last executing test programs:

12.549031666s ago: executing program 0 (id=302):
r0 = io_uring_setup(0xbbc, &(0x7f0000000280)={0x0, 0x0, 0x2, 0x0, 0x15a})
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
io_uring_enter(r0, 0x100000, 0x2, 0xf, &(0x7f0000000000), 0x18)

12.081372453s ago: executing program 1 (id=307):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000040)=[{0x40}, {0x6, 0x1}]}, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x4000840)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0xc0086202, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x25, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x388, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x7, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x80000001, 0xfffffffffffffffe, 0x1, 0x9, 0x0, 0x0, 0x7fffffff, 0x6}, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYBLOB="00085400ed4189ae6884fa07000000629f6c7adefac29e671079d14538df928c5fa16b3675903a39f2de261b458a7040ca82a0bc3ec714c60d40d70d1612d24b06c92e56ebfe3e9be24b84cef7414bc4d37e3ad2d2871d34"], 0x5c)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000240)=@req3={0x81, 0x2, 0xffff, 0x5, 0x195, 0x101, 0xd}, 0x1c)
r6 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, 0x0, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r7, 0x400455c8, 0x4)
accept4(r6, 0x0, 0x0, 0x800)

10.567484336s ago: executing program 0 (id=308):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000040)=[{0x40}, {0x6, 0x1}]}, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x64, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x48, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0x14, 0x3, "a79c32ffb9fbee54"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="20bb7bcad0230550ca1bb4b60de42fec"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="51319326693b4d97e689acc140c84b0676342e3aa54ee8be94adcae4f7d64b93"}]}]}, 0x64}}, 0x4000840)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x4, <r4=>r1})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0xc0086202, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r6 = socket(0x25, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r7 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r7, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x388, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x7, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x80000001, 0xfffffffffffffffe, 0x1, 0x9, 0x0, 0x0, 0x7fffffff, 0x6}, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r6, 0x84, 0x17, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYBLOB="00085400ed4189ae6884fa07000000629f6c7adefac29e671079d14538df928c5fa16b3675903a39f2de261b458a7040ca82a0bc3ec714c60d40d70d1612d24b06c92e56ebfe3e9be24b84cef7414bc4d37e3ad2d2871d34"], 0x5c)
setsockopt$packet_tx_ring(r5, 0x107, 0x5, &(0x7f0000000240)=@req3={0x81, 0x2, 0xffff, 0x5, 0x195, 0x101, 0xd}, 0x1c)
r8 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, 0x0, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r9, 0x400455c8, 0x4)
ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000100)=0x31)
accept4(r8, 0x0, 0x0, 0x800)

9.690406444s ago: executing program 1 (id=310):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$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")
setxattr$system_posix_acl(&(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000300)='system.posix_acl_access\x00', &(0x7f0000002b40)={{}, {0x1, 0x5}, [], {0x4, 0x3}, [], {0x10, 0x3}}, 0x24, 0x0)
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
ioctl$SNDCTL_DSP_SYNC(r1, 0x80105014, 0xf2ffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000005c0)='kfree_skb\x00', r5}, 0x18)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$tipc(r6, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, 0x0}, 0x0)
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x5, 0x200, &(0x7f0000003c40)="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"})
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)-generic\x00'}, 0x58)
r8 = accept$alg(r7, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000480)="b1", 0x1)
sendmmsg$alg(r8, &(0x7f0000001580), 0x49249249249256f, 0x40484)

7.333433351s ago: executing program 3 (id=311):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TCFLSH(r1, 0x400455c8, 0x2)

7.034166691s ago: executing program 0 (id=312):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r1}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r0, &(0x7f0000000780)}, 0x20)

6.697050916s ago: executing program 0 (id=314):
syz_usb_connect(0x1, 0x2d, &(0x7f0000000340)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r1 = epoll_create(0x80)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x40000000})

6.544750461s ago: executing program 3 (id=316):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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")
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000001240)='./file2\x00', 0x8410, &(0x7f0000000480)=ANY=[@ANYBLOB="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", @ANYBLOB="d23c17f6ec95b3b820b1161ffa233394c6007d8285b061be4d1d842e4a63ec77a08347691f71d1e4132f09405a5b81867a01cf3df73c16fd31622d37a921bdbff76ef2fed6da828ab4e0f87928c18c0380050249fb6ab8e225d1"], 0x1, 0x2a0, &(0x7f00000001c0)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
mount$nfs(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x201008, 0x0)

6.339848431s ago: executing program 2 (id=317):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000fcffffff0000000000000000850000004100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000004000002850000008600000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

6.202278485s ago: executing program 2 (id=318):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000040)=[{0x40}, {0x6, 0x1}]}, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x4000840)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0xc0086202, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x25, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x388, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x7, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x80000001, 0xfffffffffffffffe, 0x1, 0x9, 0x0, 0x0, 0x7fffffff, 0x6}, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYBLOB="00085400ed4189ae6884fa07000000629f6c7adefac29e671079d14538df928c5fa16b3675903a39f2de261b458a7040ca82a0bc3ec714c60d40d70d1612d24b06c92e56ebfe3e9be24b84cef7414bc4d37e3ad2d2871d34"], 0x5c)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000240)=@req3={0x81, 0x2, 0xffff, 0x5, 0x195, 0x101, 0xd}, 0x1c)
r6 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, 0x0, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r7, 0x400455c8, 0x4)
accept4(r6, 0x0, 0x0, 0x800)

6.184343597s ago: executing program 3 (id=319):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000021c0)='/proc/asound/timers\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000180)={0x2020}, 0x2024)

5.048996891s ago: executing program 3 (id=320):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x2c, r1, 0x5, 0x70bd2e, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0x4}]]}, 0x2c}, 0x1, 0x0, 0x0, 0x44840}, 0x4800)

4.177072369s ago: executing program 0 (id=321):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000040)=[{0x40}, {0x6, 0x1}]}, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, 0x0, 0x4000840)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0xc0086202, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = socket(0x25, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x388, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x7, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x80000001, 0xfffffffffffffffe, 0x1, 0x9, 0x0, 0x0, 0x7fffffff, 0x6}, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYBLOB="00085400ed4189ae6884fa07000000629f6c7adefac29e671079d14538df928c5fa16b3675903a39f2de261b458a7040ca82a0bc3ec714c60d40d70d1612d24b06c92e56ebfe3e9be24b84cef7414bc4d37e3ad2d2871d34"], 0x5c)
setsockopt$packet_tx_ring(r4, 0x107, 0x5, &(0x7f0000000240)=@req3={0x81, 0x2, 0xffff, 0x5, 0x195, 0x101, 0xd}, 0x1c)
r7 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, 0x0, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r8, 0x400455c8, 0x4)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000100)=0x31)
accept4(r7, 0x0, 0x0, 0x800)

3.776745839s ago: executing program 2 (id=322):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000240))

3.609832816s ago: executing program 3 (id=323):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="210f00000000000000002000000008000300", @ANYRES32=r2], 0x1c}}, 0x0)

