last executing test programs:

5m13.797583989s ago: executing program 1 (id=2):
socket$inet(0x2, 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000004c0)={{{@in=@multicast1, @in6=@ipv4={""/10, ""/2, @multicast1}}}, {{@in6=@ipv4={""/10, ""/2, @empty}}, 0x0, @in=@loopback}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x21adc51, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x89901)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1000401, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@noload}, {@noblock_validity}]}, 0x84, 0x497, &(0x7f0000001540)="$eJzs3MtvG8UfAPDvrvPoO/n1Vx59QAMFEVFImrRAD0gIBFIvSEhwgGNIQ1XqtqgJEq0q2iJUjoi/ADgi8RdwggsCTiCucEdIFeqlhQMyWns3cWLXuHYdh/rzkdaZ2dfM7OxkZ3e8DmBgTWQfScS2iPglIsZq0dUrTNT+3Lx+cf7P6xfnk6hUXv1jtLrejesX54tVi+225pHJNCL9MIm9TdJdPH/h1Fy5vHAuj08vnX5nevH8hSdPnp47sXBi4czs0aNHDs888/TsU3eknFm5bux5/+y+3cfe+OTl+Uq8+f2XWX635cvry1Ez3nWaEzERlUqlkq6aO1L9fLTrvW8s2yPiSh5OhvqcGdpWioisuoar7X8sSrFSeWPx0gd9zRzQU9n1abRhbin/O5RkyzfVrQvcTRLtGgZUccXP7n+Lab36HhvBteezz4Vq+W/mU23JUGT37cl47Y691KP0t0XE65f/+jSboulzCACAO+vrrP/zRLP+Xxr31q23Ix9DGY+IgxGxMyL+HxG7IuKeiOq690XE/beZfnX86cpKvLH/89PmjgvXhqz/92w+trW6/7c8ajNeymPbq+UfTt46WV44lB+TyRgezeIzLdL45sWfP77Vsom6/l82ZekXfcE8H78PrXlAd3xuaa6bMte7diViz1Cz8ifLIwFJROyOiD0d7D87Zicf/2JfFt6xtXH5v5e/lcsd5Gi1yucRj9Xq/3KsKX8hqQ2R3Gp8cnpTlBcOTRdnRaMffrz6Sn18uC7cXfm7l9X/lqbnf17+ohkU47WLbe54ZCV49deP8n02NuVOz/+R5LVVybw3t7R0biZiZCQa58+ubFvEi/Wz8k8eiLiaDwTXt/+dEX9/lm+3NyKyk/iBiHgwIvbneX8oIh6OiAMtDsV3LzzyduuD1d/6P96q/iPGk/rx+g4CpVPfflXsbLkq838u7dX/kWpoMp/Tzv+/djN4J44hAAAAbHRpdQw6SaeWw2k6NVX7Dv+u2JKWzy4uHZyId88cr41Vj8dwWjzpGqt7HjqTPxsu4rNr4ocj4n/Vbxptrsan5s+Wt/e78DDgtt6i/Wd+69WXXoCN47be10p6lw9g/XlfEwZX2+1/uLf5ANaf6z8MLu0fBlez9n8p4mYfsgKss9u6/j/Xu3wA669V+/fID+5u7v9hcGn/MJAaX4kvfqOhkzf9VwI7j3W1+QAFSj3ac9T/aEcPApH2/dB1Hkg3Qjb254HRiGh3q0s9rdO15w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB/3z8BAAD//yxO2No=")

5m13.271921453s ago: executing program 1 (id=7):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000080), 0x255f, 0x2)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x0, 0x1000000d)
open(&(0x7f0000000000)='./bus\x00', 0x1, 0xc32a4cddd557707a)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xc})
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0xffffb8f3, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x80, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x40000, 0x1ef, 0x4, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x0, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x80000005, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x7f, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0x1, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x47, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x8, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

5m8.870532538s ago: executing program 1 (id=11):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x458, 0x5013, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x64, 0x1, {0x22, 0x4f8}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x4, 0xbc}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)
syz_open_dev$hiddev(0x0, 0x2, 0xc40)
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f00000001c0)=ANY=[], 0x0)
syz_usb_ep_read(r1, 0xf, 0x0, 0x0)
syz_usb_connect(0x4, 0x0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000300)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
r2 = syz_open_dev$hiddev(&(0x7f0000000100), 0x0, 0x882)
read$hiddev(r2, &(0x7f0000000140)=""/118, 0x76)

5m8.086676179s ago: executing program 32 (id=11):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x458, 0x5013, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x64, 0x1, {0x22, 0x4f8}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x4, 0xbc}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)
syz_open_dev$hiddev(0x0, 0x2, 0xc40)
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f00000001c0)=ANY=[], 0x0)
syz_usb_ep_read(r1, 0xf, 0x0, 0x0)
syz_usb_connect(0x4, 0x0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000300)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
r2 = syz_open_dev$hiddev(&(0x7f0000000100), 0x0, 0x882)
read$hiddev(r2, &(0x7f0000000140)=""/118, 0x76)

43.592626802s ago: executing program 4 (id=395):
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$uac1(0x0, 0x0, 0x0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x20, &(0x7f0000000680)=ANY=[@ANYBLOB="2003a162a8057c983cc48b206ba7e83958361307aac221a037db83269f2d9458"]}]})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000040), 0x2, 0x0)
write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000180)=ANY=[@ANYRESDEC=r1], 0x12)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, 0x0, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x0, &(0x7f0000000040)=0x2800, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$cec(&(0x7f00000006c0), 0x0, 0x0)
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000700)=0x5)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x28, 0x7, 0xa, 0x801, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}]}, 0x28}}, 0x20080080)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000001200)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000f70000000003000000500001800400028038000400200001000a00000000007da8e2a90000000000000000ffff7f000001000000001400020002000000ffffffff00000000000000000e0001006574683a766c616e30"], 0x64}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r7, 0x8982, &(0x7f0000000000)={0x1, 'vlan0\x00'})

32.733834005s ago: executing program 4 (id=404):
r0 = syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000000000000000, 0xffffffffffffffc3}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_LOOKUP_BATCH(0x19, 0x0, 0x0)
socket$inet(0x2, 0x3, 0x8d)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000001080)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000050000000000000001000084000000000300000002000000"], 0x0, 0x41, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
mkdir(&(0x7f0000000180)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000001180)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_buf(r4, 0x0, 0x8008000000010, &(0x7f0000000000)="17000000020001000003f68c5ee17688a200320802d6da123aa983b77f0300000a9a2f00009afc5ad9485bbb6a880000d6c8db0000dba67e694517e3cdff06018000020000f10607bdff59100ac45761407a681f009cee4a5acb3da404001fb71cacebc7b44e096a315033bf79ac0800060115003901000000000000ea000000000000000009ffff02dfccebf6ba0008400200000000e90554062a84e605007f71174aa951f3b0a0c9251574ca408991698bc63e5c83f1ba", 0xb8)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$inet6(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0xffffffff80000900, 0xee01, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x10, &(0x7f0000001cc0)=ANY=[])

30.387814057s ago: executing program 4 (id=408):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='hfs\x00', 0x1000400, 0x0)
setsockopt$sock_int(r5, 0x1, 0x8, 0x0, 0x0)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
r6 = accept(r3, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

28.368685075s ago: executing program 4 (id=412):
add_key(0x0, &(0x7f0000003a40)={'syz', 0x3}, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
lstat(0x0, 0x0)
r0 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000, &(0x7f0000000300)={[{@nombcache}, {@barrier_val={'barrier', 0x3d, 0x3ff}}, {@stripe={'stripe', 0x3d, 0x7}}, {@discard}, {@data_ordered}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@max_batch_time}, {@test_dummy_encryption}]}, 0xd, 0x5f6, &(0x7f0000000c00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080))
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_SCRNMAP(r2, 0x4b49, &(0x7f0000003140)=""/4111)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x8000)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r5, 0x40485404, &(0x7f00000000c0)={{0x2, 0x3, 0x4, 0x1, 0x101}, 0x8, 0x1})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f0000001200)={{r4}, "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"})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$binfmt_aout(r7, 0x0, 0xff2e)
splice(r7, 0x0, r6, 0x0, 0x3, 0x0)

22.964745912s ago: executing program 4 (id=418):
mknod$loop(0x0, 0x4401, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = getpgid(0x0)
prlimit64(r0, 0x4, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1, 0x0, 0x1}, 0x18)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_IOC_FAIL(r2, 0x4c80, 0xffffffffffffffb6)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r5, &(0x7f0000000200)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x3c, 0x2, [@TCA_FLOWER_ACT={0x38, 0x3, [@m_connmark={0x34, 0x1, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x6c}}, 0x24000000)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)
writev(r3, &(0x7f0000000040)=[{&(0x7f0000000180)="290000002000190f00003fffffffda060200000000e80001dd0000040d001800ea11c21d0005000000", 0x29}], 0x1)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000040)={'syztnl1\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x2f, 0x1, 0x74, 0x0, 0x1, @ipv4={'\x00', '\xff\xff', @broadcast}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x1, 0x7, 0x5}})

20.705268203s ago: executing program 4 (id=421):
socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r3, 0x40045431, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
r4 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r4, 0x1, 0x4000000000000002, 0x0, 0x0)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(r5, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000000000ff0800ed05000600200000000a00060000000000000500e50000070000001ffeff0001000003f1dc7f7c6e870200010000000800004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmmsg(r5, &(0x7f0000000180), 0x400008a, 0x700)
listen(r4, 0x2)
getsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000001c0), &(0x7f0000000280)=0x4)

16.27886516s ago: executing program 2 (id=426):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
flistxattr(0xffffffffffffffff, &(0x7f0000000d40)=""/184, 0xb8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(r1, 0x0, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000c18000)="beef915d564c90c200"/24, 0x18)
r8 = accept$alg(r7, 0x0, 0x0)
write$binfmt_script(r8, &(0x7f0000004180), 0xff77)
ioctl$USBDEVFS_CLEAR_HALT(r3, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
connect$inet(r0, 0x0, 0x0)

14.896522697s ago: executing program 2 (id=428):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
syz_open_procfs(0x0, &(0x7f0000000040)='syscall\x00')
io_submit(0x0, 0x0, &(0x7f0000000940))
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
r4 = openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setuid(0xee00)
utimensat(r4, 0x0, 0x0, 0x0)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000300)={<r5=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2, 0x400}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x85, &(0x7f00000004c0)={r5, @in={{0x2, 0xfffe, @empty}}, 0x1, 0x7ffe}, 0x90)
socket$alg(0x26, 0x5, 0x0)

14.071595458s ago: executing program 3 (id=429):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty, 0x2}, 0x1c)
socket$pppl2tp(0x18, 0x1, 0x1)
prctl$PR_SET_DUMPABLE(0x4, 0x4)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42031, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x80000)
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x5)
setsockopt$inet_tcp_int(r3, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
r4 = syz_open_dev$radio(&(0x7f0000000140), 0x0, 0x2)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205647, 0x0)
r5 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$FUSE_DIRENT(r5, &(0x7f0000000200)=ANY=[@ANYRESHEX=r2], 0x58)
syz_open_dev$sndctrl(&(0x7f0000000600), 0x2, 0x0)

12.789348077s ago: executing program 0 (id=430):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000ac0)={0x0, 0x0}, 0x10)
openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000003c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
open_by_handle_at(0xffffffffffffff9c, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(r1, 0x0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='oom_score_adj\x00')
write$tcp_mem(r2, &(0x7f0000000100)={0x8, 0x20, 0x7418, 0x20, 0x6c}, 0x48)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000340)={0x400, 0x80, 0x1000, 0x5, 0x4, "e0f2969104f35059"})

12.749110848s ago: executing program 2 (id=431):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f00000002c0)=0x81)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
ppoll(&(0x7f00000000c0), 0x0, 0x0, &(0x7f00000001c0)={[0x2a]}, 0x8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x7c}}, 0x4000004)
sendmsg$NFT_BATCH(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYRESDEC=r1], 0x60}, 0x1, 0x0, 0x0, 0x84}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000006c0)={[{@nogrpid}, {@jqfmt_vfsv0}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@nobarrier}, {@nolazytime}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
setxattr$trusted_overlay_origin(&(0x7f0000000040)='./file0\x00', &(0x7f0000000380), &(0x7f00000003c0), 0xf000, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, 0x0, 0x0)
r5 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
pwritev2(r5, &(0x7f0000000840)=[{0x0}, {&(0x7f0000000580)}, {&(0x7f00000006c0)="0ec1bb455f40148f4dfe98707c68f2e20d0b49e6f39a2b80e8d81ee56b1325b14065855c460cba88b0cf718f1b2b3caea8af7f23cc9309fd52457f6783f199549445c48beb987fc21f2fd722a0daca587c436c45d6afc68663757c0002acdc6e4a176a6f61a910c0828984acecc23218bb6a5ea167b3067b0f166d9094c33eb4c1d0c5fc6020c89b919d51885fe7c246f2d1e240b4ccece430d5604bac62685caff1a6ed2ac8d07ee8e6903cee92d10a9aa2da1669cea96a2e439c33c07a013fc706c7ac33868ff0df7a300a86056eeb2778611871f00b82426f0dace662c617723345bb6f27135bb16c959298", 0xed}, {&(0x7f0000000280)="f786edc73fbc2cd2", 0x8}], 0x4, 0x8000, 0x3, 0xccf7dd6de0ba7c4d)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0x94}}, 0x0)

10.104394372s ago: executing program 3 (id=432):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
flistxattr(r1, &(0x7f0000000d40)=""/184, 0xb8)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000c18000)="beef915d564c90c200"/18, 0x12)
r7 = accept$alg(r6, 0x0, 0x0)
write$binfmt_script(r7, &(0x7f0000004180), 0xff77)
ioctl$USBDEVFS_CLEAR_HALT(r2, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20024090)

10.095091911s ago: executing program 0 (id=433):
read$FUSE(0xffffffffffffffff, &(0x7f0000005e40)={0x2020}, 0xfffffffa)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={0x0, r0}, 0x18)
munmap(&(0x7f0000893000/0x4000)=nil, 0x4000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0xedc623580215bdcd, 0x12, r6, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000400)=[@mss={0x2, 0x4}, @sack_perm, @sack_perm, @mss={0x2, 0x1}, @timestamp, @timestamp, @mss={0x2, 0x4}, @timestamp], 0x8)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

8.583146739s ago: executing program 3 (id=434):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000280)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r0, 0x89fa, &(0x7f00000004c0)={'sit0\x00', &(0x7f0000000480)={@private1, @rand_addr=0x64010102, 0x18, 0x3}})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000300)={0x2, 0x0, 0x9, 0x3, 0x17})
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
shmdt(0x0)
shmdt(0x0)
io_cancel(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_setup(0x91f, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r4, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x1c00, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

8.463416171s ago: executing program 2 (id=435):
r0 = socket(0x2, 0x80805, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000840)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f0000000380)='./file1\x00', 0x1c802, &(0x7f0000002740)=ANY=[], 0x3, 0x5f4f, &(0x7f0000009040)="$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")
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000006c0))
r3 = syz_open_dev$MSR(&(0x7f0000000900), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000880)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0200", 0x14, 0x6, 0x0, @loopback, @local, {[], {{0x0, 0x4e26, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(0x0, 0x0, 0x1)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
lseek(0xffffffffffffffff, 0x7ff, 0x0)
ioctl$FITHAW(r0, 0xc0045878)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x101042, 0x104)
pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3, 0x50, 0xffffffffffffffff, 0x0)

