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.629553][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[  109.637834][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.670488][ T5842] Bluetooth: hci0: command tx timeout
[  109.672646][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  109.776082][ T5837] team0: Port device team_slave_0 added
[  109.814934][ T5836] team0: Port device team_slave_0 added
[  109.829497][ T5842] Bluetooth: hci1: command tx timeout
[  109.837242][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.845541][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.854879][ T5844] bridge_slave_0: entered allmulticast mode
[  109.863002][ T5844] bridge_slave_0: entered promiscuous mode
[  109.874319][ T5837] team0: Port device team_slave_1 added
[  109.907876][ T5842] Bluetooth: hci2: command tx timeout
[  109.922338][ T5836] team0: Port device team_slave_1 added
[  109.929718][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.938764][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.946690][ T5844] bridge_slave_1: entered allmulticast mode
[  109.954655][ T5844] bridge_slave_1: entered promiscuous mode
[  109.987934][ T5842] Bluetooth: hci3: command tx timeout
[  110.047254][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.054919][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.085139][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.092917][ T5842] Bluetooth: hci4: command tx timeout
[  110.101763][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.112241][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.145045][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.201163][ T5832] hsr_slave_0: entered promiscuous mode
[  110.209556][ T5832] hsr_slave_1: entered promiscuous mode
[  110.232667][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.241080][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.271485][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.291532][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.309796][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.336763][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.345322][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.376148][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.495561][ T5844] team0: Port device team_slave_0 added
[  110.521408][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.529738][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.539011][ T5846] bridge_slave_0: entered allmulticast mode
[  110.548479][ T5846] bridge_slave_0: entered promiscuous mode
[  110.559514][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.567992][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.576057][ T5846] bridge_slave_1: entered allmulticast mode
[  110.585243][ T5846] bridge_slave_1: entered promiscuous mode
[  110.617182][ T5844] team0: Port device team_slave_1 added
[  110.710456][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.719630][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.747960][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.768338][ T5837] hsr_slave_0: entered promiscuous mode
[  110.775689][ T5837] hsr_slave_1: entered promiscuous mode
[  110.783534][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  110.793481][ T5837] Cannot create hsr debugfs directory
[  110.835694][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.858878][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.870735][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.879052][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.905534][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.936018][ T5836] hsr_slave_0: entered promiscuous mode
[  110.944873][ T5836] hsr_slave_1: entered promiscuous mode
[  110.951920][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  110.961438][ T5836] Cannot create hsr debugfs directory
[  111.041193][ T5846] team0: Port device team_slave_0 added
[  111.095785][ T5846] team0: Port device team_slave_1 added
[  111.174905][ T5844] hsr_slave_0: entered promiscuous mode
[  111.182152][ T5844] hsr_slave_1: entered promiscuous mode
[  111.189937][ T5844] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.197930][ T5844] Cannot create hsr debugfs directory
[  111.281790][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.289053][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.315793][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.339164][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.346181][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.372498][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.619400][ T5846] hsr_slave_0: entered promiscuous mode
[  111.626845][ T5846] hsr_slave_1: entered promiscuous mode
[  111.634087][ T5846] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.642639][ T5846] Cannot create hsr debugfs directory
[  111.748841][ T5842] Bluetooth: hci0: command tx timeout
[  111.794292][ T5832] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  111.835628][ T5832] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  111.877378][ T5832] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  111.909451][ T5842] Bluetooth: hci1: command tx timeout
[  111.922879][ T5832] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  111.988418][ T5842] Bluetooth: hci2: command tx timeout
[  112.022908][ T5837] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  112.033987][ T5837] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  112.063354][ T5837] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  112.078406][ T5842] Bluetooth: hci3: command tx timeout
[  112.101350][ T5837] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  112.159056][ T5842] Bluetooth: hci4: command tx timeout
[  112.186640][ T5836] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  112.199248][ T5836] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  112.234272][ T5836] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  112.245954][ T5836] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  112.378950][ T5844] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  112.395276][ T5844] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  112.422267][ T5844] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  112.453736][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.473137][ T5844] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  112.568404][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[  112.576716][ T5846] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  112.589419][ T5846] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  112.602397][ T5846] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  112.626081][ T5846] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  112.650744][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.670379][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.678616][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.713482][   T54] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.721991][   T54] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.755965][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[  112.839457][ T3565] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.846778][ T3565] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.874868][ T1099] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.882072][ T1099] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.984493][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.020677][ T5832] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  113.139104][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[  113.186996][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.205567][ T3565] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.212902][ T3565] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.284404][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.314707][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.321971][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.383775][ T5844] 8021q: adding VLAN 0 to HW filter on device team0
[  113.403828][ T5846] 8021q: adding VLAN 0 to HW filter on device team0
[  113.443298][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.451089][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.465031][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.473240][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.518971][ T1099] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.528038][ T1099] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.571220][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.579284][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.633913][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[  113.665005][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[  113.785299][ T5844] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  113.830739][ T5842] Bluetooth: hci0: command tx timeout
[  113.916001][ T5837] veth0_vlan: entered promiscuous mode
[  113.953439][ T5837] veth1_vlan: entered promiscuous mode
[  113.988628][ T5842] Bluetooth: hci1: command tx timeout
[  114.004244][ T5832] veth0_vlan: entered promiscuous mode
[  114.068305][ T5842] Bluetooth: hci2: command tx timeout
[  114.074309][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.096334][ T5832] veth1_vlan: entered promiscuous mode
[  114.148342][ T5842] Bluetooth: hci3: command tx timeout
[  114.204256][ T5837] veth0_macvtap: entered promiscuous mode
[  114.228646][ T5842] Bluetooth: hci4: command tx timeout
[  114.255344][ T5837] veth1_macvtap: entered promiscuous mode
[  114.329682][ T5832] veth0_macvtap: entered promiscuous mode
[  114.362383][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.378505][ T5832] veth1_macvtap: entered promiscuous mode
[  114.395508][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.445480][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[  114.456170][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.473979][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.486074][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[  114.518470][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.536035][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.547074][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.560417][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.594238][ T5837] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.603896][ T5837] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.613841][ T5837] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.623263][ T5837] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.635453][ T5832] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.645423][ T5832] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.655669][ T5832] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.664945][ T5832] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.783432][ T5836] veth0_vlan: entered promiscuous mode
[  114.794680][ T5844] veth0_vlan: entered promiscuous mode
[  114.848697][ T5846] veth0_vlan: entered promiscuous mode
[  114.877632][ T5844] veth1_vlan: entered promiscuous mode
[  114.890167][ T5846] veth1_vlan: entered promiscuous mode
[  114.912149][ T5836] veth1_vlan: entered promiscuous mode
[  114.996976][ T3565] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.008310][ T3565] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.020285][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.038184][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.104487][ T5836] veth0_macvtap: entered promiscuous mode
[  115.147371][ T5844] veth0_macvtap: entered promiscuous mode
[  115.153739][ T3565] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.162877][ T3565] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.165099][ T5846] veth0_macvtap: entered promiscuous mode
[  115.191147][   T28] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.200305][ T5836] veth1_macvtap: entered promiscuous mode
[  115.209361][ T5846] veth1_macvtap: entered promiscuous mode
[  115.220487][   T28] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.230515][ T5844] veth1_macvtap: entered promiscuous mode
[  115.334522][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.356382][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.366958][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.381859][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.394212][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.411607][ T5832] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  115.422035][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.438754][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.449736][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.460787][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.471031][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.482352][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.495145][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.511725][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.522733][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.533002][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.543923][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.553858][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.564425][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.574479][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.586005][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.598566][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.609463][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.620531][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.630867][ T5844] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.641533][ T5844] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.652832][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.672773][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.684584][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.695216][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.706081][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.716302][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.730979][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.743184][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.763482][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.775841][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.792064][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.813619][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.837427][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.882407][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.894507][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.910110][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.926166][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.937631][ T5844] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.957964][ T5842] Bluetooth: hci0: command tx timeout
[  115.968027][ T5844] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.985486][ T5844] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.996645][ T5844] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.017510][ T5836] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.046007][ T5836] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.068848][ T5842] Bluetooth: hci1: command tx timeout
[  116.081864][ T5920] loop1: detected capacity change from 0 to 256