3.608630196s ago: executing program 1 (id=324):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc00000000000000000000000000000006000400000000000500070084000000060005"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x1)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)

3.564446321s ago: executing program 2 (id=325):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000140)={0x1, 0x0, [{0x80000000, 0xfffffffb, 0x8, 0xa, 0x1}]})

1.78141007s ago: executing program 3 (id=326):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x1, 0x442a, &(0x7f0000004480)="$eJzs3c9vVNUeAPBzb/seLQ94LY8FLzFxEkk0apqWlVoSSymUFioGhRg3w7QdoDrtkHZqXLCoOxJXJi6MC6KJu65IF27xT3DjEtckunBjQkKsmZk7be/tTDrWTivk80nonXt+z3znnjl3cTlxonJ7bik3t5QrLOTKMzeXTuc+KZeW54sh3icH3T/t6UScxP7gXDl34b3rp0P4Yfanx+vr6+uhqjs0NbTl9e+/3Z3ZemyIM3Wq7TZvba98GEI4sW1cVV0hhA++DyEKIZxN0kaTY28I4Vio512/+/mN3B6N5sGj4pn806l7a8OnJlfvr7V+71EIX5f+//qt+V9e6hr++dU96h4AAAAAAAAAAAAAAAAAgGfc+NUr194dHAoPo9C9Gm1/Xnc8ObZ6PnZ9z7zY1nifJKX/7vsGAAAAAAAAAAAAAAAAAACAf5LN5/9z0fEmz/+PJceRFvXX3+78GOmciXeujJ0fHEr2f4+25b+RJP16tiv0N9n3Pbv/+9lM/eb7v2/vZ7ca42v02xeieCB1HscDAyF8m2z8fjI6HJfKS5XXbpaXF2b3bBjPrHT867v3p6KTbOjfbvxHM+13fv///237NlXPb+zdV+y5lo5/V8ty330WtRX/c5l6+xF/di8d/+5aWu/WAiP1CaAa/y+6d47/WKb9TsX/WAghF1XHmkvNANU1TDW91XqFtHT8/1VLS02dyQfZ6vp/kon/+Uz7BzX/r2R/iGgqHf9/19J6UiU2r//+eOfr/0Km/YOIf3X8K37/25KO/6F6YneqSO2TbHf+H8+036n4X4uTcR6LUt+A1aie3ur/qyMtHf+ebfmb939xW+u/i5n6+3X/1+i3cf/XmP5fier3fzSXjn9vy3LtXv8TmXqdnv9Haus/disd/8O1tPTaua/2t934T2ba71T8a6uSnkb8N+eTPw7V07+x/mtLOv7/qSfGW0us1P7W1n/Rzuv/S5n2D2L9Vx3/StzZXp8X6fgfaVmuGv8f2/j9v5yp1/n4hzBorb9r6fgfbVmudv337Bz/qUy9Tsf/5U42DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAMGE2OfSGKB1LncTwwEMK55PxkOBxNF2bz06XyzMdLIYwl6blwPLpVKk8XSvm5hfJsMV8olcozIZxP8k+EnmipVK7k5wt3Lmy01RvdLhYWK9PFQiWEMJ6kvxCONtqanqvMF+6EEC5u5P03Li/euV1YyM/OLb41ODg4GCY2xtAfFT+tFBcq9d7ruSFMbtTti7YMrpZ9aWMsR6KPysuLC4VSLf3yljql8kyhtKXOVJL3ZeiPKovLCzOFSjFfKt9q9HeQRpLj2MTV969eHtqWfyOqH0f3d1gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/EUPh9/8KoTQXT+LQwi5KHkRJf9SHjwqnsk/nbq3NnxqcvX+2uNmZQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPiTHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzSP0oDQRQH4DdjoaXHsFp2O9sVRbRwRfAEegwPo0fxEt7BIkXaFCGQzELYP7BNUn1f82B+zLwH8wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACWe3zr3l/rJiLF1fYy4vfz7/84fy71+276/sUZZuR0nl66+4e6Kf+eRvltOVq1eZ9u1l8fMVF7P4M9Ge7TwbjP0Ny+zc3X972OlKuIaEt+k3KuqmVvAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOzYgQMBAAAAACD/10aoqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwg4cCwAAAAAI87eOom8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4FcAAAD//0OnJ0Q=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000240)="328457", 0x3, 0x0)
fallocate(r0, 0x0, 0x3, 0x8000c62)

1.205922188s ago: executing program 1 (id=327):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000380)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f00000003c0)="10", 0x1, 0x80, &(0x7f0000000140)={0x11, 0xf7, r1, 0x1, 0x0, 0x6, @local}, 0x14)

1.169240762s ago: executing program 0 (id=328):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0xfffffffc}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000010000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r2, 0x2000012, 0xe, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

1.112929757s ago: executing program 2 (id=329):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x20108c0, &(0x7f0000000380)=ANY=[], 0xfe, 0x6178, &(0x7f000000ca40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x101042, 0x137)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

971.128202ms ago: executing program 1 (id=330):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000006c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xeb0}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@acl}, {@nombcache}, {@noload}, {@noquota}]}, 0x3, 0x440, &(0x7f0000000280)="$eJzs28tvG8UfAPDv2kn66+uXUJVHH0CgIMoradJSeuACAokDSEhwKMeQpFWo26AmSLSKICBUjqgSJy6IIxJ/ASe4IOCExBXuqFKFcmnhZLT2bmI7thunTlzqz0dad2Z33Jmvd8ee2ckG0LdG05ckYk9E/B4Rw9VsfYHR6j83V5am/15Zmk6iXH7zr6RS7sbK0nReNH/f7jwzEFH4NIlDTepduHT53FSpNHsxy48vnn9vfOHS5Wfnzk+dnT07e2Hy1KkTxyeePzn5XFfiTOO6cfDD+cMHXn376uvTp6++8/O3SR5/QxxdMtru4OPlcper6629NelkoIcNoSPFajeNwUr/H45irJ284Xjlk542DthS5XK5fF/rw8tl4C6WRK9bAPRG/kOfzn/zbZuGHneE6y9WJ0Bp3DezrXpkIApZmcGG+W03jUbE6eV/vkq32Jr7EAAAdb5Pxz/PNBv/FaL2vtD/szWUkYi4JyL2RcTJiNgfEfdGVMreHxEPdFh/4yLJ+vFP4dqmAtugdPz3Qra2VT/+y0d/MVLMcnsr8Q8mZ+ZKs8eyz+RoDO5I8xNt6vjh5d8+b3WsdvyXbmn9+Vgwa8e1gR3175mZWpy6nZhrXf844uBAs/iT1ZWAJCIORMTBTdYx99Q3h1sdu3X8bXRhnan8dcQT1fO/HA3x55L265Pj/4vS7LHx/KpY75dfr7zRqv7bir8L0vO/q+n1vxr/SFK7XrvQyf/+5ZPp65U/Pms5p9ns9T+UvFW374OpxcWLExFDyWvVRtfun2woN7lWPo3/6JHm/X9frH0ShyIivYgfjIiHIuLhrO2PRMSjEXGkzafw00uPvbv5+LdWGv9MR+d/LTEUjXuaJ4rnfvyurtKRTuJPz/+JSupotmcj338baVenVzMAAAD8VxUiYk8khbHVdKEwNlb9G/79satQml9YfPrM/PsXZqrPCIzEYCG/0zVccz90IpvW5/nJhvzx7L7xF8WdlfzY9HxpptfBQ5/b3aL/p/4s9rp1wJbzvBb0L/0f+pf+D/1L/4f+1aT/7+xFO4Dt1+z3/6MetAPYfg3937If9BHzf+hfm+n/vjPg7tC2Lw9tXzuAbbWwM279kLyExLpEFO6IZkhsUaLX30wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADd8W8AAAD//58P56I=")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = open$dir(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0x7, 0x9, 0x7764, 0xa04, 0x6, 0xa})