8.38875702s ago: executing program 0 (id=436):
r0 = syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4080, &(0x7f0000000880)=ANY=[], 0x1, 0xc36, &(0x7f0000002540)="$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")
mknod(0x0, 0x1000, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
memfd_create(0x0, 0xe)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_open_dev$MSR(&(0x7f0000000580), 0x1, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/pm_wakeup_irq', 0x480, 0x10)
preadv(r4, &(0x7f00000016c0)=[{&(0x7f0000000280)=""/168, 0xa8}], 0x1, 0x9, 0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa1000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat(r0, &(0x7f00000000c0)='./bus\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x436, &(0x7f0000002040)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='oom_score_adj\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
write$yama_ptrace_scope(r5, &(0x7f0000000140)='3\x00', 0x2)
fdatasync(r1)

7.074071033s ago: executing program 3 (id=437):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
flistxattr(r0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x800, &(0x7f0000002200)=ANY=[@ANYBLOB="726f6469722c6e6f6e756d7461696c3d302c73686f94b32a114264bdfe9a62abc772746e616d653d77696e6e742c756e695f786c6174653d312c636f6465706167653d3836342c636f6465706167653d3836352c7269722c696f636861727365743d6b6f69382d72752c73686f72d70045127451e2eb97b64e74b57e08cd7ed0bf6141f920216e616d653d6d697865642c756e695f786c6174653d"], 0x1, 0x26c, &(0x7f0000000340)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = memfd_create(&(0x7f0000000300)=' \xc76\xbe\x91\x8d\x182)!\x9a%\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00r\xbb\xdd\xe8\x87\x05=\xfb\x8b}\xfc\x1d\x03\xe1\xfcm\x9b\xf7fo\"i\xa1hk\x1f\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94T\x81@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f\x19\xf7]#\xed,\xc7\x11\tp\xf4\xa3\xee\x00\x00\x00\x00\'}\x18\xe8O\xa8#K\xb6\xe4U\x92\xd2\x9d\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8U\x1e\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xcf+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96\r[n\xc6\x99\x1fr<\x06\xb3\xbcT\x00\xda6\x18/\x18l\xc1\x81\x8e8L\xcb*S_\xd0:\xa4V\xbd\xf1\xa4\x955\xa9\x9d\xe0\x9b\xd3\x95\xc88n:\x89>?2\xc8\xe7kovd\xa4\x1bl+\x14\x17\x14\x17C2! U\x04:\xd93F\xb9\xfc\x1b\xfd}\x05\xf9\x11\xf3)>q\x10\xd3\xf0\xaf>\xf8t(bX\xe3g\x05\xfe\b\xbcy\x95*\xca\a\xaf\xbb\xf9\xc3Y\xa2\x91\x90.\xc8\xbe\xb0\xa6\xbd\xbd\xfd\xfaf*\xb2&\x82\xa0\x17\xe7)\xf5\xa2\xccv\n\x1b\xd4\xf4\x11*\xc9\xc6*\xa4.\x94[$\xb8\xb3Q\xde\xd8A\xa4~c,`\x02\xb8\x01r\x89\x82\x13\xd0}C7\xfb\xf2\tM\x1e\xe9\xa5\v\xc5\xba(\x89\xb0l\x92H\x1cR\x1f>\xc4ie\xe0B\xf0[\xe2\xe1\x12\x1d\x8fR&\xd1\xa6#\xda.\x0f\xd7\xd7\xa4\x90\x14\x92I\xf82&\x16<\xf2RR\xc2\x02.Q\xef\x85\xef\xf9\xe5\x00\xe9\xca\xb1\x8c\x11\x11l\x9f\xc8\b\xf7A\xa6\x81\xad\xdc\x95\xc8\xef\x102\xa8\x87\x01\x00\\\xfee \n0F\xbc\x85\xc5C\xd0\x99\xe4\t\xab`\'t\xc2\xe9\x13\xcag\xea\xb3\xb5\x92\x00J\xc6y\x05\xcc\xde\xa0\xf6\xb9 \xe5\xdd\f\x18\xfc\xe0\xc3(\xd8\xeb\x1a6\xe6\xfa\x93\xc07R\x0f-\x9e\xf3\x87E\xa3\xd5o\x1bA\x88L/\xe7>45Q?\be\x7f\xa9\x9a\xcae\xd8Y\xdf]\x1bS\x825\xcb\x00\xa4}\x97\x84T\xad\x9b\x1e!\x8a\xbc\x02+#Q\xa9 \xe9\x05r\xe1\xec\x0f\xa7\xe6Of\x95\x02{', 0x4)
ftruncate(r4, 0x400000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
open_tree(r5, &(0x7f0000000640)='\x00', 0x81000)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002100)='/proc/partitions\x00', 0x0, 0x0)
read$FUSE(r6, &(0x7f0000000080)={0x2020}, 0x2020)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x10400, 0x0, 0xfb, 0x0, &(0x7f0000000000))
syz_mount_image$romfs(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00d0867e65d443152ee691a70d225b73c01164645c70ff689f607da7a169dbbfebbeb349b043f54d088bcd11a44f2074aa41532279b5718bc4d89fe5010d6bf465008743337cddaefbc0f0293d06483bec82e15366358709c5d5c0049ff9dcb7ea7e855e3c24bc3b4173720476fb379ce25c0ea42027ba6a7d"], 0x1, 0x134, &(0x7f0000000940)="$eJzs2r9Kw1AUBvCjFoQ+glMhAauQ/1oHd0Fw8gkMbZJevPGWRJB2Kr6A4nAdHV3dRDcfIbNPoC9xJW1qbe5uC/1+yz30XL7eLGc6ViZSL84tor3xw/nXZibSVic46sZeHNLUKRG1yqJQ6tEmzcVvv1BjW7tgvFdnO5FnbzHjka9nAAAAAAAAAAAAAAAAAAAAAACsCeO7Kpp9KZ5jxiPvTzcfji5DzqMsn/1iUrWjQ/tP4ri8HyzktRtE5mR/h8mT27LvLvTNWdJuX4qN+v851+nAyYcji6VhEiXRle8HHffAdQ99Z5Ll1BPN++pNVKjXgb5PZL7M94k+XX2fiJrTo7HD5N1NPX3+/SjWrFBbK/EMFKtZ1OcH9bYD46OcH3ZX8N4/zg9togEsyU8AAAD//wxqOHo=")
read$FUSE(0xffffffffffffffff, &(0x7f0000002f80)={0x2020}, 0x2020)

6.063506702s ago: executing program 2 (id=438):
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
getrlimit(0xb, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x25, 0x5586, &(0x7f00000079c0)="$eJzs3EtvG2UXAOAzTtP71y9CLNh1pAopkWqrTi+CFQVacRGtKi4LVuDYruXW9kSx44SsumCJWPBPEEisWPIbWMASdogFiB0SyDMTaNoGSuM4avs80vjMHL8+874jK9KZiRzAU2sh/e2XJE7FsYiYi4iTSeT7SblF3Im4XIx9LiJOR0Tlri0p838lDkfE8Yg4NSle1EzKtz47Oz5z8ec3f/362yOHTnz+1XcHunDgQD0fEf3VYn+jX8SsU8RbZb4x7uaxf2FcxtUdNfpZkd9or+QVNhrb4xp5PN8pxmer68NJvNlrNCex072Z51cHxQmH4852nckH0luNtfy41V7JY3eY5bGzVZx3c6v427Y1HBV1WmW9j/LyMRptxyLf3mwX61m9ncfmYFTmi7pZq705ieMylqeLZtZr5fNYecSL/Bh4qztY30zH7bVhNxukF2v1F2r1S9X6WtZqj9oXqo1+69KFdLHTmwyrjtqN/uVOlnV67Voz6y+li51ms1qvp4tX2ivdxiCt12vna+eqF5fKvbPpa9ffS3utdHESX+kO1kfd3jC9ma2lxSeW0uXa+ReX0jP19J1rN9Ibb1+9eu3Gux9cef/6y9feeLUcdN+00sXlc8vL1fq56nJ96Sla/8flpP/D+pMHp3/4fm+XDQq7fMEA2N19/X/c2/+H/h+Yur30//3b5fH+9P/xMP1/TLP/n7RU+v9/738rB9D/zof+fx/XD3vyaP3/4anPAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAmftx/ovX852F4vhEmf9fmXqmPE4iohIRfzzAXBzeUXOurDO/y/j5e+bwTRJ5hck5jpTb8Yi4XG6//3+/rwIAAAA8ub68c/rTolsvXhYOekLMUnHTpnLywynVSyJifuGnKVWrTF6enVKx/Pt9KDanVC2/gXV0SsWKW26HplXtocztCEfvCkkRKjOdDgAAMBM7O4HZdiEAAADM0if/+O5LM5sHM5bE9qPM7WfB+X/e//1A8NiO9wAAAIDHUHLQEwAAAAD2Xd7/+/0/AAAAeLIVv/8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf7JzP7lpA1EcgJ8Nhv5VUdV9r9IdHKNH6LLLwgF6CY5Ar9ALcAYiZZEjRBBhT5CcgBSJMU7Q90m2M+Po5xlg88bSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXbqpVrN/f77/PTdnuztPntkAAAAAx2yq1az+Y9K0P6b+z6nra2oXEVFGxLHafRCjVuYg5VQn/r96Mob/EXXCvn+cjg8R8SMd91+6/hQAAADgeq0Xy2lTrTentARw2++ouJBm0ab89DNTXhER1eQuU1q5P33LFFb/vofxO1NavYD1LlNYs+Q2PH5vlOshbYPW5XEm8/pLrFtlN88FAAD61K4ETlQhAAAAXIFffQ+AS3he2heH0+E947i5pBeC71stAAAA4A0q+h4AAAAA0Lm6/n9N+/8V9v8DAACA7Jr9/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOjSplrN1ovl9NT9+Qtztrvz5JsRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLA/7ygQAmEQBnvXdyZz/8NKg4bGJlUgfPyNwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJvf/eX/xNQ4k8y9NpaeR5K1U2Pr1Ng7N47+ML5+DQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxf68pEAIBEEUzBn/O+n7H1YS9AwiREDDo4paNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwRb/75f/E1DiTzJ02lo5HkrWrxtZVY+9B4+jBePs3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxb799EZRhgEAf3anu1DUWKtpYtVgwkEvUhYEuRqjaTz4EUyassXqIgo9CGnEXryZnrkYPRpjoqm3fgfONOGCNw491MSTh5r5V2bbFRqUmUJ/v+Td99nZ4f23E9Jn3lkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABKm+/Gq+0iTtKXiTwuj93eWp5P641ddWp99c50WtK4VfO4nwCvVd8cn2puIAAAABweSZnfR8TdztpsWrcnsvy/U56T5vw/PJfHZT6/O+/f2Fo+Wnw0Xeb/v/9276WdjiaSrJ+00YXFQf/U3qGMPaYpHnjPP/SMsWzls3svSfaFtD9ceXGzk61n67tbt97vZuGROkYLADyKk2VdBOXfQ2nda3JgABwaY5XEu8z/k4lmxwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQh82VeKaMWxExPXY/Tm1sLc+Pqr9ZvTO9XpRzN2+uVttMm+hExMLioH+qxrkcXOVqXv9sbjDoX7l6re7geESM+OjG/v55Ugz/X8/pRsTQkRMvj2jn4330taudPUFxeUa9aziezu+hJ7eGjrT2LPh727kmLoC6gnbx/TyOLsZr/96Hg/La+/9brvm/IwAAnnqdoqSZ6N3O2mx6rDUZsf3jcP7/RiWOobx/+0Z+JH+/Xsn/731y7na1r2r+36tpfk+CmaVLX8xcvXb9rcVLcxf7F/ufv326907vzPmzZ8/PZPdKZhai7Y4JAAAA/0G3KNX8vz25d///WCWOB+z/51vCef7/5fe9r6t9JfL/ke5v+jU9EgAAgMOouxO98Ppff7ZGnNHqduOruaWlK738def96fy11uE+oiNFqeb/yWTTowIAAADqsLnSGtr/v1CJ4wH7/9Xn/5/96ZVfqm0mETEecTki+ifnLw8u1DedA62OHypnHXWbnikAAABNGS9Kdf+/kz3/39555KEdEW+eiPi7+A1/7DP/Tz749udqX9Xn/8/UOsuDpz2Vr0dWT0WMTTU9IgAAAJ5mR4uSJvt/dNZmP/312Eddz/8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1O2fAAAA//+FVSwP")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r3, 0x8800000)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r5=>0xffffffffffffffff})
fcntl$setstatus(r5, 0x4, 0x42800)
sendfile(r5, r3, 0x0, 0x578410e9)
r6 = gettid()
r7 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r7, 0x107, 0x12, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r6}, 0x0)

5.812668811s ago: executing program 3 (id=439):
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x149282, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x2}, {}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@rand_addr=' \x01\x00', 0x2, 0x2b}, 0xa, @in6=@private1, 0x0, 0x4}]}]}, 0xfc}}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r3, &(0x7f0000000180), 0x400000000000077, 0x700000000000000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
syz_usb_connect$uac1(0x2, 0xa6, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000106b1d01010000000003010902940003010040000904000000010100000a2401000000020102132406000006000000281ab0ab2c90619b340000000000000000000009240300"], 0x0)
write$cgroup_int(r1, &(0x7f0000000040)=0x902, 0x12)

5.315106758s ago: executing program 33 (id=421):
socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r3, 0x40045431, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
r4 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r4, 0x1, 0x4000000000000002, 0x0, 0x0)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(r5, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000000000ff0800ed05000600200000000a00060000000000000500e50000070000001ffeff0001000003f1dc7f7c6e870200010000000800004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmmsg(r5, &(0x7f0000000180), 0x400008a, 0x700)
listen(r4, 0x2)
getsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000001c0), &(0x7f0000000280)=0x4)

3.036312685s ago: executing program 0 (id=441):
sched_setscheduler(0x0, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x8202, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_emit_vhci(0x0, 0x10)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4400ae8f, 0x0)
r7 = open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0)
sendfile(r7, r7, 0x0, 0x100000008)
ioctl$TIOCGPGRP(r7, 0x540f, &(0x7f0000000080))
write$cgroup_pid(r7, 0x0, 0x0)

3.032376806s ago: executing program 2 (id=442):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500190000000000050018"], 0x44}}, 0x80)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = creat(0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="041c0500c80001015c2899025116bee1", @ANYRES8=r1, @ANYRESHEX=r1, @ANYRES32=r1], 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x13f, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f00000000c0)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000400), r2, 0x0, 0x3, 0x1}}, 0x20)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
r4 = semget$private(0x0, 0x207, 0x53)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f0000000280)={0x7, 0x8, 0xfa00, {r2, 0x5}}, 0x10)
semctl$GETALL(r4, 0x0, 0xd, &(0x7f0000000040)=""/119)
r5 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x1})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ff2000/0xe000)=nil, 0xe000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r5, 0xc020aa08, &(0x7f0000000100)={{&(0x7f0000ffb000/0x4000)=nil, 0x4000}, 0x1})
clock_settime(0x0, &(0x7f0000000040)={0x77359400})
r6 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r7 = dup3(r6, r0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x40046302}], 0x0, 0x0, 0x0})
socket$inet6(0x10, 0x3, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_RW(0xffffffffffffffff, 0x3ba0, 0x0)