[  116.095963][ T5836] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.115822][ T5836] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.158527][ T5842] Bluetooth: hci2: command tx timeout
[  116.172297][ T5846] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.184380][ T5846] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.195732][ T5846] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.204686][ T5846] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.228960][ T5842] Bluetooth: hci3: command tx timeout
[  116.315474][ T5842] Bluetooth: hci4: command tx timeout
[  116.610913][ T5920] FAT-fs (loop1): Directory bread(block 64) failed
[  116.844253][ T5920] FAT-fs (loop1): Directory bread(block 65) failed
[  116.857320][ T5920] FAT-fs (loop1): Directory bread(block 66) failed
[  116.864555][ T5920] FAT-fs (loop1): Directory bread(block 67) failed
[  116.872161][ T5920] FAT-fs (loop1): Directory bread(block 68) failed
[  116.891706][ T5920] FAT-fs (loop1): Directory bread(block 69) failed
[  116.898955][ T5920] FAT-fs (loop1): Directory bread(block 70) failed
[  116.905932][ T5920] FAT-fs (loop1): Directory bread(block 71) failed
[  116.914400][ T5920] FAT-fs (loop1): Directory bread(block 72) failed
[  116.922490][ T5920] FAT-fs (loop1): Directory bread(block 73) failed
[  117.292974][   T28] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.302054][   T28] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.608478][ T5839] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  118.097069][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.110503][ T1111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.119781][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.123578][ T1111] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.190900][   T28] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.207993][   T28] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.308482][ T5839] usb 4-1: Using ep0 maxpacket: 32
[  118.336946][   T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.364416][ T5925] Zero length message leads to an empty skb
[  118.398572][   T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.410941][ T5839] usb 4-1: unable to get BOS descriptor or descriptor too short
[  118.431851][ T5839] usb 4-1: no configurations
[  118.436643][ T5839] usb 4-1: can't read configurations, error -22
[  118.494248][ T1111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.538741][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  118.559705][ T1111] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.648353][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  118.789605][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  119.189573][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  119.279561][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  120.268410][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  120.282985][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  120.293645][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  120.598813][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  120.668007][ T5951] loop1: detected capacity change from 0 to 64
[  121.415412][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  121.858169][ T5958] x_tables: duplicate underflow at hook 1
[  123.362385][ T5968] loop4: detected capacity change from 0 to 512
[  123.402337][ T5968] EXT4-fs error (device loop4): ext4_init_orphan_info:586: comm syz.4.14: inode #0: comm syz.4.14: iget: illegal inode #
[  123.453005][ T5968] EXT4-fs (loop4): get orphan inode failed
[  123.514403][ T5968] EXT4-fs (loop4): mount failed
[  123.997194][ T5968] loop4: detected capacity change from 0 to 1024
[  124.512715][ T5968] EXT4-fs: Ignoring removed orlov option
[  124.550017][ T5968] EXT4-fs (loop4): Test dummy encryption mode enabled
[  124.558436][ T5968] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  126.104223][ T5984] loop0: detected capacity change from 0 to 32768
[  126.164355][ T5984] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.16 (5984)
[  126.289160][ T5996] loop3: detected capacity change from 0 to 128
[  126.303354][ T5984] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  126.358210][ T5984] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  126.378567][ T5984] BTRFS info (device loop0): using free-space-tree
[  126.399986][ T5996] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  126.452251][ T5996] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.558432][ T5996] syz.3.21 (pid 5996) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  127.351600][ T5996] fscrypt (loop3, inode 12): Error allocating 'adiantum(xchacha12,aes)' transform: -4
[  127.659838][ T5832] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  127.683390][ T5846] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  128.205263][ T6040] loop1: detected capacity change from 0 to 256
[  128.297420][ T6040] FAT-fs (loop1): Directory bread(block 64) failed
[  128.343534][ T6040] FAT-fs (loop1): Directory bread(block 65) failed
[  128.367994][ T6041] loop3: detected capacity change from 0 to 2048
[  128.387353][ T6040] FAT-fs (loop1): Directory bread(block 66) failed
[  128.407996][ T6040] FAT-fs (loop1): Directory bread(block 67) failed
[  128.432108][ T6040] FAT-fs (loop1): Directory bread(block 68) failed
[  128.486445][ T6040] FAT-fs (loop1): Directory bread(block 69) failed
[  128.513185][ T6044] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  128.526569][ T6040] FAT-fs (loop1): Directory bread(block 70) failed
[  128.566227][ T6040] FAT-fs (loop1): Directory bread(block 71) failed
[  128.578300][ T6045] loop0: detected capacity change from 0 to 512
[  128.610434][ T6040] FAT-fs (loop1): Directory bread(block 72) failed
[  128.641053][ T6045] EXT4-fs error (device loop0): ext4_init_orphan_info:586: comm syz.0.28: inode #0: comm syz.0.28: iget: illegal inode #
[  128.654848][ T6040] FAT-fs (loop1): Directory bread(block 73) failed
[  128.696945][ T6045] EXT4-fs (loop0): get orphan inode failed
[  128.707269][ T6045] EXT4-fs (loop0): mount failed
[  129.116197][ T6045] loop0: detected capacity change from 0 to 1024
[  129.257242][ T6045] EXT4-fs: Ignoring removed orlov option
[  129.398197][ T6045] EXT4-fs (loop0): Test dummy encryption mode enabled
[  129.427135][ T6045] EXT4-fs (loop0): can't mount with data_err=abort, fs mounted w/o journal
[  130.087493][ T6057] loop1: detected capacity change from 0 to 256
[  130.223704][ T6057] FAT-fs (loop1): Directory bread(block 64) failed
[  130.243104][ T6057] FAT-fs (loop1): Directory bread(block 65) failed
[  130.258083][ T6057] FAT-fs (loop1): Directory bread(block 66) failed
[  130.293073][ T6057] FAT-fs (loop1): Directory bread(block 67) failed
[  130.317167][ T6057] FAT-fs (loop1): Directory bread(block 68) failed
[  130.347821][ T6057] FAT-fs (loop1): Directory bread(block 69) failed
[  130.388557][ T6057] FAT-fs (loop1): Directory bread(block 70) failed
[  130.395677][ T6057] FAT-fs (loop1): Directory bread(block 71) failed
[  130.538196][ T6057] FAT-fs (loop1): Directory bread(block 72) failed
[  130.772468][ T6057] FAT-fs (loop1): Directory bread(block 73) failed
[  132.453591][ T6068] netlink: 8 bytes leftover after parsing attributes in process `syz.0.34'.
[  132.463689][ T6068] netlink: 8 bytes leftover after parsing attributes in process `syz.0.34'.
[  132.949131][ T6075] xt_ecn: cannot match TCP bits for non-tcp packets
[  134.927384][ T6074] netlink: 12 bytes leftover after parsing attributes in process `syz.3.36'.
[  136.629348][ T6092] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  137.416894][ T6094] loop3: detected capacity change from 0 to 512
[  137.701462][ T6094] EXT4-fs error (device loop3): ext4_init_orphan_info:586: comm syz.3.42: inode #0: comm syz.3.42: iget: illegal inode #
[  138.669357][ T6094] EXT4-fs (loop3): get orphan inode failed
[  138.722508][ T6094] EXT4-fs (loop3): mount failed
[  138.874146][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  138.882841][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  138.958258][ T6094] loop3: detected capacity change from 0 to 1024
[  138.975569][ T6103] capability: warning: `syz.1.44' uses deprecated v2 capabilities in a way that may be insecure
[  138.992127][ T6094] EXT4-fs: Ignoring removed orlov option
[  139.025447][ T6094] EXT4-fs (loop3): Test dummy encryption mode enabled
[  139.070588][ T6094] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal
[  139.565650][ T6108] loop1: detected capacity change from 0 to 2048
[  139.706380][ T6113] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  140.146647][ T6118] loop0: detected capacity change from 0 to 256
[  140.697934][ T6118] FAT-fs (loop0): Directory bread(block 64) failed
[  140.716994][ T6118] FAT-fs (loop0): Directory bread(block 65) failed
[  140.731703][ T6118] FAT-fs (loop0): Directory bread(block 66) failed
[  140.742570][ T6118] FAT-fs (loop0): Directory bread(block 67) failed
[  140.818269][ T6118] FAT-fs (loop0): Directory bread(block 68) failed
[  140.855608][ T6118] FAT-fs (loop0): Directory bread(block 69) failed
[  140.894219][ T6118] FAT-fs (loop0): Directory bread(block 70) failed
[  141.007924][ T6118] FAT-fs (loop0): Directory bread(block 71) failed
[  141.067602][ T6118] FAT-fs (loop0): Directory bread(block 72) failed
[  141.101048][ T6118] FAT-fs (loop0): Directory bread(block 73) failed
[  141.709337][ T6110] loop3: detected capacity change from 0 to 32768
[  142.199417][ T6110] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  142.657710][ T6110] XFS (loop3): Ending clean mount
[  142.703501][ T6110] XFS (loop3): Quotacheck needed: Please wait.
[  142.727843][ T5909] usb 5-1: new low-speed USB device number 2 using dummy_hcd
[  142.881785][ T6110] XFS (loop3): Quotacheck: Done.
[  143.692729][ T5909] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  143.720056][ T5909] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  143.776460][ T6146] loop0: detected capacity change from 0 to 128
[  143.785296][ T5909] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[  143.800104][ T5909] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  143.810694][ T5909] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.832691][ T5832] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  143.852139][ T6137] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  143.917518][ T5909] hub 5-1:1.0: bad descriptor, ignoring hub
[  143.950295][ T5909] hub 5-1:1.0: probe with driver hub failed with error -5
[  143.965371][ T5909] cdc_wdm 5-1:1.0: skipping garbage
[  143.984108][ T5909] cdc_wdm 5-1:1.0: skipping garbage
[  144.023706][ T5909] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  144.031616][ T5909] cdc_wdm 5-1:1.0: Unknown control protocol
[  144.433221][ T6150] loop1: detected capacity change from 0 to 512
[  144.443215][    C0] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  144.451298][    C0] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  144.461067][    C0] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  144.468552][    C0] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  144.520305][ T6150] EXT4-fs error (device loop1): ext4_init_orphan_info:586: comm syz.1.57: inode #0: comm syz.1.57: iget: illegal inode #
[  144.649302][   T24] usb 5-1: USB disconnect, device number 2
[  144.727891][ T6150] EXT4-fs (loop1): get orphan inode failed
[  144.807495][ T6150] EXT4-fs (loop1): mount failed
[  146.803909][ T6150] loop1: detected capacity change from 0 to 1024
[  146.891875][ T6150] EXT4-fs: Ignoring removed orlov option
[  146.934094][ T6164] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  147.001400][ T6150] EXT4-fs (loop1): Test dummy encryption mode enabled
[  147.165613][ T6164] 8021q: adding VLAN 0 to HW filter on device bond1
[  147.283190][ T6164] bond0: (slave bond1): Enslaving as an active interface with an up link
[  147.298500][ T6150] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal
[  147.514497][ T6168] bond0: entered promiscuous mode
[  147.560698][ T6168] bond_slave_0: entered promiscuous mode
[  147.741833][ T6177] xt_policy: output policy not valid in PREROUTING and INPUT
[  148.572050][ T6168] bond_slave_1: entered promiscuous mode
[  148.761196][ T6168] bond1: entered promiscuous mode
[  149.271303][ T6180] loop2: detected capacity change from 0 to 256
[  149.425601][ T6184] loop0: detected capacity change from 0 to 2048
[  149.564946][ T6193] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  153.799367][ T6214] loop3: detected capacity change from 0 to 512
[  153.910103][ T6214] EXT4-fs error (device loop3): ext4_init_orphan_info:586: comm syz.3.76: inode #0: comm syz.3.76: iget: illegal inode #
[  153.999155][ T6214] EXT4-fs (loop3): get orphan inode failed
[  154.034282][ T6214] EXT4-fs (loop3): mount failed
[  154.396840][ T6230] loop3: detected capacity change from 0 to 1024
[  154.453112][ T6230] EXT4-fs: Ignoring removed orlov option
[  154.467114][ T6228] 8021q: adding VLAN 0 to HW filter on device bond1
[  154.484574][ T6228] bond0: (slave bond1): Enslaving as an active interface with an up link
[  154.511255][ T6230] EXT4-fs (loop3): Test dummy encryption mode enabled
[  154.514844][ T6231] bond0: entered promiscuous mode
[  154.530475][ T6231] bond_slave_0: entered promiscuous mode
[  154.538362][ T6231] bond_slave_1: entered promiscuous mode
[  154.544976][ T6231] bond1: entered promiscuous mode
[  154.568165][ T6230] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal
[  154.655362][ T6218] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  154.668924][ T6218] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  154.950633][ T6218] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  154.991484][ T6218] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  155.063998][ T6241] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  155.091812][ T6218] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  155.113428][ T6218] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  155.522047][ T6218] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  155.542900][ T6218] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  156.807857][ T6218] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  156.815087][ T6218] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  158.123888][ T6267] loop4: detected capacity change from 0 to 8
[  158.280676][ T6267] SQUASHFS error: zlib decompression failed, data probably corrupt
[  158.289802][ T6267] SQUASHFS error: Failed to read block 0x13e: -5
[  158.298618][ T6267] SQUASHFS error: Unable to read metadata cache entry [13c]
[  158.306723][ T6267] SQUASHFS error: Unable to read directory block [13c:26]
[  158.321604][ T6267] SQUASHFS error: Unable to read metadata cache entry [13c]
[  158.330012][ T6267] SQUASHFS error: Unable to read directory block [13c:26]
[  158.344438][ T6267] SQUASHFS error: Unable to read metadata cache entry [13c]
[  158.354243][ T6267] SQUASHFS error: Unable to read directory block [13c:26]
[  158.366437][ T6267] SQUASHFS error: Unable to read metadata cache entry [13c]
[  158.377561][ T6267] SQUASHFS error: Unable to read directory block [13c:26]
[  159.480835][ T6281] loop4: detected capacity change from 0 to 64
[  160.640162][ T6285] loop2: detected capacity change from 0 to 1024
[  160.675244][ T6285] EXT4-fs: Ignoring removed orlov option
[  160.778115][ T6285] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.050604][ T6296] netlink: 32 bytes leftover after parsing attributes in process `syz.2.89'.