690.81791ms ago: executing program 1 (id=331):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000040)=[{0x40}, {0x6, 0x1}]}, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}}, 0x4000840)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x4, <r5=>r1})
ioctl$DMA_BUF_IOCTL_SYNC(r5, 0xc0086202, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r6 = socket(0x25, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r7 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r7, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x388, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x7, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x7}, 0x0, &(0x7f00000002c0)={0x80000001, 0xfffffffffffffffe, 0x1, 0x9, 0x0, 0x0, 0x7fffffff, 0x6}, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r6, 0x84, 0x17, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYBLOB="00085400ed4189ae6884fa07000000629f6c7adefac29e671079d14538df928c5fa16b3675903a39f2de261b458a7040ca82a0bc3ec714c60d40d70d1612d24b06c92e56ebfe3e9be24b84cef7414bc4d37e3ad2d2871d34"], 0x5c)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000240)=@req3={0x81, 0x2, 0xffff, 0x5, 0x195, 0x101, 0xd}, 0x1c)
r8 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, 0x0, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r9, 0x400455c8, 0x4)
accept4(r8, 0x0, 0x0, 0x800)

0s ago: executing program 2 (id=332):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
splice(r0, 0x0, r1, 0x0, 0x7ffff000, 0xe)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.173' (ED25519) to the list of known hosts.
[   79.644309][ T5756] cgroup: Unknown subsys name 'net'
[   79.818423][ T5756] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   81.575317][ T5756] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   83.313119][ T5774] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   83.323703][ T5773] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   83.338782][ T5774] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   83.358301][ T5774] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   83.359035][ T5773] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   83.384670][ T5782] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   83.393577][ T5784] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   83.396794][ T5782] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   83.407354][ T5784] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   83.409870][ T5773] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   83.417329][ T5774] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   83.426798][ T5773] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   83.434973][ T5774] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   83.438176][ T5782] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   83.450680][ T5782] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   83.453252][ T5773] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   83.461334][ T5782] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   83.472214][ T5773] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   83.474062][ T5782] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   83.481916][ T5773] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   83.488862][ T5782] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   83.495514][ T5774] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   83.502906][ T5782] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   83.515017][ T5774] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   84.089451][ T5769] chnl_net:caif_netlink_parms(): no params data found
[   84.135627][ T5766] chnl_net:caif_netlink_parms(): no params data found
[   84.185676][ T5767] chnl_net:caif_netlink_parms(): no params data found
[   84.266047][ T5770] chnl_net:caif_netlink_parms(): no params data found
[   84.374967][ T5769] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.382321][ T5769] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.390372][ T5769] bridge_slave_0: entered allmulticast mode
[   84.397545][ T5769] bridge_slave_0: entered promiscuous mode
[   84.431315][ T5766] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.438668][ T5766] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.446104][ T5766] bridge_slave_0: entered allmulticast mode
[   84.456577][ T5766] bridge_slave_0: entered promiscuous mode
[   84.464697][ T5766] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.472115][ T5766] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.479408][ T5766] bridge_slave_1: entered allmulticast mode
[   84.486422][ T5766] bridge_slave_1: entered promiscuous mode
[   84.494305][ T5769] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.503145][ T5769] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.512055][ T5769] bridge_slave_1: entered allmulticast mode
[   84.520708][ T5769] bridge_slave_1: entered promiscuous mode
[   84.591706][ T5767] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.599292][ T5767] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.606541][ T5767] bridge_slave_0: entered allmulticast mode
[   84.614077][ T5767] bridge_slave_0: entered promiscuous mode
[   84.676205][ T5767] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.683721][ T5767] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.691454][ T5767] bridge_slave_1: entered allmulticast mode
[   84.699485][ T5767] bridge_slave_1: entered promiscuous mode
[   84.712107][ T5766] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.724412][ T5766] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.738987][ T5769] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.751953][ T5769] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.761356][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.768954][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.776214][ T5770] bridge_slave_0: entered allmulticast mode
[   84.783752][ T5770] bridge_slave_0: entered promiscuous mode
[   84.828647][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.835846][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.843748][ T5770] bridge_slave_1: entered allmulticast mode
[   84.853057][ T5770] bridge_slave_1: entered promiscuous mode
[   84.925146][ T5767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.941085][ T5767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.956870][ T5766] team0: Port device team_slave_0 added
[   84.967089][ T5769] team0: Port device team_slave_0 added
[   84.976772][ T5769] team0: Port device team_slave_1 added
[   84.994281][ T5770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.019787][ T5766] team0: Port device team_slave_1 added
[   85.064936][ T5770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.115173][ T5767] team0: Port device team_slave_0 added
[   85.124730][ T5767] team0: Port device team_slave_1 added
[   85.132311][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.139532][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.166345][ T5769] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.180903][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.188019][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.214223][ T5769] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.245684][ T5766] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.253061][ T5766] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.279368][ T5766] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.292210][ T5766] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.299669][ T5766] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.325835][ T5766] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.362537][ T5770] team0: Port device team_slave_0 added
[   85.373987][ T5770] team0: Port device team_slave_1 added
[   85.411277][ T5767] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.418433][ T5767] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.444816][ T5767] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.496495][ T5767] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.503629][ T5767] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.530024][ T5767] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.546581][ T5769] hsr_slave_0: entered promiscuous mode
[   85.553021][ T5083] Bluetooth: hci0: command tx timeout
[   85.560467][ T5778] Bluetooth: hci3: command tx timeout
[   85.566412][ T5083] Bluetooth: hci1: command tx timeout
[   85.566747][ T5769] hsr_slave_1: entered promiscuous mode
[   85.581498][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.588941][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.615338][ T5770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.628045][ T5083] Bluetooth: hci2: command tx timeout
[   85.669121][ T5766] hsr_slave_0: entered promiscuous mode
[   85.675831][ T5766] hsr_slave_1: entered promiscuous mode
[   85.682622][ T5766] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.690643][ T5766] Cannot create hsr debugfs directory
[   85.697248][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.705862][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.735333][ T5770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.834503][ T5767] hsr_slave_0: entered promiscuous mode
