last executing test programs: 4m57.32829755s ago: executing program 1 (id=379): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000380), 0x42, 0x0) syz_fuse_handle_req(r0, &(0x7f000000a300)="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", 0x2000, &(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)={0x90, 0x0, 0x0, {0x3, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x200, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x102, 0x8000, 0x0, 0x0, 0x0, 0x2000000}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r0, &(0x7f0000000e00)={0x50, 0x0, 0x0, {0x7, 0x27, 0x0, 0x23072d}}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x3, 0x2}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x2, 0x2b}, 0xa, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x4}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(0xffffffffffffffff, 0xc0884113, &(0x7f0000000240)={0x1, 0x20, 0x9, 0x10001, 0x0, 0xffffdffffffffffd, 0x7, 0x0, 0xfffffffffffffffd, 0x9, 0xfffffffb, 0x1}) ioctl$SNDRV_PCM_IOCTL_FORWARD(0xffffffffffffffff, 0x40084149, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x2800, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r3, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0) 4m55.737158888s ago: executing program 1 (id=384): syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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") r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) fchdir(r0) mkdir(&(0x7f0000000000)='./control\x00', 0x0) creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4, 0x1) creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) 4m52.471664661s ago: executing program 1 (id=392): socket$alg(0x26, 0x5, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x6, 0x4, 0x5b, 0x8a}, 0x48) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000180), 0xfea7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x11, r0, 0x0) r2 = socket$rxrpc(0x21, 0x2, 0xa) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c010000", @ANYRES16, @ANYBLOB="2d01620000000900509072fb60cb08000300", @ANYRES16], 0x2c}}, 0x0) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r5, @ANYBLOB="ff830500000700ffffff", @ANYRES32=r2], 0x4}}, 0x0) sendfile(r4, r3, 0x0, 0x100000002) 4m50.656431102s ago: executing program 1 (id=400): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x100}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000700), 0x100}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000e80), 0x100}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x7, 0x8, 0x8}, 0x48) 4m48.669801601s ago: executing program 1 (id=405): ioctl$UI_GET_VERSION(0xffffffffffffffff, 0x8004552d, &(0x7f0000000040)) openat$nullb(0xffffffffffffff9c, 0x0, 0x369c02, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0xffffffffffffff91) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x37) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) syz_mount_image$bcachefs(&(0x7f0000000000), &(0x7f0000000180)='./file1\x00', 0x10, &(0x7f0000000440)=ANY=[@ANYRESDEC], 0x1, 0x5a98, &(0x7f0000006b40)="$eJzs3X+QHNV9IPDXM7Pa2V39WAkcZDCrRUYJwbG14lf5RyqWc4mdAoeSyynH4mTDglZE9kqo9COATGKRA591YJedci7ByR/EhX1nW3FxZV+MQpmAOYnzLxVnH3VlU2ffYf/hK8KhCqDjXD72amf6zc70Tm/Pzs5KC3w+JW1Pv3nz7W+/ftPT783sTgAAAOBV4fid+05dfe7vfvvPJl746O/9w67bw1C5Vl6NFYbT5S1nKkNOp/7K2toy2y9+7SNf+tnoDb/9rfsHP//ise0X7PjR75x1w4MfuvLoPX/9yPMrvvbSU0VxY3+6eGY9eSYJofqNk3/xsWPfOWe6LFk5/bN0KITVyZpHVieZEGO/CCFsn84xhLA2c+dXX7h0x/Ty9rv6W8pXZerp769u08d5umMdPHXzG8KP37H1ju+t+8rf9R15+tBMlaTa1J9CWHld8+P7QggD6f+Q9sXQ1B9jp90SQhhsetybC/J6fYf5b8xZPy9dLkuXQwVx4v3rM+ulTL3setSXWQ4WbG+h8vLopl65gzrLM+vZk9FC5eUZy1eny6+ny4vnGb+c7kM5CaUkVNL0vx8mk5k+EpqOWxKS2rGsNtZLjWMb0v3PrCeZ9VJmvdyX2a/adtOOVk6S1vJYL1MeT8eVtPyC5nN1G+/NKX9tuqymT9QX43rI3qgbmnWjsV81Ma+Tc+RyOpSazkHtyhv9Nj0YQ2nZULJm1mOm2oj3Hdt694bytm8eH87JI7k/SeMnXcU/+N3Vyz/45cMHsq/rjfjXldL4pa7i/+SqE89ec/hzn82N/6kYv9xV/EseGnzmqkfvXJ/bPidj+1S6ij/+1GOfWHf29Udy8783xq92FX/z0RP9K0499HBu/mOxfQa6iv/k29750y8+8cDTufFDjD/YVfxtR/d8sn/k1EW58R+O7TPUXf957sgVPxwZ+floXvzHY/wVXcX/wqF73nrfqruuzD2+W2L7DHcV/90XPnjH8lMPnJ937kzu7fQVFoB2zkqvsT6ernc1zpzKzlrMX9N44a9GK/VrvuXp/xULjt4kc/E5vZ2VvYwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACGE17zhP7/rf75v+JlKut6f3niyVF/G8mUhJAMhhH37x/fu37n7xtEP3XRg7+7xydHx/aMTu/fvvXX0st8Y3TuxZ3L81ul7x954af1xa0JSXybnz9r2QJiaKg23lsXt/YsLj/x4w5v/1z+FMPaaH4xUcvPfeM+u+85u8zMj2Tz19l0Hrv7B5X+b7tdwmtdwm7ympqamQk5e//v9v7zvz0/+7KIQxn5lrrwee/K3/rEloVrBTJxUqT/UE+pPBtvm0cg6zSe2V2XHzsmJsbnbd/rx5Zz9+JcfefoXO2759C/r7VvN3Y8O23dg89Rk6S+3vvv//eVt9YKivM7UcS9q77gXMb/YftW0vVem+7UyZ78qOft15/cefuIb5x7Ob+iC/epLO0Bf8tqOthv3bjBZ3VJeTevHROLjNu7ftWfjvlsPvnHnrvEbJ26c2P2WTZdtumLs8isu31jb84292f/nD4WxynPrBkPc/q92uP+96E8D2WffrO2u+uNDX48/O+tPrXktm3d7TOdV3B7NGeU9/wbf+7HPvOWeR6+uFxT181i7cT5Jl4PTx3lTaOpvs9uq3X4VHZ8Qwmi7dnj2+SvDOf9t5x1F56HmI9P8MyPZPPWd9f/8t2/+m7W/WS84Lef55oS6PM83sp7Jp9Ze1R07b2+uu9Tatz+U0/0aapvXpu882nf38X/6k0Z+y5aFW8b379+7qf5zeZrp8uS8tnllS+N+rav9LIf08IZGN23TX6f1hXp+2fNnrJ5t1aH0vqFkTdv9yor3Hdt694bytm8ez2vp5P76FgfCivoyeV3TvQNNtyczDyw3Em63/aX6/CvqHyPv+puvve9rf3/ZrP5xSf1n0X4lOfv1lSe+8JnPf/pf/33v9utdv3Vi+J//+x9tqBcs+fNKuZ5II+s0n2TmvDI5cUkIRc+/daH9fjSef/+2HOOmGbXfn6LnX3Y7M/XbxxvNrA+FclfP10seGnzmqkfvXJ/7fD051/O1eWdva3lcueD5ulT6T/b5lVRa81i851dLR0k2T33r42cdeuSjW86tFxS9XjZqt+vXl3Yw/sjZr3+85ocjN43+q//au/PGl37jq9f+aHzzn9YLuj/uMZfeHPdq2r7VnPZtZB3Hnc3t+6YbbprcXi8vauczd/2bLgvGP/FUsu/Wgx8en5yc2Luvs/3q9PU0bifbyt2+nsaz25qC/SrN2q/Fu9FJe3X6fIv5b++6vVqfb0Mh6ep14eB3Vy//4JcPHxie9ah0Q9eV0vilruL/5KoTz15z+HOfzY3/qRi/0lX88lOPfWLd2dcfyY1/b5LGr3YVf/PRE/0rTj30cG78sZj/QFfxn3zbO3/6xSceeDo3fojxh7qKn/p5bvzHk3Q709dIIXz1hUt31NeT0Jc+32IefS15hex6klkvZdbLzeulOIuQbqCcJK3lsV5afkFTLu38YU55vAqrrq0vX4zrIXtj7vKlptR07m9XXnSdCgDwShff/4/XoPH9/4n0Qil/pgFmdDsO+8lzR6744cjIz9fmxI3jsJn5nNb3WNem8ePj4zzgyJvC2PTy9tH6hf5830eIz4fsPGfczkWvb41ROM85Vdv+rHnOovn39Zn1mFd9vrzSNA5NzR7XVEIH8+/rM2GK5t8zu58zP95k9OOz0hptmrfKHr++dMas3ecdQmu7VKYj5PWP7LxY/DzHyMqwpba9DvtH9nM08ThkP0cTt3Nu5sTZ7edo8vrH8Ox2aMkr9o9Yb47+UUu58PiF2ccvzNG+M8evfbTs8ZvH8a6G8B8+F1cW6/3ZHswbtj2ldTJv2N9mC/G+zucNF/f9sG7nJcdfJfOSHcwbvrSq5XGnd94wlsf9qHQ4n/i+nPJezSfG00XM6+QcuZwO5hOBV6o4/o+vEdPj/+kL8P+TqVc0TsleNcZ4uZ/TK7fPp2jcMftzeoNdvY5vO7rnk/0jpy7Kvc55eK7P/TTb07I2WPC5n6J23JBZL2zHnAmaovFedjtF7Z79XMZQWNFVu3/h0D1vvW/VXVfmtvuW+gtpcbt/pmVtRUG7L/bnOV/+nzMwXmgbf4l/jqHT+bMz9jmG9INPizUe+YOc8vmORwZn3WjsV83SHY/MvJD2t07gAQC0Fcf/jffP0vH//4gV0uuIonHrxZn1GC933JpzfZI3bv39dHlLpv5Q+hsV871ufveFD96x/NQD5+eOW+7tdBz671vWhgvHoQsbN+eOI7Ys7PPicZyVO45ojLMWNk7Mzb8xTlzYOD3nbdqmcfrCxtG57dMYR7fOA3zmRGfx4zxAbvzGPEAPx7kvzVQ6fePcgvm6zMbiaqfzdWdkHL2ydT8XZRyd/vrsYo2j35tTPt9x9NCsG439qlm64+jWcuNoAOCVKo7/42VcHP8/mqm30PfZc8cFPbpuz/49kEb8xxdlXDkTv0fv/xaP+xZ73Jo3rk8OtdtKvLfzcf1iz0u83N//Xex5oeHaH/BM429a2WH8TufJztj7y0tlXJxu1LgYAIClLI7/41+ezR//L2x8Mmv81le/hJwZn7z8xufN9c7c+LxX77sbn7eN3+n71jnxl8781+J+TuZVP/6P6+nqlPE/AABLUBz/x197jH//7z+l69m/W7/0xulT6SXpIr2PnraHcfore5zeFxY2Tn97zu97xPs7H6f3eJ4txm/+HIB5gNP7+fimr/UyDwAAwJnQVxspzf49+w+ky+zv2ef9Xv41OfVrOvibqJX08vj6/XsnJq49sGf7+P6Ja3fftH1i37U37925f//E7nq9hY4bc8ctaZJ9oZK2R/t6o/+3dX1VOjGwKufvIWTHeTHsebUbs/8eQnazAwV/R2Dm+OXkm1nPO36lOeq36x95xzsv/h/m1I8ax/+GP7rk2h37rt25e+f+neOTOw9OtEafbojBeXxvZpL+n9f3pT725L85HkL9Vu1bMzNK8//+znh45plHy49ZT6TSdIskucd/Oo8kk8fqNJPVed9/kJP3t//Ln//xhVO//GIIY68pv26+ebeG3Dz1H98/8fv7j/9gz3T+pTnzb9RM8yr6vtJs/bg/lcmb9u1/w46bDuzOfqNkd+J8RqmxvkjzGenTv9zh/MS2nPL5/v5+edaNpanj+Ylp77j+9CUGALDExff/4/VsfP/w0+kFVCzvfJxev3Ds9v3j3HH6WGfj9Oz3khWN07P14/52Ok6vLnCcnt1+/jh9ILd+u3F63rg7L/4f5NSfr877SRe/jxGHn18+fCC3n1yX7ScDbetlv8+gqJ9k68+3nyQL7CfZ7RfN57Sr366f5B33vPjvyamfp6g/VBr9YWG/P5PbHz7V2Xnj1zPrRf0hW3++/aG0wP6Q3X5Rf2hXv11/yDu+efGvzqnfqdb+Md0xav1i4tqbb9r74aZ6i/39F2H2RzI6yW/ZzGMX9/s/utV5+y7u574Wnn8Im2slefkv7ufKFp5/UfvP4/e/VoZZnyvLzf/xnBNIz/Nf3O93ycirPvvxp2u+Nj0TFH3+rGged2tO+XzncZfNurE0zWseF+ipOP6Pb/fE8f9d6bLXbwO9/L8nzfeYtY3fo+8xK7qOedW9nmffcvd6DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDy1x9Cf2Vt7ebxO/eduvrc3/32n0288NHf+4ddt//aR770s9Ebfvtb9w9+/sVj2y/Y8aPfOeuGBz905dF7/vqR51d87aWnCmMP135WLk5XqyEkzyQhVL9x8i8+duw750yXJSGEcjJ8KITVyZpHVieZCGO/CCFsj6lWWu/86guX7phe3n5Xf0v5qkyQ7H6FoXLMpznPEG4p3CNehqppPzt46uY3hB+/Y+sd31v3lb/rO/L0oZkqSbWpP4Ww8rrmx/eFEAbS/6H+lKlZGx+cLreEEAabHvfmgrxe32H+G3PWz0uXy9LlUEGceP/6zHopUy+7HvVlloMF21uovDy6rVdkeWY9ezJaqLw8Y/nqdPn1dHnxPOOX4/8klJJQaaQ/mcz0kdB03JKQ1I5ltbFeahzbkO5/Zj3JrJcy6+W+zH7Vtpt2tHKStJbHepnyeDqupOUXNJ+r23hvTvlr02U1faK+GNdD9kbd0Kwbjf2qiXmdnCOX1L8rrtK9UtM5qF1548CnB2MoLRtK1sx6zFQb8b5jW+/eUN72zePDOXkk9ydp/KSr+Ae/u3r5B798+MDavPjXldL4pa7i/+SqE89ec/hzn82N/6kYv9xV/EseGnzmqkfvXJ/bPidj+1S6ij/+1GOfWHf29Udy8783xq92FX/z0RP9K0499HBu/mOxfQa6iv/k29750y8+8cDTufFDjD/YVfxtR/d8sn/k1EW58R+O7TPUXf957sgVPxwZ+floXvzHY/wVXcX/wqF73nrfqruuzD2+W2L7DHcV/90XPnjH8lMPnJ937kzu7dUrJ8Cr01npNdbH0/Vux5kL1TRe+KvRSv2ab3n6f0UvN5QxvZ2VixgfAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBXpu/fdtkH3v/292ytJCEkOXWm2oj3lZdt3jzaxXbHn3rsE+vOvv5Ic9naLuIAAAAAxeI4vNQoqYa14eZkIJzXtn6cIzgvriWt5dlljJOdI+g0TsjEKbWJU+oiTrlH+VR6FKevR3GW9ShOf4/iVAviVENncQbmiFOZ7gEd5jM4Zz6dxxnqUZzlPYqzokdxVvYozqoexRmeM07n/XB1j+Ks6VGcs5oLP9t9nLN7lM9rehTnV3oU55wexcnOKc+3H65Ia56bF6d2o1wYp5KUG3e0m08/J93O+QvcztCc26lOrSh6Pe5wOwMF+xO38/rM40rF2znUXL/a4XZ+df7bad3/Drfz6wvcTqlgO7Hf3pLNL24nrnXY/2/tUZyDPYrzkR7Fua1Hcf5kPnHavEcW4/xpj/L56ALjAHQqjv9nxnvDob/ym2EwPeNkZwHieHdd7efs17u8E1KM97pM+bKieNmBeibeuvnml51AyMRbn4nW1xKv0hiPzBGv2hxvQ+bOufb3bZvb59Yc7+JMef8c8WqyEwsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsIi+f9tlH3j/29+zNSRh+l9bU23E+8rLNm8e7WK7x7bevaG87ZvHm8v6K10EAgAAAArFcXhfo6Qa+iubQn+yrKVeNZ0HqKbr5eH6cmRl2DK9TEZLtfXBZPWcj6ukj9u4f9eejftuPfjGnbvGb5y4cWL3WzZdtumKscuvuHzjjp2TE2P1nyH0F8QLIdSmH/bdevDD45OTE3v31Quz+a9NH7e2lmztX+1xI28KY9PL29P81xRsrzRre4t3o6MDCAAAAAAAAP+fXbsNlbQsHwB+PTNzZsaj+3f++DYu7nFYV7GyUjuGlngeCBJ8WTwIMcc6yZIrSUd30V0xm3QhNaUIlIVlww9tmKRJX3xJiXxhwTBL6GwSKuWH+lBoGSp+CGXinJlnzsycGec0iLtuv9+H5+W6r/u+nvv5cOB6zgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfIgWG9Pz9ZnZuckkIhmS0xwgG8sX07Q2Rt2vPLH9B6Wpd07vjpUKYywEAAAAjJT14ROdSDlKhXzk48Tlu43RNRArfT8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPC/Z7ExPV+fmZ07MolIhuQ0B8jG8sU0rY1R99W3HvrsS1NTf+uOVcdYBwAAABgt68NznUg5qnFKTCQnLnX+nWj2bWB93/xW3opsnQ1rzOv/djAs75Q15p22xryPjcjb3D7fFAAAAPDRl/X/hU6kEqXCulX9cNb/j+rrs7yT+/Ly7fPafytQXHMmAAAA8P6y/r/UiVSjVKh2+vW19vsb+/Ky+aP+b5/NP3XI/FH/z7+0ffZ/egAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD46FhsTM/XZ2bn8klEMiSnOUA2li+maW2Mumc/OfmPi/ffvrE7ViqMsRAAAAAwUtaHr7Te5SgVJmMijlzu+6cuvPeRLz3y2HREtNr8YjFu2rJjx/Vnt45Z3lnP75/4/rOvf3tV3lmt40HbIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8IFZbEzP12dm545IIpIhOc0BsrF8MU1rY9R95fNf/MsDLz7+WnesOsY6AAAAwGhZH77S+5ejGsUoxvHLd929/pJc3/xh3wwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAw8cN37z5G1sWFrZe7+LgXDTzEYfAY7hw0XtxsP8yAQAAH7STI4nmf+mEyw72UwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIeCxcb0fH1mdq6cRCRDcprN5q6lQ7dsLF9M09oYddMnXiite+fJp7tj1THWAQAAAEbL+vCV3r8c1ZiIiThu+W7QN4Hl/r/yIT4kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcEhZbEzP12dm59YlEcmQnOYA2Vi+mKa1Merev2vv5+47+nsXdcdKhTEWAgAAAEbK+vBiJ1KOUuHjUYqT2vcLvROSfPs8+LvAyrztPdMm1zyv0TWrGPk1z7uzb2eF9m5a88rtaL7SOnfm1Vbm5drzal3zqtEpX+vMW35Zu3uqrRvxnIPePQAAAHxYsv6/1IlUolQodfX/P+3Jr+hzAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAhFhvT8/WZ2bkkiUiG5DQHyMbyxTStjVH35t/+/1Ff/dldO7tj1THWAQAAAEbL+vCV3r8c1dgQ/xcblvv+qPTmZ3n/rL973z3/+uvpEWcef2Cq0L/sj7KLX79ywVP9h4hcb3Yu4uh2vWRIvd/8/p4bNzXffSDizOPyJ62qF+9fr3fJtPlofeulO549sH3EywEAAIDDRNb/T3QilSgVrhva/2ed94j+v2O5AT/6xl2/OLZ9bHfkfTNylXa93JB6X9j00J9PPffvry/1/6vrfbJz9em91953bE/BVqRPkjZnrt25+cA5+3LZrlv18331s/fy5W+99u+rb7r73Vb9cpTb8fV9j9KqtvrYVz7S5kJuz9wl7+1p9NYvDNn/7b97+sVfrb/r7aX6b5082al/Wgyq39p5YWj9OCJtTl5+x+7z9u7f3Fs/ImqRX13/jbcvihP+eM1t/fuf7Fu4+813H/tfQNp8fuOb+869t3p+b/1kqX6X7P3//MX7d//k7u8+ltXPfity+ilrrZ/rq//cncfseubWy9b31s/11c/2/9QVL01tq33nD/37v6pn1cLQp1i9/wfPePjKl7ekt/QPAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHF4WG9Pz9ZnZuVwSkQzJaQ6QjeWLaVobo+6rF7/wxhV3/fiH3bHqGOsAAAAAo2V9+ErvX45qFKMYk8t9/6P1rZfuePbA9qi0RpP2ubCw7YYdn7h6287rrjpITw4AAACs1asXJ8v9f6ETqUSpsCkm2v3/zLU7Nx84Z18u6/9zS+ckIq6+ZmHrmdHJe+7OY3Y9c+tl6zvfCSKWfxZQXsr7zErehRe8UHnzT18/dWDe2St5z298c9+591bPz/KiO++s6HyfePCMh698eUt6S+f5uvM+9bVtC+3PE9m6k5ffsfu8vfs357LvGO3zZHvdLG8ht2fukvf2NHKVKC2N59t55fa+AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDVFhvT8/WZ2bnIRyRDcprd2oFsLF9M09oYdS/Z9Mvbjnrn8Q3dsVJhjIUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/7ADBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWF/foLkars4wD+PDOz787u7OquvtBWtK5WFHahFETUTUVFaITQlSFhaV5EQRBR2EVraCRWdBNk3UhUUG0hGOQmiRZr9E+66aKCAusiEGmhdpEuMnbmOePscU6jsxVInw8Mzz7POed7fuc8z5zZAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADnld7KSL09suOR2TsvuvWzp+6fefL2Dx7adsUTb/00tunmT/f2v35yavPyLd/esnTTgQfWTO5+5fBvg+/9caxj8OONZmXqVkOIJ2II1Q+nX3x66vML5sZiCKEch8ZDGI5LDg/HXMLq30MIm5t1zt+4b+aaLXPttl2988YX50Ly1xVq5ayehqH59bY6lQ/jvFNN62zr7GNXhe9vWr/9y2XvvtMzcXz89C5xbp9yWk8hLNrYenxPCKEvfeZkq20kOzi160II/S3HXdehrkvPsv5VBf2LU/u/1NY65GTbV+T6pdx++X6mJ9f2dzjfQhXV0e1+nQzk+vmH0UI161zVfnw4te+nduU55pezTwylGCrN8h+Mp9dIaJm3GGJ9LqvNfimb20pI19/TclwMIeb6pVy/3JO7rvp500Irxzh/PNsvN549jitpfHnrs7qNuwrGL0xtNX1RT2b9kP+joXbGH83rqsvqmv6LWv4NpZZnULvx5sSnyailsVpccsYxp9rItk2tf/by8oaPjgwV1BH3xpQfu8rf+sXwwD1v73x0pCh/Yynll7rK/2Ht0V/u3vnqy4X5L2T55a7yrz7Yf2LtxztWFN6f6ez+VM4qP6Z+tu3eY588t+z/9020m+t6/p4sv9pV/TdOHu0dnD14qLD+1dn96esq/7sbbvvxza/3Hy/MD1l+f1f5GyYffr53dPbKwvxDja9Crb5Cu1g/v05c+83o6M9jRflfZfd/sE1+7Jj/xvju619bvGtN4fpcl92foZTfd07133HZge0Ds/svKXp2xj1/1y8nwH/T0vQ/1jOp3+k9c99Mqe175kK1vC+8NFZp/AINpE+nd8OFmDvPon8wHwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgD/ZgQMSAAAAAEH/X7cjUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKcCAAD//w3eGa0=") r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0) symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00') removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000040)=@random={'security.', 'user.syz\x00'}) 4m46.689527364s ago: executing program 1 (id=415): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socket(0x40000000015, 0x5, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) read(0xffffffffffffffff, &(0x7f0000000040)=""/25, 0x19) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000007000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c}, 0x94) 4m30.936282336s ago: executing program 32 (id=415): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socket(0x40000000015, 0x5, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) read(0xffffffffffffffff, &(0x7f0000000040)=""/25, 0x19) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000007000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c}, 0x94) 3m24.116911568s ago: executing program 2 (id=614): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000000)=[{0x6, 0x6, 0x0, 0x5}]}, 0x10) write$binfmt_aout(r3, &(0x7f0000000000)=ANY=[], 0x9ffc) 3m22.785435432s ago: executing program 2 (id=616): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x1218088, &(0x7f0000000f80)=ANY=[@ANYBLOB="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"], 0x2a, 0x2c2, &(0x7f00000008c0)="$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") mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) r1 = open(&(0x7f0000000240)='./bus\x00', 0x187102, 0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r1, 0x0) accept$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x0) r2 = openat(r0, &(0x7f0000000280)='.