[  161.197634][ T6296] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  162.835050][ T5844] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.101965][ T6338] loop1: detected capacity change from 0 to 16
[  164.188671][ T6341] loop0: detected capacity change from 0 to 64
[  164.353423][ T6338] erofs (device loop1): mounted with root inode @ nid 36.
[  166.396177][ T6362] loop4: detected capacity change from 0 to 256
[  166.951076][ T6340] loop2: detected capacity change from 0 to 32768
[  166.959095][ T6340] =======================================================
[  166.959095][ T6340] WARNING: The mand mount option has been deprecated and
[  166.959095][ T6340]          and is ignored by this kernel. Remove the mand
[  166.959095][ T6340]          option from the mount to silence this warning.
[  166.959095][ T6340] =======================================================
[  166.996555][ T6340] XFS: ikeep mount option is deprecated.
[  167.076156][ T6340] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/loop2": -EINTR
[  167.150506][ T6370] loop1: detected capacity change from 0 to 1024
[  167.328186][ T6344] loop0: detected capacity change from 0 to 32768
[  167.451532][   T28] hfsplus: b-tree write err: -5, ino 4
[  167.516811][ T6344] syz.0.102: attempt to access beyond end of device
[  167.516811][ T6344] loop0: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  167.606968][ T6344] metapage_write_end_io: I/O error
[  167.734435][ T6344] ERROR: (device loop0): release_metapage: metapage_write_one() failed
[  167.734435][ T6344] 
[  167.758619][ T6344] ERROR: (device loop0): remounting filesystem as read-only
[  168.574380][ T6344] blkno = 8ed2c, nblocks = 1
[  168.590741][ T6344] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[  168.590741][ T6344] 
[  168.637270][ T6344] UFO tlock:0xffffc900029aa090
[  168.702358][ T6386] loop3: detected capacity change from 0 to 64
[  168.787406][  T117] blkno = 8ed2c, nblocks = 4
[  168.824597][  T117] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[  168.824597][  T117] 
[  168.863169][ T5846] syz-executor: attempt to access beyond end of device
[  168.863169][ T5846] loop0: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  168.917781][ T5846] metapage_write_end_io: I/O error
[  168.924082][ T5846] JFS: metapage_get_blocks failed
[  168.958518][ T5846] JFS: metapage_get_blocks failed
[  168.980018][ T5846] JFS: metapage_get_blocks failed
[  169.001275][ T5846] JFS: metapage_get_blocks failed
[  169.572898][ T6415] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  171.583110][ T6393] loop2: detected capacity change from 0 to 32768
[  172.617861][ T6393] (syz.2.110,6393,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  172.703743][ T6393] (syz.2.110,6393,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  172.786351][ T6393] workqueue: Failed to create a rescuer kthread for wq "ocfs2_wq": -EINTR
[  172.787150][ T6393] (syz.2.110,6393,1):ocfs2_initialize_super:2226 ERROR: status = -12
[  172.819662][ T6420] loop1: detected capacity change from 0 to 32768
[  172.829550][ T6393] (syz.2.110,6393,0):ocfs2_fill_super:1177 ERROR: status = -12
[  173.043824][ T6420] XFS: ikeep mount option is deprecated.
[  173.083914][ T6443] loop4: detected capacity change from 0 to 256
[  173.219652][ T6420] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  173.522350][ T6420] XFS (loop1): Ending clean mount
[  173.536168][ T6420] XFS (loop1): Metadata corruption detected at xfs_dinode_verify+0x352/0x1570, inode 0x42b dinode
[  173.655936][ T6420] XFS (loop1): Unmount and run xfs_repair
[  173.682809][ T6420] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  173.737930][ T6420] 00000000: 49 4e 00 00 03 00 00 00 00 00 00 00 00 00 00 00  IN..............
[  173.780518][ T6420] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.820686][ T6420] 00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.870900][ T6420] 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.898843][ T6420] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.935247][ T6420] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.990169][ T6466] loop2: detected capacity change from 0 to 64
[  174.000640][ T6420] 00000060: ff ff ff ff 65 3f 0d b5 00 00 00 00 00 00 00 00  ....e?..........
[  174.023534][ T6420] 00000070: 00 00 00 00 00 00 05 00 00 00 00 00 00 00 00 00  ................
[  174.056077][ T6420] XFS (loop1): Internal error xfs_trans_cancel at line 1002 of file fs/xfs/xfs_trans.c.  Caller xfs_qm_qino_alloc+0x305/0x770
[  174.143573][ T6420] CPU: 0 UID: 0 PID: 6420 Comm: syz.1.121 Not tainted 6.15.0-rc1-next-20250411-syzkaller #0 PREEMPT(full) 
[  174.143609][ T6420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  174.143623][ T6420] Call Trace:
[  174.143632][ T6420]  <TASK>
[  174.143641][ T6420]  dump_stack_lvl+0x241/0x360
[  174.143685][ T6420]  ? __pfx_dump_stack_lvl+0x10/0x10
[  174.143728][ T6420]  ? xfs_error_report+0x96/0xd0
[  174.143753][ T6420]  ? xfs_qm_qino_alloc+0x305/0x770
[  174.143783][ T6420]  ? xfs_qm_qino_alloc+0x305/0x770
[  174.143824][ T6420]  xfs_trans_cancel+0x1ed/0x420
[  174.143853][ T6420]  ? xfs_qm_qino_alloc+0x305/0x770
[  174.143888][ T6420]  xfs_qm_qino_alloc+0x305/0x770
[  174.143931][ T6420]  ? __pfx_xfs_qm_qino_alloc+0x10/0x10
[  174.143986][ T6420]  xfs_qm_init_quotainos+0x691/0x8c0
[  174.144024][ T6420]  ? __pfx_xfs_qm_init_quotainos+0x10/0x10
[  174.144058][ T6420]  ? __raw_spin_lock_init+0x45/0x100
[  174.144090][ T6420]  ? __list_lru_init+0x398/0x5d0
[  174.144125][ T6420]  xfs_qm_init_quotainfo+0x184/0x12a0
[  174.144160][ T6420]  ? xa_load+0x2df/0x350
[  174.144185][ T6420]  ? xa_load+0x149/0x350
[  174.144210][ T6420]  ? __pfx_xa_load+0x10/0x10
[  174.144236][ T6420]  ? __pfx_xfs_qm_init_quotainfo+0x10/0x10
[  174.144276][ T6420]  ? xfs_group_next_range+0x53/0xb0
[  174.144301][ T6420]  ? xfs_group_next_range+0x53/0xb0
[  174.144325][ T6420]  ? xfs_group_rele+0xbd/0x240
[  174.144351][ T6420]  xfs_qm_mount_quotas+0x9e/0x6c0
[  174.144388][ T6420]  xfs_mountfs+0x1ec3/0x2510
[  174.144435][ T6420]  ? __pfx_xfs_mountfs+0x10/0x10
[  174.144467][ T6420]  ? rcu_is_watching+0x15/0xb0
[  174.144499][ T6420]  xfs_fs_fill_super+0x11f3/0x1640
[  174.144530][ T6420]  get_tree_bdev_flags+0x490/0x5c0
[  174.144558][ T6420]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  174.144593][ T6420]  ? __pfx_xfs_fs_fill_super+0x10/0x10
[  174.144616][ T6420]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  174.144645][ T6420]  ? apparmor_capable+0x13b/0x1b0
[  174.144681][ T6420]  vfs_get_tree+0x90/0x2b0
[  174.144711][ T6420]  do_new_mount+0x2cf/0xb70
[  174.144749][ T6420]  ? __pfx_do_new_mount+0x10/0x10
[  174.144800][ T6420]  __se_sys_mount+0x38c/0x400
[  174.144840][ T6420]  ? __pfx___se_sys_mount+0x10/0x10
[  174.144881][ T6420]  ? __x64_sys_mount+0x20/0xc0
[  174.144915][ T6420]  do_syscall_64+0xf3/0x230
[  174.144942][ T6420]  ? clear_bhb_loop+0x45/0xa0
[  174.144968][ T6420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.144997][ T6420] RIP: 0033:0x7f47e058e90a
[  174.145023][ T6420] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.145040][ T6420] RSP: 002b:00007f47e13a2e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  174.145072][ T6420] RAX: ffffffffffffffda RBX: 00007f47e13a2ef0 RCX: 00007f47e058e90a
[  174.145088][ T6420] RDX: 0000200000000700 RSI: 00002000000002c0 RDI: 00007f47e13a2eb0
[  174.145103][ T6420] RBP: 0000200000000700 R08: 00007f47e13a2ef0 R09: 0000000000808050
[  174.145117][ T6420] R10: 0000000000808050 R11: 0000000000000246 R12: 00002000000002c0
[  174.145132][ T6420] R13: 00007f47e13a2eb0 R14: 000000000000996e R15: 0000200000001640
[  174.145165][ T6420]  </TASK>
[  174.476768][ T6446] loop3: detected capacity change from 0 to 32768
[  174.605989][ T6446] syz.3.126: attempt to access beyond end of device
[  174.605989][ T6446] loop3: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  174.620513][ T6420] XFS (loop1): Corruption of in-memory data (0x8) detected at xfs_trans_cancel+0x206/0x420 (fs/xfs/xfs_trans.c:1003).  Shutting down filesystem.