[   85.842195][ T5767] hsr_slave_1: entered promiscuous mode
[   85.848643][ T5767] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.856351][ T5767] Cannot create hsr debugfs directory
[   85.885717][ T5770] hsr_slave_0: entered promiscuous mode
[   85.892313][ T5770] hsr_slave_1: entered promiscuous mode
[   85.899129][ T5770] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.907368][ T5770] Cannot create hsr debugfs directory
[   86.351811][ T5769] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   86.376578][ T5769] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   86.387022][ T5769] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   86.397605][ T5769] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   86.476334][ T5767] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   86.517176][ T5767] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   86.529366][ T5767] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   86.559503][ T5767] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   86.571408][ T5766] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   86.600014][ T5766] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   86.612390][ T5766] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   86.631401][ T5766] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   86.737121][ T5770] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   86.766205][ T5770] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   86.795295][ T5770] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   86.806592][ T5770] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   86.869833][ T5769] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.914798][ T5769] 8021q: adding VLAN 0 to HW filter on device team0
[   86.943034][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.950506][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.985022][ T5767] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.997537][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.004728][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.060833][ T5769] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   87.076740][ T5769] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   87.179332][ T5767] 8021q: adding VLAN 0 to HW filter on device team0
[   87.202401][ T5766] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.231208][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.238466][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.282688][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.289937][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.374699][ T5770] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.410789][ T5766] 8021q: adding VLAN 0 to HW filter on device team0
[   87.506447][ T5770] 8021q: adding VLAN 0 to HW filter on device team0
[   87.535933][ T1306] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.543191][ T1306] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.589268][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.596507][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.633683][ T5083] Bluetooth: hci1: command tx timeout
[   87.639402][ T5778] Bluetooth: hci3: command tx timeout
[   87.643219][ T5774] Bluetooth: hci0: command tx timeout
[   87.669826][  T163] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.677068][  T163] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.728136][ T5774] Bluetooth: hci2: command tx timeout
[   87.739592][ T5769] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.763875][  T163] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.771127][  T163] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.041654][ T5769] veth0_vlan: entered promiscuous mode
[   88.095937][ T5769] veth1_vlan: entered promiscuous mode
[   88.226668][ T5767] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.291203][ T5769] veth0_macvtap: entered promiscuous mode
[   88.347821][ T5769] veth1_macvtap: entered promiscuous mode
[   88.432343][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.519631][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.541471][ T5767] veth0_vlan: entered promiscuous mode
[   88.567046][ T5769] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.585114][ T5769] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.595320][ T5769] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.604742][ T5769] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.637699][ T5767] veth1_vlan: entered promiscuous mode
[   88.670789][ T5770] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.745793][ T5766] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.805403][ T1305] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.821306][ T5767] veth0_macvtap: entered promiscuous mode
[   88.829285][ T1305] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.858805][ T5767] veth1_macvtap: entered promiscuous mode
[   88.898568][ T1306] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.906546][ T1306] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.945350][ T5770] veth0_vlan: entered promiscuous mode
[   88.969875][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   88.981452][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.001225][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.015901][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.028323][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.041157][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.064586][ T5767] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.083497][ T5767] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.093664][ T5767] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.103184][ T5767] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.137040][ T5770] veth1_vlan: entered promiscuous mode
[   89.195388][ T5766] veth0_vlan: entered promiscuous mode
[   89.221233][ T5766] veth1_vlan: entered promiscuous mode
[   89.294666][ T5770] veth0_macvtap: entered promiscuous mode
[   89.327441][ T5770] veth1_macvtap: entered promiscuous mode
[   89.374408][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.391945][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.494598][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.516159][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.531940][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.544251][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.559070][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.572036][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.583800][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.597508][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.609262][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.621138][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.652484][ T1306] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.681113][ T1306] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.690138][ T5766] veth0_macvtap: entered promiscuous mode
[   89.708221][ T5774] Bluetooth: hci0: command tx timeout
[   89.720786][ T5770] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.729800][ T5774] Bluetooth: hci1: command tx timeout
[   89.735214][ T5083] Bluetooth: hci3: command tx timeout
[   89.756324][ T5770] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.769486][ T5770] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.789145][ T5083] Bluetooth: hci2: command tx timeout
[   89.801721][ T5770] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.856173][ T5766] veth1_macvtap: entered promiscuous mode
[   89.923578][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.953682][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.978127][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.000670][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.030707][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.042802][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.059318][ T5766] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.124659][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.154619][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.175757][ T5869] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   90.193329][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.205013][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.225496][ T5766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.236696][ T5766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.250123][ T5766] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.303423][ T5874] syz.0.8[5874]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   90.344957][ T5766] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.346145][ T5874] loop0: detected capacity change from 0 to 512
[   90.359413][ T5766] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.372828][ T5766] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.382076][ T5766] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.427578][  T163] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.455141][  T163] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.589833][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.597734][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.686257][ T5874] EXT4-fs (loop0): Test dummy encryption mode enabled