1.512247409s ago: executing program 0 (id=443):
r0 = socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000240)={0x0, 0xcb}, 0x8)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x60, 0x2, 0x6, 0x3, 0x0, 0x0, {0x0, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x0}, @IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
sendmmsg$inet6(r4, &(0x7f0000000080)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000340)='\x00', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r4, 0x84, 0x79, &(0x7f0000002280)=ANY=[], 0x8)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0x4, &(0x7f0000000300)={r7, 0x6c, &(0x7f0000000380)}, 0x10)
ioctl$SNDCTL_TMR_TEMPO(r6, 0xc0045405, &(0x7f00000000c0)=0xfa)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=ANY=[@ANYRESOCT=r3, @ANYRESHEX], 0x2c}], 0x1, 0x0, 0x0, 0x48090}, 0x0)

1.378711508s ago: executing program 3 (id=444):
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x2109428, &(0x7f0000000400)={[{@uuid_on, 0x3a}], [{@subj_role={'subj_role', 0x3d, '}-!#]\''}}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x66, 0x33, 0x36, 0x36, 0x35, 0x61, 0x62], 0x2d, [0x63, 0x31, 0x3, 0x39], 0x2d, [0x37, 0x61, 0x19, 0x65], 0x2d, [0x37, 0x36, 0x65, 0x71400d8d4b0fab2], 0x2d, [0x32, 0x38, 0x39, 0x65, 0x74, 0x30, 0x63, 0x8]}}}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@appraise_type}, {@euid_lt={'euid<', 0xffffffffffffffff}}], 0x2f})
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000380)={0x0, <r0=>0x0})
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00')
pread64(r1, 0x0, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
openat$vicodec1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x183106, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000080)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, @ib={0x1b, 0x0, 0xffff, {"2c8b42d5bb6c7a3f461813a3c240739c"}, 0x80000000000, 0x2, 0x8000000000000001}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3b}}}}, 0x118)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @local}}, 0xee55, 0x0, 0x400, 0x0, 0x32, 0x2}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty, 0x8000000}}, 0x0, 0x0, 0x0, 0x7f, 0x8a}, 0x9c)
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000340)='./binderfs2/binder-control\x00', 0x800, 0x0)
syz_emit_ethernet(0x86, &(0x7f0000000a00)={@local, @empty, @val, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "fd690b", 0x48, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x8100, 0x0, 0x0, [0x9, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x100}}}}}}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
syz_open_dev$tty1(0xc, 0x4, 0x3)
setsockopt$nfc_llcp_NFC_LLCP_RW(r5, 0x118, 0x1000000, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040))