[  174.681677][ T6420] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[  174.682682][ T6446] metapage_write_end_io: I/O error
[  174.697847][ T6446] ERROR: (device loop3): release_metapage: metapage_write_one() failed
[  174.697847][ T6446] 
[  174.715867][ T6420] XFS (loop1): xfs_qm_mount_quotas: Superblock update failed!
[  174.723681][ T6420] XFS (loop1): Failed to initialize disk quotas, err -117.
[  174.728078][ T6446] ERROR: (device loop3): remounting filesystem as read-only
[  174.731234][ T6420] XFS (loop1): Error -5 reserving per-AG metadata reserve pool.
[  174.788206][ T6446] blkno = 8ed2c, nblocks = 1
[  174.792943][ T6446] ERROR: (device loop3): dbUpdatePMap: blocks are outside the map
[  174.792943][ T6446] 
[  174.808671][ T6446] UFO tlock:0xffffc900029aa0d8
[  174.878684][  T116] blkno = 8ed2c, nblocks = 4
[  174.883333][  T116] ERROR: (device loop3): dbUpdatePMap: blocks are outside the map
[  174.883333][  T116] 
[  174.910224][ T5832] syz-executor: attempt to access beyond end of device
[  174.910224][ T5832] loop3: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  174.926671][ T5832] metapage_write_end_io: I/O error
[  175.820092][ T5832] JFS: metapage_get_blocks failed
[  175.856226][ T5832] JFS: metapage_get_blocks failed
[  175.896064][ T5832] JFS: metapage_get_blocks failed
[  175.957860][ T5832] JFS: metapage_get_blocks failed
[  176.231563][ T6482] loop4: detected capacity change from 0 to 2048
[  176.353391][ T6487] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  179.121038][ T6497] loop1: detected capacity change from 0 to 512
[  179.141203][ T6497] EXT4-fs error (device loop1): ext4_init_orphan_info:586: comm syz.1.136: inode #0: comm syz.1.136: iget: illegal inode #
[  179.156523][ T6497] EXT4-fs (loop1): get orphan inode failed
[  179.165847][ T6497] EXT4-fs (loop1): mount failed
[  179.256582][ T6497] loop1: detected capacity change from 0 to 1024
[  179.270990][ T6497] EXT4-fs: Ignoring removed orlov option
[  179.282447][ T6497] EXT4-fs (loop1): Test dummy encryption mode enabled
[  179.292444][ T6497] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal
[  182.008857][ T6520] xt_ecn: cannot match TCP bits for non-tcp packets
[  183.034512][ T6519] netlink: 12 bytes leftover after parsing attributes in process `syz.1.141'.
[  183.372987][ T6524] bond0: option ad_select: unable to set because the bond device is up
[  186.123162][ T6541] loop4: detected capacity change from 0 to 32768
[  186.141708][ T6538] loop1: detected capacity change from 0 to 256
[  186.158211][ T6542] loop2: detected capacity change from 0 to 2048
[  186.234931][ T6544] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  186.274942][ T6541] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  186.296085][ T6541] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  186.304464][ T6541] bcachefs (loop4): Version upgrade required:
[  186.304464][ T6541] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  186.304464][ T6541] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  186.304464][ T6541]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  186.374531][    C0] vkms_vblank_simulate: vblank timer overrun
[  186.395781][ T6541] bcachefs (loop4): dropping and reconstructing all alloc info
[  186.426374][ T6541] bcachefs (loop4): accounting_read... done
[  186.444342][ T6541] bcachefs (loop4): alloc_read... done
[  186.450398][ T6541] bcachefs (loop4): snapshots_read... done
[  186.456625][ T6541] bcachefs (loop4): check_allocations... done
[  186.653706][ T6541] bcachefs (loop4): going read-write
[  187.282086][ T6541] bcachefs (loop4): done starting filesystem
[  187.760867][ T6560] process 'syz.4.147' launched './file1' with NULL argv: empty string added
[  189.707448][ T6578] xt_ecn: cannot match TCP bits for non-tcp packets
[  190.390666][ T6577] netlink: 12 bytes leftover after parsing attributes in process `syz.0.154'.
[  190.789562][ T6566] loop2: detected capacity change from 0 to 32768
[  190.898058][ T6566] syz.2.152: attempt to access beyond end of device
[  190.898058][ T6566] loop2: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  190.966947][ T6566] metapage_write_end_io: I/O error
[  190.972357][ T6566] ERROR: (device loop2): release_metapage: metapage_write_one() failed
[  190.972357][ T6566] 
[  190.986787][ T6566] ERROR: (device loop2): remounting filesystem as read-only
[  190.995158][ T6566] blkno = 8ed2c, nblocks = 1
[  191.007761][ T6566] ERROR: (device loop2): dbUpdatePMap: blocks are outside the map
[  191.007761][ T6566] 
[  191.208151][ T6566] UFO tlock:0xffffc900029aa090
[  191.752522][  T116] blkno = 8ed2c, nblocks = 4
[  191.762882][ T5836] bcachefs (loop4): shutting down
[  191.768532][  T116] ERROR: (device loop2): dbUpdatePMap: blocks are outside the map
[  191.768532][  T116] 
[  191.789538][ T5836] bcachefs (loop4): going read-only
[  191.795327][ T5836] bcachefs (loop4): finished waiting for writes to stop
[  191.803700][ T5844] syz-executor: attempt to access beyond end of device
[  191.803700][ T5844] loop2: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  191.839227][ T5844] metapage_write_end_io: I/O error
[  191.842619][ T5836] bcachefs (loop4): flushing journal and stopping allocators, journal seq 11
[  191.846945][ T5844] JFS: metapage_get_blocks failed
[  191.872366][ T5844] JFS: metapage_get_blocks failed
[  191.879657][ T5836] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 11
[  191.889799][ T5844] JFS: metapage_get_blocks failed
[  191.894889][ T5844] JFS: metapage_get_blocks failed
[  191.904045][ T5836] bcachefs (loop4): unclean shutdown complete, journal seq 12
[  191.927816][ T6572] loop3: detected capacity change from 0 to 32768
[  191.945200][ T6572] XFS: ikeep mount option is deprecated.
[  191.961090][ T5836] bcachefs (loop4): done going read-only, filesystem not clean
[  192.065137][ T6572] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  192.172517][ T6572] XFS (loop3): Ending clean mount
[  192.184693][ T6572] XFS (loop3): Metadata corruption detected at xfs_dinode_verify+0x352/0x1570, inode 0x42b dinode
[  192.197870][ T6572] XFS (loop3): Unmount and run xfs_repair
[  192.203661][ T6572] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  192.221877][ T5836] bcachefs (loop4): shutdown complete
[  192.228090][ T6572] 00000000: 49 4e 00 00 03 00 00 00 00 00 00 00 00 00 00 00  IN..............
[  192.237121][ T6572] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  192.246275][ T6572] 00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  192.255341][ T6572] 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  192.264702][ T6572] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  192.273808][ T6572] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  192.282962][ T6572] 00000060: ff ff ff ff 65 3f 0d b5 00 00 00 00 00 00 00 00  ....e?..........
[  192.292024][ T6572] 00000070: 00 00 00 00 00 00 05 00 00 00 00 00 00 00 00 00  ................