[   90.693569][ T5874] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   90.709789][ T5874] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   90.757108][ T5874] EXT4-fs error (device loop0): ext4_iget_extra_inode:4732: inode #17: comm syz.0.8: corrupted in-inode xattr: invalid ea_ino
[   90.783370][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.821367][ T5874] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.8: couldn't read orphan inode 17 (err -117)
[   90.834777][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.855775][ T5874] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.889576][ T5874] EXT4-fs (loop0): shut down requested (1)
[   90.915427][ T5874] EXT4-fs warning (device loop0): ext4_empty_dir:3156: inode #2: comm syz.0.8: directory missing '..'
[   91.014313][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.036228][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.051848][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.156194][ T5883] loop3: detected capacity change from 0 to 4096
[   91.790018][ T5083] Bluetooth: hci3: command tx timeout
[   91.794853][ T5774] Bluetooth: hci1: command tx timeout
[   91.795658][ T5083] Bluetooth: hci0: command tx timeout
[   91.868091][ T5083] Bluetooth: hci2: command tx timeout
[   92.276375][ T5910] loop3: detected capacity change from 0 to 512
[   92.284472][  T787] cfg80211: failed to load regulatory.db
[   92.332688][ T5910] EXT4-fs: Ignoring removed oldalloc option
[   92.386823][ T5910] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.19: dx entry: limit 1024 != root limit 124
[   92.410840][ T5913] loop0: detected capacity change from 0 to 1024
[   92.417482][ T5910] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.19: Corrupt directory, running e2fsck is recommended
[   92.435717][ T5910] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[   92.450696][ T5910] EXT4-fs error (device loop3): ext4_iget_extra_inode:4732: inode #15: comm syz.3.19: corrupted in-inode xattr: invalid ea_ino
[   92.473812][ T5910] EXT4-fs error (device loop3): ext4_orphan_get:1403: comm syz.3.19: couldn't read orphan inode 15 (err -117)
[   92.494638][ T5910] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.600155][ T5910] EXT4-fs error (device loop3): ext4_xattr_set_entry:1669: inode #2: comm syz.3.19: corrupted xattr entries
[   92.762148][ T5916] loop1: detected capacity change from 0 to 128
[   92.782887][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.786267][   T59] hfsplus: b-tree write err: -5, ino 4
[   92.899244][ T5916] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   92.934855][ T5916] ext4 filesystem being mounted at /4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   93.219731][ T5770] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   94.013615][ T5959] loop1: detected capacity change from 0 to 256
[   94.133334][ T5961] loop2: detected capacity change from 0 to 64
[   94.163536][ T5961] =======================================================
[   94.163536][ T5961] WARNING: The mand mount option has been deprecated and
[   94.163536][ T5961]          and is ignored by this kernel. Remove the mand
[   94.163536][ T5961]          option from the mount to silence this warning.
[   94.163536][ T5961] =======================================================
[   94.258332][ T5963] syz.3.38 uses obsolete (PF_INET,SOCK_PACKET)
[   94.723798][ T5975] syzkaller0: tun_chr_ioctl cmd 1074025680
[   94.865282][ T5979] loop3: detected capacity change from 0 to 4096
[   95.018026][ T5979] ntfs: volume version 3.1.
[   95.548984][  T787] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   95.558797][ T5999] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   95.744143][ T6002] loop1: detected capacity change from 0 to 256
[   95.769852][  T787] usb 1-1: Using ep0 maxpacket: 32
[   95.787659][  T787] usb 1-1: too many configurations: 17, using maximum allowed: 8
[   95.822321][  T787] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   95.853172][  T787] usb 1-1: config 0 has no interface number 0
[   95.884112][  T787] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   95.917912][  T787] usb 1-1: config 0 has no interface number 0
[   95.937056][  T787] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   95.955125][  T787] usb 1-1: config 0 has no interface number 0
[   95.973149][  T787] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   95.989068][  T787] usb 1-1: config 0 has no interface number 0
[   96.006837][  T787] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   96.037811][  T787] usb 1-1: config 0 has no interface number 0
[   96.050777][  T787] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   96.061033][ T6008] loop3: detected capacity change from 0 to 1024
[   96.077012][  T787] usb 1-1: config 0 has no interface number 0
[   96.102249][  T787] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   96.120743][  T787] usb 1-1: config 0 has no interface number 0
[   96.130425][  T787] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   96.144820][  T787] usb 1-1: config 0 has no interface number 0
[   96.162553][  T787] usb 1-1: New USB device found, idVendor=108c, idProduct=0168, bcdDevice=84.b2
[   96.177897][  T787] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.196627][  T787] usb 1-1: Product: syz
[   96.208871][  T787] usb 1-1: Manufacturer: syz
[   96.213708][  T787] usb 1-1: SerialNumber: syz
[   96.233443][  T787] usb 1-1: config 0 descriptor??
[   96.242519][ T6008] syz.3.57: attempt to access beyond end of device
[   96.242519][ T6008] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   96.269894][ T6011] syz.3.57: attempt to access beyond end of device
[   96.269894][ T6011] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   96.293265][  T787] etas_es58x 1-1:0.2: Starting syz syz (Serial Number syz)
[   96.489382][ T6010] loop1: detected capacity change from 0 to 4096
[   96.779345][ T6006] loop2: detected capacity change from 0 to 32768
[   96.923881][  T787] etas_es58x 1-1:0.2: could not parse product info: 'ࠅ'
[   97.004593][ T6006] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[   97.506340][ T5766] ocfs2: Unmounting device (7,2) on (node local)
[   98.239609][  T787] usb 1-1: USB disconnect, device number 2
[   98.250874][ T6045] kvm: kvm [6044]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0xa
[   98.296050][  T787] etas_es58x 1-1:0.2: Disconnecting syz syz
[   98.354826][ T6048] capability: warning: `syz.2.67' uses 32-bit capabilities (legacy support in use)
[   98.406192][ T6048] program syz.2.67 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   98.650752][ T6057] loop2: detected capacity change from 0 to 64
[   99.146072][ T6071] loop1: detected capacity change from 0 to 128
[   99.217393][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   99.233640][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   99.390682][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[   99.399571][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   99.408828][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   99.417216][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   99.426283][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   99.435838][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[   99.444859][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   99.479198][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   99.488121][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   99.608532][ T6074] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[   99.794022][ T6071] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  100.127037][ T6071] ext4 filesystem being mounted at /17/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  101.476457][ T5778] Bluetooth: hci4: command 0x1003 tx timeout
[  101.484813][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  102.698759][ T6080] "syz.1.73" (6080) uses obsolete ecb(arc4) skcipher
[  102.746069][ T6080] trusted_key: syz.1.73 sent an empty control message without MSG_MORE.
[  104.343716][ T5770] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  104.603203][ T6099] program syz.1.77 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  105.305495][ T6118] loop1: detected capacity change from 0 to 1024
[  105.376042][ T6118] syz.1.83: attempt to access beyond end of device
[  105.376042][ T6118] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  105.418903][ T6118] syz.1.83: attempt to access beyond end of device
[  105.418903][ T6118] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  105.918179][ T5771] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  106.134748][ T6133] loop3: detected capacity change from 0 to 512
[  106.156323][ T6133] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  106.168458][ T5771] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  106.177659][ T5771] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.198500][ T5771] usb 2-1: Product: syz