0s ago: executing program 0 (id=445):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_init_net_socket$ax25(0x3, 0x2, 0xcf)
r4 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(r4, 0x0, 0x0, 0x0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x1)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000040)=0x1)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x0)
mremap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f00003eb000/0x1000)=nil)
ioctl$UFFDIO_WAKE(0xffffffffffffffff, 0x8010aa02, &(0x7f0000000480)={&(0x7f0000ffc000/0x2000)=nil, 0x2000})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4040)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.166' (ED25519) to the list of known hosts.
[   85.148255][ T5823] cgroup: Unknown subsys name 'net'
[   85.263375][ T5823] cgroup: Unknown subsys name 'cpuset'
[   85.272821][ T5823] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   86.990606][ T5823] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   89.831514][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.844202][ T5845] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   89.853274][ T5845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   89.868762][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   89.877908][ T5845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   89.885857][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   89.894439][ T5845] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   89.894549][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.910311][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   89.911080][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.918064][ T5846] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   89.925571][ T5845] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   89.932214][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   89.939952][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.947693][ T5846] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   89.953324][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   89.961516][ T5846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   89.968956][ T5845] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.981435][ T5845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   89.995677][ T5847] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   90.082005][ T5846] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   90.099240][ T5846] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   90.115655][ T5846] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   90.146829][ T5846] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   90.160265][ T5846] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   90.734683][ T5836] chnl_net:caif_netlink_parms(): no params data found
[   90.794759][ T5839] chnl_net:caif_netlink_parms(): no params data found
[   90.820404][ T5833] chnl_net:caif_netlink_parms(): no params data found
[   90.953264][ T5838] chnl_net:caif_netlink_parms(): no params data found
[   91.157160][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.167443][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.174943][ T5836] bridge_slave_0: entered allmulticast mode
[   91.183283][ T5836] bridge_slave_0: entered promiscuous mode
[   91.196683][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.204217][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.211738][ T5836] bridge_slave_1: entered allmulticast mode
[   91.219227][ T5836] bridge_slave_1: entered promiscuous mode
[   91.232011][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.239218][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.247040][ T5833] bridge_slave_0: entered allmulticast mode
[   91.255012][ T5833] bridge_slave_0: entered promiscuous mode
[   91.275698][ T5852] chnl_net:caif_netlink_parms(): no params data found
[   91.307080][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.314711][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.322706][ T5833] bridge_slave_1: entered allmulticast mode
[   91.331473][ T5833] bridge_slave_1: entered promiscuous mode
[   91.338275][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.345665][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.353072][ T5839] bridge_slave_0: entered allmulticast mode
[   91.360853][ T5839] bridge_slave_0: entered promiscuous mode
[   91.407518][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.417234][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.424611][ T5839] bridge_slave_1: entered allmulticast mode
[   91.433012][ T5839] bridge_slave_1: entered promiscuous mode
[   91.467784][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.540258][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.551901][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.590727][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.603907][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.622344][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.645062][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.652480][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.660138][ T5838] bridge_slave_0: entered allmulticast mode
[   91.668216][ T5838] bridge_slave_0: entered promiscuous mode
[   91.731448][ T5836] team0: Port device team_slave_0 added
[   91.750638][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.757833][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.765925][ T5838] bridge_slave_1: entered allmulticast mode
[   91.773790][ T5838] bridge_slave_1: entered promiscuous mode
[   91.822989][ T5836] team0: Port device team_slave_1 added
[   91.832250][ T5839] team0: Port device team_slave_0 added
[   91.855580][ T5833] team0: Port device team_slave_0 added
[   91.905729][ T5839] team0: Port device team_slave_1 added
[   91.914701][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.929204][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.944359][ T5833] team0: Port device team_slave_1 added
[   91.951250][ T5852] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.958684][ T5852] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.966901][ T5852] bridge_slave_0: entered allmulticast mode
[   91.974088][ T5852] bridge_slave_0: entered promiscuous mode
[   91.982560][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.989911][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.017387][   T51] Bluetooth: hci2: command tx timeout
[   92.017394][ T5846] Bluetooth: hci3: command tx timeout
[   92.017668][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.023558][   T51] Bluetooth: hci0: command tx timeout
[   92.075421][ T5852] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.083432][ T5852] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.091126][   T51] Bluetooth: hci1: command tx timeout
[   92.093869][ T5852] bridge_slave_1: entered allmulticast mode
[   92.104010][ T5852] bridge_slave_1: entered promiscuous mode
[   92.112612][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.119919][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.146965][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.217872][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.225157][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.252856][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.264462][   T51] Bluetooth: hci4: command tx timeout
[   92.265997][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.272405][ T1017] cfg80211: failed to load regulatory.db
[   92.280781][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.313215][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.334708][ T5838] team0: Port device team_slave_0 added
[   92.345193][ T5838] team0: Port device team_slave_1 added
[   92.354515][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.361677][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.388823][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.403542][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.410960][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.440948][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.493695][ T5852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.573498][ T5852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.603357][ T5836] hsr_slave_0: entered promiscuous mode
[   92.611303][ T5836] hsr_slave_1: entered promiscuous mode
[   92.622558][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.629926][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.657609][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.672445][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.679804][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.706407][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.825824][ T5833] hsr_slave_0: entered promiscuous mode
[   92.832622][ T5833] hsr_slave_1: entered promiscuous mode
[   92.839123][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   92.847920][ T5833] Cannot create hsr debugfs directory
[   92.883482][ T5852] team0: Port device team_slave_0 added
[   92.893013][ T5852] team0: Port device team_slave_1 added
[   92.917120][ T5839] hsr_slave_0: entered promiscuous mode
[   92.924193][ T5839] hsr_slave_1: entered promiscuous mode
[   92.931002][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   92.938880][ T5839] Cannot create hsr debugfs directory
[   93.076392][ T5838] hsr_slave_0: entered promiscuous mode
[   93.083020][ T5838] hsr_slave_1: entered promiscuous mode
[   93.089203][ T5838] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   93.097576][ T5838] Cannot create hsr debugfs directory
[   93.114572][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.121856][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.149001][ T5852] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.214900][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.222601][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.250508][ T5852] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.515955][ T5852] hsr_slave_0: entered promiscuous mode
[   93.524289][ T5852] hsr_slave_1: entered promiscuous mode
[   93.530926][ T5852] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   93.538764][ T5852] Cannot create hsr debugfs directory
[   93.741407][ T5836] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   93.754807][ T5836] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   93.787173][ T5836] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.815969][ T5836] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.937757][ T5833] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   93.950650][ T5833] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   93.969561][ T5833] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   93.994154][ T5833] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   94.060635][ T5839] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   94.079578][   T51] Bluetooth: hci2: command tx timeout
[   94.080163][ T5846] Bluetooth: hci3: command tx timeout
[   94.090022][   T51] Bluetooth: hci0: command tx timeout
[   94.107474][ T5839] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   94.121751][ T5839] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   94.153003][ T5839] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   94.160340][   T51] Bluetooth: hci1: command tx timeout
[   94.260201][ T5852] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   94.274261][ T5852] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   94.296706][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.320455][ T5852] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   94.333329][   T51] Bluetooth: hci4: command tx timeout
[   94.341907][ T5852] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   94.372407][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[   94.423801][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.431583][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.477115][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.484504][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.518972][ T5838] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   94.533193][ T5838] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   94.545428][ T5838] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   94.557575][ T5838] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   94.686489][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.739109][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.785422][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[   94.844257][ T3547] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.851788][ T3547] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.888213][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[   94.931717][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.939096][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.004099][ T3547] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.011990][ T3547] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.040911][ T3547] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.048120][ T3547] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.087045][ T5852] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.123268][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.150291][ T5852] 8021q: adding VLAN 0 to HW filter on device team0
[   95.177980][ T3547] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.185363][ T3547] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.224805][ T2221] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.232066][ T2221] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.245937][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.261572][ T5838] 8021q: adding VLAN 0 to HW filter on device team0
[   95.333713][ T2221] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.341257][ T2221] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.366246][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.373600][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.617019][ T5836] veth0_vlan: entered promiscuous mode
[   95.673344][ T5836] veth1_vlan: entered promiscuous mode
[   95.863371][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.885373][ T5836] veth0_macvtap: entered promiscuous mode
[   95.925111][ T5836] veth1_macvtap: entered promiscuous mode
[   96.023023][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.097565][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.125664][ T5836] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.142874][ T5836] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.154183][ T5836] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.165053][   T51] Bluetooth: hci3: command tx timeout
[   96.169398][ T5846] Bluetooth: hci0: command tx timeout
[   96.170755][   T51] Bluetooth: hci2: command tx timeout
[   96.182601][ T5836] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.208418][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.241290][   T51] Bluetooth: hci1: command tx timeout
[   96.371941][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.396505][ T5852] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.411763][   T51] Bluetooth: hci4: command tx timeout
[   96.513749][ T5833] veth0_vlan: entered promiscuous mode
[   96.563936][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.576089][ T5833] veth1_vlan: entered promiscuous mode
[   96.585809][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.663331][ T5838] veth0_vlan: entered promiscuous mode
[   96.708892][ T2221] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.732100][ T2221] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.732891][ T5833] veth0_macvtap: entered promiscuous mode
[   96.764449][ T5838] veth1_vlan: entered promiscuous mode
[   96.777063][ T5852] veth0_vlan: entered promiscuous mode
[   96.807287][ T5836] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   96.828863][ T5833] veth1_macvtap: entered promiscuous mode
[   96.876885][ T5839] veth0_vlan: entered promiscuous mode
[   96.904536][ T5852] veth1_vlan: entered promiscuous mode
[   96.933480][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.967857][ T5839] veth1_vlan: entered promiscuous mode
[   96.979267][ T5924] loop0: detected capacity change from 0 to 512
[   97.014222][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.028447][ T5924] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   97.038542][ T5924] EXT4-fs (loop0): invalid journal inode
[   97.048370][ T5924] EXT4-fs (loop0): can't get journal size
[   97.068060][ T5838] veth0_macvtap: entered promiscuous mode
[   97.098084][ T5924] EXT4-fs (loop0): 1 truncate cleaned up
[   97.110375][ T5833] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.125747][ T5833] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.127388][ T5924] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.141872][ T5833] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.157054][ T5833] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.190798][ T5852] veth0_macvtap: entered promiscuous mode
[   97.229236][ T5838] veth1_macvtap: entered promiscuous mode
[   97.266774][ T5852] veth1_macvtap: entered promiscuous mode
[   97.315163][ T5928] EXT4-fs (loop0): shut down requested (2)
[   97.342226][ T5839] veth0_macvtap: entered promiscuous mode
[   97.363113][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.402076][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.413447][ T5839] veth1_macvtap: entered promiscuous mode
[   97.436425][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.471591][ T5838] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.499575][ T5838] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.508415][ T5838] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.526253][ T5838] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.529811][   T30] audit: type=1800 audit(1747978567.657:2): pid=5927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1" name="bus" dev="loop0" ino=18 res=0 errno=0
[   97.567614][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.658892][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.668146][ T5852] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.678319][ T5852] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.689105][ T5852] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.698186][ T5852] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.721334][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.733985][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.790544][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.821215][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.833881][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.843697][ T5839] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.858227][ T5839] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.869255][ T5839] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.878720][ T5839] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.924043][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.937579][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.997857][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.013142][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.044077][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.076570][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.196334][ T5932] =======================================================
[   98.196334][ T5932] WARNING: The mand mount option has been deprecated and
[   98.196334][ T5932]          and is ignored by this kernel. Remove the mand
[   98.196334][ T5932]          option from the mount to silence this warning.
[   98.196334][ T5932] =======================================================
[   98.240441][   T51] Bluetooth: hci2: command tx timeout
[   98.241405][ T5847] Bluetooth: hci0: command tx timeout
[   98.246163][   T51] Bluetooth: hci3: command tx timeout
[   98.277981][ T5932] loop1: detected capacity change from 0 to 512
[   98.282505][ T3547] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.295230][ T3547] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.322624][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.331953][ T5847] Bluetooth: hci1: command tx timeout
[   98.352572][ T5932] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   98.367272][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.379152][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.448145][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.479875][ T5847] Bluetooth: hci4: command tx timeout
[   98.521271][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.732490][ T5833] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.763312][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   98.773394][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   99.377413][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   99.479662][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[   99.529830][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.090765][ T5952] loop4: detected capacity change from 0 to 164
[  101.212939][ T5953] loop3: detected capacity change from 0 to 64
[  102.941716][ T5955] loop0: detected capacity change from 0 to 512
[  103.037045][ T5955] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.9: casefold flag without casefold feature
[  103.213802][ T5955] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.9: couldn't read orphan inode 15 (err -117)