\x00', 0x40000, 0x9) socket$unix(0x1, 0x1, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40000, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) ioctl$EXT4_IOC_MIGRATE(r3, 0x6609) setresuid(0x0, 0x0, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r2, 0x40047211, &(0x7f0000000240)) socket$nl_audit(0x10, 0x3, 0x9) 3m22.212366612s ago: executing program 2 (id=618): socketpair(0x18, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="09000000070000000000010005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x11, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) socketpair$unix(0x1, 0x2, 0x0, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x100}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x3}, {0x0, [0x0]}}, &(0x7f0000002a00)=""/4096, 0x1b, 0x1000, 0x0, 0x2, 0x10000}, 0x28) bpf$TOKEN_CREATE(0x24, &(0x7f0000000380), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0xd, &(0x7f0000000480)=@raw=[@map_idx_val={0x18, 0x8, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}, @cb_func={0x18, 0x7, 0x4, 0x0, 0xffffffffffffffff}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) 3m21.031024048s ago: executing program 4 (id=620): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r3) ptrace(0x8, r3) r4 = syz_pidfd_open(r3, 0x0) process_mrelease(r4, 0x700000000000000) 3m19.855826801s ago: executing program 2 (id=622): r0 = memfd_create(&(0x7f00000002c0)='\x103q}2\x9a\xce\xaf\x03\x86\xe7\xc0\x14\x8f^\xd5\xfd\xa1\r\xac7A\x94\xeb\xcd\t\x00\x90k\xd6\x05\r\x84\x87\x1c\b\x8c`\xea\x13A\x90m\xb6&\xd0\x9daA\xc5\xb8_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2_\xdb\xc0\x8b\x19\x17\xb7Rvd\xcb:\b\xeeC0\xa3\xa6\xcf\x00\x00\xac\xc5h&+\t\x98\'\xfd|\x11\x99\xa2*6{\xd2C>2\x0e\"\xbc\xda\xee\xb0\xd8\xbf\xaf)\xf58c\x189K\x82\xd1(\xceY*\xcb\x9b\xbdn\x8e\x88m\x10L\xec\xfdWF\x7fj\x19\xb8<\xd2\x9d\xf0\xe9Qy\xe32\xed\x16f\xfe&\x1a\xdb\xeb\xad\xaaE\b\xa9\xf8\xa9s\xc4d\xd4\x03\xf1\xb7xO\x99\x804m[Ai\x13\x02\xf0\x84c2s\xd5P\t`\x9b\x12&\x8cx\x8eg\x9d\xe6g', 0x3) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) syz_emit_vhci(&(0x7f0000000500)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0x1}}}, 0x4) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0x0, 0x2012, r0, 0x5401000) r4 = io_uring_setup(0x148e, &(0x7f0000000100)={0x0, 0x10000000, 0x1, 0x1, 0x35a}) io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) 3m19.854682414s ago: executing program 4 (id=623): socket$unix(0x1, 0x2, 0x0) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/tty/drivers\x00', 0x0, 0x0) r0 = socket$kcm(0x2, 0x200000000000001, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x240048c1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f0000000100)=r2, 0x4) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc) 3m18.619401471s ago: executing program 2 (id=624): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000dc0)={0x90, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x5a, 0xe, {{{}, {}, @device_a, @device_a, @from_mac}, 0x0, @random=0x8, 0x1, @val, @void, @val={0x3, 0x1, 0x6c}, @void, @void, @void, @void, @void, @void, @val={0x2d, 0x1a, {0x2, 0x0, 0x7, 0x0, {0x6, 0x2, 0x0, 0xbc}, 0x400, 0x3, 0x9}}, @val={0x72, 0x6}, @val={0x71, 0x7, {0xffffffffffffffff, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x3, 0x60}}, @void}}], @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x62}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x90}, 0x1, 0x0, 0x0, 0x4800}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000640)={0xc4, r2, 0x400, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x0, 0x11}}}}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x5}, @key_params=[@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "db3217b982"}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_SEQ={0x7, 0xa, "e8fd37"}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x377}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1ff}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}], @NL80211_ATTR_SSID={0x1b, 0x34, @random="11eaff44011bc9498452d5348929ace05e62b3fd34fb6f"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}]}, 0xc4}}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="8b3300000000fcdbdf2505"], 0x28}}, 0x50) sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000940)={&(0x7f00000007c0)={0x30, r6, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_HE_BSS_COLOR={0x8, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_PBSS={0x4}, @beacon=[@NL80211_ATTR_IE={0x4}], @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x7f}]}, 0x30}}, 0x1) futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, 0x0, 0x1fffffc) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0) 3m16.952238371s ago: executing program 4 (id=628): bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xb, 0x7, 0x10001, 0xb, 0x1}, 0x50) socket$nl_generic(0x10, 0x3, 0x10) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock}, 0x70) socket$inet_smc(0x2b, 0x1, 0x0) socket$netlink(0x10, 0x3, 0xf) socket$nl_generic(0x10, 0x3, 0x10) socket$netlink(0x10, 0x3, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) socket$pppl2tp(0x18, 0x1, 0x1) socket$inet6_udp(0xa, 0x2, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRES64=0x0, @ANYRESOCT], 0x20) 3m12.832532232s ago: executing program 2 (id=637): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) syz_io_uring_setup(0x497, 0x0, 0x0, &(0x7f0000000600)=0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f00000004c0)={'#! ', './file0'}, 0xb) syz_io_uring_submit(0x0, r0, &(0x7f0000000200)=@IORING_OP_NOP={0x0, 0x21}) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', 0x0}) r4 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r3, 0x25, 0x4, @val=@tracing={0x0, 0x20000000}}, 0x1c) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="180200000000000000000000000000001800000008000000000000006e14000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000140)={r4, r5}, 0x5) 3m12.791616049s ago: executing program 4 (id=638): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_usb_connect$uac1(0x0, 0x99, 0x0, 0x0) r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0) 3m8.880490222s ago: executing program 4 (id=648): syz_open_dev$sndpcmp(&(0x7f0000003700), 0x1ff, 0x3) landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0) socket$netlink(0x10, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = syz_io_uring_setup(0x24fc, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3}, &(0x7f0000000180)=0x0, &(0x7f0000000140)=0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r5, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ_FIXED) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 3m6.528639197s ago: executing program 4 (id=652): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x6, 0x9, 0x80, 0x0, 0xffffffff, 0x91b1}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000400}, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0) r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_sack\x00', 0x1, 0x0) sendfile(r3, r2, &(0x7f00000000c0)=0x8b, 0x100000500) r4 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10) connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) bpf$MAP_CREATE(0x0, 0x0, 0x50) bind$bt_hci(0xffffffffffffffff, 0x0, 0x0) unlinkat(0xffffffffffffffff, 0x0, 0x0) 2m57.256249129s ago: executing program 33 (id=637): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) syz_io_uring_setup(0x497, 0x0, 0x0, &(0x7f0000000600)=0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f00000004c0)={'#! ', './file0'}, 0xb) syz_io_uring_submit(0x0, r0, &(0x7f0000000200)=@IORING_OP_NOP={0x0, 0x21}) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', 0x0}) r4 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r3, 0x25, 0x4, @val=@tracing={0x0, 0x20000000}}, 0x1c) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="180200000000000000000000000000001800000008000000000000006e14000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000140)={r4, r5}, 0x5) 2m51.317968318s ago: executing program 34 (id=652): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x6, 0x9, 0x80, 0x0, 0xffffffff, 0x91b1}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000400}, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0) r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_sack\x00', 0x1, 0x0) sendfile(r3, r2, &(0x7f00000000c0)=0x8b, 0x100000500) r4 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10) connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) bpf$MAP_CREATE(0x0, 0x0, 0x50) bind$bt_hci(0xffffffffffffffff, 0x0, 0x0) unlinkat(0xffffffffffffffff, 0x0, 0x0) 9.42842739s ago: executing program 0 (id=970): r0 = socket$can_bcm(0x1d, 0x2, 0x2) bpf$MAP_CREATE(0x0, 0x0, 0x50) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8) sendto$inet6(r1, 0x0, 0x0, 0x44011, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @loopback, 0x8}, 0x1c) sendmsg$can_raw(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000ff0)={0x0}, 0xee, 0x0, 0x0, 0x40041}, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) socket$unix(0x1, 0x5, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x40000) sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f00000000c0)={0x100000011, @multicast2, 0x0, 0x0, 'sh\x00', 0x19e172f08959ac6e, 0x10001, 0x47}, 0x2c) 9.40958517s ago: executing program 5 (id=971): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0xfffffffe, @local, 0x1}, 0x1c) syz_open_dev$MSR(0x0, 0x9, 0x0) syz_emit_vhci(0x0, 0x7) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0) 9.360788326s ago: executing program 3 (id=972): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) close(0x3) shmdt(0x0) r3 = socket$inet6(0xa, 0x805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x2}}]}, &(0x7f00000002c0)=0x10) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) getsockopt$bt_hci(r3, 0x84, 0x0, &(0x7f0000000080)=""/4076, &(0x7f0000000040)=0xfec) 7.645993001s ago: executing program 5 (id=973): r0 = creat(&(0x7f00000005c0)='./file0\x00', 0x0) close(r0) r1 = socket$xdp(0x2c, 0x3, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', 0x0}) setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4) r4 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c) setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', 0x0}) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000180)=0x10, 0x4) setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4) bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x0, r6}, 0x10) bind$xdp(r1, &(0x7f0000000200)={0x2c, 0x1, r3, 0xffffffff, r4}, 0x10) 7.119512395s ago: executing program 0 (id=974): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000580)={0x0, @in6={{0xa, 0x4e20, 0x6, @empty, 0x4}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc) setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000200)={0x81, 0x40, 0x8, 0xff, 0x1, 0xe5, 0x81, 0x31, 0x2, 0x12, 0xb1, 0xff, 0x0, 0x5}, 0xe) bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x0, 0x0, 0x300, 0x0, 0x54}, 0x9c) 7.044511649s ago: executing program 3 (id=975): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00') r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000140)={'batadv0\x00', 0x0}) r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)={0x24, r6, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x24}}, 0x0) 5.654805873s ago: executing program 0 (id=976): prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_open_dev$radio(&(0x7f0000000040), 0x3, 0x2) r3 = open(&(0x7f0000000040)='./bus\x00', 0x40, 0x1d6844efefe48d79) r4 = creat(&(0x7f0000000080)='./bus\x00', 0x84) r5 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0) write$FUSE_NOTIFY_STORE(r4, &(0x7f0000000240)=ANY=[@ANYBLOB='+\x00\x00\x00', @ANYRES32=r3], 0x2b) sendfile(r5, r3, 0x0, 0x4000000053d2) sendmsg$RDMA_NLDEV_CMD_DELLINK(0xffffffffffffffff, 0x0, 0x0) 4.635868394s ago: executing program 3 (id=977): bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = epoll_create1(0x80000) r3 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000100)={0xa000000d}) epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000300)={0x10000000}) 4.629753721s ago: executing program 0 (id=978): syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r3 = dup(r1) r4 = accept4(r2, 0x0, 0x0, 0x0) recvfrom(r4, &(0x7f0000000080)=""/175, 0x59000, 0x0, 0x0, 0x10000000000000) sendfile(r4, r3, 0x0, 0x8a000) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x40002, 0x0) 4.542858375s ago: executing program 5 (id=979): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0) ioprio_set$pid(0x3, 0x0, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000400)={@multicast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x3, 0x28, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @timestamp={0xd, 0x0, 0x0, 0x7, 0x80, 0x7, 0x80000000, 0x7}}}}}, 0x0) socket$qrtr(0x2a, 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0) r0 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x787f, 0x1, 0x1, 0x286}, &(0x7f0000000000)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}}) io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0) ioprio_get$uid(0x3, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x80405880, &(0x7f0000000040)={0x2c1e, 0x10000000000000}) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10) socket(0xa, 0x3, 0x3a) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000ac0)=ANY=[@ANYRESOCT=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x200}, 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) 4.385840546s ago: executing program 3 (id=980): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) r1 = syz_io_uring_setup(0x23c, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r5, 0x0, &(0x7f0000000240)="352f1938d141676d9b6c59065f664735c08b9d697a645f85b19ba9030648cd046d1f26aad0196458046b81", 0xfffffffffffffe08, 0xebec93e830f96115}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) io_uring_enter(r1, 0x7f5f, 0x4000000, 0x0, 0x0, 0x0) shutdown(r4, 0x1) 3.301872372s ago: executing program 3 (id=981): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) r3 = gettid() process_vm_writev(r3, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x8) 3.151516793s ago: executing program 0 (id=982): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) r4 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0) mq_timedsend(r4, 0x0, 0x0, 0x6, 0x0) mq_timedreceive(r4, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0) 3.090614019s ago: executing program 5 (id=983): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000002c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r4 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000180)=@raw={'raw\x00', 0x8, 0x3, 0x4a8, 0x0, 0xffffffff, 0xffffffff, 0x150, 0xffffffff, 0x3d8, 0xffffffff, 0xffffffff, 0x3d8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x128, 0x150, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x508) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r5, 0x0, 0x0, 0x200040c0, &(0x7f0000b63fe4)={0xa, 0x2, 0xfffffff8, @remote, 0x1}, 0x1c) 1.248727638s ago: executing program 3 (id=984): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000140)={{r3, 0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000380)='%+9llu \x00'}, 0x20) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4, 0xffffffffffffffff}, 0x4) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x1f, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r6}, 0xc) 1.240720872s ago: executing program 5 (id=985): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) ioctl$FS_IOC_GETVERSION(0xffffffffffffffff, 0x80047601, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x7e832, 0xffffffffffffffff, 0x0) syz_emit_vhci(&(0x7f0000001b40)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_ecred_reconf_req={{0x19, 0x31, 0x4}, {0x2, 0x6}}}}, 0x11) socketpair$nbd(0x1, 0x1, 0x0, 0x0) 1.155233004s ago: executing program 0 (id=986): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r4) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000026c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0x1, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x2, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_bfifo={{0xa}, {0x8, 0x2, 0x2}}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000) ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="640000004ec6"}) 0s ago: executing program 5 (id=987): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000004c0)={@fallback=r2, 0x1d, 0x1, 0xffff9aa1, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0, 0x0], &(0x7f0000000340), 0x0}, 0x40) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10) syz_open_dev$video(0x0, 0xc000, 0x0) syz_open_dev$I2C(0x0, 0x80, 0x274100) r4 = fsopen(&(0x7f0000000040)='ocfs2_dlmfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x8, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): m eth2 [ 95.860873][ T5849] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 95.913435][ T5846] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 95.934097][ T5846] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 95.945377][ T5846] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 95.969341][ T5846] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 96.034290][ T5847] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 96.047707][ T5847] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 96.080312][ T5847] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 96.094169][ T5847] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 96.183878][ T5848] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 96.201994][ T5848] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 96.248856][ T5848] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 96.260837][ T5848] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 96.358979][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.386228][ T5851] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 96.427740][ T5851] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 96.460713][ T5851] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 96.489224][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.498751][ T5851] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 96.541396][ T5849] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.595382][ T5846] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.609371][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.616587][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.627206][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.634430][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.647290][ T5850] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 96.658586][ T5850] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 96.694750][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.701900][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.717353][ T5850] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 96.731693][ T5850] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 96.801781][ T1134] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.808992][ T1134] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.869324][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.981648][ T5847] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.021788][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.091606][ T1331] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.098816][ T1331] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.140395][ T5846] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 97.168295][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.175478][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.197213][ T5848] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.245462][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.258390][ T1316] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.265642][ T1316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.339856][ T5851] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.365858][ T5866] Bluetooth: hci1: command tx timeout [ 97.371291][ T5866] Bluetooth: hci4: command tx timeout [ 97.380530][ T5859] Bluetooth: hci5: command tx timeout [ 97.380652][ T5861] Bluetooth: hci0: command tx timeout [ 97.393217][ T5161] Bluetooth: hci2: command tx timeout [ 97.408785][ T1316] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.415951][ T1316] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.442905][ T5861] Bluetooth: hci3: command tx timeout [ 97.480936][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 97.535226][ T5850] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.549941][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.557153][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.596463][ T5851] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.627643][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.634832][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.651216][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.658378][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.701404][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.708579][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.746166][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 97.890649][ T5849] veth0_vlan: entered promiscuous mode [ 97.999270][ T5849] veth1_vlan: entered promiscuous mode [ 98.110533][ T5846] veth0_vlan: entered promiscuous mode [ 98.208101][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.225615][ T5846] veth1_vlan: entered promiscuous mode [ 98.287894][ T5849] veth0_macvtap: entered promiscuous mode [ 98.376440][ T5849] veth1_macvtap: entered promiscuous mode [ 98.417198][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.496413][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.529848][ T5846] veth0_macvtap: entered promiscuous mode [ 98.544780][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.577905][ T5849] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.587243][ T5849] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.596114][ T5849] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.604977][ T5849] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.623687][ T5851] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.630803][ T5847] veth0_vlan: entered promiscuous mode [ 98.653644][ T5846] veth1_macvtap: entered promiscuous mode [ 98.710299][ T5847] veth1_vlan: entered promiscuous mode [ 98.769944][ T5848] veth0_vlan: entered promiscuous mode [ 98.786514][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.833738][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.848100][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.861252][ T5848] veth1_vlan: entered promiscuous mode [ 98.901399][ T5847] veth0_macvtap: entered promiscuous mode [ 98.933902][ T5846] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.952314][ T5846] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.961060][ T5846] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.971555][ T5846] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.024096][ T5847] veth1_macvtap: entered promiscuous mode [ 99.113405][ T1134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.121333][ T1134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.158560][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.197370][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.277961][ T5848] veth0_macvtap: entered promiscuous mode [ 99.291162][ T5847] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.306746][ T5847] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.320528][ T5847] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.329351][ T5847] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.342130][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.351864][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.367794][ T5848] veth1_macvtap: entered promiscuous mode [ 99.443744][ T5861] Bluetooth: hci0: command tx timeout [ 99.450372][ T5861] Bluetooth: hci4: command tx timeout [ 99.456932][ T5161] Bluetooth: hci2: command tx timeout [ 99.456953][ T5866] Bluetooth: hci5: command tx timeout [ 99.465087][ T5861] Bluetooth: hci1: command tx timeout [ 99.523896][ T5861] Bluetooth: hci3: command tx timeout [ 99.530063][ T1134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.549010][ T1134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.550393][ T5849] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 99.631090][ T1316] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.640329][ T1316] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.663946][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.736867][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.799987][ T5848] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.816549][ T5848] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.830872][ T5848] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.852330][ T5848] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.968187][ T5992] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.991819][ T5851] veth0_vlan: entered promiscuous mode [ 100.002121][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.055567][ T5850] veth0_vlan: entered promiscuous mode [ 100.066816][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.718269][ T5851] veth1_vlan: entered promiscuous mode [ 100.819405][ T5850] veth1_vlan: entered promiscuous mode [ 101.037028][ T5851] veth0_macvtap: entered promiscuous mode [ 101.049138][ T5851] veth1_macvtap: entered promiscuous mode [ 101.074615][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.089123][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.101277][ T5851] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.110927][ T5851] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.121916][ T5851] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.131596][ T5851] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.189045][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.211247][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 101.249559][ T1134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 101.262051][ T1134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.081451][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.126583][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.185178][ T5850] veth0_macvtap: entered promiscuous mode [ 102.240005][ T5850] veth1_macvtap: entered promiscuous mode [ 102.302279][ T30] audit: type=1326 audit(1751644930.625:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 102.722953][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 102.927742][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 103.132502][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 103.337214][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 103.362635][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 103.746825][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 103.747199][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 103.819229][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.829338][ T30] audit: type=1326 audit(1751644930.625:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 103.886214][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.895730][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.000877][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.002357][ T30] audit: type=1326 audit(1751644930.675:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 104.065982][ T6024] loop0: detected capacity change from 0 to 1024 [ 104.108731][ T6024] ======================================================= [ 104.108731][ T6024] WARNING: The mand mount option has been deprecated and [ 104.108731][ T6024] and is ignored by this kernel. Remove the mand [ 104.108731][ T6024] option from the mount to silence this warning. [ 104.108731][ T6024] ======================================================= [ 104.224999][ T30] audit: type=1326 audit(1751644930.675:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 104.247734][ T30] audit: type=1326 audit(1751644930.675:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 104.272572][ T6024] EXT4-fs: Ignoring removed nobh option [ 104.278125][ T6024] EXT4-fs: Ignoring removed bh option [ 104.293484][ T30] audit: type=1326 audit(1751644930.685:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 104.324246][ T30] audit: type=1326 audit(1751644930.685:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 105.199373][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.240801][ T30] audit: type=1326 audit(1751644930.685:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 105.262921][ T30] audit: type=1326 audit(1751644930.685:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 105.263434][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.286723][ T30] audit: type=1326 audit(1751644930.685:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6008 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 105.296152][ T6024] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.350852][ T5850] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.401460][ T5850] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.410905][ T5850] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.420213][ T5850] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.462510][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.471064][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.479684][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.685542][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.877004][ T1134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.951736][ T1134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.258752][ T1316] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.694198][ T1316] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.966821][ T6064] loop1: detected capacity change from 0 to 256 [ 110.934545][ T6075] syz.0.20 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 111.659711][ T6078] loop3: detected capacity change from 0 to 512 [ 112.153522][ T6078] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 112.166774][ T6078] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 112.809304][ T6078] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 112.871210][ T6078] EXT4-fs (loop3): 1 truncate cleaned up [ 112.912309][ T6078] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.379838][ T6092] xt_CT: No such helper "snmp_trap" [ 114.844514][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.957238][ T6104] netlink: 5128 bytes leftover after parsing attributes in process `syz.1.29'. [ 116.082749][ T6104] netlink: 5128 bytes leftover after parsing attributes in process `syz.1.29'. [ 116.091740][ T6104] netlink: 584 bytes leftover after parsing attributes in process `syz.1.29'. [ 116.581540][ T6046] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 116.714751][ T6111] loop0: detected capacity change from 0 to 1024 [ 116.835803][ T6046] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 116.893169][ T6046] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 116.974790][ T6046] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 117.474830][ T6046] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 117.555735][ T6046] usb 2-1: SerialNumber: syz [ 117.603281][ T6117] hfsplus: b-tree write err: -5, ino 3 [ 117.699577][ T6111] hfsplus: node 4:3 still has 1 user(s)! [ 117.913677][ T6046] usb 2-1: 0:2 : does not exist [ 117.926832][ T6046] usb 2-1: unit 255 not found! [ 117.987544][ T6046] usb 2-1: 5:0: cannot get min/max values for control 2 (id 5) [ 118.185996][ T6046] usb 2-1: USB disconnect, device number 2 [ 119.014730][ T6127] orangefs_mount: mount request failed with -4 [ 119.386966][ T5910] udevd[5910]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 121.407819][ T6145] loop1: detected capacity change from 0 to 512 [ 121.467359][ T6145] EXT4-fs: Ignoring removed nobh option [ 121.568642][ T6145] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.41: iget: bad i_size value: 38620345925642 [ 121.708437][ T6145] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.41: couldn't read orphan inode 15 (err -117) [ 121.734010][ T6156] warning: `syz.0.39' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 121.845572][ T6145] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 122.952040][ T6163] evm: overlay not supported [ 123.205172][ T6154] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 124.579315][ T1134] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1180 with error 28 [ 124.854049][ T1134] EXT4-fs (loop1): This should not happen!! Data will be lost [ 124.854049][ T1134] [ 125.672279][ T1134] EXT4-fs (loop1): Total free blocks count 0 [ 125.702498][ T1134] EXT4-fs (loop1): Free/Dirty block details [ 125.708450][ T1134] EXT4-fs (loop1): free_blocks=0 [ 125.792310][ T1134] EXT4-fs (loop1): dirty_blocks=1184 [ 125.804126][ T1134] EXT4-fs (loop1): Block reservation details [ 125.810132][ T1134] EXT4-fs (loop1): i_reserved_data_blocks=1184 [ 126.440156][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.625857][ T6187] overlayfs: failed to clone upperpath [ 127.975608][ T6197] netlink: 28 bytes leftover after parsing attributes in process `syz.1.48'. [ 129.008581][ T6197] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 129.818380][ T6214] loop4: detected capacity change from 0 to 64 [ 130.626316][ T6214] hfs: get root inode failed [ 131.868509][ T6225] batman_adv: batadv0: Adding interface: dummy0 [ 131.912328][ T6225] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 132.052902][ T6225] batman_adv: batadv0: Interface activated: dummy0 [ 132.071619][ T6225] batadv0: mtu less than device minimum [ 132.078822][ T6225] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 132.090402][ T6225] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 132.101934][ T6225] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 132.113872][ T6225] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 132.125398][ T6225] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 132.136965][ T6225] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 132.148479][ T6225] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 132.160128][ T6225] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 132.182986][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.189549][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.773095][ T6224] loop4: detected capacity change from 0 to 4096 [ 132.951457][ T6224] ntfs3(loop4): ino=3, Correct links count -> 2. [ 134.306872][ T6224] ntfs3(loop4): ino=1a, mi_enum_attr [ 134.320631][ T6224] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 134.343458][ T6243] mmap: syz.0.66 (6243) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 134.746159][ T6244] ptrace attach of "./syz-executor exec"[5846] was attempted by "./syz-executor exec"[6244] [ 142.592728][ T6298] 9pnet: p9_errstr2errno: server reported unknown error 18446744073 [ 143.648150][ T6312] loop5: detected capacity change from 0 to 2048 [ 143.849027][ T6312] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 143.968505][ T6317] netlink: 4 bytes leftover after parsing attributes in process `syz.2.90'. [ 144.082613][ T6317] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 144.090072][ T6317] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 144.119310][ T6318] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 144.237053][ T6317] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 144.277664][ T6317] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 144.352517][ T6318] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 308 with error 28 [ 144.420340][ T6323] netlink: 36 bytes leftover after parsing attributes in process `syz.1.91'. [ 144.430298][ T6318] EXT4-fs (loop5): This should not happen!! Data will be lost [ 144.430298][ T6318] [ 144.430338][ T6318] EXT4-fs (loop5): Total free blocks count 0 [ 144.430357][ T6318] EXT4-fs (loop5): Free/Dirty block details [ 144.430376][ T6318] EXT4-fs (loop5): free_blocks=2415919104 [ 144.430397][ T6318] EXT4-fs (loop5): dirty_blocks=320 [ 144.430414][ T6318] EXT4-fs (loop5): Block reservation details [ 144.430429][ T6318] EXT4-fs (loop5): i_reserved_data_blocks=20 [ 144.583156][ T6329] netlink: 'syz.0.94': attribute type 4 has an invalid length. [ 144.600795][ T6323] netlink: 16 bytes leftover after parsing attributes in process `syz.1.91'. [ 144.639715][ T6329] netlink: 'syz.0.94': attribute type 4 has an invalid length. [ 144.659220][ T6330] loop4: detected capacity change from 0 to 512 [ 144.669433][ T6330] EXT4-fs: Ignoring removed mblk_io_submit option [ 144.695948][ T6330] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 144.724232][ T6330] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.93: iget: bad extended attribute block 1 [ 144.737378][ T6330] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.93: couldn't read orphan inode 15 (err -117) [ 144.751269][ T6330] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.844531][ T6333] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 144.885040][ T6323] netlink: 36 bytes leftover after parsing attributes in process `syz.1.91'. [ 145.318307][ T6323] netlink: 36 bytes leftover after parsing attributes in process `syz.1.91'. [ 