[  106.203694][ T5771] usb 2-1: Manufacturer: syz
[  106.214627][ T5771] usb 2-1: SerialNumber: syz
[  106.220973][ T6133] EXT4-fs (loop3): 1 truncate cleaned up
[  106.241795][ T6133] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.275726][ T5778] Bluetooth: hci4: command 0x1003 tx timeout
[  106.282064][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  106.386243][ T6139] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  108.755435][ T5771] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[  108.838207][ T5771] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[  108.869785][ T5771] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[  108.875188][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.908107][ T5771] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  108.963618][ T5771] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  108.992800][ T5771] lan78xx: probe of 2-1:1.0 failed with error -71
[  109.013681][ T6145] loop3: detected capacity change from 0 to 128
[  109.035701][ T5771] usb 2-1: USB disconnect, device number 2
[  109.055433][ T6145] FAT-fs (loop3): Directory bread(block 162) failed
[  109.086020][ T6145] FAT-fs (loop3): Directory bread(block 163) failed
[  109.102930][ T6145] FAT-fs (loop3): Directory bread(block 164) failed
[  109.134913][ T6145] FAT-fs (loop3): Directory bread(block 165) failed
[  109.154611][ T6145] FAT-fs (loop3): Directory bread(block 166) failed
[  109.178351][ T6145] FAT-fs (loop3): Directory bread(block 167) failed
[  109.195465][ T6145] FAT-fs (loop3): Directory bread(block 168) failed
[  109.212736][ T6145] FAT-fs (loop3): Directory bread(block 169) failed
[  109.254755][ T6145] FAT-fs (loop3): Directory bread(block 162) failed
[  109.264218][ T6145] FAT-fs (loop3): Directory bread(block 163) failed
[  109.274668][ T6149] loop2: detected capacity change from 0 to 1024
[  109.277201][ T6145] syz.3.92: attempt to access beyond end of device
[  109.277201][ T6145] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[  109.313486][ T6145] syz.3.92: attempt to access beyond end of device
[  109.313486][ T6145] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[  109.425777][ T1306] hfsplus: b-tree write err: -5, ino 4
[  109.679057][ T6157] program syz.2.99 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  109.742672][ T4459] wlan1: BSS 50:50:50:50:50:50 switches to unsupported channel (0 MHz), disconnecting
[  109.951446][ T6163] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  110.668024][ T5774] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  111.021889][ T4459] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.156511][ T4459] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.490639][ T6169] loop0: detected capacity change from 0 to 512
[  112.539057][ T6169] FAT-fs (loop0): Directory bread(block 199916) failed
[  112.546932][ T6169] FAT-fs (loop0): Directory bread(block 199917) failed
[  112.593513][ T6169] FAT-fs (loop0): Directory bread(block 199918) failed
[  112.603559][ T6169] FAT-fs (loop0): Directory bread(block 199919) failed
[  112.616070][ T6169] FAT-fs (loop0): Directory bread(block 199920) failed
[  112.623540][ T6169] FAT-fs (loop0): Directory bread(block 199921) failed
[  112.631082][ T6169] FAT-fs (loop0): Directory bread(block 199922) failed
[  112.638315][ T6169] FAT-fs (loop0): Directory bread(block 199923) failed
[  112.764904][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  112.851001][ T6176] netlink: 8 bytes leftover after parsing attributes in process `syz.0.107'.
[  112.914226][ T6173] loop3: detected capacity change from 0 to 4096
[  112.940858][ T6173] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  112.984298][ T6173] ntfs3: loop3: Failed to load $Extend (-22).
[  112.992461][ T6173] ntfs3: loop3: Failed to initialize $Extend.
[  113.045946][ T6173] ntfs3: loop3: ino=1b, "file0" directory corrupted
[  113.139990][ T6182] loop0: detected capacity change from 0 to 64
[  113.332788][ T6187] loop2: detected capacity change from 0 to 128
[  113.498450][ T6187] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  113.576619][ T6193] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  113.613962][  T163] Bluetooth: hci4: Frame reassembly failed (-84)
[  113.740790][ T6187] ext4 filesystem being mounted at /25/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  115.439794][ T6199] "syz.2.112" (6199) uses obsolete ecb(arc4) skcipher
[  115.647975][ T5083] Bluetooth: hci4: command 0x1003 tx timeout
[  115.708424][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  116.231845][ T1316] Bluetooth: hci4: Frame reassembly failed (-84)
[  116.370680][ T6206] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  118.268081][ T5083] Bluetooth: hci4: command 0x1003 tx timeout
[  118.275125][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  118.479655][ T5766] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.641641][ T6220] Illegal XDP return value 2629705654 on prog  (id 11) dev N/A, expect packet loss!
[  118.700259][ T6222] loop1: detected capacity change from 0 to 4096
[  118.710844][ T6222] EXT4-fs: Ignoring removed mblk_io_submit option
[  118.731265][ T6222] EXT4-fs (loop1): Test dummy encryption mode enabled
[  118.745780][ T6222] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.481800][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.847533][ T6237] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  119.899607][ T1306] Bluetooth: hci4: Frame reassembly failed (-84)
[  120.787267][ T6241] loop0: detected capacity change from 0 to 128
[  121.358855][ T6241] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  121.714805][ T6241] ext4 filesystem being mounted at /29/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  121.979777][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  122.666902][ T6249] "syz.0.130" (6249) uses obsolete ecb(arc4) skcipher
[  122.897609][ T6247] loop2: detected capacity change from 0 to 4096
[  123.276068][ T5767] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  123.534958][ T6257] loop1: detected capacity change from 0 to 128
[  123.619603][ T6257] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  123.639454][ T6264] loop0: detected capacity change from 0 to 64
[  123.659032][ T6257] ext4 filesystem being mounted at /33/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  123.690804][    C0] vkms_vblank_simulate: vblank timer overrun
[  125.205066][ T6268] sched: RT throttling activated
[  125.228434][ T6269] "syz.1.143" (6269) uses obsolete ecb(arc4) skcipher
[  125.737979][    T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  125.774536][ T5770] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  125.950102][    T9] usb 4-1: Using ep0 maxpacket: 32
[  125.966365][    T9] usb 4-1: too many configurations: 17, using maximum allowed: 8
[  125.979569][    T9] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  125.998051][    T9] usb 4-1: config 0 has no interface number 0
[  126.009561][    T9] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  126.037980][    T9] usb 4-1: config 0 has no interface number 0
[  126.056458][    T9] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  126.081983][ T6286] loop0: detected capacity change from 0 to 4096
[  126.090869][    T9] usb 4-1: config 0 has no interface number 0
[  126.116209][    T9] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  126.137475][    T9] usb 4-1: config 0 has no interface number 0
[  126.157289][    T9] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  126.176928][    T9] usb 4-1: config 0 has no interface number 0
[  126.197258][    T9] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  126.219306][    T9] usb 4-1: config 0 has no interface number 0
[  126.256781][    T9] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  126.276043][    T9] usb 4-1: config 0 has no interface number 0
[  126.293978][    T9] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  126.312459][    T9] usb 4-1: config 0 has no interface number 0
[  126.359577][    T9] usb 4-1: New USB device found, idVendor=108c, idProduct=0168, bcdDevice=84.b2
[  126.378941][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.387061][    T9] usb 4-1: Product: syz
[  126.416595][    T9] usb 4-1: Manufacturer: syz
[  126.423215][    T9] usb 4-1: SerialNumber: syz
[  126.449057][    T9] usb 4-1: config 0 descriptor??
[  126.472485][ T6290] loop1: detected capacity change from 0 to 4096
[  126.479594][    T9] etas_es58x 4-1:0.2: Starting syz syz (Serial Number syz)
[  126.566005][ T6290] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  126.593387][ T6290] ntfs3: loop1: Failed to initialize $Extend/$Reparse.
[  126.729735][ T6297] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  126.746682][ T4459] Bluetooth: hci4: Frame reassembly failed (-84)
[  128.748356][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  128.832013][    T9] etas_es58x 4-1:0.2: could not parse product info: 'ࠅ'
[  129.388323][    T9] usb 4-1: USB disconnect, device number 2