[  103.295458][ T5955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.320043][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  103.391209][ T3467] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.473717][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  103.483226][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  103.589690][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  103.598548][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  103.898599][ T3467] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.959103][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.614719][ T3467] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.050254][ T3467] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.274436][ T5979] loop3: detected capacity change from 0 to 40427
[  106.303092][ T5979] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  106.311103][ T5979] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  106.377395][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  106.386215][ T5979] F2FS-fs (loop3): invalid crc value
[  106.393101][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  106.401941][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  106.410809][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  106.429071][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  106.437318][ T5977] tipc: Started in network mode
[  106.609516][ T5977] tipc: Node identity 4, cluster identity 4711
[  106.611482][ T5979] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  106.615732][ T5977] tipc: Node number set to 4
[  106.623332][ T5979] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  108.535540][ T3467] bridge_slave_1: left allmulticast mode
[  108.561420][   T51] Bluetooth: hci0: command tx timeout
[  109.046553][ T3467] bridge_slave_1: left promiscuous mode
[  109.080529][ T3467] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.201169][ T6000] loop0: detected capacity change from 0 to 32768
[  109.238143][ T6000] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.20 (6000)
[  109.263695][ T6000] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  109.274288][ T6000] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[  109.275459][ T3467] bridge_slave_0: left allmulticast mode
[  109.286279][ T6000] BTRFS info (device loop0): disk space caching is enabled
[  109.297000][ T6000] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  109.347290][ T3467] bridge_slave_0: left promiscuous mode
[  109.354718][ T3467] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.183836][   T43] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  110.317715][ T6000] BTRFS info (device loop0): rebuilding free space tree
[  110.373884][ T6000] BTRFS info (device loop0): disabling free space tree
[  110.380988][ T6000] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  110.391184][ T6000] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  110.443230][   T43] usb 3-1: Using ep0 maxpacket: 16
[  110.487884][ T6027] netlink: 24 bytes leftover after parsing attributes in process `syz.4.24'.
[  110.504992][   T43] usb 3-1: config 0 has no interfaces?
[  110.534971][   T43] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  110.572494][   T43] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.631132][   T43] usb 3-1: Product: syz
[  110.636613][   T43] usb 3-1: Manufacturer: syz
[  110.680177][   T51] Bluetooth: hci0: command tx timeout
[  110.694479][   T43] usb 3-1: SerialNumber: syz
[  110.791450][   T43] usb 3-1: config 0 descriptor??
[  110.904298][   T12] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  111.145315][   T43] usb 3-1: USB disconnect, device number 2
[  111.322820][ T5836] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  112.720397][   T51] Bluetooth: hci0: command tx timeout
[  112.739696][ T6044] loop3: detected capacity change from 0 to 40427
[  112.760130][ T6044] F2FS-fs (loop3): heap/no_heap options were deprecated
[  112.803384][ T6044] F2FS-fs (loop3): invalid crc value
[  112.930233][ T6044] F2FS-fs (loop3): Start checkpoint disabled!
[  112.971315][ T6051] loop2: detected capacity change from 0 to 1024
[  112.978596][ T6044] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  113.291692][ T6051] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.535128][ T6059] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  113.854692][ T3467] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  113.940172][ T3467] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  113.971108][ T5838] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.972489][ T3467] bond0 (unregistering): Released all slaves
[  114.969493][   T51] Bluetooth: hci0: command tx timeout
[  115.323341][ T6053] loop0: detected capacity change from 0 to 40427
[  115.343179][ T6053] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  115.413314][ T6066] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  115.467749][ T6053] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  115.483736][ T6053] F2FS-fs (loop0): invalid crc value
[  117.992496][ T6092] loop4: detected capacity change from 0 to 40427
[  118.165935][ T6092] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  118.173424][ T6092] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  118.185685][ T6092] F2FS-fs (loop4): build fault injection rate: 17008
[  118.192947][ T6092] F2FS-fs (loop4): build fault injection type: 0x1f8
[  118.213366][ T6092] F2FS-fs (loop4): invalid crc value
[  118.331524][ T6092] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  118.338786][ T6092] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  119.081975][ T5839] syz-executor: attempt to access beyond end of device
[  119.081975][ T5839] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  119.184923][ T5839] CPU: 1 UID: 0 PID: 5839 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250522-syzkaller #0 PREEMPT(full) 
[  119.184960][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  119.184970][ T5839] Call Trace:
[  119.184977][ T5839]  <TASK>
[  119.184985][ T5839]  dump_stack_lvl+0x189/0x250
[  119.185014][ T5839]  ? __pfx_dump_stack_lvl+0x10/0x10
[  119.185032][ T5839]  ? __pfx_queue_work_on+0x10/0x10
[  119.185049][ T5839]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  119.185076][ T5839]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  119.185115][ T5839]  f2fs_handle_critical_error+0x37c/0x540
[  119.185147][ T5839]  f2fs_write_end_io+0x5b8/0x7e0
[  119.185172][ T5839]  ? __submit_merged_bio+0x251/0x6a0
[  119.185210][ T5839]  __submit_merged_bio+0x27a/0x6a0
[  119.185237][ T5839]  __submit_merged_write_cond+0x255/0x530
[  119.185268][ T5839]  f2fs_write_data_pages+0x261d/0x3000
[  119.185340][ T5839]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  119.185416][ T5839]  ? __mod_zone_page_state+0xd7/0x140
[  119.185443][ T5839]  ? folios_put_refs+0x560/0x640
[  119.185478][ T5839]  ? __pfx_folios_put_refs+0x10/0x10
[  119.185500][ T5839]  ? rcu_is_watching+0x15/0xb0
[  119.185528][ T5839]  ? __lock_acquire+0xab9/0xd20
[  119.185570][ T5839]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  119.185596][ T5839]  do_writepages+0x32e/0x550
[  119.185638][ T5839]  ? do_raw_spin_unlock+0x122/0x240
[  119.185663][ T5839]  filemap_fdatawrite+0x191/0x230
[  119.185682][ T5839]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  119.185753][ T5839]  ? do_raw_spin_unlock+0x122/0x240
[  119.185781][ T5839]  f2fs_sync_dirty_inodes+0x31f/0x830
[  119.185827][ T5839]  f2fs_write_checkpoint+0x94a/0x1de0
[  119.185878][ T5839]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  119.185959][ T5839]  ? kill_f2fs_super+0x298/0x6c0
[  119.185990][ T5839]  kill_f2fs_super+0x2c3/0x6c0
[  119.186024][ T5839]  ? __pfx_kill_f2fs_super+0x10/0x10
[  119.186047][ T5839]  ? radix_tree_delete_item+0x2b6/0x400
[  119.186080][ T5839]  ? shrinker_free+0x2ce/0x3e0
[  119.186107][ T5839]  deactivate_locked_super+0xb9/0x130
[  119.186134][ T5839]  cleanup_mnt+0x425/0x4c0
[  119.186160][ T5839]  ? lockdep_hardirqs_on+0x9c/0x150
[  119.186181][ T5839]  task_work_run+0x1d4/0x260
[  119.186208][ T5839]  ? __pfx_task_work_run+0x10/0x10
[  119.186229][ T5839]  ? __x64_sys_umount+0x122/0x160
[  119.186253][ T5839]  ? exit_to_user_mode_loop+0x40/0x110
[  119.186282][ T5839]  exit_to_user_mode_loop+0xec/0x110
[  119.186319][ T5839]  do_syscall_64+0x2bd/0x3b0
[  119.186336][ T5839]  ? lockdep_hardirqs_on+0x9c/0x150
[  119.186352][ T5839]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.186369][ T5839]  ? clear_bhb_loop+0x60/0xb0
[  119.186391][ T5839]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.186409][ T5839] RIP: 0033:0x7f70ae58fc97
[  119.186427][ T5839] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  119.186442][ T5839] RSP: 002b:00007fff6259c188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  119.186462][ T5839] RAX: 0000000000000000 RBX: 00007f70ae61089d RCX: 00007f70ae58fc97
[  119.186474][ T5839] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff6259c240
[  119.186485][ T5839] RBP: 00007fff6259c240 R08: 0000000000000000 R09: 0000000000000000
[  119.186496][ T5839] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff6259d2d0
[  119.186508][ T5839] R13: 00007f70ae61089d R14: 000000000001cfa7 R15: 00007fff6259d310
[  119.186539][ T5839]  </TASK>
[  119.186546][ T5839] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  119.644518][ T3467] hsr_slave_0: left promiscuous mode
[  119.699510][ T3467] hsr_slave_1: left promiscuous mode
[  119.730773][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.762117][ T1017] af_packet: tpacket_rcv: packet too big, clamped from 74 to 4294967286. macoff=82
[  119.795077][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.843188][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.892472][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.643868][ T3467] veth1_macvtap: left promiscuous mode
[  120.671941][ T3467] veth0_macvtap: left promiscuous mode
[  120.717695][ T3467] veth1_vlan: left promiscuous mode
[  120.749971][ T3467] veth0_vlan: left promiscuous mode
[  120.893746][ T6127] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  121.348667][ T6133] loop3: detected capacity change from 0 to 2048
[  121.358492][ T6133] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=18576, location=18576
[  121.382601][ T6133] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  121.777255][ T6141] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  122.145195][ T6138] loop2: detected capacity change from 0 to 764
[  122.533812][ T6140] loop4: detected capacity change from 0 to 2048
[  122.570270][ T6138] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  122.844546][ T6143] Symlink component flag not implemented
[  122.850998][ T6143] Symlink component flag not implemented
[  122.860938][ T6143] Symlink component flag not implemented (128)
[  122.867545][ T6143] Symlink component flag not implemented (122)
[  123.217280][ T6144] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  124.116235][ T6144] NILFS (loop4): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3)
[  124.252677][ T6144] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=2)
[  124.744736][ T6144] Remounting filesystem read-only
[  124.758834][ T5847] Bluetooth: hci0: command 0x0405 tx timeout
[  125.113416][ T5839] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer
[  125.937393][ T6156] loop0: detected capacity change from 0 to 32768
[  126.017287][ T6156] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.46 (6156)
[  127.291942][ T6156] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  127.307675][ T6156] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  127.320972][ T6156] BTRFS info (device loop0): using free-space-tree
[  127.622961][ T5836] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  128.625727][ T3467] team0 (unregistering): Port device team_slave_1 removed
[  130.228269][ T3467] team0 (unregistering): Port device team_slave_0 removed
[  130.975704][ T6210] loop4: detected capacity change from 0 to 1024
[  132.476333][ T6218] loop2: detected capacity change from 0 to 164
[  132.512168][ T6218] iso9660: Bad value for 'block'
[  132.611242][ T6221] ptrace attach of "./syz-executor exec"[5838] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  133.210808][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  133.319894][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  135.824188][ T6241] 9pnet: bogus RWRITE count (2 > 1)
[  136.138168][ T6248] loop2: detected capacity change from 0 to 1024
[  136.164768][ T6248] EXT4-fs: Ignoring removed nobh option
[  136.200304][ T6248] EXT4-fs: Ignoring removed bh option
[  136.371620][ T6248] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.427579][ T5981] chnl_net:caif_netlink_parms(): no params data found
[  136.702260][ T6261] overlayfs: conflicting lowerdir path
[  137.725480][ T5838] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.768213][ T6272] loop4: detected capacity change from 0 to 16
[  139.056123][ T6272] erofs (device loop4): mounted with root inode @ nid 36.
[  140.102390][ T6284] atomic_op ffff88802a3c8198 conn xmit_atomic 0000000000000000
[  142.160693][ T5981] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.178150][ T5981] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.227540][ T5981] bridge_slave_0: entered allmulticast mode
[  142.235917][ T5981] bridge_slave_0: entered promiscuous mode
[  142.250612][ T5981] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.258326][ T5981] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.266530][ T5981] bridge_slave_1: entered allmulticast mode
[  142.278762][ T5981] bridge_slave_1: entered promiscuous mode
[  142.639519][ T6302] loop4: detected capacity change from 0 to 256
[  142.702448][ T5981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  142.736023][ T6302] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  142.762510][ T5981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  142.809538][ T6302] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  142.942378][ T6302] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  143.472400][ T5981] team0: Port device team_slave_0 added
[  143.502209][ T5981] team0: Port device team_slave_1 added
[  144.337624][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_0
[  144.377216][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.473992][ T5981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  144.505985][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_1
[  144.742274][ T6321] overlayfs: missing 'lowerdir'
[  144.856543][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.884638][ T5981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.880385][ T5981] hsr_slave_0: entered promiscuous mode
[  145.898387][ T5981] hsr_slave_1: entered promiscuous mode
[  145.926987][ T5981] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  145.945203][ T5981] Cannot create hsr debugfs directory
[  146.195515][ T6338] syzkaller0: entered promiscuous mode
[  146.218408][ T6338] syzkaller0: entered allmulticast mode
[  147.055580][ T6352] random: crng reseeded on system resumption
[  149.208852][ T6371] loop3: detected capacity change from 0 to 256
[  149.241995][ T6371] exfat: Deprecated parameter 'namecase'
[  149.273061][ T6371] exfat: Deprecated parameter 'utf8'
[  149.354857][ T6371] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  153.112636][ T6393] loop3: detected capacity change from 0 to 2048
[  153.166301][ T6393] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  156.898208][ T6408] warning: `syz.3.95' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  157.515900][ T6416] Bluetooth: MGMT ver 1.23
[  158.057444][ T5981] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  158.994113][ T5981] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  159.142139][ T5981] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  159.425534][ T5981] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  163.204763][ T6461] loop0: detected capacity change from 0 to 40427
[  163.244277][ T6461] F2FS-fs (loop0): invalid crc value
[  163.368209][ T5981] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.387549][ T6461] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  163.542285][ T6472] loop3: detected capacity change from 0 to 128
[  163.743927][ T6476] syz.0.107: attempt to access beyond end of device
[  163.743927][ T6476] loop0: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  164.377521][ T5981] 8021q: adding VLAN 0 to HW filter on device team0
[  164.633345][ T5836] syz-executor: attempt to access beyond end of device
[  164.633345][ T5836] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  164.669646][ T6472] EXT4-fs (loop3): Test dummy encryption mode enabled
[  164.696320][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.703735][ T5946] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.779493][ T5836] CPU: 1 UID: 0 PID: 5836 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250522-syzkaller #0 PREEMPT(full) 
[  164.779522][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  164.779531][ T5836] Call Trace:
[  164.779537][ T5836]  <TASK>
[  164.779545][ T5836]  dump_stack_lvl+0x189/0x250
[  164.779571][ T5836]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.779587][ T5836]  ? __pfx_queue_work_on+0x10/0x10
[  164.779600][ T5836]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  164.779623][ T5836]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  164.779656][ T5836]  f2fs_handle_critical_error+0x37c/0x540
[  164.779684][ T5836]  f2fs_write_end_io+0x5b8/0x7e0
[  164.779705][ T5836]  ? __submit_merged_bio+0x251/0x6a0
[  164.779737][ T5836]  __submit_merged_bio+0x27a/0x6a0
[  164.779762][ T5836]  __submit_merged_write_cond+0x255/0x530
[  164.779787][ T5836]  f2fs_write_data_pages+0x261d/0x3000
[  164.779843][ T5836]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  164.779877][ T5836]  ? is_bpf_text_address+0x292/0x2b0
[  164.779901][ T5836]  ? is_bpf_text_address+0x26/0x2b0
[  164.779945][ T5836]  ? stack_trace_save+0x9c/0xe0
[  164.779965][ T5836]  ? stack_depot_save_flags+0x40/0x900
[  164.779995][ T5836]  ? __schedule+0x16fd/0x4d00
[  164.780015][ T5836]  ? schedule+0x165/0x360
[  164.780033][ T5836]  ? schedule_timeout+0x9a/0x270
[  164.780061][ T5836]  ? __lock_acquire+0xab9/0xd20
[  164.780098][ T5836]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  164.780120][ T5836]  do_writepages+0x32e/0x550
[  164.780156][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  164.780178][ T5836]  filemap_fdatawrite+0x191/0x230
[  164.780193][ T5836]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  164.780259][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  164.780282][ T5836]  f2fs_sync_dirty_inodes+0x31f/0x830
[  164.780320][ T5836]  f2fs_write_checkpoint+0x94a/0x1de0
[  164.780367][ T5836]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  164.780443][ T5836]  ? kill_f2fs_super+0x298/0x6c0
[  164.780472][ T5836]  kill_f2fs_super+0x2c3/0x6c0
[  164.780503][ T5836]  ? __pfx_kill_f2fs_super+0x10/0x10
[  164.780525][ T5836]  ? radix_tree_delete_item+0x2b6/0x400
[  164.780557][ T5836]  ? shrinker_free+0x2ce/0x3e0
[  164.780583][ T5836]  deactivate_locked_super+0xb9/0x130
[  164.780612][ T5836]  cleanup_mnt+0x425/0x4c0
[  164.780636][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.780653][ T5836]  task_work_run+0x1d4/0x260
[  164.780673][ T5836]  ? __pfx_task_work_run+0x10/0x10
[  164.780689][ T5836]  ? __x64_sys_umount+0x122/0x160
[  164.780707][ T5836]  ? exit_to_user_mode_loop+0x40/0x110
[  164.780731][ T5836]  exit_to_user_mode_loop+0xec/0x110
[  164.780751][ T5836]  do_syscall_64+0x2bd/0x3b0
[  164.780764][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.780776][ T5836]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.780790][ T5836]  ? clear_bhb_loop+0x60/0xb0
[  164.780807][ T5836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.780820][ T5836] RIP: 0033:0x7f1d42d8fc97
[  164.780835][ T5836] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  164.780846][ T5836] RSP: 002b:00007ffcf692fc18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  164.780863][ T5836] RAX: 0000000000000000 RBX: 00007f1d42e1089d RCX: 00007f1d42d8fc97
[  164.780873][ T5836] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcf692fcd0
[  164.780881][ T5836] RBP: 00007ffcf692fcd0 R08: 0000000000000000 R09: 0000000000000000
[  164.780890][ T5836] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcf6930d60
[  164.780921][ T5836] R13: 00007f1d42e1089d R14: 00000000000281ef R15: 00007ffcf6930da0
[  164.780946][ T5836]  </TASK>
[  164.780958][ T5836] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  165.602871][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.610230][ T5946] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.797393][ T6472] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  165.956468][ T6472] ext4 filesystem being mounted at /27/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  167.740475][ T6489] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx"
[  168.134134][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805a6b5800: rx timeout, send abort
[  168.144200][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805a6b5400: rx timeout, send abort
[  168.159416][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805a6b5800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  168.175276][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805a6b5400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  168.585998][ T5852] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  169.714247][ T6499] loop3: detected capacity change from 0 to 512