145.541086][ T36] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 8 with error 28 [ 145.616240][ T5851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.800361][ T6338] netlink: 4 bytes leftover after parsing attributes in process `syz.2.95'. [ 146.058442][ T6337] sd 0:0:1:0: device reset [ 148.129738][ T6357] Invalid source name [ 148.133805][ T6357] UBIFS error (pid: 6357): cannot open "/dev/sg0", error -22 [ 148.692000][ T6361] netlink: 16 bytes leftover after parsing attributes in process `syz.0.102'. [ 149.630528][ T6373] netlink: 'syz.3.105': attribute type 1 has an invalid length. [ 149.662668][ T6363] loop4: detected capacity change from 0 to 1024 [ 149.844314][ T6370] bond1: (slave gretap1): making interface the new active one [ 149.882003][ T6363] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 149.893660][ T6370] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 150.044931][ T6378] vlan2: entered allmulticast mode [ 150.050109][ T6378] bond1: entered allmulticast mode [ 150.142350][ T6378] gretap1: entered allmulticast mode [ 150.193983][ T6378] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 150.631172][ T5851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.797928][ T30] kauditd_printk_skb: 11 callbacks suppressed [ 153.797948][ T30] audit: type=1326 audit(1751644982.125:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 153.944756][ T30] audit: type=1326 audit(1751644982.195:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 154.010310][ T30] audit: type=1326 audit(1751644982.195:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 154.035111][ T30] audit: type=1326 audit(1751644982.195:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 154.057460][ T30] audit: type=1326 audit(1751644982.195:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 154.079734][ T30] audit: type=1326 audit(1751644982.195:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 154.169912][ T30] audit: type=1326 audit(1751644982.195:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 154.244762][ T30] audit: type=1326 audit(1751644982.195:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 154.310095][ T30] audit: type=1326 audit(1751644982.195:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 154.361342][ T30] audit: type=1326 audit(1751644982.195:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd50698e929 code=0x7ffc0000 [ 156.454026][ T6417] netlink: 24 bytes leftover after parsing attributes in process `syz.4.118'. [ 156.654686][ T6417] netlink: 4 bytes leftover after parsing attributes in process `syz.4.118'. [ 160.323146][ T6448] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 161.186813][ T6448] netlink: 4 bytes leftover after parsing attributes in process `syz.3.127'. [ 161.650605][ T6462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.128'. [ 164.188713][ T6486] netlink: 12 bytes leftover after parsing attributes in process `syz.5.137'. [ 167.528760][ T6516] usb usb8: usbfs: process 6516 (syz.5.146) did not claim interface 0 before use [ 171.609575][ T6538] loop4: detected capacity change from 0 to 32768 [ 171.866052][ T6538] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 171.874462][ T6538] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 171.892084][ T6538] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 171.903871][ T5938] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 171.910772][ T5938] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 173.114625][ T5985] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 173.125229][ T5985] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 173.132687][ T5985] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 173.154828][ T5985] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 174.276475][ T5938] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 2365ms [ 174.346343][ T5938] gfs2: fsid=syz:syz.0: jid=0: Done [ 174.352115][ T6538] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 174.396807][ T6538] gfs2: fsid=syz:syz.0: can't create logd thread: -4 [ 175.698043][ T6589] trusted_key: syz.3.165 sent an empty control message without MSG_MORE. [ 176.982929][ T6597] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 176.991699][ T6597] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 178.117653][ T6599] loop3: detected capacity change from 0 to 1024 [ 178.136480][ T6599] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 178.246033][ T6599] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 179.375001][ T6599] JBD2: no valid journal superblock found [ 179.445537][ T6599] EXT4-fs (loop3): Could not load journal inode [ 179.531970][ T5985] IPVS: starting estimator thread 0... [ 180.273047][ T6614] IPVS: using max 24 ests per chain, 57600 per kthread [ 182.154462][ T6636] loop1: detected capacity change from 0 to 512 [ 182.805184][ T6636] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 182.875924][ T6636] ext4 filesystem being mounted at /25/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 184.286492][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.539771][ T6662] loop3: detected capacity change from 0 to 2048 [ 185.550520][ T6671] binder: 6665:6671 ioctl c0306201 200000000080 returned -14 [ 185.723846][ T6674] net_ratelimit: 11 callbacks suppressed [ 185.723863][ T6674] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 185.889648][ T6671] binder: 6665:6671 ioctl c0306201 200000000140 returned -14 [ 186.699163][ T6662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 186.887526][ T5861] Bluetooth: hci0: command tx timeout [ 187.973037][ T6705] bridge0: port 1(bridge_slave_0) entered disabled state [ 188.227616][ T6705] Zero length message leads to an empty skb [ 188.732016][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.994358][ T5861] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 189.003068][ T5861] Bluetooth: hci0: Injecting HCI hardware error event [ 189.011977][ T5861] Bluetooth: hci0: hardware error 0x00 [ 190.392081][ T6730] netlink: 'syz.0.207': attribute type 9 has an invalid length. [ 190.400105][ T6730] netlink: 'syz.0.207': attribute type 7 has an invalid length. [ 190.408263][ T6730] netlink: 'syz.0.207': attribute type 8 has an invalid length. [ 191.070157][ T5861] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 193.632897][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.639249][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.228348][ T6762] netlink: 24 bytes leftover after parsing attributes in process `syz.4.217'. [ 196.233754][ T6760] overlayfs: failed to clone upperpath [ 196.565119][ T6771] netlink: 4 bytes leftover after parsing attributes in process `syz.4.217'. [ 198.813535][ T6790] netlink: 28 bytes leftover after parsing attributes in process `syz.1.224'. [ 198.845444][ T6790] netlink: 28 bytes leftover after parsing attributes in process `syz.1.224'. [ 198.991897][ T6794] loop1: detected capacity change from 0 to 512 [ 199.093935][ T6794] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 199.143725][ T6794] EXT4-fs (loop1): 1 truncate cleaned up [ 199.181509][ T6794] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.768014][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.991493][ T6814] tipc: Started in network mode [ 201.010880][ T6814] tipc: Node identity ac1414aa, cluster identity 4711 [ 201.046583][ T6814] tipc: Enabled bearer , priority 10 [ 201.080151][ T6821] tipc: Enabled bearer , priority 0 [ 201.212402][ T1316] wlan1: Trigger new scan to find an IBSS to join [ 201.992248][ T30] kauditd_printk_skb: 22 callbacks suppressed [ 201.992268][ T30] audit: type=1326 audit(1751645030.325:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 202.751449][ T5852] tipc: Node number set to 2886997162 [ 202.837620][ T30] audit: type=1326 audit(1751645030.325:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 202.859819][ C0] vkms_vblank_simulate: vblank timer overrun [ 202.866170][ T30] audit: type=1326 audit(1751645030.325:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 202.904630][ T30] audit: type=1326 audit(1751645030.325:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 202.926693][ C0] vkms_vblank_simulate: vblank timer overrun [ 203.039515][ T30] audit: type=1326 audit(1751645030.325:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 203.062183][ C0] vkms_vblank_simulate: vblank timer overrun [ 203.131547][ T30] audit: type=1326 audit(1751645030.325:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 204.139275][ T30] audit: type=1326 audit(1751645030.325:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 204.161544][ C0] vkms_vblank_simulate: vblank timer overrun [ 204.268909][ T30] audit: type=1326 audit(1751645030.325:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 204.296393][ T30] audit: type=1326 audit(1751645030.325:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 204.320358][ T30] audit: type=1326 audit(1751645030.325:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6824 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7fc00000 [ 204.477122][ T6860] netlink: 'syz.0.248': attribute type 1 has an invalid length. [ 205.574762][ T6081] wlan1: Trigger new scan to find an IBSS to join [ 205.588136][ T6865] bond1: (slave gretap1): making interface the new active one [ 205.626674][ T6865] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 205.719504][ T6867] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 205.740336][ T6882] overlayfs: failed to clone upperpath [ 207.449763][ T12] wlan1: Creating new IBSS network, BSSID 00:00:00:8d:00:00 [ 211.500950][ T6928] loop5: detected capacity change from 0 to 512 [ 211.605616][ T6928] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 211.836952][ T6934] loop4: detected capacity change from 0 to 512 [ 211.852497][ T6928] EXT4-fs (loop5): invalid journal inode [ 211.875112][ T6928] EXT4-fs (loop5): can't get journal size [ 211.923061][ T6928] EXT4-fs (loop5): 1 truncate cleaned up [ 211.933497][ T6934] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 211.953349][ T6928] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 212.038103][ T30] kauditd_printk_skb: 17 callbacks suppressed [ 212.038123][ T30] audit: type=1800 audit(1751645040.375:82): pid=6928 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.266" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 212.152336][ T6934] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e02c, mo2=0002] [ 212.189568][ T6934] System zones: 1-12 [ 212.250077][ T6934] EXT4-fs (loop4): orphan cleanup on readonly fs [ 212.314043][ T6934] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.267: bg 0: block 361: padding at end of block bitmap is not set [ 212.370311][ T5850] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.455178][ T6934] EXT4-fs (loop4): Remounting filesystem read-only [ 212.562783][ T6934] EXT4-fs (loop4): 1 truncate cleaned up [ 212.571175][ T6934] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 212.744085][ T6950] netlink: 'syz.5.270': attribute type 1 has an invalid length. [ 212.857500][ T30] audit: type=1800 audit(1751645041.185:83): pid=6954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.274" name="/" dev="9p" ino=2 res=0 errno=0 [ 212.911484][ T5851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 213.024282][ T6957] bond1: (slave gretap1): making interface the new active one [ 213.191334][ T6957] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 213.311008][ T6962] loop4: detected capacity change from 0 to 32768 [ 213.577366][ T30] audit: type=1800 audit(1751645041.675:84): pid=6962 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.275" name="file1" dev="loop4" ino=4 res=0 errno=0 [ 215.420740][ T6950] vlan2: entered allmulticast mode [ 215.492264][ T6950] bond1: entered allmulticast mode [ 215.497438][ T6950] gretap1: entered allmulticast mode [ 215.558391][ T6950] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 216.749309][ T5869] Bluetooth: hci3: command 0x0406 tx timeout [ 216.750119][ T5853] Bluetooth: hci1: command 0x0406 tx timeout [ 216.757448][ T5869] Bluetooth: hci5: command 0x0406 tx timeout [ 216.767548][ T5869] Bluetooth: hci4: command 0x0406 tx timeout [ 216.774484][ T5869] Bluetooth: hci2: command 0x0406 tx timeout [ 217.462454][ T30] audit: type=1326 audit(1751645045.245:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7fc00000 [ 217.593681][ T30] audit: type=1326 audit(1751645045.835:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fefa8d8e929 code=0x7fc00000 [ 218.110962][ T6999] loop3: detected capacity change from 0 to 2048 [ 218.151767][ T6999] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 219.644489][ T7012] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 219.660897][ T7012] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 219.674446][ T7012] EXT4-fs (loop3): This should not happen!! Data will be lost [ 219.674446][ T7012] [ 219.684129][ T7012] EXT4-fs (loop3): Total free blocks count 0 [ 219.690102][ T7012] EXT4-fs (loop3): Free/Dirty block details [ 219.696053][ T7012] EXT4-fs (loop3): free_blocks=2415919104 [ 219.701772][ T7012] EXT4-fs (loop3): dirty_blocks=6144 [ 219.707113][ T7012] EXT4-fs (loop3): Block reservation details [ 219.713147][ T7012] EXT4-fs (loop3): i_reserved_data_blocks=384 [ 219.904424][ T61] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 3072 with max blocks 2048 with error 28 [ 219.918911][ T7009] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 224.952151][ T7067] netlink: 64 bytes leftover after parsing attributes in process `syz.0.306'. [ 227.557621][ T7091] gfs2: gfs2 mount does not exist [ 230.519495][ T7109] netlink: 24 bytes leftover after parsing attributes in process `syz.3.319'. [ 237.516457][ T36] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 238.243205][ T7153] loop1: detected capacity change from 0 to 256 [ 238.318355][ T7153] FAT-fs (loop1): Directory bread(block 64) failed [ 238.350007][ T7153] FAT-fs (loop1): Directory bread(block 65) failed [ 238.442330][ T7153] FAT-fs (loop1): Directory bread(block 66) failed [ 238.448911][ T7153] FAT-fs (loop1): Directory bread(block 67) failed [ 238.488753][ T7153] FAT-fs (loop1): Directory bread(block 68) failed [ 238.519702][ T7153] FAT-fs (loop1): Directory bread(block 69) failed [ 238.558006][ T7153] FAT-fs (loop1): Directory bread(block 70) failed [ 239.432419][ T7153] FAT-fs (loop1): Directory bread(block 71) failed [ 239.439097][ T7153] FAT-fs (loop1): Directory bread(block 72) failed [ 239.545876][ T7153] FAT-fs (loop1): Directory bread(block 73) failed [ 242.631504][ T7227] loop1: detected capacity change from 0 to 32768 [ 242.639136][ T7227] XFS: noikeep mount option is deprecated. [ 242.727382][ T7227] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 242.883229][ T7246] Device name cannot be null; rc = [-22] [ 243.278919][ T7245] loop3: detected capacity change from 0 to 256 [ 243.587734][ T7245] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 244.343990][ T7245] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 244.399712][ T7227] XFS (loop1): Ending clean mount [ 244.412421][ T7227] XFS (loop1): Quotacheck needed: Please wait. [ 245.129846][ T7227] XFS (loop1): Quotacheck: Done. [ 245.197758][ T5848] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 246.617086][ T30] audit: type=1326 audit(1751645074.905:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefa8d2ab19 code=0x7ffc0000 [ 246.680396][ T30] audit: type=1326 audit(1751645074.905:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefa8d2ab19 code=0x7ffc0000 [ 246.832865][ T30] audit: type=1326 audit(1751645074.905:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 246.857561][ T30] audit: type=1326 audit(1751645074.905:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 246.881702][ T30] audit: type=1326 audit(1751645074.905:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 246.906161][ T30] audit: type=1326 audit(1751645074.905:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefa8d2ab19 code=0x7ffc0000 [ 246.944060][ T30] audit: type=1326 audit(1751645074.905:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 247.079956][ T30] audit: type=1326 audit(1751645074.905:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefa8d2ab19 code=0x7ffc0000 [ 247.103018][ T30] audit: type=1326 audit(1751645074.905:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 247.126893][ T30] audit: type=1326 audit(1751645074.905:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefa8d2ab19 code=0x7ffc0000 [ 255.046386][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.152562][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.351642][ T7367] fuse: Bad value for 'fd' [ 256.599110][ T7369] tipc: Started in network mode [ 256.604574][ T7369] tipc: Node identity ac14140f, cluster identity 4711 [ 256.611694][ T7369] tipc: New replicast peer: 255.255.255.255 [ 256.797615][ T7369] tipc: Enabled bearer , priority 10 [ 256.892882][ T7364] orangefs_mount: mount request failed with -4 [ 257.972280][ T5938] tipc: Node number set to 2886997007 [ 258.186707][ T7381] xfrm1: entered promiscuous mode [ 258.355683][ T7381] xfrm1: entered allmulticast mode [ 258.371428][ T7384] loop1: detected capacity change from 0 to 256 [ 259.549354][ T7384] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 259.653305][ T7384] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 259.688845][ T7381] xt_hashlimit: size too large, truncated to 1048576 [ 259.812364][ T7384] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 261.643075][ T7400] Process accounting resumed [ 262.869697][ T7415] usb usb1: check_ctrlrecip: process 7415 (syz.5.391) requesting ep 01 but needs 81 [ 265.588895][ T7450] loop1: detected capacity change from 0 to 32768 [ 266.727360][ T7466] loop3: detected capacity change from 0 to 256 [ 266.773780][ T7450] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow [ 266.773799][ T7450] allowing incompatible features above 0.0: (unknown version) [ 266.773810][ T7450] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 266.810364][ T7450] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 266.818599][ T7450] bcachefs (loop1): initializing new filesystem [ 266.831588][ T7450] bcachefs (loop1): going read-write [ 266.871352][ T7450] bcachefs (loop1): marking superblocks [ 266.889551][ T7450] bcachefs (loop1): initializing freespace [ 266.898633][ T7450] bcachefs (loop1): done initializing freespace [ 266.907682][ T7450] bcachefs (loop1): reading snapshots table [ 266.913651][ T7450] bcachefs (loop1): reading snapshots done [ 266.955622][ T7466] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 267.003291][ T7450] bcachefs (loop1): done starting filesystem [ 267.015776][ T7466] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 267.102616][ T7450] syz.1.405 (7450) used greatest stack depth: 16152 bytes left [ 267.220775][ T5848] bcachefs (loop1): shutting down [ 267.259280][ T5848] bcachefs (loop1): going read-only [ 267.297580][ T5848] bcachefs (loop1): finished waiting for writes to stop [ 267.391165][ T5848] bcachefs (loop1): flushing journal and stopping allocators, journal seq 3 [ 267.560786][ T7488] ALSA: seq fatal error: cannot create timer (-22) [ 268.626679][ T5848] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 4 [ 268.665783][ T5848] bcachefs (loop1): clean shutdown complete, journal seq 5 [ 268.721013][ T5848] bcachefs (loop1): marking filesystem clean [ 268.998338][ T7501] loop5: detected capacity change from 0 to 40427 [ 269.139695][ T7501] F2FS-fs (loop5): invalid crc value [ 269.212795][ T7501] F2FS-fs (loop5): Start checkpoint disabled! [ 269.242607][ T7501] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6 [ 269.390616][ T5848] bcachefs (loop1): shutdown complete [ 269.566767][ T61] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 270.062274][ T5931] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 271.035825][ T5931] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 271.064243][ T5931] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 271.110883][ T5931] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 271.156691][ T5931] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 271.209341][ T7508] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 271.244501][ T5931] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 271.762063][ T7508] af_packet: tpacket_rcv: packet too big, clamped from 18 to 4294967272. macoff=96 [ 272.907622][ T5938] usb 5-1: USB disconnect, device number 2 [ 275.849876][ T7555] netlink: 4 bytes leftover after parsing attributes in process `syz.0.437'. [ 278.762363][ C0] vcan0: j1939_tp_rxtimer: 0xffff88806e960000: rx timeout, send abort [ 279.271734][ C0] vcan0: j1939_tp_rxtimer: 0xffff88806e960000: abort rx timeout. Force session deactivation [ 285.449719][ T7617] loop4: detected capacity change from 0 to 128 [ 285.831379][ T5866] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 285.844839][ T5866] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 285.852655][ T5866] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 285.861103][ T5866] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 285.869332][ T5866] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 286.370191][ T7629] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 286.378250][ T7629] FAT-fs (loop4): Filesystem has been set read-only [ 287.128685][ T7620] chnl_net:caif_netlink_parms(): no params data found [ 287.987826][ T5866] Bluetooth: hci6: command tx timeout [ 289.294902][ T7672] netlink: 12 bytes leftover after parsing attributes in process `syz.5.474'. [ 290.072531][ T5866] Bluetooth: hci6: command tx timeout [ 290.534986][ T7689] netlink: 'syz.2.481': attribute type 10 has an invalid length. [ 290.566473][ T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.591362][ T7620] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.525180][ T7620] bridge0: port 1(bridge_slave_0) entered disabled state [ 291.532630][ T7620] bridge_slave_0: entered allmulticast mode [ 291.540568][ T7620] bridge_slave_0: entered promiscuous mode [ 291.555746][ T7620] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.659111][ T7620] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.668571][ T7620] bridge_slave_1: entered allmulticast mode [ 292.019471][ T7620] bridge_slave_1: entered promiscuous mode [ 292.264183][ T5866] Bluetooth: hci6: command tx timeout [ 292.637494][ T7689] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 292.748719][ T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 292.963580][ T7703] netlink: 220 bytes leftover after parsing attributes in process `syz.3.483'. [ 293.340311][ T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 294.295344][ T7620] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 294.404162][ T7716] loop4: detected capacity change from 0 to 8 [ 294.429622][ T5866] Bluetooth: hci6: command tx timeout [ 294.482373][ T7620] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 294.551220][ T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 294.802982][ T7620] team0: Port device team_slave_0 added [ 294.834616][ T7620] team0: Port device team_slave_1 added [ 295.588987][ T7620] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 295.623112][ T7620] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 295.980308][ T7620] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 297.654898][ T7620] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 297.661887][ T7620] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 297.747563][ T7620] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 297.905797][ T30] kauditd_printk_skb: 252 callbacks suppressed [ 297.905816][ T30] audit: type=1326 audit(1751645126.245:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 298.038241][ T30] audit: type=1326 audit(1751645126.245:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 298.168270][ T30] audit: type=1326 audit(1751645126.245:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 298.253177][ T30] audit: type=1326 audit(1751645126.245:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 298.282169][ T30] audit: type=1326 audit(1751645126.245:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 298.922307][ T30] audit: type=1326 audit(1751645126.275:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 299.031334][ T30] audit: type=1326 audit(1751645126.305:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 299.053979][ T30] audit: type=1326 audit(1751645126.325:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 299.079406][ T30] audit: type=1326 audit(1751645126.325:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 299.088485][ T7620] hsr_slave_0: entered promiscuous mode [ 299.102003][ T30] audit: type=1326 audit(1751645126.325:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ca018e929 code=0x7ffc0000 [ 299.205439][ T7620] hsr_slave_1: entered promiscuous mode [ 299.211842][ T7620] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 299.232514][ T7620] Cannot create hsr debugfs directory [ 301.765610][ T7206] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 301.781125][ T36] bridge_slave_1: left allmulticast mode [ 301.827408][ T36] bridge_slave_1: left promiscuous mode [ 301.897030][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 301.949583][ T36] bridge_slave_0: left allmulticast mode [ 301.968623][ T36] bridge_slave_0: left promiscuous mode [ 301.997283][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 302.589904][ T7817] ptrace attach of "./syz-executor exec"[5849] was attempted by " [ 303.235803][ T7811] loop5: detected capacity change from 0 to 512 [ 303.692417][ T7811] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 303.772381][ T7811] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002] [ 303.795893][ T7811] System zones: 1-12 [ 303.827889][ T7811] EXT4-fs (loop5): 1 truncate cleaned up [ 304.034614][ T7811] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 305.003901][ T5866] Bluetooth: hci4: unexpected event for opcode 0x2006 [ 305.205738][ T5850] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.504466][ T7843] netlink: 'syz.5.517': attribute type 83 has an invalid length. [ 306.308877][ T7852] loop3: detected capacity change from 0 to 512 [ 306.408966][ T7852] EXT4-fs error (device loop3): __ext4_fill_super:5500: inode #2: comm syz.3.530: casefold flag without casefold feature [ 306.464203][ T7852] EXT4-fs (loop3): get root inode failed [ 306.572694][ T7852] EXT4-fs (loop3): mount failed [ 306.699124][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 306.912675][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 307.068866][ T36] bond0 (unregistering): Released all slaves [ 308.449998][ T7864] bridge1: entered allmulticast mode [ 308.605317][ T36] tipc: Disabling bearer [ 308.641615][ T36] tipc: Left network mode [ 313.889235][ T36] hsr_slave_0: left promiscuous mode [ 313.944563][ T36] hsr_slave_1: left promiscuous mode [ 313.950725][ T36] batman_adv: batadv0: Interface deactivated: dummy0 [ 314.011154][ T36] batman_adv: batadv0: Removing interface: dummy0 [ 314.083120][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 314.090569][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 314.143339][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 314.150784][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 314.223681][ T36] veth1_macvtap: left promiscuous mode [ 314.229473][ T36] veth0_macvtap: left promiscuous mode [ 314.242440][ T36] veth1_vlan: left promiscuous mode [ 314.247953][ T36] veth0_vlan: left promiscuous mode [ 315.337030][ T7949] netlink: 4 bytes leftover after parsing attributes in process `syz.5.543'. [ 316.492784][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.499215][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.780135][ T7993] xt_TPROXY: Can be used only with -p tcp or -p udp [ 323.816760][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 323.816780][ T30] audit: type=1326 audit(1751645152.155:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7996 comm="syz.3.558" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f806278e929 code=0x0 [ 324.533042][ T36] team0 (unregistering): Port device team_slave_1 removed [ 324.571974][ T8002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.559'. [ 324.595600][ T8002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.559'. [ 324.608861][ T8002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.559'. [ 324.620809][ T36] team0 (unregistering): Port device team_slave_0 removed [ 324.633094][ T8003] netlink: 8 bytes leftover after parsing attributes in process `syz.0.559'. [ 324.812632][ T8003] netlink: 8 bytes leftover after parsing attributes in process `syz.0.559'. [ 326.675090][ T5918] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 327.451386][ T5918] usb 4-1: Using ep0 maxpacket: 8 [ 327.498210][ T5918] usb 4-1: config index 0 descriptor too short (expected 301, got 45) [ 327.518858][ T5918] usb 4-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 327.529541][ T5918] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 327.538958][ T5918] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 327.776502][ T7620] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 327.826242][ T7620] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 328.037372][ T7620] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 328.859836][ T7620] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 329.351427][ T7620] 8021q: adding VLAN 0 to HW filter on device bond0 [ 330.214666][ T5931] usb 4-1: USB disconnect, device number 2 [ 330.281389][ T7620] 8021q: adding VLAN 0 to HW filter on device team0 [ 330.556091][ T7210] bridge0: port 1(bridge_slave_0) entered blocking state [ 330.563349][ T7210] bridge0: port 1(bridge_slave_0) entered forwarding state [ 331.629043][ T7210] bridge0: port 2(bridge_slave_1) entered blocking state [ 331.636269][ T7210] bridge0: port 2(bridge_slave_1) entered forwarding state [ 335.193533][ T7202] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 336.153415][ T7620] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 336.518606][ T8099] virtio-fs: tag not found [ 338.642856][ T7620] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 340.146673][ T8137] loop5: detected capacity change from 0 to 32768 [ 341.009571][ T8137] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names [ 341.009607][ T8137] allowing incompatible features above 0.0: (unknown version) [ 341.009621][ T8137] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 341.054595][ T8137] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0 [ 341.062827][ T8137] bcachefs (loop5): initializing new filesystem [ 341.077202][ T8137] bcachefs (loop5): going read-write [ 341.152516][ T8137] bcachefs (loop5): marking superblocks [ 341.167722][ T8137] bcachefs (loop5): initializing freespace [ 341.177465][ T8137] bcachefs (loop5): done initializing freespace [ 341.186380][ T8137] bcachefs (loop5): reading snapshots table [ 341.192458][ T8137] bcachefs (loop5): reading snapshots done [ 341.239422][ T7620] veth0_vlan: entered promiscuous mode [ 341.253951][ T8137] bcachefs (loop5): done starting filesystem [ 341.274736][ T7620] veth1_vlan: entered promiscuous mode [ 342.068442][ T7620] veth0_macvtap: entered promiscuous mode [ 342.287625][ T7620] veth1_macvtap: entered promiscuous mode [ 342.308375][ T7620] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 342.328492][ T7620] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 342.941020][ T5850] bcachefs (loop5): shutting down [ 342.964847][ T5850] bcachefs (loop5): going read-only [ 342.971821][ T5850] bcachefs (loop5): finished waiting for writes to stop [ 342.976042][ T7620] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.003975][ T7620] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.019790][ T7620] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.072353][ T7620] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.138220][ T5850] bcachefs (loop5): flushing journal and stopping allocators, journal seq 4 [ 343.195436][ T5850] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 4 [ 343.226641][ T8172] loop3: detected capacity change from 0 to 128 [ 343.266063][ T5850] bcachefs (loop5): clean shutdown complete, journal seq 5 [ 343.294275][ T5850] bcachefs (loop5): marking filesystem clean [ 343.358271][ T8172] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 343.383069][ T8172] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 343.604814][ T5850] bcachefs (loop5): shutdown complete [ 343.813698][ T8182] capability: warning: `syz.2.603' uses deprecated v2 capabilities in a way that may be insecure [ 344.491466][ T5161] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 344.520701][ T5161] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 344.529672][ T5161] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 344.555616][ T5161] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 344.564736][ T5161] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 344.847357][ T7200] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 345.073316][ T7200] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 345.332300][ T5985] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 345.440596][ T7200] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 345.530282][ T5985] usb 5-1: config 0 interface 0 has no altsetting 0 [ 345.537453][ T5985] usb 5-1: New USB device found, idVendor=056a, idProduct=00e2, bcdDevice= 0.00 [ 345.567963][ T5985] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 345.607175][ T5985] usb 5-1: config 0 descriptor?? [ 345.671168][ T5849] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 345.727610][ T7200] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 346.642707][ T5161] Bluetooth: hci2: command tx timeout [ 347.671909][ T5985] usb 5-1: USB disconnect, device number 3 [ 348.295255][ T8216] loop3: detected capacity change from 0 to 262144 [ 348.355273][ T8216] F2FS-fs (loop3): invalid crc value [ 348.436542][ T8228] 9pnet_fd: Insufficient options for proto=fd [ 348.456799][ T8216] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 348.740373][ T8186] chnl_net:caif_netlink_parms(): no params data found [ 348.790059][ T5161] Bluetooth: hci2: command tx timeout [ 350.724145][ T7200] bridge_slave_1: left allmulticast mode [ 350.972420][ T5161] Bluetooth: hci2: command tx timeout [ 351.005424][ T7200] bridge_slave_1: left promiscuous mode [ 351.011385][ T7200] bridge0: port 2(bridge_slave_1) entered disabled state [ 351.656184][ T7200] bridge_slave_0: left allmulticast mode [ 351.701283][ T7200] bridge_slave_0: left promiscuous mode [ 351.709167][ T7200] bridge0: port 1(bridge_slave_0) entered disabled state [ 353.048737][ T5161] Bluetooth: hci2: command tx timeout [ 358.730631][ T8300] loop5: detected capacity change from 0 to 32768 [ 358.738123][ T8300] XFS: ikeep mount option is deprecated. [ 358.794368][ T8300] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 359.117150][ T8300] XFS (loop5): Ending clean mount [ 359.126676][ T8300] XFS (loop5): Quotacheck needed: Please wait. [ 359.921554][ T8300] XFS (loop5): Quotacheck: Done. [ 360.154919][ T7200] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 360.180960][ T7200] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 360.192589][ T7200] bond0 (unregistering): Released all slaves [ 360.584950][ T8186] bridge0: port 1(bridge_slave_0) entered blocking state [ 360.599004][ T8186] bridge0: port 1(bridge_slave_0) entered disabled state [ 360.614589][ T8186] bridge_slave_0: entered allmulticast mode [ 360.627269][ T8186] bridge_slave_0: entered promiscuous mode [ 360.636785][ T8186] bridge0: port 2(bridge_slave_1) entered blocking state [ 360.644436][ T8186] bridge0: port 2(bridge_slave_1) entered disabled state [ 360.651687][ T8186] bridge_slave_1: entered allmulticast mode [ 360.660228][ T8186] bridge_slave_1: entered promiscuous mode [ 360.713262][ T8186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 360.726344][ T8186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 360.811282][ T8186] team0: Port device team_slave_0 added [ 360.905509][ T5850] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 360.930805][ T8289] netlink: 20 bytes leftover after parsing attributes in process `syz.2.624'. [ 361.183134][ T8186] team0: Port device team_slave_1 added [ 362.607343][ T7200] hsr_slave_0: left promiscuous mode [ 362.734118][ T7200] hsr_slave_1: left promiscuous mode [ 362.960360][ T7200] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 362.968695][ T7200] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 362.978398][ T7200] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 362.985926][ T7200] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 363.829896][ T7200] veth1_macvtap: left promiscuous mode [ 363.851974][ T7200] veth0_macvtap: left promiscuous mode [ 363.869955][ T7200] veth1_vlan: left promiscuous mode [ 363.889620][ T7200] veth0_vlan: left promiscuous mode [ 368.919035][ T7202] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 372.779987][ T30] audit: type=1326 audit(1751645201.105:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8418 comm="syz.5.