[  192.301394][ T6572] XFS (loop3): Internal error xfs_trans_cancel at line 1002 of file fs/xfs/xfs_trans.c.  Caller xfs_qm_qino_alloc+0x305/0x770
[  192.315015][ T6572] CPU: 0 UID: 0 PID: 6572 Comm: syz.3.155 Not tainted 6.15.0-rc1-next-20250411-syzkaller #0 PREEMPT(full) 
[  192.315047][ T6572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  192.315060][ T6572] Call Trace:
[  192.315069][ T6572]  <TASK>
[  192.315077][ T6572]  dump_stack_lvl+0x241/0x360
[  192.315118][ T6572]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.315160][ T6572]  ? xfs_error_report+0x96/0xd0
[  192.315184][ T6572]  ? xfs_qm_qino_alloc+0x305/0x770
[  192.315213][ T6572]  ? xfs_qm_qino_alloc+0x305/0x770
[  192.315247][ T6572]  xfs_trans_cancel+0x1ed/0x420
[  192.315281][ T6572]  ? xfs_qm_qino_alloc+0x305/0x770
[  192.315316][ T6572]  xfs_qm_qino_alloc+0x305/0x770
[  192.315358][ T6572]  ? __pfx_xfs_qm_qino_alloc+0x10/0x10
[  192.315412][ T6572]  xfs_qm_init_quotainos+0x691/0x8c0
[  192.315450][ T6572]  ? __pfx_xfs_qm_init_quotainos+0x10/0x10
[  192.315483][ T6572]  ? __raw_spin_lock_init+0x45/0x100
[  192.315514][ T6572]  ? __list_lru_init+0x398/0x5d0
[  192.315548][ T6572]  xfs_qm_init_quotainfo+0x184/0x12a0
[  192.315582][ T6572]  ? xa_load+0x2df/0x350
[  192.315607][ T6572]  ? xa_load+0x149/0x350
[  192.315632][ T6572]  ? __pfx_xa_load+0x10/0x10
[  192.315657][ T6572]  ? __pfx_xfs_qm_init_quotainfo+0x10/0x10
[  192.315702][ T6572]  ? xfs_group_next_range+0x53/0xb0
[  192.315726][ T6572]  ? xfs_group_next_range+0x53/0xb0
[  192.315749][ T6572]  ? xfs_group_rele+0xbd/0x240
[  192.315776][ T6572]  xfs_qm_mount_quotas+0x9e/0x6c0
[  192.315811][ T6572]  xfs_mountfs+0x1ec3/0x2510
[  192.315860][ T6572]  ? __pfx_xfs_mountfs+0x10/0x10
[  192.315891][ T6572]  ? rcu_is_watching+0x15/0xb0
[  192.315922][ T6572]  xfs_fs_fill_super+0x11f3/0x1640
[  192.315951][ T6572]  get_tree_bdev_flags+0x490/0x5c0
[  192.315976][ T6572]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  192.316009][ T6572]  ? __pfx_xfs_fs_fill_super+0x10/0x10
[  192.316032][ T6572]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  192.316061][ T6572]  ? apparmor_capable+0x13b/0x1b0
[  192.316095][ T6572]  vfs_get_tree+0x90/0x2b0
[  192.316119][ T6572]  do_new_mount+0x2cf/0xb70
[  192.316149][ T6572]  ? __pfx_do_new_mount+0x10/0x10
[  192.316182][ T6572]  __se_sys_mount+0x38c/0x400
[  192.316212][ T6572]  ? __pfx___se_sys_mount+0x10/0x10
[  192.316243][ T6572]  ? __x64_sys_mount+0x20/0xc0
[  192.316270][ T6572]  do_syscall_64+0xf3/0x230
[  192.316297][ T6572]  ? clear_bhb_loop+0x45/0xa0
[  192.316318][ T6572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.316336][ T6572] RIP: 0033:0x7f3f9998e90a
[  192.316353][ T6572] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.316367][ T6572] RSP: 002b:00007f3f9a709e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  192.316387][ T6572] RAX: ffffffffffffffda RBX: 00007f3f9a709ef0 RCX: 00007f3f9998e90a
[  192.316399][ T6572] RDX: 0000200000000700 RSI: 00002000000002c0 RDI: 00007f3f9a709eb0
[  192.316411][ T6572] RBP: 0000200000000700 R08: 00007f3f9a709ef0 R09: 0000000000808050
[  192.316422][ T6572] R10: 0000000000808050 R11: 0000000000000246 R12: 00002000000002c0
[  192.316433][ T6572] R13: 00007f3f9a709eb0 R14: 000000000000996e R15: 0000200000001640
[  192.316459][ T6572]  </TASK>
[  192.637288][ T6572] XFS (loop3): Corruption of in-memory data (0x8) detected at xfs_trans_cancel+0x206/0x420 (fs/xfs/xfs_trans.c:1003).  Shutting down filesystem.
[  192.656013][ T6572] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[  192.665288][ T6572] XFS (loop3): xfs_qm_mount_quotas: Superblock update failed!
[  192.676711][ T6572] XFS (loop3): Failed to initialize disk quotas, err -117.
[  192.684231][ T6572] XFS (loop3): Error -5 reserving per-AG metadata reserve pool.
[  194.008829][ T6604] loop2: detected capacity change from 0 to 256
[  197.059415][ T6624] xt_ecn: cannot match TCP bits for non-tcp packets
[  198.012321][ T6623] netlink: 12 bytes leftover after parsing attributes in process `syz.0.168'.
[  199.234823][ T6636] loop4: detected capacity change from 0 to 8
[  200.889253][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  200.895626][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  201.214082][ T6639] loop0: detected capacity change from 0 to 32768
[  201.933333][ T6639] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  201.954216][ T6639] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  201.962591][ T6639] bcachefs (loop0): Version upgrade required:
[  201.962591][ T6639] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  201.962591][ T6639] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  201.962591][ T6639]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  202.106222][ T6635] SQUASHFS error: zlib decompression failed, data probably corrupt
[  202.114320][ T6635] SQUASHFS error: Failed to read block 0x13e: -5
[  202.120797][ T6635] SQUASHFS error: Unable to read metadata cache entry [13c]
[  202.128251][ T6635] SQUASHFS error: Unable to read directory block [13c:26]
[  202.136221][ T6635] SQUASHFS error: Unable to read metadata cache entry [13c]
[  202.143604][ T6635] SQUASHFS error: Unable to read directory block [13c:26]
[  202.151422][ T6635] SQUASHFS error: Unable to read metadata cache entry [13c]
[  202.158839][ T6635] SQUASHFS error: Unable to read directory block [13c:26]
[  202.196772][ T6639] bcachefs (loop0): dropping and reconstructing all alloc info
[  202.447787][ T6639] bcachefs (loop0): accounting_read... done
[  202.458109][ T6639] bcachefs (loop0): alloc_read... done
[  202.463766][ T6639] bcachefs (loop0): snapshots_read... done
[  202.469858][ T6639] bcachefs (loop0): check_allocations...
[  202.666326][ T6635] SQUASHFS error: Unable to read metadata cache entry [13c]
[  202.679469][ T6635] SQUASHFS error: Unable to read directory block [13c:26]
[  202.709377][ T6639]  done
[  202.714915][ T6639] bcachefs (loop0): going read-write
[  202.803178][ T6639] bcachefs (loop0): done starting filesystem
[  207.579694][ T5846] bcachefs (loop0): shutting down
[  207.591265][ T5846] bcachefs (loop0): going read-only
[  207.612852][ T5846] bcachefs (loop0): finished waiting for writes to stop
[  207.640447][ T5846] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  207.702746][ T5846] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 11
[  207.743568][ T5846] bcachefs (loop0): unclean shutdown complete, journal seq 12
[  207.780993][ T5846] bcachefs (loop0): done going read-only, filesystem not clean
[  207.929734][ T5846] bcachefs (loop0): shutdown complete
[  209.402016][ T6694] loop3: detected capacity change from 0 to 8
[  209.856429][ T6694] SQUASHFS error: zlib decompression failed, data probably corrupt
[  209.864708][ T6694] SQUASHFS error: Failed to read block 0x13e: -5
[  209.871353][ T6694] SQUASHFS error: Unable to read metadata cache entry [13c]
[  209.878751][ T6694] SQUASHFS error: Unable to read directory block [13c:26]
[  209.891117][ T6694] SQUASHFS error: Unable to read metadata cache entry [13c]
[  209.898608][ T6694] SQUASHFS error: Unable to read directory block [13c:26]
[  209.908600][ T6694] SQUASHFS error: Unable to read metadata cache entry [13c]
[  209.915998][ T6694] SQUASHFS error: Unable to read directory block [13c:26]
[  209.926164][ T6694] SQUASHFS error: Unable to read metadata cache entry [13c]
[  209.933623][ T6694] SQUASHFS error: Unable to read directory block [13c:26]
[  214.001826][ T6722] loop4: detected capacity change from 0 to 32768
[  215.086139][ T6722] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  215.106797][ T6722] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  215.115066][ T6722] bcachefs (loop4): Version upgrade required:
[  215.115066][ T6722] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  215.115066][ T6722] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  215.115066][ T6722]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  215.210304][ T6722] bcachefs (loop4): dropping and reconstructing all alloc info
[  215.318101][ T6722] bcachefs (loop4): accounting_read... done
[  215.335759][ T6722] bcachefs (loop4): alloc_read... done
[  215.341456][ T6722] bcachefs (loop4): snapshots_read... done
[  215.347515][ T6722] bcachefs (loop4): check_allocations... done
[  216.133460][ T6722] bcachefs (loop4): going read-write
[  216.504664][ T6747] loop3: detected capacity change from 0 to 8
[  216.559384][ T6720] loop2: detected capacity change from 0 to 32768
[  216.899609][ T6722] bcachefs (loop4): bch2_copygc_start(): error creating copygc thread EINTR
[  216.908531][ T6722] bcachefs (loop4): error starting copygc thread
[  216.915004][ T6722] bcachefs (loop4): bch2_fs_start(): error starting filesystem EINTR
[  216.926833][ T6722] bcachefs (loop4): shutting down
[  216.933380][ T6722] bcachefs (loop4): going read-only
[  216.942820][ T6722] bcachefs (loop4): finished waiting for writes to stop
[  216.959980][ T6722] bcachefs (loop4): flushing journal and stopping allocators, journal seq 10
[  217.007813][ T6722] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 10
[  217.048846][ T6722] bcachefs (loop4): unclean shutdown complete, journal seq 11
[  217.082127][ T6742] loop1: detected capacity change from 0 to 256
[  217.091271][ T6722] bcachefs (loop4): done going read-only, filesystem not clean
[  217.131727][ T6747] SQUASHFS error: zlib decompression failed, data probably corrupt
[  217.140408][ T6747] SQUASHFS error: Failed to read block 0x13e: -5
[  217.146884][ T6747] SQUASHFS error: Unable to read metadata cache entry [13c]
[  217.154688][ T6747] SQUASHFS error: Unable to read directory block [13c:26]
[  217.165027][ T6747] SQUASHFS error: Unable to read metadata cache entry [13c]
[  217.172712][ T6747] SQUASHFS error: Unable to read directory block [13c:26]
[  217.181928][ T6747] SQUASHFS error: Unable to read metadata cache entry [13c]
[  217.190313][ T6747] SQUASHFS error: Unable to read directory block [13c:26]
[  217.205408][ T6747] SQUASHFS error: Unable to read metadata cache entry [13c]