[  129.395776][    T9] etas_es58x 4-1:0.2: Disconnecting syz syz
[  129.599027][ T6309] netlink: 'syz.0.154': attribute type 21 has an invalid length.
[  129.631240][ T6309] netlink: 20 bytes leftover after parsing attributes in process `syz.0.154'.
[  129.758335][   T27] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  129.897963][  T787] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  129.948157][   T27] usb 2-1: Using ep0 maxpacket: 32
[  129.960279][   T27] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  129.977925][   T27] usb 2-1: config 0 has no interface number 0
[  129.992923][   T27] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  130.008093][   T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.017579][   T27] usb 2-1: Product: syz
[  130.022509][   T27] usb 2-1: Manufacturer: syz
[  130.027258][   T27] usb 2-1: SerialNumber: syz
[  130.035163][   T27] usb 2-1: config 0 descriptor??
[  130.045149][   T27] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  130.101669][  T787] usb 3-1: New USB device found, idVendor=1e7d, idProduct=3264, bcdDevice= 0.00
[  130.128116][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.147535][  T787] usb 3-1: config 0 descriptor??
[  130.195709][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.206961][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.221520][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.229259][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.236764][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.246383][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.261536][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.272684][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.283668][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.293092][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.303309][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.312975][   T27] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  130.316316][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.335892][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.343901][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.354761][   T27] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  130.365358][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.365399][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.398467][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.410735][  T787] usbhid 3-1:0.0: can't add hid device: -71
[  130.411569][    T9] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  130.428844][  T787] usbhid: probe of 3-1:0.0 failed with error -71
[  130.444320][  T787] usb 3-1: USB disconnect, device number 2
[  130.519194][    T9] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  130.753860][ T6332] Zero length message leads to an empty skb
[  130.756397][ T6328] fido_id[6328]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  130.829406][    C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[  130.950250][ T6333] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  132.380972][  T787] usb 2-1: USB disconnect, device number 3
[  132.988032][ T5774] Bluetooth: hci4: command 0x1003 tx timeout
[  132.994885][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  133.089143][  T787] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  133.109458][  T787] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  133.128953][  T787] quatech2 2-1:0.51: device disconnected
[  133.254767][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  133.267795][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  133.320891][ T6339] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  133.375890][   T49] Bluetooth: hci4: Frame reassembly failed (-84)
[  135.388100][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  135.642269][ T6347] usb usb8: usbfs: process 6347 (syz.3.170) did not claim interface 0 before use
[  135.756807][ T6352] loop0: detected capacity change from 0 to 2048
[  135.856142][ T6352] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  135.887253][ T6354] warning: `syz.1.172' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  135.930006][ T6352] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  136.345987][ T6364] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  138.507938][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  140.210225][ T6369] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  142.215214][ T6372] netlink: 32 bytes leftover after parsing attributes in process `syz.2.177'.
[  142.348717][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  142.569239][ T6375] netlink: 64 bytes leftover after parsing attributes in process `syz.0.179'.
[  143.098895][ T6392] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  143.150782][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  145.148083][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  145.812087][ T6404] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  145.836732][ T1006] Bluetooth: hci4: Frame reassembly failed (-84)
[  145.918055][ T5777] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  146.313618][ T5777] usb 3-1: config index 0 descriptor too short (expected 23569, got 27)
[  146.964979][ T6410] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  147.311151][ T5777] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.878220][ T5778] Bluetooth: hci4: command 0x1003 tx timeout
[  147.885463][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  148.998051][ T5083] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  149.069547][ T5777] usb 3-1: string descriptor 0 read error: -71
[  149.075863][ T5777] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  149.140397][ T5777] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  149.188864][ T5777] usb 3-1: config 0 descriptor??
[  149.229444][ T5777] usb 3-1: can't set config #0, error -71
[  149.281202][ T5777] usb 3-1: USB disconnect, device number 3
[  149.526616][ T6422] loop2: detected capacity change from 0 to 128
[  149.560662][ T6424] netlink: 8 bytes leftover after parsing attributes in process `syz.3.199'.
[  149.599310][ T6422] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  149.619546][ T6422] ext4 filesystem being mounted at /44/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  149.896109][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  149.981885][ T6432] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  150.842475][ T6436] "syz.2.198" (6436) uses obsolete ecb(arc4) skcipher
[  151.958423][ T5774] Bluetooth: hci4: command 0x1003 tx timeout
[  151.966194][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  152.309306][ T6443] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  152.592176][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  154.349037][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  154.357473][ T5774] Bluetooth: hci4: command 0x1003 tx timeout
[  154.616281][ T5766] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  154.772182][ T6447] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  154.877444][ T1306] Bluetooth: hci4: Frame reassembly failed (-84)
[  155.394667][ T6452] loop3: detected capacity change from 0 to 64
[  156.489305][ T6454] loop2: detected capacity change from 0 to 8
[  156.625434][ T6454] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  156.828257][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  156.940276][ T6311] udevd[6311]: incorrect cramfs checksum on /dev/loop2
[  157.059188][ T5779] udevd[5779]: incorrect cramfs checksum on /dev/loop2
[  157.521324][ T6474] loop2: detected capacity change from 0 to 128
[  157.557338][ T6474] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  157.573987][ T6474] ext4 filesystem being mounted at /47/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  158.023150][ T6481] "syz.2.216" (6481) uses obsolete ecb(arc4) skcipher
[  158.713097][ T6482] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  158.786243][ T1306] Bluetooth: hci4: Frame reassembly failed (-84)
[  158.885365][ T5766] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  160.748174][ T5778] Bluetooth: hci4: command 0x1003 tx timeout
[  160.756512][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  161.099268][ T6509] loop1: detected capacity change from 0 to 128
[  161.149530][ T6511] loop3: detected capacity change from 0 to 512
[  161.179517][ T6509] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  161.214501][ T6509] ext4 filesystem being mounted at /52/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  161.319582][ T6511] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0007-000000000000 r/w without journal. Quota mode: writeback.
[  161.499621][ T6511] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.677540][ T6511] capability: warning: `syz.3.230' uses deprecated v2 capabilities in a way that may be insecure
[  161.760473][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0007-000000000000.
[  161.786887][ T6519] "syz.1.229" (6519) uses obsolete ecb(arc4) skcipher
[  162.356316][ T5770] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  162.746724][ T6535] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  162.778276][   T49] Bluetooth: hci5: Frame reassembly failed (-84)