[  169.735408][ T6499] EXT4-fs: Ignoring removed orlov option
[  169.769760][ T6499] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  169.801743][ T6499] EXT4-fs (loop3): orphan cleanup on readonly fs
[  169.824709][ T6499] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.115: bg 0: block 248: padding at end of block bitmap is not set
[  169.996709][ T6499] Quota error (device loop3): write_blk: dquota write failed
[  170.066126][ T6499] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  170.096629][ T6505] loop2: detected capacity change from 0 to 1024
[  170.141616][ T6499] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.115: Failed to acquire dquot type 1
[  170.189367][ T5847] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  170.200538][ T5847] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  170.223946][ T5847] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  170.246507][ T5847] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  170.254573][ T5847] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  170.359451][ T6505] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.410382][ T6499] EXT4-fs (loop3): 1 truncate cleaned up
[  170.616842][ T6499] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  172.566080][ T5847] Bluetooth: hci5: command tx timeout
[  173.352550][ T5852] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.630356][ T5838] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.639893][ T5847] Bluetooth: hci5: command tx timeout
[  175.131892][   T10] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  175.560044][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 52, changing to 4
[  175.588739][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 13368, setting to 1023
[  177.162538][ T5847] Bluetooth: hci5: command tx timeout
[  177.206692][ T6554] netlink: 20 bytes leftover after parsing attributes in process `syz.3.123'.
[  177.299403][   T10] usb 1-1: string descriptor 0 read error: -71
[  177.339627][   T10] usb 1-1: New USB device found, idVendor=3823, idProduct=0001, bcdDevice= 3.eb
[  177.348745][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.521826][   T10] usb 1-1: config 0 descriptor??
[  177.603827][   T10] usb 1-1: can't set config #0, error -71
[  177.648086][ T6557] loop3: detected capacity change from 0 to 4096
[  178.722642][   T10] usb 1-1: USB disconnect, device number 2
[  179.199752][   T51] Bluetooth: hci5: command tx timeout
[  179.912443][ T6511] chnl_net:caif_netlink_parms(): no params data found
[  181.285772][   T51] Bluetooth: hci5: command 0x0405 tx timeout
[  181.400299][   T36] bridge_slave_1: left allmulticast mode
[  181.400330][   T36] bridge_slave_1: left promiscuous mode
[  181.400560][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.581084][   T36] bridge_slave_0: left allmulticast mode
[  181.581593][   T36] bridge_slave_0: left promiscuous mode
[  181.592117][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.176223][ T6598] loop3: detected capacity change from 0 to 32768
[  185.707347][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  185.800093][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  185.855372][   T36] bond0 (unregistering): Released all slaves
[  185.894996][ T6511] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.934152][ T6511] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.943189][ T6511] bridge_slave_0: entered allmulticast mode
[  185.952946][ T6511] bridge_slave_0: entered promiscuous mode
[  186.010546][ T6511] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.028192][ T6511] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.072917][ T6511] bridge_slave_1: entered allmulticast mode
[  186.091886][ T6511] bridge_slave_1: entered promiscuous mode
[  186.448432][   T36] hsr_slave_0: left promiscuous mode
[  186.527820][   T36] hsr_slave_1: left promiscuous mode
[  186.614354][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  186.710569][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  187.318585][ T6646] Falling back ldisc for ttyS3.
[  190.129712][ T5930] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  190.729400][ T5930] usb 1-1: Using ep0 maxpacket: 8
[  190.756526][ T5930] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  190.777611][ T5930] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  190.847458][ T6681] loop2: detected capacity change from 0 to 256
[  190.859373][ T5930] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  190.999343][ T5930] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  191.033529][ T5930] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  191.054083][ T5930] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.065461][ T6681] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  191.244764][ T6682] exFAT-fs (loop2): error, invalid access to FAT free cluster (entry 0x00000008)
[  191.331732][ T5930] usb 1-1: GET_CAPABILITIES returned 0
[  191.359032][   T36] team0 (unregistering): Port device team_slave_1 removed
[  191.369009][ T5930] usbtmc 1-1:16.0: can't read capabilities
[  191.500679][   T36] team0 (unregistering): Port device team_slave_0 removed
[  191.563547][ T6672] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.598988][ T6672] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  191.648085][ T5930] usb 1-1: USB disconnect, device number 3
[  191.854466][ T6679] loop3: detected capacity change from 0 to 40427
[  191.933608][ T6679] F2FS-fs (loop3): invalid crc value
[  192.661638][ T6679] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  194.332933][ T5852] syz-executor: attempt to access beyond end of device
[  194.332933][ T5852] loop3: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  194.379828][ T5852] CPU: 0 UID: 0 PID: 5852 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250522-syzkaller #0 PREEMPT(full) 
[  194.379856][ T5852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  194.379867][ T5852] Call Trace:
[  194.379875][ T5852]  <TASK>
[  194.379883][ T5852]  dump_stack_lvl+0x189/0x250
[  194.379912][ T5852]  ? __pfx_dump_stack_lvl+0x10/0x10
[  194.379931][ T5852]  ? __pfx_queue_work_on+0x10/0x10
[  194.379948][ T5852]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  194.379976][ T5852]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  194.380016][ T5852]  f2fs_handle_critical_error+0x37c/0x540
[  194.380049][ T5852]  f2fs_write_end_io+0x5b8/0x7e0
[  194.380074][ T5852]  ? __submit_merged_bio+0x251/0x6a0
[  194.380114][ T5852]  __submit_merged_bio+0x27a/0x6a0
[  194.380144][ T5852]  __submit_merged_write_cond+0x255/0x530
[  194.380176][ T5852]  f2fs_write_data_pages+0x261d/0x3000
[  194.380199][ T5852]  ? __lock_acquire+0xab9/0xd20
[  194.380263][ T5852]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  194.380338][ T5852]  ? __mod_zone_page_state+0xd7/0x140
[  194.380364][ T5852]  ? folios_put_refs+0x560/0x640
[  194.380399][ T5852]  ? __lock_acquire+0xab9/0xd20
[  194.380433][ T5852]  ? do_raw_spin_lock+0x121/0x290
[  194.380469][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  194.380491][ T5852]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  194.380518][ T5852]  do_writepages+0x32e/0x550
[  194.380558][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  194.380584][ T5852]  filemap_fdatawrite+0x191/0x230
[  194.380604][ T5852]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  194.380679][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  194.380706][ T5852]  f2fs_sync_dirty_inodes+0x31f/0x830
[  194.380751][ T5852]  f2fs_write_checkpoint+0x94a/0x1de0
[  194.380815][ T5852]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  194.380898][ T5852]  ? kill_f2fs_super+0x298/0x6c0
[  194.380931][ T5852]  kill_f2fs_super+0x2c3/0x6c0
[  194.380965][ T5852]  ? __pfx_kill_f2fs_super+0x10/0x10
[  194.380989][ T5852]  ? radix_tree_delete_item+0x2b6/0x400
[  194.381026][ T5852]  ? shrinker_free+0x2ce/0x3e0
[  194.381053][ T5852]  deactivate_locked_super+0xb9/0x130
[  194.381083][ T5852]  cleanup_mnt+0x425/0x4c0
[  194.381109][ T5852]  ? lockdep_hardirqs_on+0x9c/0x150
[  194.381130][ T5852]  task_work_run+0x1d4/0x260
[  194.381157][ T5852]  ? __pfx_task_work_run+0x10/0x10
[  194.381177][ T5852]  ? __x64_sys_umount+0x122/0x160
[  194.381202][ T5852]  ? exit_to_user_mode_loop+0x40/0x110
[  194.381233][ T5852]  exit_to_user_mode_loop+0xec/0x110
[  194.381260][ T5852]  do_syscall_64+0x2bd/0x3b0
[  194.381278][ T5852]  ? lockdep_hardirqs_on+0x9c/0x150
[  194.381295][ T5852]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.381313][ T5852]  ? clear_bhb_loop+0x60/0xb0
[  194.381336][ T5852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.381354][ T5852] RIP: 0033:0x7fdd22d8fc97
[  194.381372][ T5852] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  194.381386][ T5852] RSP: 002b:00007ffdc72828c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  194.381407][ T5852] RAX: 0000000000000000 RBX: 00007fdd22e1089d RCX: 00007fdd22d8fc97
[  194.381419][ T5852] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdc7282980
[  194.381430][ T5852] RBP: 00007ffdc7282980 R08: 0000000000000000 R09: 0000000000000000
[  194.381441][ T5852] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdc7283a10
[  194.381453][ T5852] R13: 00007fdd22e1089d R14: 000000000002f18c R15: 00007ffdc7283a50
[  194.381487][ T5852]  </TASK>
[  194.381494][ T5852] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  194.695302][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  194.712465][ T5852] CPU: 0 UID: 0 PID: 5852 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250522-syzkaller #0 PREEMPT(full) 
[  194.712492][ T5852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  194.712502][ T5852] Call Trace:
[  194.712509][ T5852]  <TASK>
[  194.712516][ T5852]  dump_stack_lvl+0x189/0x250
[  194.712542][ T5852]  ? __pfx_dump_stack_lvl+0x10/0x10
[  194.712559][ T5852]  ? __pfx_queue_work_on+0x10/0x10
[  194.712573][ T5852]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  194.712606][ T5852]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  194.712644][ T5852]  f2fs_handle_critical_error+0x37c/0x540
[  194.712686][ T5852]  f2fs_write_end_io+0x5b8/0x7e0
[  194.712709][ T5852]  ? __submit_merged_bio+0x251/0x6a0
[  194.712747][ T5852]  __submit_merged_bio+0x27a/0x6a0
[  194.712775][ T5852]  __submit_merged_write_cond+0x255/0x530
[  194.712804][ T5852]  f2fs_write_data_pages+0x261d/0x3000
[  194.712824][ T5852]  ? __lock_acquire+0xab9/0xd20
[  194.712887][ T5852]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  194.712961][ T5852]  ? __mod_zone_page_state+0xd7/0x140
[  194.712990][ T5852]  ? folios_put_refs+0x560/0x640
[  194.713028][ T5852]  ? __lock_acquire+0xab9/0xd20
[  194.713060][ T5852]  ? do_raw_spin_lock+0x121/0x290
[  194.713094][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  194.713114][ T5852]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  194.713137][ T5852]  do_writepages+0x32e/0x550
[  194.713176][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  194.713201][ T5852]  filemap_fdatawrite+0x191/0x230
[  194.713218][ T5852]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  194.713293][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  194.713318][ T5852]  f2fs_sync_dirty_inodes+0x31f/0x830
[  194.713360][ T5852]  f2fs_write_checkpoint+0x94a/0x1de0
[  194.713413][ T5852]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  194.713493][ T5852]  ? kill_f2fs_super+0x298/0x6c0
[  194.713524][ T5852]  kill_f2fs_super+0x2c3/0x6c0
[  194.713555][ T5852]  ? __pfx_kill_f2fs_super+0x10/0x10
[  194.713575][ T5852]  ? radix_tree_delete_item+0x2b6/0x400
[  194.713615][ T5852]  ? shrinker_free+0x2ce/0x3e0
[  194.713640][ T5852]  deactivate_locked_super+0xb9/0x130
[  194.713666][ T5852]  cleanup_mnt+0x425/0x4c0
[  194.713688][ T5852]  ? lockdep_hardirqs_on+0x9c/0x150
[  194.713708][ T5852]  task_work_run+0x1d4/0x260
[  194.713732][ T5852]  ? __pfx_task_work_run+0x10/0x10
[  194.713750][ T5852]  ? __x64_sys_umount+0x122/0x160
[  194.713773][ T5852]  ? exit_to_user_mode_loop+0x40/0x110
[  194.713800][ T5852]  exit_to_user_mode_loop+0xec/0x110
[  194.713824][ T5852]  do_syscall_64+0x2bd/0x3b0
[  194.713839][ T5852]  ? lockdep_hardirqs_on+0x9c/0x150
[  194.713854][ T5852]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.713870][ T5852]  ? clear_bhb_loop+0x60/0xb0
[  194.713891][ T5852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.713907][ T5852] RIP: 0033:0x7fdd22d8fc97
[  194.713924][ T5852] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  194.713937][ T5852] RSP: 002b:00007ffdc72828c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  194.713956][ T5852] RAX: 0000000000000000 RBX: 00007fdd22e1089d RCX: 00007fdd22d8fc97
[  194.713967][ T5852] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdc7282980
[  194.713977][ T5852] RBP: 00007ffdc7282980 R08: 0000000000000000 R09: 0000000000000000
[  194.713987][ T5852] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdc7283a10
[  194.713997][ T5852] R13: 00007fdd22e1089d R14: 000000000002f18c R15: 00007ffdc7283a50
[  194.714030][ T5852]  </TASK>
[  194.714037][ T5852] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  195.117306][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  195.149733][ T5852] CPU: 1 UID: 0 PID: 5852 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250522-syzkaller #0 PREEMPT(full) 
[  195.149761][ T5852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  195.149772][ T5852] Call Trace:
[  195.149780][ T5852]  <TASK>
[  195.149787][ T5852]  dump_stack_lvl+0x189/0x250
[  195.149815][ T5852]  ? __pfx_dump_stack_lvl+0x10/0x10
[  195.149833][ T5852]  ? __pfx_queue_work_on+0x10/0x10
[  195.149848][ T5852]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  195.149884][ T5852]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  195.149922][ T5852]  f2fs_handle_critical_error+0x37c/0x540
[  195.149954][ T5852]  f2fs_write_end_io+0x5b8/0x7e0
[  195.149980][ T5852]  ? __submit_merged_bio+0x251/0x6a0
[  195.150018][ T5852]  __submit_merged_bio+0x27a/0x6a0
[  195.150048][ T5852]  __submit_merged_write_cond+0x255/0x530
[  195.150079][ T5852]  f2fs_write_data_pages+0x261d/0x3000
[  195.150102][ T5852]  ? __lock_acquire+0xab9/0xd20
[  195.150165][ T5852]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  195.150240][ T5852]  ? __mod_zone_page_state+0xd7/0x140
[  195.150270][ T5852]  ? folios_put_refs+0x560/0x640
[  195.150310][ T5852]  ? __lock_acquire+0xab9/0xd20
[  195.150344][ T5852]  ? do_raw_spin_lock+0x121/0x290
[  195.150379][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  195.150400][ T5852]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  195.150427][ T5852]  do_writepages+0x32e/0x550
[  195.150465][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  195.150492][ T5852]  filemap_fdatawrite+0x191/0x230
[  195.150511][ T5852]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  195.150584][ T5852]  ? do_raw_spin_unlock+0x122/0x240
[  195.150610][ T5852]  f2fs_sync_dirty_inodes+0x31f/0x830
[  195.150653][ T5852]  f2fs_write_checkpoint+0x94a/0x1de0
[  195.150707][ T5852]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  195.150788][ T5852]  ? kill_f2fs_super+0x298/0x6c0
[  195.150820][ T5852]  kill_f2fs_super+0x2c3/0x6c0
[  195.150853][ T5852]  ? __pfx_kill_f2fs_super+0x10/0x10
[  195.150929][ T5852]  ? radix_tree_delete_item+0x2b6/0x400
[  195.150967][ T5852]  ? shrinker_free+0x2ce/0x3e0
[  195.150993][ T5852]  deactivate_locked_super+0xb9/0x130
[  195.151022][ T5852]  cleanup_mnt+0x425/0x4c0
[  195.151047][ T5852]  ? lockdep_hardirqs_on+0x9c/0x150
[  195.151069][ T5852]  task_work_run+0x1d4/0x260
[  195.151095][ T5852]  ? __pfx_task_work_run+0x10/0x10
[  195.151116][ T5852]  ? __x64_sys_umount+0x122/0x160
[  195.151140][ T5852]  ? exit_to_user_mode_loop+0x40/0x110
[  195.151171][ T5852]  exit_to_user_mode_loop+0xec/0x110
[  195.151197][ T5852]  do_syscall_64+0x2bd/0x3b0
[  195.151215][ T5852]  ? lockdep_hardirqs_on+0x9c/0x150
[  195.151231][ T5852]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.151249][ T5852]  ? clear_bhb_loop+0x60/0xb0
[  195.151272][ T5852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.151289][ T5852] RIP: 0033:0x7fdd22d8fc97
[  195.151306][ T5852] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  195.151321][ T5852] RSP: 002b:00007ffdc72828c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  195.151341][ T5852] RAX: 0000000000000000 RBX: 00007fdd22e1089d RCX: 00007fdd22d8fc97
[  195.151354][ T5852] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdc7282980
[  195.151365][ T5852] RBP: 00007ffdc7282980 R08: 0000000000000000 R09: 0000000000000000
[  195.151376][ T5852] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdc7283a10
[  195.151388][ T5852] R13: 00007fdd22e1089d R14: 000000000002f18c R15: 00007ffdc7283a50
[  195.151420][ T5852]  </TASK>
[  195.151428][ T5852] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  197.376601][ T6511] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  197.455052][ T6511] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  198.658295][ T6717] kvm: kvm [6716]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x7a00
[  198.699257][ T6717] kvm: kvm [6716]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xbf00
[  198.750062][ T6717] kvm: kvm [6716]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xce00
[  198.810369][ T6717] kvm: kvm [6716]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xdc00
[  198.831722][ T6511] team0: Port device team_slave_0 added
[  198.856044][ T6735] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  198.862443][ T6511] team0: Port device team_slave_1 added
[  198.876020][ T6717] kvm: kvm [6716]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xe900
[  199.023233][ T6511] batman_adv: batadv0: Adding interface: batadv_slave_0
[  199.054063][ T6511] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  199.167867][ T6511] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  199.249386][ T6511] batman_adv: batadv0: Adding interface: batadv_slave_1
[  199.267104][ T6511] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  199.331824][ T6511] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  199.609492][ T6749] netlink: 8 bytes leftover after parsing attributes in process `syz.3.149'.
[  201.184079][ T6511] hsr_slave_0: entered promiscuous mode
[  201.219696][ T6511] hsr_slave_1: entered promiscuous mode
[  201.245852][ T6764] process 'syz.3.160' launched './file0' with NULL argv: empty string added
[  201.402638][ T6511] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  201.535576][ T6511] Cannot create hsr debugfs directory
[  206.111895][ T6809] netlink: 84 bytes leftover after parsing attributes in process `syz.4.170'.
[  206.236890][ T6813] netlink: 'syz.3.171': attribute type 1 has an invalid length.
[  211.781889][ T6848] loop3: detected capacity change from 0 to 128
[  212.081858][ T5846] Bluetooth: hci3: command 0x0406 tx timeout
[  212.090344][ T5846] Bluetooth: hci2: command 0x0406 tx timeout
[  212.142138][ T6511] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  213.638570][ T6511] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  213.909069][ T6511] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  213.925108][ T6511] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  214.068748][ T6865] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  216.165739][ T6511] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.207621][ T6511] 8021q: adding VLAN 0 to HW filter on device team0
[  216.896843][ T6075] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.904668][ T6075] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.066715][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.074162][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.283219][ T5847] Bluetooth: hci1: command 0x0406 tx timeout
[  217.289459][ T5847] Bluetooth: hci4: command 0x0406 tx timeout
[  218.145033][ T6511] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  220.445877][ T6910] loop2: detected capacity change from 0 to 256
[  220.846657][ T6915] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  221.538709][ T6910] exfat: Deprecated parameter 'namecase'
[  221.743254][ T6910] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  222.297141][ T6924] loop0: detected capacity change from 0 to 128
[  222.809102][ T6511] 8021q: adding VLAN 0 to HW filter on device batadv0
[  223.227566][ T5838] exFAT-fs (loop2): start_clu is invalid cluster(0x0)
[  223.678550][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.678550][ T6147] loop0: rw=1, sector=145, nr_sectors = 40 limit=128
[  223.711923][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.711923][ T6147] loop0: rw=1, sector=193, nr_sectors = 8 limit=128
[  223.736522][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.736522][ T6147] loop0: rw=1, sector=209, nr_sectors = 8 limit=128
[  223.776885][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.776885][ T6147] loop0: rw=1, sector=225, nr_sectors = 8 limit=128
[  223.846550][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.846550][ T6147] loop0: rw=1, sector=241, nr_sectors = 8 limit=128
[  223.846791][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.846791][ T6147] loop0: rw=1, sector=257, nr_sectors = 8 limit=128
[  223.846951][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.846951][ T6147] loop0: rw=1, sector=273, nr_sectors = 8 limit=128