[  217.213252][ T6747] SQUASHFS error: Unable to read directory block [13c:26]
[  217.529084][ T6722] bcachefs (loop4): shutdown complete
[  217.752997][ T6750] loop3: detected capacity change from 0 to 2048
[  218.645412][ T6756] loop1: detected capacity change from 0 to 512
[  218.737029][ T6762] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  218.748610][ T6756] EXT4-fs error (device loop1): ext4_init_orphan_info:586: comm syz.1.202: inode #0: comm syz.1.202: iget: illegal inode #
[  218.867010][ T6756] EXT4-fs (loop1): get orphan inode failed
[  219.013805][ T6756] EXT4-fs (loop1): mount failed
[  219.705905][ T6756] loop1: detected capacity change from 0 to 1024
[  219.763165][ T6756] EXT4-fs: Ignoring removed orlov option
[  219.803647][ T6756] EXT4-fs (loop1): Test dummy encryption mode enabled
[  219.821265][ T6756] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal
[  220.959401][ T6722] bcachefs: bch2_fs_get_tree() error: EINTR
[  221.985165][ T6787] loop4: detected capacity change from 0 to 32768
[  222.064479][ T6787] syz.4.210: attempt to access beyond end of device
[  222.064479][ T6787] loop4: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  222.095296][ T6787] metapage_write_end_io: I/O error
[  222.104412][ T6787] ERROR: (device loop4): release_metapage: metapage_write_one() failed
[  222.104412][ T6787] 
[  222.168638][ T6787] ERROR: (device loop4): remounting filesystem as read-only
[  222.186550][  T116] blkno = 8ed2c, nblocks = 1
[  222.186889][ T6787] blkno = 8ed2c, nblocks = 1
[  222.209578][  T116] ERROR: (device loop4): dbUpdatePMap: blocks are outside the map
[  222.209578][  T116] 
[  222.220797][ T6787] ERROR: (device loop4): dbUpdatePMap: blocks are outside the map
[  222.220797][ T6787] 
[  222.379817][ T6787] ERROR: (device loop4): dtSearch: DT_GETPAGE: dtree page corrupt
[  222.379817][ T6787] 
[  222.501087][ T6787] jfs_mkdir: dtSearch returned -5
[  223.315644][ T5836] syz-executor: attempt to access beyond end of device
[  223.315644][ T5836] loop4: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  223.377915][ T5836] metapage_write_end_io: I/O error
[  223.383516][ T5836] JFS: metapage_get_blocks failed
[  223.547914][ T5836] JFS: metapage_get_blocks failed
[  223.553028][ T5836] JFS: metapage_get_blocks failed
[  223.561181][ T5836] JFS: metapage_get_blocks failed
[  224.410690][ T6794] loop2: detected capacity change from 0 to 256
[  225.397317][ T6816] loop4: detected capacity change from 0 to 32768
[  225.480861][ T6816] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  225.501291][    C1] vkms_vblank_simulate: vblank timer overrun
[  225.507534][ T6816] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  225.515742][ T6816] bcachefs (loop4): Version upgrade required:
[  225.515742][ T6816] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  225.515742][ T6816] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  225.515742][ T6816]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  225.587505][ T6816] bcachefs (loop4): dropping and reconstructing all alloc info
[  225.611431][ T6816] bcachefs (loop4): accounting_read... done
[  225.622707][ T6816] bcachefs (loop4): alloc_read... done
[  225.628336][ T6816] bcachefs (loop4): snapshots_read... done
[  225.634244][ T6816] bcachefs (loop4): check_allocations... done
[  225.658288][ T6816] bcachefs (loop4): going read-write
[  225.729719][ T6816] bcachefs (loop4): done starting filesystem
[  225.898672][ T6829] loop2: detected capacity change from 0 to 512
[  225.942777][ T6829] EXT4-fs error (device loop2): ext4_init_orphan_info:586: comm syz.2.222: inode #0: comm syz.2.222: iget: illegal inode #
[  226.022244][ T6829] EXT4-fs (loop2): get orphan inode failed
[  226.433499][ T6829] EXT4-fs (loop2): mount failed
[  226.825337][ T6829] loop2: detected capacity change from 0 to 1024
[  226.878871][ T5836] bcachefs (loop4): shutting down
[  226.883967][ T5836] bcachefs (loop4): going read-only
[  226.901761][ T6829] EXT4-fs: Ignoring removed orlov option
[  227.062097][ T5836] bcachefs (loop4): finished waiting for writes to stop
[  227.083742][ T6829] EXT4-fs (loop2): Test dummy encryption mode enabled
[  227.177964][ T6829] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[  227.263433][ T5836] bcachefs (loop4): flushing journal and stopping allocators, journal seq 11
[  227.312288][ T5836] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 11
[  227.950806][ T5836] bcachefs (loop4): unclean shutdown complete, journal seq 12
[  228.169935][ T5836] bcachefs (loop4): done going read-only, filesystem not clean
[  228.200243][ T6844] bond0: entered promiscuous mode
[  228.218107][ T6844] bond_slave_0: entered promiscuous mode
[  228.244459][ T6844] bond_slave_1: entered promiscuous mode
[  228.323040][ T5836] bcachefs (loop4): shutdown complete
[  228.903434][ T6854] loop3: detected capacity change from 0 to 2048
[  228.982284][ T6856] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  230.719559][ T6868] loop2: detected capacity change from 0 to 256
[  233.107445][ T6883] loop0: detected capacity change from 0 to 64
[  238.572169][ T6924] loop1: detected capacity change from 0 to 256
[  238.923993][ T6931] loop3: detected capacity change from 0 to 64
[  239.975040][ T6935] loop3: detected capacity change from 0 to 2048
[  240.090714][ T6940] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  244.895306][ T6971] loop2: detected capacity change from 0 to 256
[  245.392054][ T6983] loop1: detected capacity change from 0 to 64
[  250.230275][ T7015] loop1: detected capacity change from 0 to 2048
[  251.186639][ T7021] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  252.518731][ T7031] loop3: detected capacity change from 0 to 256
[  252.610539][ T7037] loop0: detected capacity change from 0 to 64
[  256.093252][ T7055] loop4: detected capacity change from 0 to 512
[  256.797949][ T7055] EXT4-fs error (device loop4): ext4_init_orphan_info:586: comm syz.4.293: inode #0: comm syz.4.293: iget: illegal inode #
[  256.812948][ T7055] EXT4-fs (loop4): get orphan inode failed
[  256.819934][ T7055] EXT4-fs (loop4): mount failed
[  256.918084][ T7055] loop4: detected capacity change from 0 to 1024
[  256.980138][ T7055] EXT4-fs: Ignoring removed orlov option
[  257.005928][ T7055] EXT4-fs (loop4): Test dummy encryption mode enabled
[  257.015631][ T7055] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  259.080307][ T7075] loop3: detected capacity change from 0 to 32768
[  259.325206][ T7075] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  259.347878][ T7075] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  259.355967][ T7075] bcachefs (loop3): Version upgrade required:
[  259.355967][ T7075] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  259.355967][ T7075] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  259.355967][ T7075]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  259.479987][ T7075] bcachefs (loop3): dropping and reconstructing all alloc info
[  259.523815][ T7078] loop2: detected capacity change from 0 to 256
[  259.549791][ T7075] bcachefs (loop3): accounting_read... done
[  259.599116][ T7075] bcachefs (loop3): alloc_read... done
[  259.604674][ T7075] bcachefs (loop3): snapshots_read... done
[  259.610666][ T7075] bcachefs (loop3): check_allocations... done
[  259.650119][ T7075] bcachefs (loop3): going read-write
[  259.676930][ T7083] bond0: entered promiscuous mode
[  259.686250][ T7083] bond_slave_0: entered promiscuous mode
[  259.697131][ T7083] bond_slave_1: entered promiscuous mode
[  259.748091][ T7075] bcachefs (loop3): done starting filesystem
[  260.136909][ T7078] FAT-fs (loop2): Directory bread(block 64) failed
[  260.211144][ T7078] FAT-fs (loop2): Directory bread(block 65) failed
[  260.299294][ T7078] FAT-fs (loop2): Directory bread(block 66) failed
[  260.305888][ T7078] FAT-fs (loop2): Directory bread(block 67) failed
[  260.517371][ T5832] bcachefs (loop3): shutting down
[  260.538275][ T7078] FAT-fs (loop2): Directory bread(block 68) failed
[  260.565249][ T7078] FAT-fs (loop2): Directory bread(block 69) failed
[  260.577962][ T5832] bcachefs (loop3): going read-only
[  260.602807][ T7098] loop0: detected capacity change from 0 to 8
[  260.671102][ T5832] bcachefs (loop3): finished waiting for writes to stop
[  260.727147][ T7078] FAT-fs (loop2): Directory bread(block 70) failed
[  260.738891][ T7098] SQUASHFS error: zlib decompression failed, data probably corrupt
[  260.747278][ T7098] SQUASHFS error: Failed to read block 0x13e: -5
[  260.755666][ T7098] SQUASHFS error: Unable to read metadata cache entry [13c]
[  260.763304][ T7098] SQUASHFS error: Unable to read directory block [13c:26]
[  260.782904][ T7098] SQUASHFS error: Unable to read metadata cache entry [13c]
[  260.790541][ T7098] SQUASHFS error: Unable to read directory block [13c:26]
[  260.800169][ T7098] SQUASHFS error: Unable to read metadata cache entry [13c]
[  260.807565][ T7098] SQUASHFS error: Unable to read directory block [13c:26]
[  260.816840][ T7098] SQUASHFS error: Unable to read metadata cache entry [13c]
[  260.824385][ T7098] SQUASHFS error: Unable to read directory block [13c:26]
[  261.031741][ T7078] FAT-fs (loop2): Directory bread(block 71) failed
[  261.087872][ T7078] FAT-fs (loop2): Directory bread(block 72) failed
[  261.136552][ T7078] FAT-fs (loop2): Directory bread(block 73) failed
[  261.211230][ T5832] bcachefs (loop3): flushing journal and stopping allocators, journal seq 11
[  261.228855][ T5832] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 11
[  261.252892][ T5832] bcachefs (loop3): unclean shutdown complete, journal seq 12
[  261.837849][ T7103] xt_ecn: cannot match TCP bits for non-tcp packets
[  262.280055][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  262.286545][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  262.453194][ T5832] bcachefs (loop3): done going read-only, filesystem not clean
[  262.506761][ T7103] netlink: 12 bytes leftover after parsing attributes in process `syz.0.302'.