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5731f8e929 code=0x7fc00000 [ 374.216830][ T7200] team0 (unregistering): Port device team_slave_1 removed [ 376.534097][ T7200] team0 (unregistering): Port device team_slave_0 removed [ 377.121807][ T5161] Bluetooth: hci4: unexpected event for opcode 0x1003 [ 377.884673][ T5859] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 377.918665][ T5859] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 378.015041][ T5859] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 378.025815][ T5859] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 378.033710][ T5859] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 378.168076][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.183896][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.082325][ T5161] Bluetooth: hci6: command tx timeout [ 381.132497][ T5161] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 381.141050][ T5161] Bluetooth: hci4: Injecting HCI hardware error event [ 381.152664][ T5161] Bluetooth: hci4: hardware error 0x00 [ 381.472034][ T8186] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 381.730576][ T8186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 381.763172][ T8500] process 'syz.0.683' launched '/dev/fd/3' with NULL argv: empty string added [ 381.954707][ T8502] netlink: 12 bytes leftover after parsing attributes in process `syz.5.684'. [ 382.450712][ T5859] Bluetooth: hci6: command tx timeout [ 382.470175][ T8186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 382.643846][ T8186] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 382.675219][ T8186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 382.809397][ T8186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 383.583531][ T5161] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 383.999408][ T30] audit: type=1326 audit(1751645212.325:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 384.091769][ T30] audit: type=1326 audit(1751645212.335:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 384.105254][ T8186] hsr_slave_0: entered promiscuous mode [ 384.183092][ T8186] hsr_slave_1: entered promiscuous mode [ 384.204933][ T8186] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 384.222260][ T30] audit: type=1326 audit(1751645212.335:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 384.242246][ T8186] Cannot create hsr debugfs directory [ 384.330966][ T30] audit: type=1326 audit(1751645212.335:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 384.431288][ T30] audit: type=1326 audit(1751645212.335:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 384.485918][ T5866] Bluetooth: hci6: command tx timeout [ 384.494841][ T5859] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 384.508704][ T5859] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 384.518838][ T5859] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 384.537144][ T5859] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 384.548323][ T5859] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 384.592993][ T30] audit: type=1326 audit(1751645212.365:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f806272ab19 code=0x7ffc0000 [ 384.616560][ T30] audit: type=1326 audit(1751645212.365:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 384.728581][ T30] audit: type=1326 audit(1751645212.365:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f806272ab19 code=0x7ffc0000 [ 384.802114][ T30] audit: type=1326 audit(1751645212.365:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f806278e929 code=0x7ffc0000 [ 384.825058][ T30] audit: type=1326 audit(1751645212.375:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.3.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f806272ab19 code=0x7ffc0000 [ 384.959281][ T8531] Invalid source name [ 384.963567][ T8531] UBIFS error (pid: 8531): cannot open "./file0", error -22 [ 386.704563][ T5161] Bluetooth: hci6: command tx timeout [ 386.718250][ T5859] Bluetooth: hci7: command tx timeout [ 388.937268][ T5859] Bluetooth: hci7: command tx timeout [ 390.077577][ T8562] loop3: detected capacity change from 0 to 4096 [ 390.206125][ T8564] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 391.333436][ T5859] Bluetooth: hci7: command tx timeout [ 391.339631][ T8465] chnl_net:caif_netlink_parms(): no params data found [ 391.467204][ T8566] fuse: root generation should be zero [ 391.931571][ T8579] loop3: detected capacity change from 0 to 256 [ 391.947092][ T8579] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 392.160779][ T8580] exFAT-fs (loop3): valid_size(150994954) is greater than size(10) [ 392.515037][ T6117] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 393.399704][ T5859] Bluetooth: hci7: command tx timeout [ 394.245131][ T8589] overlayfs: failed to clone upperpath [ 394.314998][ T6117] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 394.398439][ T8593] netlink: 104 bytes leftover after parsing attributes in process `syz.3.709'. [ 396.050228][ T6117] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.993923][ T8613] capability: warning: `syz.5.714' uses 32-bit capabilities (legacy support in use) [ 397.137850][ T8465] bridge0: port 1(bridge_slave_0) entered blocking state [ 397.182453][ T8465] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.189742][ T8465] bridge_slave_0: entered allmulticast mode [ 397.204325][ T8465] bridge_slave_0: entered promiscuous mode [ 398.602149][ T6117] bond0: (slave netdevsim0): Releasing backup interface [ 398.632165][ T6117] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 398.637342][ T8628] loop3: detected capacity change from 0 to 256 [ 398.671728][ T8626] input: syz0 as /devices/virtual/input/input5 [ 398.682709][ T8626] input: failed to attach handler leds to device input5, error: -6 [ 398.764897][ T8465] bridge0: port 2(bridge_slave_1) entered blocking state [ 398.773970][ T8465] bridge0: port 2(bridge_slave_1) entered disabled state [ 398.783002][ T8465] bridge_slave_1: entered allmulticast mode [ 398.787141][ T8628] FAT-fs (loop3): Directory bread(block 64) failed [ 398.790884][ T8465] bridge_slave_1: entered promiscuous mode [ 398.809505][ T8628] FAT-fs (loop3): Directory bread(block 65) failed [ 398.816327][ T8628] FAT-fs (loop3): Directory bread(block 66) failed [ 398.828532][ T8628] FAT-fs (loop3): Directory bread(block 67) failed [ 398.838172][ T8628] FAT-fs (loop3): Directory bread(block 68) failed [ 398.871485][ T8628] FAT-fs (loop3): Directory bread(block 69) failed [ 398.893010][ T8628] FAT-fs (loop3): Directory bread(block 70) failed [ 398.912684][ T8628] FAT-fs (loop3): Directory bread(block 71) failed [ 398.919289][ T8628] FAT-fs (loop3): Directory bread(block 72) failed [ 398.947136][ T8628] FAT-fs (loop3): Directory bread(block 73) failed [ 399.159173][ T8465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 399.196111][ T8465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 400.843963][ T8644] loop5: detected capacity change from 0 to 2048 [ 400.905550][ T8644] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 400.921650][ T8465] team0: Port device team_slave_0 added [ 400.951663][ T8465] team0: Port device team_slave_1 added [ 400.969844][ T8186] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 401.019541][ T30] kauditd_printk_skb: 28 callbacks suppressed [ 401.019560][ T30] audit: type=1800 audit(1751645229.355:402): pid=8644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.723" name="file1" dev="loop5" ino=1415 res=0 errno=0 [ 402.103685][ T8186] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 402.169818][ T30] audit: type=1800 audit(1751645230.505:403): pid=8644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.723" name="file2" dev="loop5" ino=1416 res=0 errno=0 [ 402.234211][ T8465] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 402.260850][ T8465] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 402.353137][ T7210] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 402.377836][ T8465] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 402.398858][ T8186] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 402.418439][ T8465] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 402.429131][ T8465] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 402.464518][ T8465] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 402.479344][ T6117] bridge_slave_1: left allmulticast mode [ 402.486802][ T6117] bridge_slave_1: left promiscuous mode [ 402.516689][ T6117] bridge0: port 2(bridge_slave_1) entered disabled state [ 402.545612][ T6117] bridge_slave_0: left allmulticast mode [ 402.573879][ T6117] bridge_slave_0: left promiscuous mode [ 403.741017][ T6117] bridge0: port 1(bridge_slave_0) entered disabled state [ 407.328094][ T8686] loop3: detected capacity change from 0 to 512 [ 407.375393][ T8686] EXT4-fs (loop3): ea_inode feature is not supported for Hurd [ 407.517271][ T8689] binder_alloc: 8688: pid 8688 spamming oneway? 1 buffers allocated for a total size of 4096 [ 408.653873][ T5161] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 408.664103][ T5161] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 408.672023][ T5161] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 408.942843][ T5161] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 408.952149][ T5161] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 409.722267][ T5856] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 409.886964][ T6117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 409.976100][ T6117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 410.019432][ T6117] bond0 (unregistering): Released all slaves [ 410.022360][ T5856] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 410.078538][ T5856] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 410.092300][ T5856] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 410.102261][ T5856] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 410.124451][ T8186] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 410.302454][ T8696] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 410.352329][ T8525] chnl_net:caif_netlink_parms(): no params data found [ 410.406414][ T5856] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 410.726929][ T5985] usb 4-1: USB disconnect, device number 3 [ 411.043875][ T5161] Bluetooth: hci0: command tx timeout [ 411.718978][ T8716] loop5: detected capacity change from 0 to 8 [ 413.025021][ T8465] hsr_slave_0: entered promiscuous mode [ 413.142542][ T5161] Bluetooth: hci0: command tx timeout [ 413.364157][ T8465] hsr_slave_1: entered promiscuous mode [ 413.373341][ T8465] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 413.381012][ T8465] Cannot create hsr debugfs directory [ 415.042564][ T8741] loop5: detected capacity change from 0 to 64 [ 415.202563][ T5859] Bluetooth: hci0: command tx timeout [ 417.859128][ T5859] Bluetooth: hci0: command tx timeout [ 417.865671][ T8766] TCP: out of memory -- consider tuning tcp_mem [ 418.025590][ T8525] bridge0: port 1(bridge_slave_0) entered blocking state [ 418.043845][ T8525] bridge0: port 1(bridge_slave_0) entered disabled state [ 418.064699][ T8525] bridge_slave_0: entered allmulticast mode [ 418.094277][ T8525] bridge_slave_0: entered promiscuous mode [ 418.109385][ T8525] bridge0: port 2(bridge_slave_1) entered blocking state [ 418.119693][ T8525] bridge0: port 2(bridge_slave_1) entered disabled state [ 418.132144][ T8525] bridge_slave_1: entered allmulticast mode [ 418.141319][ T8525] bridge_slave_1: entered promiscuous mode [ 418.197354][ T6117] hsr_slave_0: left promiscuous mode [ 418.205797][ T6117] hsr_slave_1: left promiscuous mode [ 418.233932][ T6117] veth1_macvtap: left promiscuous mode [ 418.239483][ T6117] veth0_macvtap: left promiscuous mode [ 418.261355][ T6117] veth1_vlan: left promiscuous mode [ 418.280330][ T6117] veth0_vlan: left promiscuous mode [ 420.435208][ T6117] team0 (unregistering): Port device team_slave_1 removed [ 420.486585][ T6117] team0 (unregistering): Port device team_slave_0 removed [ 422.127501][ T8525] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 422.828849][ T8525] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 422.918410][ T8465] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 423.032857][ T8810] loop3: detected capacity change from 0 to 64 [ 423.055998][ T8465] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 423.195001][ T8525] team0: Port device team_slave_0 added [ 423.221689][ T8525] team0: Port device team_slave_1 added [ 423.233475][ T8465] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 423.250700][ T8815] loop3: detected capacity change from 0 to 1024 [ 423.395651][ T8816] loop3: detected capacity change from 0 to 2048 [ 425.792616][ T8465] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 426.192251][ T30] audit: type=1326 audit(1751645254.515:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 426.261288][ T30] audit: type=1326 audit(1751645254.525:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 426.295905][ T30] audit: type=1326 audit(1751645254.525:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 426.319550][ T30] audit: type=1326 audit(1751645254.525:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 426.349871][ T30] audit: type=1326 audit(1751645254.525:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 427.303014][ T8525] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 427.309999][ T8525] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 427.336804][ T30] audit: type=1326 audit(1751645254.525:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 427.396684][ T30] audit: type=1326 audit(1751645254.525:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 427.436492][ T8525] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 427.488820][ T8525] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 427.501469][ T30] audit: type=1326 audit(1751645254.525:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 427.517487][ T8829] loop3: detected capacity change from 0 to 512 [ 427.542250][ T8525] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 427.592309][ T30] audit: type=1326 audit(1751645254.525:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 427.599087][ T8525] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 427.625719][ T30] audit: type=1326 audit(1751645254.525:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8817 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa8d8e929 code=0x7ffc0000 [ 427.639048][ T8829] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.774: iget: bad extended attribute block 1 [ 427.788100][ T8829] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.774: couldn't read orphan inode 15 (err -117) [ 427.830234][ T8697] chnl_net:caif_netlink_parms(): no params data found [ 427.839151][ T8829] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 428.932731][ T8838] EXT4-fs warning (device loop3): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 429.010342][ T8525] hsr_slave_0: entered promiscuous mode [ 429.039133][ T8525] hsr_slave_1: entered promiscuous mode [ 429.053878][ T8525] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 429.061469][ T8525] Cannot create hsr debugfs directory [ 429.287788][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.001883][ T8697] bridge0: port 1(bridge_slave_0) entered blocking state [ 434.052470][ T8697] bridge0: port 1(bridge_slave_0) entered disabled state [ 434.059771][ T8697] bridge_slave_0: entered allmulticast mode [ 434.076448][ T8697] bridge_slave_0: entered promiscuous mode [ 434.105333][ T8883] loop5: detected capacity change from 0 to 128 [ 434.113347][ T8883] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 434.133955][ T8883] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 434.257339][ T8697] bridge0: port 2(bridge_slave_1) entered blocking state [ 434.331070][ T8697] bridge0: port 2(bridge_slave_1) entered disabled state [ 434.338708][ T8697] bridge_slave_1: entered allmulticast mode [ 434.388823][ T8697] bridge_slave_1: entered promiscuous mode [ 435.443960][ T8891] loop3: detected capacity change from 0 to 16 [ 435.499787][ T8891] erofs (device loop3): mounted with root inode @ nid 36. [ 435.515893][ T8891] erofs (device loop3): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 435.563153][ T8891] erofs (device loop3): failed to decompress -20 in[58, 4038] out[1851] [ 435.583498][ T8891] erofs (device loop3): read error -117 @ 43 of nid 36 [ 435.650267][ T8697] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 435.771258][ T8697] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 435.937536][ T7217] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 436.053493][ T8697] team0: Port device team_slave_0 added [ 436.347925][ T8697] team0: Port device team_slave_1 added [ 436.686680][ T8697] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 436.712993][ T8697] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 436.834511][ T8697] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 437.676842][ T8525] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 437.711713][ T8697] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 437.747754][ T8697] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 437.800568][ T8697] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 437.857025][ T6117] bridge_slave_1: left allmulticast mode [ 437.879916][ T6117] bridge_slave_1: left promiscuous mode [ 437.886781][ T6117] bridge0: port 2(bridge_slave_1) entered disabled state [ 437.904382][ T6117] bridge_slave_0: left allmulticast mode [ 437.910030][ T6117] bridge_slave_0: left promiscuous mode [ 437.921077][ T6117] bridge0: port 1(bridge_slave_0) entered disabled state [ 438.372716][ T6117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 438.396421][ T6117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 439.205704][ T6117] bond0 (unregistering): Released all slaves [ 439.458010][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.464438][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 439.526635][ T5161] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 439.537929][ T5161] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 439.547782][ T5161] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 439.571640][ T5161] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 439.774917][ T8525] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 439.784642][ T5161] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 440.552544][ T8525] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 440.603874][ T8525] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 440.908417][ T8697] hsr_slave_0: entered promiscuous mode [ 441.275629][ T7217] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 441.553035][ T8697] hsr_slave_1: entered promiscuous mode [ 441.559389][ T8697] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 441.712467][ T8697] Cannot create hsr debugfs directory [ 441.821606][ T6117] hsr_slave_0: left promiscuous mode [ 441.841695][ T6117] hsr_slave_1: left promiscuous mode [ 441.847889][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 441.859609][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 441.974765][ T5859] Bluetooth: hci2: command tx timeout [ 442.699610][ T5859] Bluetooth: hci1: unexpected event for opcode 0x2023 [ 442.861258][ T6117] team0 (unregistering): Port device team_slave_1 removed [ 442.911981][ T8946] loop5: detected capacity change from 0 to 256 [ 442.918630][ T6117] team0 (unregistering): Port device team_slave_0 removed [ 443.084489][ T5161] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 443.093860][ T5161] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 443.102610][ T5161] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 443.110833][ T5161] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 443.120902][ T5161] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 444.022449][ T5161] Bluetooth: hci2: command tx timeout [ 444.104023][ T8525] kthread_run failed with err -4 [ 445.202456][ T5161] Bluetooth: hci5: command tx timeout [ 446.703143][ T5161] Bluetooth: hci2: command tx timeout [ 447.481720][ T5161] Bluetooth: hci5: command tx timeout [ 449.110750][ T5161] Bluetooth: hci2: command tx timeout [ 449.572080][ T5161] Bluetooth: hci5: command tx timeout [ 451.632442][ T5161] Bluetooth: hci5: command tx timeout [ 452.055907][ T8995] netlink: 12 bytes leftover after parsing attributes in process `syz.5.812'. [ 452.064842][ T8995] netlink: 12 bytes leftover after parsing attributes in process `syz.5.812'. [ 453.995546][ T9005] netlink: 71 bytes leftover after parsing attributes in process `syz.5.814'. [ 455.986700][ T9021] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 455.995800][ T9021] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 456.005903][ T9021] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 456.015371][ T9021] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 456.151479][ T9021] bond0: (slave vxlan0): Enslaving as an active interface with an up link [ 456.981747][ T8917] chnl_net:caif_netlink_parms(): no params data found [ 457.021485][ T8947] chnl_net:caif_netlink_parms(): no params data found [ 458.780151][ T9050] netlink: 12 bytes leftover after parsing attributes in process `syz.3.828'. [ 458.792253][ T9052] xt_hashlimit: size too large, truncated to 1048576 [ 458.799104][ T9052] xt_hashlimit: max too large, truncated to 1048576 [ 460.719221][ T8917] bridge0: port 1(bridge_slave_0) entered blocking state [ 460.728268][ T8917] bridge0: port 1(bridge_slave_0) entered disabled state [ 460.735674][ T8917] bridge_slave_0: entered allmulticast mode [ 460.746346][ T8917] bridge_slave_0: entered promiscuous mode [ 460.754241][ T8947] bridge0: port 1(bridge_slave_0) entered blocking state [ 460.761381][ T8947] bridge0: port 1(bridge_slave_0) entered disabled state [ 460.764566][ T9072] autofs: Bad value for 'fd' [ 460.776110][ T8947] bridge_slave_0: entered allmulticast mode [ 460.784277][ T8947] bridge_slave_0: entered promiscuous mode [ 460.793695][ T8947] bridge0: port 2(bridge_slave_1) entered blocking state [ 460.800802][ T8947] bridge0: port 2(bridge_slave_1) entered disabled state [ 460.808180][ T8947] bridge_slave_1: entered allmulticast mode [ 460.817395][ T8947] bridge_slave_1: entered promiscuous mode [ 460.955206][ T8697] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 461.001502][ T8697] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 461.013160][ T9076] netlink: 44 bytes leftover after parsing attributes in process `syz.3.836'. [ 461.039688][ T8917] bridge0: port 2(bridge_slave_1) entered blocking state [ 461.061964][ T8917] bridge0: port 2(bridge_slave_1) entered disabled state [ 461.082136][ T8917] bridge_slave_1: entered allmulticast mode [ 461.090958][ T8917] bridge_slave_1: entered promiscuous mode [ 461.190540][ T8947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 461.201807][ T8697] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 462.099774][ T8917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 462.132899][ T8947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 462.398589][ T8697] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 462.491453][ T8917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 462.615446][ T9089] loop5: detected capacity change from 0 to 256 [ 463.396447][ T8947] team0: Port device team_slave_0 added [ 463.405962][ T8947] team0: Port device team_slave_1 added [ 464.962175][ T8917] team0: Port device team_slave_0 added [ 465.165380][ T8947] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 465.176857][ T8947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 465.203905][ T8947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 465.244488][ T8917] team0: Port device team_slave_1 added [ 465.357247][ T8947] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 465.422337][ T8947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 465.511043][ T8947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 465.739556][ T8917] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 465.759092][ T8917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 465.960649][ T8917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 466.348716][ T8917] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 466.406324][ T5859] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 466.422150][ T5859] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 466.429641][ T8917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 466.457704][ T5859] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 466.464455][ T8917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 466.478249][ T5859] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 466.487005][ T5859] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 466.703854][ T8947] hsr_slave_0: entered promiscuous mode [ 466.723274][ T8947] hsr_slave_1: entered promiscuous mode [ 466.730138][ T8947] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 466.739281][ T8947] Cannot create hsr debugfs directory [ 466.758535][ T9126] syz.5.848 uses obsolete (PF_INET,SOCK_PACKET) [ 467.121214][ T8917] hsr_slave_0: entered promiscuous mode [ 467.128269][ T8917] hsr_slave_1: entered promiscuous mode [ 467.135092][ T8917] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 467.143219][ T8917] Cannot create hsr debugfs directory [ 468.071991][ T7202] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 468.584312][ T5859] Bluetooth: hci6: command tx timeout [ 470.732531][ T5859] Bluetooth: hci6: command tx timeout [ 472.903937][ T5161] Bluetooth: hci6: command tx timeout [ 473.442725][ T9169] random: crng reseeded on system resumption [ 475.032636][ T5161] Bluetooth: hci6: command tx timeout [ 475.335063][ T6117] bridge_slave_1: left allmulticast mode [ 475.340787][ T6117] bridge_slave_1: left promiscuous mode [ 475.362754][ T6117] bridge0: port 2(bridge_slave_1) entered disabled state [ 475.393451][ T6117] bridge_slave_0: left allmulticast mode [ 475.399136][ T6117] bridge_slave_0: left promiscuous mode [ 475.443001][ T6117] bridge0: port 1(bridge_slave_0) entered disabled state [ 475.484556][ T6117] bridge_slave_1: left allmulticast mode [ 475.490237][ T6117] bridge_slave_1: left promiscuous mode [ 475.547301][ T6117] bridge0: port 2(bridge_slave_1) entered disabled state [ 475.580436][ T6117] bridge_slave_0: left allmulticast mode [ 475.607832][ T6117] bridge_slave_0: left promiscuous mode [ 475.644621][ T6117] bridge0: port 1(bridge_slave_0) entered disabled state [ 475.811054][ T9185] loop5: detected capacity change from 0 to 2048 [ 475.908076][ T9189] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 475.962515][ T30] kauditd_printk_skb: 61 callbacks suppressed [ 475.962539][ T30] audit: type=1800 audit(1751645304.275:475): pid=9185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.863" name="file1" dev="loop5" ino=16 res=0 errno=0 [ 476.001189][ T9185] NILFS error (device loop5): nilfs_lookup: deleted inode referenced: 12 [ 476.022043][ T6117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 476.044922][ T9185] Remounting filesystem read-only [ 476.054044][ T6117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 476.066706][ T6117] bond0 (unregistering): Released all slaves [ 476.905842][ T5850] NILFS (loop5): disposed unprocessed dirty file(s) when detaching log writer [ 478.212900][ T6117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 478.234453][ T6117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 478.248078][ T6117] bond0 (unregistering): Released all slaves [ 478.793944][ T9123] chnl_net:caif_netlink_parms(): no params data found [ 479.862507][ T9182] @: renamed from vlan0 (while UP) [ 480.014749][ T6117] hsr_slave_0: left promiscuous mode [ 480.027200][ T6117] hsr_slave_1: left promiscuous mode [ 480.041226][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 480.054450][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 480.078656][ T6117] hsr_slave_0: left promiscuous mode [ 480.090770][ T6117] hsr_slave_1: left promiscuous mode [ 480.097920][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 480.107376][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 482.225734][ T6117] team0 (unregistering): Port device team_slave_1 removed [ 482.365685][ T6117] team0 (unregistering): Port device team_slave_0 removed [ 484.557105][ T6117] team0 (unregistering): Port device team_slave_1 removed [ 484.687657][ T6117] team0 (unregistering): Port device team_slave_0 removed [ 486.120219][ T9224] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 486.129750][ T9224] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 486.139371][ T9224] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 486.170593][ T30] audit: type=1800 audit(1751645314.455:476): pid=9224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.871" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0 [ 488.255850][ T9263] loop5: detected capacity change from 0 to 40427 [ 488.512021][ T9123] bridge0: port 1(bridge_slave_0) entered blocking state [ 488.520703][ T9123] bridge0: port 1(bridge_slave_0) entered disabled state [ 488.935883][ T9123] bridge_slave_0: entered allmulticast mode [ 488.956348][ T9123] bridge_slave_0: entered promiscuous mode [ 489.276368][ T9263] F2FS-fs (loop5): invalid crc value [ 489.360272][ T9263] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 489.416930][ T9123] bridge0: port 2(bridge_slave_1) entered blocking state [ 489.465669][ T9123] bridge0: port 2(bridge_slave_1) entered disabled state [ 489.498271][ T9123] bridge_slave_1: entered allmulticast mode [ 489.514875][ T9123] bridge_slave_1: entered promiscuous mode [ 491.354918][ T5850] syz-executor: attempt to access beyond end of device [ 491.354918][ T5850] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 491.394054][ T9123] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 491.415483][ T5850] CPU: 0 UID: 0 PID: 5850 Comm: syz-executor Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 491.415516][ T5850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 491.415531][ T5850] Call Trace: [ 491.415542][ T5850] [ 491.415552][ T5850] dump_stack_lvl+0x189/0x250 [ 491.415593][ T5850] ? __pfx_dump_stack_lvl+0x10/0x10 [ 491.415621][ T5850] ? _raw_spin_unlock_irqrestore+0x85/0x110 [ 491.415661][ T5850] ? __pfx_queue_work_on+0x10/0x10 [ 491.415694][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.415723][ T5850] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 491.415762][ T5850] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 491.415801][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.415829][ T5850] ? f2fs_hw_is_readonly+0x39b/0x470 [ 491.415875][ T5850] f2fs_handle_critical_error+0x37c/0x540 [ 491.415924][ T5850] f2fs_write_end_io+0x495/0x810 [ 491.415948][ T5850] ? blkg_put+0x22/0x240 [ 491.416004][ T5850] __submit_merged_bio+0x27a/0x6a0 [ 491.416052][ T5850] __submit_merged_write_cond+0x255/0x530 [ 491.416105][ T5850] f2fs_write_data_pages+0x261d/0x3000 [ 491.416181][ T5850] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 491.416202][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416303][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416364][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416391][ T5850] ? __lock_acquire+0xab9/0xd20 [ 491.416431][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416458][ T5850] ? do_raw_spin_lock+0x121/0x290 [ 491.416503][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416537][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416564][ T5850] ? do_raw_spin_unlock+0x122/0x240 [ 491.416601][ T5850] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 491.416628][ T5850] do_writepages+0x32e/0x550 [ 491.416666][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416701][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416728][ T5850] ? do_raw_spin_unlock+0x122/0x240 [ 491.416773][ T5850] filemap_fdatawrite+0x191/0x230 [ 491.416806][ T5850] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 491.416899][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.416935][ T5850] ? do_raw_spin_unlock+0x122/0x240 [ 491.416979][ T5850] f2fs_sync_dirty_inodes+0x31f/0x830 [ 491.417029][ T5850] f2fs_write_checkpoint+0x94a/0x1de0 [ 491.417096][ T5850] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 491.417195][ T5850] ? kill_f2fs_super+0x298/0x6c0 [ 491.417231][ T5850] kill_f2fs_super+0x2c3/0x6c0 [ 491.417267][ T5850] ? __pfx_kill_f2fs_super+0x10/0x10 [ 491.417292][ T5850] ? radix_tree_delete_item+0x2b6/0x400 [ 491.417341][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.417369][ T5850] ? shrinker_free+0x2ce/0x3e0 [ 491.417414][ T5850] deactivate_locked_super+0xbc/0x130 [ 491.417445][ T5850] cleanup_mnt+0x425/0x4c0 [ 491.417469][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.417498][ T5850] ? lockdep_hardirqs_on+0x9c/0x150 [ 491.417543][ T5850] task_work_run+0x1d4/0x260 [ 491.417587][ T5850] ? __pfx_task_work_run+0x10/0x10 [ 491.417624][ T5850] ? __x64_sys_umount+0x122/0x160 [ 491.417663][ T5850] ? exit_to_user_mode_loop+0x40/0x110 [ 491.417697][ T5850] exit_to_user_mode_loop+0xec/0x110 [ 491.417725][ T5850] do_syscall_64+0x2bd/0x3b0 [ 491.417748][ T5850] ? lockdep_hardirqs_on+0x9c/0x150 [ 491.417787][ T5850] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 491.417810][ T5850] ? srso_alias_return_thunk+0x5/0xfbef5 [ 491.417838][ T5850] ? exc_page_fault+0x9f/0xf0 [ 491.417881][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 491.417904][ T5850] RIP: 0033:0x7f5731f8fc57 [ 491.417926][ T5850] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 491.417945][ T5850] RSP: 002b:00007fffcf326ce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 491.417969][ T5850] RAX: 0000000000000000 RBX: 00007f5732010925 RCX: 00007f5731f8fc57 [ 491.417985][ T5850] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffcf326da0 [ 491.418000][ T5850] RBP: 00007fffcf326da0 R08: 0000000000000000 R09: 0000000000000000 [ 491.418015][ T5850] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffcf327e30 [ 491.418031][ T5850] R13: 00007f5732010925 R14: 0000000000077bfc R15: 00007fffcf327e70 [ 491.418079][ T5850] [ 491.418089][ T5850] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 491.437218][ T8947] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 491.870255][ T9123] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 491.960061][ T9286] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 492.121858][ T8947] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 492.274700][ T5161] Bluetooth: hci1: unexpected event for opcode 0x0c1a [ 492.547051][ T8947] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 492.887573][ T9123] team0: Port device team_slave_0 added [ 493.079144][ T9298] Driver unsupported XDP return value 0 on prog (id 242) dev N/A, expect packet loss! [ 493.118323][ T8947] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 493.177880][ T9123] team0: Port device team_slave_1 added [ 496.157327][ T9123] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 496.192270][ T9123] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 496.253018][ T9123] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 496.407860][ T9123] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 496.423478][ T9123] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 497.214210][ T9123] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 500.893866][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 500.900360][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.229176][ T9123] hsr_slave_0: entered promiscuous mode [ 501.309807][ T9123] hsr_slave_1: entered promiscuous mode [ 501.489471][ T9123] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 501.498932][ T9123] Cannot create hsr debugfs directory [ 502.153749][ T13] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 503.331444][ T5859] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 503.340058][ T5859] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 504.570160][ T5859] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 504.579815][ T5859] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 504.597456][ T5859] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 507.095832][ T5161] Bluetooth: hci0: command tx timeout [ 508.033788][ T5859] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 508.043343][ T5859] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 508.057680][ T5859] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 508.113302][ T5859] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 508.122012][ T5859] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 509.122542][ T5161] Bluetooth: hci0: command tx timeout [ 510.183684][ T5859] Bluetooth: hci7: command tx timeout [ 510.667445][ T6117] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 510.715504][ T9406] overlayfs: failed to clone upperpath [ 511.785188][ T5859] Bluetooth: hci0: command tx timeout [ 511.895755][ T6117] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 512.930285][ T5859] Bluetooth: hci7: command tx timeout [ 514.343195][ T5161] Bluetooth: hci0: command tx timeout [ 514.860829][ T6117] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 515.812577][ T5161] Bluetooth: hci7: command tx timeout [ 516.589012][ T6117] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 517.096221][ T9454] virtio-fs: tag not found [ 518.030687][ T5161] Bluetooth: hci7: command tx timeout [ 519.561532][ T9461] @: renamed from vlan0 (while UP) [ 522.277835][ T9392] chnl_net:caif_netlink_parms(): no params data found [ 527.051208][ T9362] chnl_net:caif_netlink_parms(): no params data found [ 527.832763][ T6117] bridge_slave_1: left allmulticast mode [ 527.838443][ T6117] bridge_slave_1: left promiscuous mode [ 527.862670][ T6117] bridge0: port 2(bridge_slave_1) entered disabled state [ 527.947908][ T6117] bridge_slave_0: left allmulticast mode [ 527.967621][ T6117] bridge_slave_0: left promiscuous mode [ 527.991126][ T6117] bridge0: port 1(bridge_slave_0) entered disabled state [ 528.165881][ T6117] bridge_slave_1: left allmulticast mode [ 528.171578][ T6117] bridge_slave_1: left promiscuous mode [ 528.232520][ T6117] bridge0: port 2(bridge_slave_1) entered disabled state [ 528.335394][ T6117] bridge_slave_0: left allmulticast mode [ 528.341084][ T6117] bridge_slave_0: left promiscuous mode [ 528.542846][ T6117] bridge0: port 1(bridge_slave_0) entered disabled state [ 529.729062][ T5859] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 529.739958][ T5859] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 529.748695][ T5859] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 529.757312][ T5859] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 529.765816][ T5859] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 531.100894][ T6117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 531.124535][ T6117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 531.151578][ T6117] bond0 (unregistering): Released all slaves [ 531.873887][ T5859] Bluetooth: hci2: command tx timeout [ 532.282750][ T6117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 532.458791][ T6117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 532.564765][ T6117] bond0 (unregistering): Released all slaves [ 533.441979][ T9556] netlink: 'syz.5.948': attribute type 1 has an invalid length. [ 534.011816][ T5859] Bluetooth: hci2: command tx timeout [ 534.878199][ T9556] 8021q: adding VLAN 0 to HW filter on device bond2 [ 535.657512][ T9392] bridge0: port 1(bridge_slave_0) entered blocking state [ 535.682615][ T9392] bridge0: port 1(bridge_slave_0) entered disabled state [ 535.689869][ T9392] bridge_slave_0: entered allmulticast mode [ 535.703982][ T9392] bridge_slave_0: entered promiscuous mode [ 535.718780][ T9392] bridge0: port 2(bridge_slave_1) entered blocking state [ 535.728405][ T9392] bridge0: port 2(bridge_slave_1) entered disabled state [ 535.736478][ T9392] bridge_slave_1: entered allmulticast mode [ 535.744643][ T9392] bridge_slave_1: entered promiscuous mode [ 536.083384][ T5859] Bluetooth: hci2: command tx timeout [ 536.263260][ T9392] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 536.280380][ T9392] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 536.420119][ T9362] bridge0: port 1(bridge_slave_0) entered blocking state [ 536.427649][ T9362] bridge0: port 1(bridge_slave_0) entered disabled state [ 536.435925][ T9362] bridge_slave_0: entered allmulticast mode [ 536.445398][ T9362] bridge_slave_0: entered promiscuous mode [ 536.487084][ T9392] team0: Port device team_slave_0 added [ 536.494065][ T9362] bridge0: port 2(bridge_slave_1) entered blocking state [ 536.501980][ T9362] bridge0: port 2(bridge_slave_1) entered disabled state [ 536.509683][ T9362] bridge_slave_1: entered allmulticast mode [ 536.517867][ T9362] bridge_slave_1: entered promiscuous mode [ 536.538173][ T9392] team0: Port device team_slave_1 added [ 537.202859][ T9596] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048) [ 538.130649][ T61] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 538.171499][ T5859] Bluetooth: hci2: command tx timeout [ 538.181035][ T9362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 538.784405][ T6117] hsr_slave_0: left promiscuous mode [ 538.812013][ T6117] hsr_slave_1: left promiscuous mode [ 541.057684][ T6117] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 541.065501][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 541.130237][ T6117] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 541.142591][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 541.491424][ T6117] hsr_slave_0: left promiscuous mode [ 542.231564][ T6117] hsr_slave_1: left promiscuous mode [ 542.237760][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 542.344860][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 542.579491][ T6117] veth1_macvtap: left promiscuous mode [ 542.631202][ T6117] veth0_macvtap: left promiscuous mode [ 542.675546][ T6117] veth1_vlan: left promiscuous mode [ 542.714778][ T6117] veth0_vlan: left promiscuous mode [ 547.956957][ T6117] team0 (unregistering): Port device team_slave_1 removed [ 548.058359][ T6117] team0 (unregistering): Port device team_slave_0 removed [ 548.709043][ T6117] team0 (unregistering): Port device team_slave_1 removed [ 548.740307][ T6117] team0 (unregistering): Port device team_slave_0 removed [ 548.944306][ T9392] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 548.951446][ T9392] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 548.987609][ T9392] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 549.005824][ T9392] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 549.017340][ T9392] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 549.045180][ T9392] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 549.087845][ T9362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 549.262072][ T9362] team0: Port device team_slave_0 added [ 549.296642][ T9362] team0: Port device team_slave_1 added [ 549.717361][ T9362] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 549.734055][ T9362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 550.518573][ T9362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 550.539136][ T9362] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 550.546323][ T9362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 550.578322][ T9362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 550.697275][ T9392] hsr_slave_0: entered promiscuous mode [ 550.723331][ T9392] hsr_slave_1: entered promiscuous mode [ 550.729715][ T9392] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 550.763063][ T9392] Cannot create hsr debugfs directory [ 552.688004][ T9535] chnl_net:caif_netlink_parms(): no params data found [ 553.007931][ T9693] tipc: Enabling of bearer rejected, failed to enable media [ 553.941432][ T9362] hsr_slave_0: entered promiscuous mode [ 553.951745][ T9362] hsr_slave_1: entered promiscuous mode [ 553.969675][ T9362] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 554.416851][ T12] ------------[ cut here ]------------ [ 554.422714][ T12] WARNING: CPU: 0 PID: 12 at io_uring/io_uring.c:2922 io_ring_exit_work+0x4ed/0x930 [ 554.432121][ T12] Modules linked in: [ 554.436297][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 554.448446][ T9362] Cannot create hsr debugfs directory [ 554.453957][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 554.464137][ T12] Workqueue: iou_exit io_ring_exit_work [ 554.469846][ T12] RIP: 0010:io_ring_exit_work+0x4ed/0x930 [ 554.476002][ T12] Code: c6 05 34 62 60 0e 01 48 c7 c7 20 f6 e1 8b be 24 00 00 00 48 c7 c2 80 f5 e1 8b e8 ee 16 73 00 e9 7b fe ff ff e8 a4 18 95 00 90 <0f> 0b 90 b8 70 17 00 00 48 89 44 24 38 e9 5f ff ff ff 89 d9 80 e1 [ 554.495746][ T12] RSP: 0018:ffffc900001178e0 EFLAGS: 00010293 [ 554.501873][ T12] RAX: ffffffff812b45fc RBX: 00000001000062ec RCX: ffff88801cae5a00 [ 554.510041][ T12] RDX: 0000000000000000 RSI: fffffffffffffff3 RDI: 0000000000000000 [ 554.518476][ T12] RBP: ffffc90000117a70 R08: ffffc90000117867 R09: 1ffff92000022f0c [ 554.526728][ T12] R10: dffffc0000000000 R11: fffff52000022f0d R12: 00000001000062df [ 554.534833][ T12] R13: ffff88805a790310 R14: ffff88805a790480 R15: dffffc0000000000 [ 554.542905][ T12] FS: 0000000000000000(0000) GS:ffff888125c1c000(0000) knlGS:0000000000000000 [ 554.551906][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 554.558594][ T12] CR2: 0000001b3150eff8 CR3: 000000007e33b000 CR4: 0000000000350ef0 [ 554.566714][ T12] Call Trace: [ 554.570027][ T12] [ 554.573096][ T12] ? __pfx_io_ring_exit_work+0x10/0x10 [ 554.578636][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.584415][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 554.589665][ T12] ? process_scheduled_works+0x9ef/0x17b0 [ 554.595515][ T12] ? process_scheduled_works+0x9ef/0x17b0 [ 554.601293][ T12] process_scheduled_works+0xae1/0x17b0 [ 554.607023][ T12] ? __pfx_process_scheduled_works+0x10/0x10 [ 554.613160][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.619325][ T12] worker_thread+0x8a0/0xda0 [ 554.624249][ T12] kthread+0x711/0x8a0 [ 554.628428][ T12] ? __pfx_worker_thread+0x10/0x10 [ 554.633664][ T12] ? __pfx_kthread+0x10/0x10 [ 554.638335][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.644137][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 554.649410][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.655202][ T12] ? lockdep_hardirqs_on+0x9c/0x150 [ 554.660483][ T12] ? __pfx_kthread+0x10/0x10 [ 554.665229][ T12] ret_from_fork+0x3fc/0x770 [ 554.669880][ T12] ? __pfx_ret_from_fork+0x10/0x10 [ 554.675141][ T12] ? __switch_to_asm+0x39/0x70 [ 554.680020][ T12] ? __switch_to_asm+0x33/0x70 [ 554.684916][ T12] ? __pfx_kthread+0x10/0x10 [ 554.689571][ T12] ret_from_fork_asm+0x1a/0x30 [ 554.694497][ T12] [ 554.697563][ T12] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 554.704849][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 554.716837][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 554.726986][ T12] Workqueue: iou_exit io_ring_exit_work [ 554.732580][ T12] Call Trace: [ 554.735858][ T12] [ 554.738784][ T12] dump_stack_lvl+0x99/0x250 [ 554.743381][ T12] ? __asan_memcpy+0x40/0x70 [ 554.748061][ T12] ? __pfx_dump_stack_lvl+0x10/0x10 [ 554.753264][ T12] ? __pfx__printk+0x10/0x10 [ 554.757873][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.763516][ T12] panic+0x2db/0x790 [ 554.767426][ T12] ? __pfx_panic+0x10/0x10 [ 554.771846][ T12] ? show_trace_log_lvl+0x4fb/0x550 [ 554.777068][ T12] ? ret_from_fork_asm+0x1a/0x30 [ 554.782024][ T12] __warn+0x31b/0x4b0 [ 554.786010][ T12] ? io_ring_exit_work+0x4ed/0x930 [ 554.791159][ T12] ? io_ring_exit_work+0x4ed/0x930 [ 554.796280][ T12] report_bug+0x2be/0x4f0 [ 554.800627][ T12] ? io_ring_exit_work+0x4ed/0x930 [ 554.805745][ T12] ? io_ring_exit_work+0x4ed/0x930 [ 554.810874][ T12] ? io_ring_exit_work+0x4ef/0x930 [ 554.815994][ T12] handle_bug+0x84/0x160 [ 554.820246][ T12] exc_invalid_op+0x1a/0x50 [ 554.824756][ T12] asm_exc_invalid_op+0x1a/0x20 [ 554.829602][ T12] RIP: 0010:io_ring_exit_work+0x4ed/0x930 [ 554.835333][ T12] Code: c6 05 34 62 60 0e 01 48 c7 c7 20 f6 e1 8b be 24 00 00 00 48 c7 c2 80 f5 e1 8b e8 ee 16 73 00 e9 7b fe ff ff e8 a4 18 95 00 90 <0f> 0b 90 b8 70 17 00 00 48 89 44 24 38 e9 5f ff ff ff 89 d9 80 e1 [ 554.854937][ T12] RSP: 0018:ffffc900001178e0 EFLAGS: 00010293 [ 554.861007][ T12] RAX: ffffffff812b45fc RBX: 00000001000062ec RCX: ffff88801cae5a00 [ 554.868985][ T12] RDX: 0000000000000000 RSI: fffffffffffffff3 RDI: 0000000000000000 [ 554.876959][ T12] RBP: ffffc90000117a70 R08: ffffc90000117867 R09: 1ffff92000022f0c [ 554.884938][ T12] R10: dffffc0000000000 R11: fffff52000022f0d R12: 00000001000062df [ 554.892908][ T12] R13: ffff88805a790310 R14: ffff88805a790480 R15: dffffc0000000000 [ 554.900898][ T12] ? io_ring_exit_work+0x4ec/0x930 [ 554.906045][ T12] ? __pfx_io_ring_exit_work+0x10/0x10 [ 554.911522][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.917178][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 554.922390][ T12] ? process_scheduled_works+0x9ef/0x17b0 [ 554.928122][ T12] ? process_scheduled_works+0x9ef/0x17b0 [ 554.933850][ T12] process_scheduled_works+0xae1/0x17b0 [ 554.939433][ T12] ? __pfx_process_scheduled_works+0x10/0x10 [ 554.945428][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.951071][ T12] worker_thread+0x8a0/0xda0 [ 554.955695][ T12] kthread+0x711/0x8a0 [ 554.959778][ T12] ? __pfx_worker_thread+0x10/0x10 [ 554.964894][ T12] ? __pfx_kthread+0x10/0x10 [ 554.969489][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.975146][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 554.980355][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.985988][ T12] ? lockdep_hardirqs_on+0x9c/0x150 [ 554.991199][ T12] ? __pfx_kthread+0x10/0x10 [ 554.995801][ T12] ret_from_fork+0x3fc/0x770 [ 555.000396][ T12] ? __pfx_ret_from_fork+0x10/0x10 [ 555.005522][ T12] ? __switch_to_asm+0x39/0x70 [ 555.010297][ T12] ? __switch_to_asm+0x33/0x70 [ 555.015077][ T12] ? __pfx_kthread+0x10/0x10 [ 555.019682][ T12] ret_from_fork_asm+0x1a/0x30 [ 555.024476][ T12] [ 555.027708][ T12] Kernel Offset: disabled [ 555.032029][ T12] Rebooting in 86400 seconds..