[  223.847083][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.847083][ T6147] loop0: rw=1, sector=289, nr_sectors = 8 limit=128
[  223.847215][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.847215][ T6147] loop0: rw=1, sector=305, nr_sectors = 8 limit=128
[  223.847345][ T6147] kworker/u8:13: attempt to access beyond end of device
[  223.847345][ T6147] loop0: rw=1, sector=321, nr_sectors = 8 limit=128
[  225.175508][ T6963] netlink: 'syz.0.198': attribute type 11 has an invalid length.
[  225.183925][ T6963] netlink: 224 bytes leftover after parsing attributes in process `syz.0.198'.
[  225.669231][ T6973] loop0: detected capacity change from 0 to 2048
[  225.778795][ T6973] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  228.730627][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  228.750374][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  228.771367][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  228.818632][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  228.842807][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  231.119991][ T5849] Bluetooth: hci0: command tx timeout
[  231.193998][ T7017] bio_check_eod: 98 callbacks suppressed
[  231.200938][ T7017] syz.0.209: attempt to access beyond end of device
[  231.200938][ T7017] loop0: rw=2048, sector=2, nr_sectors = 1 limit=0
[  231.215175][ T7017] hfsplus: unable to find HFS+ superblock
[  232.241208][ T7022] loop9: detected capacity change from 0 to 6
[  232.280632][ T7022] Dev loop9: unable to read RDB block 6
[  232.286689][ T7022]  loop9: unable to read partition table
[  232.301979][ T7022] loop9: partition table beyond EOD, truncated
[  232.308698][ T7022] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  232.308698][ T7022] 
) failed (rc=-5)
[  232.458598][ T7021] loop3: detected capacity change from 0 to 512
[  232.512687][ T7021] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.210: casefold flag without casefold feature
[  232.801524][ T7021] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.210: couldn't read orphan inode 15 (err -117)
[  232.826291][ T7021] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.210587][ T5849] Bluetooth: hci0: command tx timeout
[  233.896886][ T7028] loop0: detected capacity change from 0 to 4096
[  234.407916][ T5852] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.369501][ T5849] Bluetooth: hci0: command tx timeout
[  237.440967][ T5849] Bluetooth: hci0: command tx timeout
[  238.344425][ T7070] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  239.966135][ T7091] netlink: 'syz.4.224': attribute type 1 has an invalid length.
[  239.983628][ T7091] netlink: 'syz.4.224': attribute type 4 has an invalid length.
[  239.992102][ T7091] netlink: 9462 bytes leftover after parsing attributes in process `syz.4.224'.
[  240.054128][ T7091] netlink: 'syz.4.224': attribute type 1 has an invalid length.
[  240.062679][ T7091] netlink: 'syz.4.224': attribute type 4 has an invalid length.
[  240.070950][ T7091] netlink: 9462 bytes leftover after parsing attributes in process `syz.4.224'.
[  240.595662][ T7096] syz.3.225 uses obsolete (PF_INET,SOCK_PACKET)
[  244.740434][ T6994] chnl_net:caif_netlink_parms(): no params data found
[  244.850425][ T5930] IPVS: starting estimator thread 0...
[  245.013402][ T7108] IPVS: using max 24 ests per chain, 57600 per kthread
[  246.472353][   T12] bridge_slave_1: left allmulticast mode
[  246.494852][   T12] bridge_slave_1: left promiscuous mode
[  246.517240][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.821172][   T12] bridge_slave_0: left allmulticast mode
[  246.985246][   T12] bridge_slave_0: left promiscuous mode
[  247.115716][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.413248][ T7143] loop0: detected capacity change from 0 to 40427
[  248.422805][ T7143] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  248.430676][ T7143] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  248.445962][ T7143] F2FS-fs (loop0): invalid crc value
[  248.715925][ T7143] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  248.726353][ T7143] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  250.782100][ T5836] syz-executor: attempt to access beyond end of device
[  250.782100][ T5836] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  251.006401][ T5836] CPU: 0 UID: 0 PID: 5836 Comm: syz-executor Not tainted 6.15.0-rc7-next-20250522-syzkaller #0 PREEMPT(full) 
[  251.006431][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  251.006442][ T5836] Call Trace:
[  251.006450][ T5836]  <TASK>
[  251.006459][ T5836]  dump_stack_lvl+0x189/0x250
[  251.006484][ T5836]  ? preempt_schedule_thunk+0x16/0x30
[  251.006511][ T5836]  ? __pfx_dump_stack_lvl+0x10/0x10
[  251.006529][ T5836]  ? __pfx_queue_work_on+0x10/0x10
[  251.006545][ T5836]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  251.006574][ T5836]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  251.006614][ T5836]  f2fs_handle_critical_error+0x37c/0x540
[  251.006655][ T5836]  f2fs_write_end_io+0x5b8/0x7e0
[  251.006681][ T5836]  ? __submit_merged_bio+0x251/0x6a0
[  251.006721][ T5836]  __submit_merged_bio+0x27a/0x6a0
[  251.006742][ T5836]  ? up_write+0x1c4/0x420
[  251.006769][ T5836]  __submit_merged_write_cond+0x44c/0x530
[  251.006801][ T5836]  f2fs_sync_node_pages+0x1861/0x19f0
[  251.006852][ T5836]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  251.006908][ T5836]  ? f2fs_write_checkpoint+0xe33/0x1de0
[  251.006940][ T5836]  ? up_write+0x1c4/0x420
[  251.006956][ T5836]  ? do_raw_spin_unlock+0x122/0x240
[  251.006984][ T5836]  f2fs_write_checkpoint+0xe5f/0x1de0
[  251.007040][ T5836]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  251.007123][ T5836]  ? kill_f2fs_super+0x298/0x6c0
[  251.007156][ T5836]  kill_f2fs_super+0x2c3/0x6c0
[  251.007197][ T5836]  ? __pfx_kill_f2fs_super+0x10/0x10
[  251.007221][ T5836]  ? radix_tree_delete_item+0x2b6/0x400
[  251.007257][ T5836]  ? shrinker_free+0x2ce/0x3e0
[  251.007285][ T5836]  deactivate_locked_super+0xb9/0x130
[  251.007314][ T5836]  cleanup_mnt+0x425/0x4c0
[  251.007339][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  251.007361][ T5836]  task_work_run+0x1d4/0x260
[  251.007388][ T5836]  ? __pfx_task_work_run+0x10/0x10
[  251.007408][ T5836]  ? __x64_sys_umount+0x122/0x160
[  251.007432][ T5836]  ? exit_to_user_mode_loop+0x40/0x110
[  251.007463][ T5836]  exit_to_user_mode_loop+0xec/0x110
[  251.007491][ T5836]  do_syscall_64+0x2bd/0x3b0
[  251.007508][ T5836]  ? lockdep_hardirqs_on+0x9c/0x150
[  251.007525][ T5836]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.007543][ T5836]  ? clear_bhb_loop+0x60/0xb0
[  251.007566][ T5836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.007585][ T5836] RIP: 0033:0x7f1d42d8fc97
[  251.007603][ T5836] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  251.007618][ T5836] RSP: 002b:00007ffcf692fc18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  251.007640][ T5836] RAX: 0000000000000000 RBX: 00007f1d42e1089d RCX: 00007f1d42d8fc97
[  251.007652][ T5836] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcf692fcd0
[  251.007663][ T5836] RBP: 00007ffcf692fcd0 R08: 0000000000000000 R09: 0000000000000000
[  251.007674][ T5836] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcf6930d60
[  251.007686][ T5836] R13: 00007f1d42e1089d R14: 000000000003d20b R15: 00007ffcf6930da0
[  251.007721][ T5836]  </TASK>
[  251.007763][ T5836] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  251.573189][ T7164] Falling back ldisc for ttyprintk.
[  252.422894][ T7176] loop4: detected capacity change from 0 to 4096
[  252.536617][ T7178] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  253.300146][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  253.333480][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  253.358060][   T12] bond0 (unregistering): Released all slaves
[  253.528906][ T6994] bridge0: port 1(bridge_slave_0) entered blocking state
[  253.538906][ T6994] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.549066][ T6994] bridge_slave_0: entered allmulticast mode
[  253.561470][ T6994] bridge_slave_0: entered promiscuous mode
[  253.577186][ T6994] bridge0: port 2(bridge_slave_1) entered blocking state
[  253.586983][ T6994] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.605361][ T6994] bridge_slave_1: entered allmulticast mode
[  253.616264][ T6994] bridge_slave_1: entered promiscuous mode
[  254.652064][ T7195] loop9: detected capacity change from 0 to 7
[  254.661729][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.670300][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.679164][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.687670][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.696733][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.705285][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.713826][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.724132][ T7195] ldm_validate_partition_table(): Disk read failed.
[  254.731288][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.739641][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.748132][ T7195] Buffer I/O error on dev loop9, logical block 0, async page read
[  254.757303][ T7195] Dev loop9: unable to read RDB block 0
[  254.764817][ T7195]  loop9: unable to read partition table
[  254.773120][ T7195] loop9: partition table beyond EOD, truncated
[  254.779757][ T7195] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  254.779757][ T7195] 
U�������) failed (rc=-5)
[  255.665439][ T6994] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  255.713207][ T7204] binder: 7197:7204 ioctl 4018620d 0 returned -22
[  256.331402][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  256.338099][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  256.435183][   T12] hsr_slave_0: left promiscuous mode
[  256.462681][   T12] hsr_slave_1: left promiscuous mode
[  256.469068][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  256.764905][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  256.880207][ T7214] loop0: detected capacity change from 0 to 8
[  257.697028][ T7216] netlink: 'syz.2.247': attribute type 6 has an invalid length.
[  257.802981][ T7217] loop2: detected capacity change from 0 to 64
[  259.292973][   T12] team0 (unregistering): Port device team_slave_1 removed
[  259.398465][   T12] team0 (unregistering): Port device team_slave_0 removed
[  260.319919][ T7201] netlink: 12 bytes leftover after parsing attributes in process `syz.4.241'.
[  260.343095][ T6994] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  262.900808][ T7234] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  262.920389][ T7234] infiniband s: RDMA CMA: cma_listen_on_dev, error -98
[  263.728151][ T6994] team0: Port device team_slave_0 added
[  263.787743][ T6994] team0: Port device team_slave_1 added
[  267.018513][ T6994] batman_adv: batadv0: Adding interface: batadv_slave_0
[  267.043861][ T6994] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  267.070077][    C0] vkms_vblank_simulate: vblank timer overrun
[  267.173782][ T6994] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  268.072380][ T6994] batman_adv: batadv0: Adding interface: batadv_slave_1
[  268.128004][ T6994] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  268.194057][ T7275] Zero length message leads to an empty skb
[  268.243198][ T6994] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  269.259796][ T7291] loop4: detected capacity change from 0 to 128
[  270.587927][ T7301] loop4: detected capacity change from 0 to 256
[  271.249018][ T6994] hsr_slave_0: entered promiscuous mode
[  271.263146][ T6994] hsr_slave_1: entered promiscuous mode
[  271.286553][ T6994] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  271.298738][ T6994] Cannot create hsr debugfs directory
[  275.463343][ T7326] kAFS: No cell specified
[  275.929787][ T5847] Bluetooth: hci0: command 0x0405 tx timeout
[  276.512386][ T7330] loop0: detected capacity change from 0 to 2048
[  276.979226][ T7330] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  277.260756][ T7339] Bluetooth: MGMT ver 1.23
[  278.011491][ T7341] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/nbd4": -EINTR
[  282.994566][ T7368] loop0: detected capacity change from 0 to 40427
[  283.629744][ T7368] F2FS-fs (loop0): invalid crc value
[  284.674633][ T7368] F2FS-fs (loop0): Start checkpoint disabled!
[  284.697421][ T7368] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  286.159319][ T7383] sp0: Synchronizing with TNC
[  286.181239][ T5930] IPVS: starting estimator thread 0...
[  286.429459][ T7385] IPVS: using max 31 ests per chain, 74400 per kthread
[  289.250892][ T7412] veth0_vlan: entered allmulticast mode
[  289.277768][ T7412] veth0_vlan: left promiscuous mode
[  289.285426][ T7412] veth0_vlan: entered promiscuous mode
[  290.039078][ T7416] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  290.089298][ T7413] usb usb1: Process 7413 (syz.3.284) called USBDEVFS_CLEAR_HALT for active endpoint 0x81
[  291.940364][ T5849] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  291.961153][ T5849] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  291.971513][ T5849] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  291.982960][ T5849] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  292.040155][ T5849] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  294.409426][ T5847] Bluetooth: hci5: command tx timeout
[  296.879683][ T5847] Bluetooth: hci5: command tx timeout
[  297.233103][ T7468] mmap: syz.0.292 (7468) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  298.959693][ T5847] Bluetooth: hci5: command tx timeout
[  299.376690][ T7466] netdevsim netdevsim0: Direct firmware load for ./file0 failed with error -2
[  299.386727][ T7466] netdevsim netdevsim0: Falling back to sysfs fallback for: ./file0
[  299.434872][ T7476] capability: warning: `syz.3.294' uses 32-bit capabilities (legacy support in use)
[  300.443983][ T7484] loop3: detected capacity change from 0 to 2048
[  300.451025][ T7485] netlink: 16 bytes leftover after parsing attributes in process `syz.0.297'.
[  300.466457][ T7484] EXT4-fs: Ignoring removed mblk_io_submit option
[  300.474253][ T7474] loop2: detected capacity change from 0 to 4096
[  300.741822][ T7487] loop4: detected capacity change from 0 to 4096
[  300.753345][ T7487] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  300.782291][ T7487] ntfs3(loop4): failed to replay log file. Can't mount rw!
[  300.848423][ T7484] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  300.915296][ T7495] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  301.039740][ T5847] Bluetooth: hci5: command tx timeout
[  301.442965][ T7419] chnl_net:caif_netlink_parms(): no params data found
[  301.494688][ T7494] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  304.089397][ T6574] bridge_slave_1: left allmulticast mode
[  304.097867][ T6574] bridge_slave_1: left promiscuous mode
[  304.112045][ T6574] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.120400][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 26 with max blocks 26 with error 28
[  304.236351][   T12] EXT4-fs (loop3): This should not happen!! Data will be lost
[  304.236351][   T12] 
[  304.401284][   T12] EXT4-fs (loop3): Total free blocks count 0
[  304.453949][   T12] EXT4-fs (loop3): Free/Dirty block details
[  304.556133][   T12] EXT4-fs (loop3): free_blocks=0
[  304.685592][   T12] EXT4-fs (loop3): dirty_blocks=48
[  304.723332][ T6574] bridge_slave_0: left allmulticast mode
[  304.759684][   T12] EXT4-fs (loop3): Block reservation details
[  304.784953][ T6574] bridge_slave_0: left promiscuous mode
[  304.836113][   T12] EXT4-fs (loop3): i_reserved_data_blocks=3
[  304.850466][ T6574] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.901323][ T5852] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.030122][ T7514] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  306.242862][ T7519] loop4: detected capacity change from 0 to 32768
[  306.281388][ T7519] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  306.333726][ T7519] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  307.001590][ T6574] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  307.032626][ T6574] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  307.182486][ T6574] bond0 (unregistering): Released all slaves
[  307.300638][ T5839] ocfs2: Unmounting device (7,4) on (node local)
[  307.498395][ T7531] loop3: detected capacity change from 0 to 256
[  307.878125][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.3.307'.
[  310.163034][ T7553] loop0: detected capacity change from 0 to 64
[  310.477980][ T6574] hsr_slave_0: left promiscuous mode
[  312.249484][ T6574] hsr_slave_1: left promiscuous mode
[  312.357885][ T6574] batman_adv: batadv0: Removing interface: batadv_slave_0
[  314.733950][ T6574] batman_adv: batadv0: Removing interface: batadv_slave_1
[  314.812577][ T7569] program syz.3.313 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  315.784571][ T7570] syz.4.314 (7570): drop_caches: 2
[  316.514626][ T7576] hub 1-0:1.0: USB hub found
[  316.529634][ T7576] hub 1-0:1.0: 1 port detected
[  317.534429][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  317.541133][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  318.773880][ T7593] netlink: 24 bytes leftover after parsing attributes in process `syz.4.319'.
[  323.334389][ T7629] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  324.830510][ T5992] udevd[5992]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  324.918353][ T5992] udevd[5992]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  324.953869][ T6574] team0 (unregistering): Port device team_slave_1 removed
[  325.225542][ T6574] team0 (unregistering): Port device team_slave_0 removed
[  325.281329][ T5853] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  325.451558][ T5853] usb 5-1: config 6 has an invalid interface number: 218 but max is 0
[  325.484728][ T5853] usb 5-1: config 6 has no interface number 0
[  325.619350][ T5853] usb 5-1: config 6 interface 218 altsetting 5 endpoint 0x9 has invalid maxpacket 1024, setting to 64
[  325.657084][ T5853] usb 5-1: config 6 interface 218 altsetting 5 endpoint 0x5 has invalid maxpacket 1023, setting to 64
[  325.705278][ T5853] usb 5-1: config 6 interface 218 has no altsetting 0
[  325.826302][ T5853] usb 5-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice= 8.8f
[  325.837932][ T7419] bridge0: port 1(bridge_slave_0) entered blocking state
[  326.029525][ T5853] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.114692][ T7648] usb usb1: usbfs: process 7648 (syz.0.330) did not claim interface 0 before use
[  326.789495][ T7419] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.842300][ T5853] usb 5-1: Product: syz
[  326.850897][ T7419] bridge_slave_0: entered allmulticast mode
[  326.884980][ T5853] usb 5-1: Manufacturer: syz
[  326.898887][ T7419] bridge_slave_0: entered promiscuous mode
[  326.915609][ T5853] usb 5-1: SerialNumber: syz
[  326.936163][ T7650] loop3: detected capacity change from 0 to 512
[  326.967067][ T7419] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.018572][ T7419] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.034924][ T7650] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  327.058642][ T7419] bridge_slave_1: entered allmulticast mode
[  327.086410][ T7650] EXT4-fs (loop3): blocks per group (64) and clusters per group (32768) inconsistent
[  327.293906][ T7419] bridge_slave_1: entered promiscuous mode
[  327.389537][ T7659] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  328.202908][ T5853] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  330.116858][ T7665] loop3: detected capacity change from 0 to 32768
[  330.125838][ T7665] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.335 (7665)
[  330.157731][ T7665] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  330.168267][ T7665] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  330.177975][ T7665] BTRFS info (device loop3): using free-space-tree
[  330.346750][ T7665] BTRFS info (device loop3): rebuilding free space tree
[  330.385832][ T7419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  330.394906][ T5853] usb 5-1: USB disconnect, device number 2
[  330.532112][ T7419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  330.551519][ T7665] BTRFS info (device loop3): balance: start -susage=12582912,drange=65536..8,limit=10376293541461622786,limit=2..2415919104
[  330.579193][ T7665] BTRFS info (device loop3): relocating block group 1048576 flags system
[  330.745031][ T7665] BTRFS info (device loop3): balance: ended with status: 0
[  330.775490][ T5851] udevd[5851]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:6.218/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  331.597952][ T5852] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  331.910536][ T7707] kernel profiling enabled (shift: 7)
[  333.928081][ T7419] team0: Port device team_slave_0 added
[  334.124463][ T7719] loop3: detected capacity change from 0 to 4096
[  334.132750][ T7719] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  334.192831][ T7419] team0: Port device team_slave_1 added
[  334.263487][ T7719] ntfs3(loop3): failed to replay log file. Can't mount rw!
[  334.588454][ T7720] Process accounting resumed
[  337.412809][ T7740] loop4: detected capacity change from 0 to 64
[  338.851877][ T7419] batman_adv: batadv0: Adding interface: batadv_slave_0