[  262.669504][ T5832] bcachefs (loop3): shutdown complete
[  266.370543][ T7152] loop0: detected capacity change from 0 to 256
[  267.825448][ T7168] loop2: detected capacity change from 0 to 2048
[  267.935606][ T7170] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  268.316978][ T7173] loop0: detected capacity change from 0 to 8
[  268.405690][ T7173] SQUASHFS error: zlib decompression failed, data probably corrupt
[  268.414082][ T7173] SQUASHFS error: Failed to read block 0x13e: -5
[  268.420636][ T7173] SQUASHFS error: Unable to read metadata cache entry [13c]
[  268.428039][ T7173] SQUASHFS error: Unable to read directory block [13c:26]
[  268.439629][ T7173] SQUASHFS error: Unable to read metadata cache entry [13c]
[  268.447049][ T7173] SQUASHFS error: Unable to read directory block [13c:26]
[  268.456904][ T7173] SQUASHFS error: Unable to read metadata cache entry [13c]
[  268.464417][ T7173] SQUASHFS error: Unable to read directory block [13c:26]
[  271.058486][ T7191] loop0: detected capacity change from 0 to 32768
[  272.176269][ T7191] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  272.197222][ T7191] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  272.205529][ T7191] bcachefs (loop0): Version upgrade required:
[  272.205529][ T7191] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  272.205529][ T7191] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  272.205529][ T7191]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  272.286914][ T7191] bcachefs (loop0): dropping and reconstructing all alloc info
[  272.312320][ T7191] bcachefs (loop0): accounting_read... done
[  272.341390][ T7191] bcachefs (loop0): alloc_read... done
[  272.346987][ T7191] bcachefs (loop0): snapshots_read... done
[  272.353042][ T7191] bcachefs (loop0): check_allocations... done
[  272.438599][ T7191] bcachefs (loop0): going read-write
[  272.522071][ T7191] bcachefs (loop0): done starting filesystem
[  273.865135][ T5846] bcachefs (loop0): shutting down
[  273.976666][ T5846] bcachefs (loop0): going read-only
[  274.327554][ T5846] bcachefs (loop0): finished waiting for writes to stop
[  274.385685][ T5846] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  274.411376][ T5846] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 11
[  274.598758][ T5846] bcachefs (loop0): unclean shutdown complete, journal seq 12
[  274.656549][ T5846] bcachefs (loop0): done going read-only, filesystem not clean
[  275.529670][ T7256] loop4: detected capacity change from 0 to 256
[  275.542088][ T5846] bcachefs (loop0): shutdown complete
[  275.627650][ T7260] loop1: detected capacity change from 0 to 8
[  276.168504][ T7260] SQUASHFS error: zlib decompression failed, data probably corrupt
[  276.176686][ T7260] SQUASHFS error: Failed to read block 0x13e: -5
[  276.183288][ T7260] SQUASHFS error: Unable to read metadata cache entry [13c]
[  276.190755][ T7260] SQUASHFS error: Unable to read directory block [13c:26]
[  276.201877][ T7260] SQUASHFS error: Unable to read metadata cache entry [13c]
[  276.209363][ T7260] SQUASHFS error: Unable to read directory block [13c:26]
[  276.219285][ T7260] SQUASHFS error: Unable to read metadata cache entry [13c]
[  276.226671][ T7260] SQUASHFS error: Unable to read directory block [13c:26]
[  279.674665][ T7315] loop4: detected capacity change from 0 to 32768
[  280.690285][ T7315] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  280.710901][ T7315] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  280.719231][ T7315] bcachefs (loop4): Version upgrade required:
[  280.719231][ T7315] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  280.719231][ T7315] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  280.719231][ T7315]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  280.793954][ T7315] bcachefs (loop4): dropping and reconstructing all alloc info
[  280.880901][ T7315] bcachefs (loop4): accounting_read... done
[  280.895689][ T7315] bcachefs (loop4): alloc_read... done
[  280.901254][ T7315] bcachefs (loop4): snapshots_read... done
[  280.907149][ T7315] bcachefs (loop4): check_allocations... done
[  281.000761][ T7315] bcachefs (loop4): going read-write
[  282.185026][ T7315] bcachefs (loop4): done starting filesystem
[  283.194197][ T5836] bcachefs (loop4): shutting down
[  283.227076][ T5836] bcachefs (loop4): going read-only
[  283.245414][ T5836] bcachefs (loop4): finished waiting for writes to stop
[  283.286861][ T5836] bcachefs (loop4): flushing journal and stopping allocators, journal seq 11
[  283.335822][ T5836] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 11
[  283.361318][ T5836] bcachefs (loop4): unclean shutdown complete, journal seq 12
[  283.410001][ T5836] bcachefs (loop4): done going read-only, filesystem not clean
[  283.569717][ T5836] bcachefs (loop4): shutdown complete
[  283.855953][ T7345] loop3: detected capacity change from 0 to 8
[  285.293877][ T7345] SQUASHFS error: zlib decompression failed, data probably corrupt
[  285.302155][ T7345] SQUASHFS error: Failed to read block 0x13e: -5
[  285.308804][ T7345] SQUASHFS error: Unable to read metadata cache entry [13c]
[  285.316321][ T7345] SQUASHFS error: Unable to read directory block [13c:26]
[  285.326293][ T7345] SQUASHFS error: Unable to read metadata cache entry [13c]
[  285.334013][ T7345] SQUASHFS error: Unable to read directory block [13c:26]
[  285.343083][ T7345] SQUASHFS error: Unable to read metadata cache entry [13c]
[  285.350994][ T7345] SQUASHFS error: Unable to read directory block [13c:26]
[  287.393312][ T7383] loop2: detected capacity change from 0 to 2048
[  287.627445][ T7391] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  287.959884][ T7390] loop3: detected capacity change from 0 to 256
[  290.344994][ T7409] loop3: detected capacity change from 0 to 32768
[  290.438091][ T7409] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  290.459573][ T7409] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  290.467855][ T7409] bcachefs (loop3): Version upgrade required:
[  290.467855][ T7409] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  290.467855][ T7409] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  290.467855][ T7409]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  290.560344][ T7409] bcachefs (loop3): dropping and reconstructing all alloc info
[  290.597610][ T7409] bcachefs (loop3): accounting_read... done
[  290.653924][ T7409] bcachefs (loop3): alloc_read... done
[  290.659706][ T7409] bcachefs (loop3): snapshots_read... done
[  290.665604][ T7409] bcachefs (loop3): check_allocations... done
[  290.699161][ T7409] bcachefs (loop3): going read-write
[  290.808083][ T7409] bcachefs (loop3): done starting filesystem
[  291.843104][ T5832] bcachefs (loop3): shutting down
[  291.861955][ T5832] bcachefs (loop3): going read-only
[  291.887875][ T5832] bcachefs (loop3): finished waiting for writes to stop
[  292.047835][ T5832] bcachefs (loop3): flushing journal and stopping allocators, journal seq 11
[  292.238192][ T5832] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 11
[  292.364581][ T5832] bcachefs (loop3): unclean shutdown complete, journal seq 12
[  292.568341][ T5832] bcachefs (loop3): done going read-only, filesystem not clean
[  293.313239][ T7470] loop2: detected capacity change from 0 to 8
[  294.195710][ T7470] SQUASHFS error: zlib decompression failed, data probably corrupt
[  294.204177][ T7470] SQUASHFS error: Failed to read block 0x13e: -5
[  294.211000][ T7470] SQUASHFS error: Unable to read metadata cache entry [13c]
[  294.218627][ T7470] SQUASHFS error: Unable to read directory block [13c:26]
[  294.230820][ T7470] SQUASHFS error: Unable to read metadata cache entry [13c]
[  294.238642][ T7470] SQUASHFS error: Unable to read directory block [13c:26]
[  294.248233][ T7470] SQUASHFS error: Unable to read metadata cache entry [13c]
[  294.255762][ T7470] SQUASHFS error: Unable to read directory block [13c:26]
[  294.984010][ T5832] bcachefs (loop3): shutdown complete
[  296.921586][ T7481] loop2: detected capacity change from 0 to 256
[  299.489795][ T7500] loop0: detected capacity change from 0 to 2048
[  299.781162][ T7508] loop4: detected capacity change from 0 to 256
[  299.803279][ T7509] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  300.415378][ T7508] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  301.975583][ T7545] loop2: detected capacity change from 0 to 8
[  302.114817][ T7545] SQUASHFS error: zlib decompression failed, data probably corrupt