[  338.860518][ T7419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  339.899477][ T7419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  339.949652][ T7419] batman_adv: batadv0: Adding interface: batadv_slave_1
[  339.956908][ T7419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  340.187032][ T7419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  340.447834][ T7758] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[  341.833268][ T7765] loop4: detected capacity change from 0 to 1024
[  341.842854][ T7419] hsr_slave_0: entered promiscuous mode
[  341.940741][ T7419] hsr_slave_1: entered promiscuous mode
[  341.947475][ T7419] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  341.961664][ T7419] Cannot create hsr debugfs directory
[  346.324203][ T6574] hfsplus: b-tree write err: -5, ino 4
[  346.547016][ T7798] loop0: detected capacity change from 0 to 1024
[  346.833057][ T7805] netlink: 332 bytes leftover after parsing attributes in process `syz.2.360'.
[  346.842764][ T7805] netlink: 'syz.2.360': attribute type 9 has an invalid length.
[  346.850632][ T7805] netlink: 152 bytes leftover after parsing attributes in process `syz.2.360'.
[  346.945826][ T7801] loop3: detected capacity change from 0 to 8192
[  347.057960][ T7798] 9pnet_fd: Insufficient options for proto=fd
[  348.014277][ T7816] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF
[  348.023265][ T7816] FAT-fs (loop3): Filesystem has been set read-only
[  350.081334][ T7831] pim6reg: entered allmulticast mode
[  351.735797][ T7826] loop3: detected capacity change from 0 to 4096
[  351.809516][ T7826] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  352.957475][ T7826] ntfs3(loop3): Failed to read $UpCase (-4).
[  353.896371][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  353.913131][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  353.924398][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  353.935123][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  353.950731][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  354.189580][ T7857] netlink: 'syz.4.371': attribute type 2 has an invalid length.
[  355.210224][ T7868] loop4: detected capacity change from 0 to 2048
[  356.245441][ T5849] Bluetooth: hci0: command tx timeout
[  356.352815][ T7868] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  356.608177][ T7883] Trying to write to read-only block-device nullb0
[  356.670793][ T7885] loop2: detected capacity change from 0 to 128
[  356.694044][ T7885] ext4: Unknown parameter 'context'
[  357.722901][ T5956] bridge_slave_1: left allmulticast mode
[  357.741784][ T5956] bridge_slave_1: left promiscuous mode
[  357.973134][ T5956] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.053950][ T5956] bridge_slave_0: left allmulticast mode
[  358.136742][ T7894] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  358.196701][ T5956] bridge_slave_0: left promiscuous mode
[  358.364847][ T5849] Bluetooth: hci0: command tx timeout
[  358.389094][ T5956] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.197382][ T7899] loop4: detected capacity change from 0 to 256
[  359.482854][ T5849] Bluetooth: hci4: unexpected event for opcode 0x0401
[  360.589460][ T5849] Bluetooth: hci0: command tx timeout
[  360.900337][ T5956] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  360.922984][ T5956] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  360.944369][ T5956] bond0 (unregistering): Released all slaves
[  360.958789][ T7917] loop4: detected capacity change from 0 to 2048
[  361.044323][ T7917] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  361.141504][ T7917] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  361.836948][ T7917] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  362.601667][ T5956] hsr_slave_0: left promiscuous mode
[  362.674851][ T5849] Bluetooth: hci0: command tx timeout
[  363.382851][ T5956] hsr_slave_1: left promiscuous mode
[  363.414482][ T5956] batman_adv: batadv0: Removing interface: batadv_slave_0
[  363.655006][ T5956] batman_adv: batadv0: Removing interface: batadv_slave_1
[  366.575862][ T7952] netlink: 8 bytes leftover after parsing attributes in process `syz.2.390'.
[  367.762273][ T7959] loop2: detected capacity change from 0 to 512
[  367.777548][ T7959] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  367.798376][ T7959] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  368.307432][ T7959] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  368.843338][ T7959] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  368.901758][ T7959] System zones: 0-2, 18-18, 34-34
[  369.624924][ T7959] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.394: iget: bad i_size value: 360287970189639680
[  369.740573][ T7959] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.394: couldn't read orphan inode 15 (err -117)
[  369.798528][ T7959] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.884425][ T5956] team0 (unregistering): Port device team_slave_1 removed
[  369.920811][ T7959] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.394: iget: bad i_size value: 360287970189639680
[  369.994019][   T30] audit: type=1800 audit(1747978840.127:3): pid=7959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.394" name="file2" dev="loop2" ino=16 res=0 errno=0
[  370.861726][ T7975] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  370.864708][ T7976] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  370.932782][ T5956] team0 (unregistering): Port device team_slave_0 removed
[  372.313386][ T7988] loop0: detected capacity change from 0 to 2048
[  372.342497][ T7988] udf: Bad value for 'lastblock'
[  379.153305][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  379.163713][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  379.218051][ T5838] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.207775][ T7850] chnl_net:caif_netlink_parms(): no params data found
[  380.872770][ T8039] loop0: detected capacity change from 0 to 512
[  381.645462][ T8041] loop3: detected capacity change from 0 to 16
[  381.652898][ T8041] erofs: Unknown parameter ''
[  383.516130][ T8058] loop3: detected capacity change from 0 to 16
[  383.598140][ T8058] erofs (device loop3): rootino(nid 36) is not a directory(i_mode 16700)
[  383.631024][ T8059] loop0: detected capacity change from 0 to 1024
[  384.222093][ T8059] EXT4-fs: Ignoring removed nobh option
[  384.272594][ T8059] EXT4-fs: inline encryption not supported
[  384.279186][ T8059] EXT4-fs: Ignoring removed bh option
[  384.955702][ T8059] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  385.006582][ T8064] loop4: detected capacity change from 0 to 1024
[  385.200509][ T8063] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  385.228799][ T7850] bridge0: port 1(bridge_slave_0) entered blocking state
[  385.285238][ T7850] bridge0: port 1(bridge_slave_0) entered disabled state
[  385.903810][ T7850] bridge_slave_0: entered allmulticast mode
[  385.921523][ T7850] bridge_slave_0: entered promiscuous mode
[  385.967431][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.995970][ T7850] bridge0: port 2(bridge_slave_1) entered blocking state
[  386.006625][ T7850] bridge0: port 2(bridge_slave_1) entered disabled state
[  386.014542][ T7850] bridge_slave_1: entered allmulticast mode
[  386.035764][ T7850] bridge_slave_1: entered promiscuous mode
[  386.148951][ T8064] EXT4-fs (loop4): Test dummy encryption mode enabled
[  386.168783][ T8064] EXT4-fs (loop4): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  386.224920][ T7850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  386.228375][ T8064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.255799][ T8064] capability: warning: `syz.4.412' uses deprecated v2 capabilities in a way that may be insecure
[  388.383255][ T7850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  388.798314][ T8095] loop3: detected capacity change from 0 to 4096
[  389.229901][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.341362][ T8102] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  389.652165][ T7850] team0: Port device team_slave_0 added
[  389.778533][ T7850] team0: Port device team_slave_1 added
[  389.808455][ T8110] ubi31: attaching mtd0
[  390.108863][ T8110] ubi31: scanning is finished
[  390.117123][ T8110] ubi31: empty MTD device detected
[  390.288360][ T8112] netlink: 32 bytes leftover after parsing attributes in process `syz.4.418'.
[  390.457871][ T8110] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  390.516073][ T8110] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  390.567550][ T8110] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  390.617306][ T8110] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  390.654487][ T7850] batman_adv: batadv0: Adding interface: batadv_slave_0
[  390.659348][ T8110] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  390.681811][ T7850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  390.684699][ T8122] loop2: detected capacity change from 0 to 16
[  390.719273][ T8110] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  390.752626][ T7850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  390.784222][ T8110] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3849253919
[  390.812413][ T8122] erofs (device loop2): mounted with root inode @ nid 36.
[  390.849382][ T8110] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  390.863947][ T7850] batman_adv: batadv0: Adding interface: batadv_slave_1
[  391.129349][ T8118] ubi31: background thread "ubi_bgt31d" started, PID 8118
[  391.161777][ T7850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  392.169378][ T7850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  393.227241][ T8141] loop0: detected capacity change from 0 to 32768
[  394.168534][ T8141] 
[  394.168534][ T8141]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  394.168534][ T8141] 
[  394.203466][ T8141] ERROR: (device loop0): diWrite: ixpxd invalid
[  394.203466][ T8141] 
[  394.216301][ T8141] ERROR: (device loop0): txCommit: 
[  394.216301][ T8141] 
[  395.240085][ T8141] 
[  395.240085][ T8141]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  395.240085][ T8141] 
[  395.319402][ T8141] 
[  395.319402][ T8141]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  395.319402][ T8141] 
[  395.468155][ T8148] sctp: failed to load transform for md5: -2
[  395.918696][ T7850] hsr_slave_0: entered promiscuous mode
[  395.968750][ T7850] hsr_slave_1: entered promiscuous mode
[  395.995750][ T7850] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  396.033029][ T7850] Cannot create hsr debugfs directory
[  396.329520][ T8163] usb usb8: usbfs: process 8163 (syz.2.426) did not claim interface 0 before use
[  401.588441][ T8190] loop2: detected capacity change from 0 to 512
[  401.627409][ T8190] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  401.640596][ T8190] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  401.761829][ T8190] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a000c019, mo2=0002]
[  401.775706][ T8190] System zones: 1-12
[  401.812922][ T8190] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  401.829266][ T8190] EXT4-fs (loop2): 1 truncate cleaned up
[  401.836945][ T8190] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  402.802960][ T8201] usb usb8: usbfs: process 8201 (syz.3.432) did not claim interface 0 before use
[  403.508326][ T5838] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.692731][ T7850] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  403.738244][ T8209] loop0: detected capacity change from 0 to 2048
[  403.798727][ T8209] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  403.859412][ T7850] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  404.702389][ T7850] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  404.830543][   T30] audit: type=1326 audit(1747978874.917:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8208 comm="syz.0.436" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1d42d8e969 code=0x0
[  404.872971][ T7850] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  405.024832][ T8220] loop3: detected capacity change from 0 to 256
[  405.114653][ T8220] vfat: Unknown parameter 'sho��*Bd���b��rtname'
[  405.212052][ T8217] loop2: detected capacity change from 0 to 32768
[  406.362375][ T7850] 8021q: adding VLAN 0 to HW filter on device bond0
[  406.551311][ T8229] loop2: detected capacity change from 0 to 40427
[  406.620622][ T8229] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  406.628619][ T8229] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  406.651215][ T8229] F2FS-fs (loop2): invalid crc value
[  406.742354][ T8229] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  406.749642][ T8229] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  407.664254][ T7850] 8021q: adding VLAN 0 to HW filter on device team0
[  408.039492][ T5929] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  408.848387][ T5929] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  408.862400][ T5929] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  408.873582][ T5929] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  408.899510][ T5929] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  408.907610][ T5929] usb 4-1: SerialNumber: syz
[  409.047807][ T5929] usb 4-1: 0:2 : does not exist
[  409.321654][ T8237] block device autoloading is deprecated and will be removed.
[  409.332103][ T8237] syz.3.439: attempt to access beyond end of device
[  409.332103][ T8237] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  410.493218][ T1542] usb 4-1: USB disconnect, device number 2
[  410.926286][ T5847] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  410.954531][ T5847] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  411.143015][ T5847] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  411.183792][ T5847] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  411.203189][ T5847] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  516.899170][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  516.906181][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5205/1:b..l
[  516.914860][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=24933, q=287 ncpus=2)
[  516.922868][    C0] task:udevd           state:R  running task     stack:22984 pid:5205  tgid:5205  ppid:1      task_flags:0x400140 flags:0x00004002
[  516.937704][    C0] Call Trace:
[  516.941016][    C0]  <TASK>
[  516.943980][    C0]  __schedule+0x16f5/0x4d00
[  516.948538][    C0]  ? preempt_schedule_irq+0xb5/0x150
[  516.953956][    C0]  ? __pfx___schedule+0x10/0x10
[  516.958872][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  516.964191][    C0]  ? seqcount_lockdep_reader_access+0x174/0x1c0
[  516.970737][    C0]  ? preempt_schedule_irq+0xaa/0x150
[  516.976143][    C0]  preempt_schedule_irq+0xb5/0x150
[  516.981295][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  516.987138][    C0]  ? set_root+0x325/0x3b0
[  516.991521][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  516.997437][    C0]  irqentry_exit+0x6f/0x90
[  517.001963][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  517.008053][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x8/0x90
[  517.015040][    C0] Code: 48 89 44 11 20 e9 18 a5 a6 09 cc 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 <65> 48 8b 14 25 08 70 9c 92 65 8b 0d 38 2b dc 10 81 e1 00 01 ff 00
[  517.035137][    C0] RSP: 0018:ffffc90003397b90 EFLAGS: 00000246
[  517.041283][    C0] RAX: ffffffff82372f66 RBX: ffffc90003397c60 RCX: ffff88807d3c8000
[  517.049305][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  517.057490][    C0] RBP: 0000000000000108 R08: ffff88801e2b7c20 R09: ffff888148c9a468
[  517.065520][    C0] R10: ffff88801e2b7c20 R11: ffff888148c9a468 R12: ffff88807d3c88d0
[  517.073600][    C0] R13: 1ffff92000672f88 R14: ffff88807d816620 R15: ffffc90003397e40
[  517.081623][    C0]  ? path_lookupat+0x36/0x430
[  517.086473][    C0]  path_lookupat+0x36/0x430
[  517.091019][    C0]  filename_lookup+0x212/0x570
[  517.096242][    C0]  ? __lock_acquire+0xab9/0xd20
[  517.101245][    C0]  ? __pfx_filename_lookup+0x10/0x10
[  517.106735][    C0]  ? strncpy_from_user+0x150/0x290
[  517.111946][    C0]  ? getname_flags+0x1e5/0x540
[  517.116785][    C0]  do_readlinkat+0xd9/0x500
[  517.121401][    C0]  ? __pfx_do_readlinkat+0x10/0x10
[  517.126581][    C0]  __x64_sys_readlink+0x7f/0x90
[  517.131674][    C0]  do_syscall_64+0xfa/0x3b0
[  517.136306][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.142525][    C0]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  517.148371][    C0]  ? clear_bhb_loop+0x60/0xb0
[  517.153166][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.159169][    C0] RIP: 0033:0x7f1eb9b153a7
[  517.163694][    C0] RSP: 002b:00007fff296a7cf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
[  517.172142][    C0] RAX: ffffffffffffffda RBX: 00007fff296a81d0 RCX: 00007f1eb9b153a7
[  517.180393][    C0] RDX: 0000000000000400 RSI: 00007fff296a7d00 RDI: 00007fff296a81d0
[  517.188401][    C0] RBP: 00007fff296a7d00 R08: 00c0feff00000000 R09: 0000000000000000
[  517.196478][    C0] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000400
[  517.204571][    C0] R13: 000055677375c100 R14: 0000000000000000 R15: 00007fff296a8bf0
[  517.212757][    C0]  </TASK>
[  517.215797][    C0] rcu: rcu_preempt kthread starved for 10490 jiffies! g24933 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  517.227187][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  517.237443][    C0] rcu: RCU grace-period kthread stack dump:
[  517.243367][    C0] task:rcu_preempt     state:R  running task     stack:27128 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[  517.256897][    C0] Call Trace:
[  517.260298][    C0]  <TASK>
[  517.263266][    C0]  __schedule+0x16f5/0x4d00
[  517.267831][    C0]  ? schedule+0x165/0x360
[  517.272192][    C0]  ? __pfx___schedule+0x10/0x10
[  517.277129][    C0]  ? schedule+0x91/0x360
[  517.281451][    C0]  schedule+0x165/0x360
[  517.285642][    C0]  schedule_timeout+0x12b/0x270
[  517.290549][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  517.296028][    C0]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  517.302060][    C0]  ? __pfx_process_timeout+0x10/0x10
[  517.307402][    C0]  ? prepare_to_swait_event+0x341/0x380
[  517.312997][    C0]  rcu_gp_fqs_loop+0x301/0x1540
[  517.317910][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  517.323243][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  517.329432][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  517.335371][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  517.340629][    C0]  rcu_gp_kthread+0x99/0x390
[  517.345257][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  517.350484][    C0]  ? __kthread_parkme+0x7b/0x200
[  517.355530][    C0]  ? __kthread_parkme+0x1a1/0x200
[  517.360601][    C0]  kthread+0x711/0x8a0
[  517.364875][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  517.370243][    C0]  ? __pfx_kthread+0x10/0x10
[  517.374858][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  517.380456][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  517.385683][    C0]  ? __pfx_kthread+0x10/0x10
[  517.390297][    C0]  ret_from_fork+0x3fc/0x770
[  517.394930][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  517.400081][    C0]  ? __switch_to_asm+0x39/0x70
[  517.404867][    C0]  ? __switch_to_asm+0x33/0x70
[  517.409652][    C0]  ? __pfx_kthread+0x10/0x10
[  517.414266][    C0]  ret_from_fork_asm+0x1a/0x30
[  517.419167][    C0]  </TASK>
[  517.422228][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  517.428594][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.15.0-rc7-next-20250522-syzkaller #0 PREEMPT(full) 
[  517.439737][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  517.449943][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  517.455711][    C0] Code: c3 d4 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 43 15 24 00 f3 0f 1e fa fb f4 <e9> 98 d4 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  517.475426][    C0] RSP: 0018:ffffffff8de07d80 EFLAGS: 000002c6
[  517.481691][    C0] RAX: 2b567fc9e4304e00 RBX: ffffffff81974c98 RCX: 2b567fc9e4304e00
[  517.489681][    C0] RDX: 0000000000000001 RSI: ffffffff8d97d87b RDI: ffffffff8be29000
[  517.497867][    C0] RBP: ffffffff8de07ea8 R08: ffff8880b8632f5b R09: 1ffff110170c65eb
[  517.505881][    C0] R10: dffffc0000000000 R11: ffffed10170c65ec R12: ffffffff8fa124f0
[  517.513960][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1bd2a50
[  517.521952][    C0] FS:  0000000000000000(0000) GS:ffff888125c59000(0000) knlGS:0000000000000000
[  517.530909][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  517.537509][    C0] CR2: 000000110c304bb0 CR3: 0000000053ae8000 CR4: 00000000003526f0
[  517.545504][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  517.553592][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  517.561806][    C0] Call Trace:
[  517.565209][    C0]  <TASK>
[  517.568157][    C0]  default_idle+0x13/0x20
[  517.572511][    C0]  default_idle_call+0x74/0xb0
[  517.577385][    C0]  do_idle+0x1e8/0x510
[  517.581488][    C0]  ? __pfx_do_idle+0x10/0x10
[  517.586117][    C0]  cpu_startup_entry+0x44/0x60
[  517.590908][    C0]  rest_init+0x2de/0x300
[  517.595181][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  517.601119][    C0]  start_kernel+0x47d/0x500
[  517.605667][    C0]  x86_64_start_reservations+0x24/0x30
[  517.611496][    C0]  x86_64_start_kernel+0x143/0x1c0
[  517.616726][    C0]  common_startup_64+0x13e/0x147
[  517.621899][    C0]  </TASK>