[  302.122964][ T7545] SQUASHFS error: Failed to read block 0x13e: -5
[  302.129533][ T7545] SQUASHFS error: Unable to read metadata cache entry [13c]
[  302.136930][ T7545] SQUASHFS error: Unable to read directory block [13c:26]
[  302.148891][ T7545] SQUASHFS error: Unable to read metadata cache entry [13c]
[  302.156353][ T7545] SQUASHFS error: Unable to read directory block [13c:26]
[  302.166263][ T7545] SQUASHFS error: Unable to read metadata cache entry [13c]
[  302.173898][ T7545] SQUASHFS error: Unable to read directory block [13c:26]
[  308.673933][ T7585] loop1: detected capacity change from 0 to 256
[  309.060424][ T7585] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  309.351667][ T5156] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  309.529897][ T5156] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  309.543098][ T5156] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  309.571994][ T5156] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  309.582579][ T5156] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  310.142922][ T5834] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  310.163143][ T5834] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  310.178176][ T5834] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  310.216527][ T5834] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  310.226936][ T5834] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  312.328161][ T5834] Bluetooth: hci5: command tx timeout
[  313.671598][ T7635] ------------[ cut here ]------------
[  313.677363][ T7635] WARNING: CPU: 1 PID: 7635 at net/ipv4/udp_offload.c:123 udp_tunnel_update_gro_rcv+0x28d/0x4c0
[  313.688052][ T7635] Modules linked in:
[  313.692158][ T7635] CPU: 1 UID: 0 PID: 7635 Comm: syz.0.382 Not tainted 6.15.0-rc1-next-20250411-syzkaller #0 PREEMPT(full) 
[  313.703632][ T7635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  313.713804][ T7635] RIP: 0010:udp_tunnel_update_gro_rcv+0x28d/0x4c0
[  313.720351][ T7635] Code: 00 00 e8 b6 b3 2c f7 48 c1 e5 04 48 8d b5 60 c0 c8 9a ba 10 00 00 00 4c 89 ff e8 2e ee 96 f7 e9 ce 00 00 00 e8 94 b3 2c f7 90 <0f> 0b 90 e9 de fd ff ff bf 01 00 00 00 89 ee e8 bf b7 2c f7 85 ed
[  313.740084][ T7635] RSP: 0018:ffffc9000b09fc48 EFLAGS: 00010293
[  313.746625][ T7635] RAX: ffffffff8a96c80c RBX: 0000000000000001 RCX: ffff88803576da00
[  313.754787][ T7635] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  313.762815][ T7635] RBP: 0000000000000000 R08: ffffffff8a96c4ee R09: 1ffffffff20c0836
[  313.770867][ T7635] R10: dffffc0000000000 R11: fffffbfff20c0837 R12: ffffffff86e0c410
[  313.778936][ T7635] R13: dffffc0000000000 R14: ffff88807b44fd80 R15: 0000000000000000
[  313.786927][ T7635] FS:  000055558cdfd500(0000) GS:ffff888125080000(0000) knlGS:0000000000000000
[  313.795923][ T7635] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  313.802583][ T7635] CR2: 000000110c2c72f5 CR3: 0000000071f50000 CR4: 00000000003526f0
[  313.810649][ T7635] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  313.818700][ T7635] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  313.826693][ T7635] Call Trace:
[  313.830039][ T7635]  <TASK>
[  313.832979][ T7635]  udpv6_destroy_sock+0x212/0x270
[  313.838063][ T7635]  ? __pfx_udpv6_destroy_sock+0x10/0x10
[  313.843630][ T7635]  sk_common_release+0x71/0x2e0
[  313.848558][ T7635]  inet_release+0x17d/0x200
[  313.853089][ T7635]  sock_close+0xbc/0x240
[  313.857361][ T7635]  ? __pfx_sock_close+0x10/0x10
[  313.862276][ T7635]  __fput+0x3e9/0x9f0
[  313.866275][ T7635]  task_work_run+0x251/0x310
[  313.870947][ T7635]  ? _raw_spin_unlock+0x28/0x50
[  313.875809][ T7635]  ? __pfx_task_work_run+0x10/0x10
[  313.880978][ T7635]  ? syscall_exit_to_user_mode+0xa3/0x340
[  313.886723][ T7635]  syscall_exit_to_user_mode+0x13f/0x340
[  313.892413][ T7635]  do_syscall_64+0x100/0x230
[  313.897010][ T7635]  ? clear_bhb_loop+0x45/0xa0
[  313.901734][ T7635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.907693][ T7635] RIP: 0033:0x7f0fc138d169
[  313.912125][ T7635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.931800][ T7635] RSP: 002b:00007ffd39295178 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  313.940265][ T7635] RAX: 0000000000000000 RBX: 00007f0fc15a7ba0 RCX: 00007f0fc138d169
[  313.948292][ T7635] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  313.956270][ T7635] RBP: 00007f0fc15a7ba0 R08: 00000000000000c0 R09: 0000000a3929546f
[  313.964290][ T7635] R10: 00007f0fc15a7ac0 R11: 0000000000000246 R12: 000000000004c8c4
[  313.972335][ T7635] R13: 00007f0fc15a6240 R14: ffffffffffffffff R15: 00007ffd39295290
[  313.980372][ T7635]  </TASK>
[  313.983397][ T7635] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  313.990685][ T7635] CPU: 1 UID: 0 PID: 7635 Comm: syz.0.382 Not tainted 6.15.0-rc1-next-20250411-syzkaller #0 PREEMPT(full) 
[  314.002050][ T7635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  314.012126][ T7635] Call Trace:
[  314.015407][ T7635]  <TASK>
[  314.018347][ T7635]  dump_stack_lvl+0x241/0x360
[  314.023045][ T7635]  ? __pfx_dump_stack_lvl+0x10/0x10
[  314.028272][ T7635]  ? __pfx__printk+0x10/0x10
[  314.032894][ T7635]  ? vscnprintf+0x5d/0x90
[  314.037234][ T7635]  panic+0x349/0x880
[  314.041137][ T7635]  ? __warn+0x174/0x4d0
[  314.045304][ T7635]  ? __pfx_panic+0x10/0x10
[  314.049756][ T7635]  __warn+0x344/0x4d0
[  314.053742][ T7635]  ? udp_tunnel_update_gro_rcv+0x28d/0x4c0
[  314.059559][ T7635]  report_bug+0x2b3/0x500
[  314.063887][ T7635]  ? udp_tunnel_update_gro_rcv+0x28d/0x4c0
[  314.069697][ T7635]  ? udp_tunnel_update_gro_rcv+0x28d/0x4c0
[  314.075508][ T7635]  ? udp_tunnel_update_gro_rcv+0x28f/0x4c0
[  314.081325][ T7635]  handle_bug+0x89/0x170
[  314.085589][ T7635]  exc_invalid_op+0x1a/0x50
[  314.090101][ T7635]  asm_exc_invalid_op+0x1a/0x20
[  314.094951][ T7635] RIP: 0010:udp_tunnel_update_gro_rcv+0x28d/0x4c0
[  314.101378][ T7635] Code: 00 00 e8 b6 b3 2c f7 48 c1 e5 04 48 8d b5 60 c0 c8 9a ba 10 00 00 00 4c 89 ff e8 2e ee 96 f7 e9 ce 00 00 00 e8 94 b3 2c f7 90 <0f> 0b 90 e9 de fd ff ff bf 01 00 00 00 89 ee e8 bf b7 2c f7 85 ed
[  314.121429][ T7635] RSP: 0018:ffffc9000b09fc48 EFLAGS: 00010293
[  314.127500][ T7635] RAX: ffffffff8a96c80c RBX: 0000000000000001 RCX: ffff88803576da00
[  314.135472][ T7635] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  314.143531][ T7635] RBP: 0000000000000000 R08: ffffffff8a96c4ee R09: 1ffffffff20c0836
[  314.151505][ T7635] R10: dffffc0000000000 R11: fffffbfff20c0837 R12: ffffffff86e0c410
[  314.159478][ T7635] R13: dffffc0000000000 R14: ffff88807b44fd80 R15: 0000000000000000
[  314.167479][ T7635]  ? __pfx_geneve_gro_receive+0x10/0x10
[  314.173034][ T7635]  ? udp_tunnel_update_gro_rcv+0xce/0x4c0
[  314.178757][ T7635]  ? udp_tunnel_update_gro_rcv+0x3ec/0x4c0
[  314.184575][ T7635]  ? udp_tunnel_update_gro_rcv+0x3ec/0x4c0
[  314.190401][ T7635]  udpv6_destroy_sock+0x212/0x270
[  314.195429][ T7635]  ? __pfx_udpv6_destroy_sock+0x10/0x10
[  314.201061][ T7635]  sk_common_release+0x71/0x2e0
[  314.205928][ T7635]  inet_release+0x17d/0x200
[  314.210447][ T7635]  sock_close+0xbc/0x240
[  314.214701][ T7635]  ? __pfx_sock_close+0x10/0x10
[  314.219561][ T7635]  __fput+0x3e9/0x9f0
[  314.223575][ T7635]  task_work_run+0x251/0x310
[  314.228286][ T7635]  ? _raw_spin_unlock+0x28/0x50
[  314.233146][ T7635]  ? __pfx_task_work_run+0x10/0x10
[  314.238267][ T7635]  ? syscall_exit_to_user_mode+0xa3/0x340
[  314.243992][ T7635]  syscall_exit_to_user_mode+0x13f/0x340
[  314.249630][ T7635]  do_syscall_64+0x100/0x230
[  314.254223][ T7635]  ? clear_bhb_loop+0x45/0xa0
[  314.258922][ T7635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.264830][ T7635] RIP: 0033:0x7f0fc138d169
[  314.269243][ T7635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  314.288871][ T7635] RSP: 002b:00007ffd39295178 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  314.297308][ T7635] RAX: 0000000000000000 RBX: 00007f0fc15a7ba0 RCX: 00007f0fc138d169
[  314.305339][ T7635] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  314.313350][ T7635] RBP: 00007f0fc15a7ba0 R08: 00000000000000c0 R09: 0000000a3929546f
[  314.321352][ T7635] R10: 00007f0fc15a7ac0 R11: 0000000000000246 R12: 000000000004c8c4
[  314.329399][ T7635] R13: 00007f0fc15a6240 R14: ffffffffffffffff R15: 00007ffd39295290
[  314.337737][ T7635]  </TASK>
[  314.340949][ T7635] Kernel Offset: disabled
[  314.345284][ T7635] Rebooting in 86400 seconds..