[  162.828043][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  162.931552][    T8] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  164.969704][ T5778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  165.088435][    T8] usb 4-1: Using ep0 maxpacket: 8
[  165.100092][    T8] usb 4-1: config index 0 descriptor too short (expected 30, got 18)
[  165.127423][    T8] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  165.175887][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.208663][    T8] usb 4-1: Product: syz
[  165.212906][    T8] usb 4-1: Manufacturer: syz
[  165.217558][    T8] usb 4-1: SerialNumber: syz
[  165.265522][    T8] usb 4-1: config 0 descriptor??
[  165.297472][    T8] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  165.318268][    T8] usb 4-1: setting power ON
[  165.323466][    T8] dvb-usb: bulk message failed: -22 (2/0)
[  165.372917][    T8] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  165.409252][    T8] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  165.443993][    T8] usb 4-1: media controller created
[  165.523773][ T6534] dvb-usb: bulk message failed: -22 (3/0)
[  165.537675][ T6550] program syz.2.242 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  165.555281][ T6534] dvb-usb: bulk message failed: -22 (4/0)
[  165.569168][ T6534] cxusb: i2c read failed
[  165.573748][    T8] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  165.630261][ T6552] dvb-usb: bulk message failed: -22 (3/0)
[  165.658150][ T6552] dvb-usb: bulk message failed: -22 (4/0)
[  165.663944][ T6552] cxusb: i2c read failed
[  165.727963][    T8] usb 4-1: selecting invalid altsetting 6
[  165.737929][    T8] usb 4-1: digital interface selection failed (-22)
[  165.744601][    T8] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  165.812648][    T8] usb 4-1: setting power OFF
[  165.827050][ T6558] loop2: detected capacity change from 0 to 128
[  165.843509][    T8] dvb-usb: bulk message failed: -22 (2/0)
[  165.856931][    T8] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  165.876056][    T8] (NULL device *): no alternate interface
[  165.945667][ T6558] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  166.031828][ T6558] ext4 filesystem being mounted at /58/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  166.063599][    C1] vkms_vblank_simulate: vblank timer overrun
[  166.074658][    T8] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  166.295711][    T8] usb 4-1: USB disconnect, device number 3
[  166.662540][ T6567] "syz.2.244" (6567) uses obsolete ecb(arc4) skcipher
[  167.225002][ T5766] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  167.236706][ T6540] loop0: detected capacity change from 0 to 32768
[  167.348665][ T6540] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.238 (6540)
[  167.589650][ T6579] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  167.651568][ T4459] Bluetooth: hci5: Frame reassembly failed (-84)
[  167.673882][ T6540] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  167.862724][ T6540] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  167.977265][ T6540] BTRFS info (device loop0): force clearing of disk cache
[  168.073397][ T6540] BTRFS info (device loop0): force zlib compression, level 3
[  168.098788][ T6584] netlink: 'syz.2.247': attribute type 15 has an invalid length.
[  168.184141][ T6540] BTRFS info (device loop0): enabling auto defrag
[  168.308357][ T6540] BTRFS info (device loop0): metadata ratio 257
[  168.400319][ T6540] BTRFS info (device loop0): enabling disk space caching
[  168.502135][ T6540] BTRFS info (device loop0): disk space caching is enabled
[  168.711926][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  168.791456][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  168.944180][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  169.126791][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  169.280058][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  169.307946][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  169.318831][ T5774] Bluetooth: hci4: command 0x1003 tx timeout
[  169.586714][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  169.628546][ T5083] Bluetooth: hci5: command 0x1003 tx timeout
[  169.628580][ T5778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  169.661747][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  169.707782][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  169.743214][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  169.914779][ T6540] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  169.947137][ T6540] BTRFS error (device loop0): open_ctree failed: -12
[  170.306102][    T8] kernel write not supported for file /160/loginuid (pid: 8 comm: kworker/0:0)
[  170.605288][ T6619] loop3: detected capacity change from 0 to 128
[  170.667450][ T6619] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  170.730694][ T6619] ext4 filesystem being mounted at /67/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  172.218808][ T6631] "syz.3.256" (6631) uses obsolete ecb(arc4) skcipher
[  172.615588][ T6623] loop2: detected capacity change from 0 to 8192
[  172.645744][ T4459] Bluetooth: hci4: Frame reassembly failed (-84)
[  172.690094][ T5769] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  172.921839][ T6634] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  172.981882][ T4459] Bluetooth: hci5: Frame reassembly failed (-84)
[  173.773957][ T6644] loop2: detected capacity change from 0 to 32768
[  173.818032][ T6644] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  173.895549][ T6644] XFS (loop2): Ending clean mount
[  174.054091][ T5766] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  174.278673][ T6676] loop2: detected capacity change from 0 to 256
[  174.360836][ T6678] loop3: detected capacity change from 0 to 16
[  174.374577][ T6676] FAT-fs (loop2): Directory bread(block 64) failed
[  174.385822][ T6678] erofs: (device loop3): mounted with root inode @ nid 36.
[  174.389876][ T6676] FAT-fs (loop2): Directory bread(block 65) failed
[  174.421408][ T6676] FAT-fs (loop2): Directory bread(block 66) failed
[  174.440640][ T6676] FAT-fs (loop2): Directory bread(block 67) failed
[  174.447548][ T6676] FAT-fs (loop2): Directory bread(block 68) failed
[  174.476042][ T6676] FAT-fs (loop2): Directory bread(block 69) failed
[  174.486185][ T6676] FAT-fs (loop2): Directory bread(block 70) failed
[  174.503765][ T6676] FAT-fs (loop2): Directory bread(block 71) failed
[  174.521984][ T6676] FAT-fs (loop2): Directory bread(block 72) failed
[  174.536713][ T6676] FAT-fs (loop2): Directory bread(block 73) failed
[  174.669332][ T5778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  174.868095][ T6684] loop3: detected capacity change from 0 to 64
[  174.988408][ T5778] Bluetooth: hci5: command 0x1003 tx timeout
[  174.995756][ T5083] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  175.729341][ T6702] loop2: detected capacity change from 0 to 8192
[  176.176762][ T6711] syz.2.283: attempt to access beyond end of device
[  176.176762][ T6711] nbd2: rw=2048, sector=2, nr_sectors = 1 limit=0
[  176.209122][ T6711] hfsplus: unable to find HFS+ superblock
[  176.370815][ T6706] loop0: detected capacity change from 0 to 32768
[  176.389123][ T6706] XFS: ikeep mount option is deprecated.
[  176.525136][ T6706] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  176.611257][ T6721] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  176.649162][  T163] Bluetooth: hci5: Frame reassembly failed (-84)
[  177.629298][ T5774] Bluetooth: hci4: command 0x1003 tx timeout
[  177.637081][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  178.668283][ T5778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  179.258141][ T6706] XFS (loop0): Ending clean mount
[  179.354448][ T6706] XFS (loop0): Quotacheck needed: Please wait.
[  179.424473][ T6731] loop3: detected capacity change from 0 to 1024
[  179.474510][   T12] XFS (loop0): Metadata corruption detected at xfs_dinode_verify+0x2b9/0x1140, inode 0x2443 dinode
[  179.531497][   T12] XFS (loop0): Unmount and run xfs_repair
[  179.553965][   T12] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[  179.577941][   T12] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00  INA.............
[  179.602023][   T12] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  179.642365][   T12] 00000020: 34 f7 58 68 a5 e2 bf 3d 34 f7 58 68 a5 e2 bf 3d  4.Xh...=4.Xh...=
[  179.663958][   T12] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20  4.Xh...=....... 
[  179.688037][   T12] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  179.706465][   T12] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 54 01 7a fc  ............T.z.
[  179.723622][   T12] 00000060: ff ff ff ff 4c 7b c2 21 00 00 00 00 00 00 00 04  ....L{.!........
[  179.735255][   T12] 00000070: 00 00 00 01 00 00 00 80 00 00 00 00 00 00 00 08  ................
[  179.786351][   T12] hfsplus: b-tree write err: -5, ino 4
[  179.798660][ T6706] XFS (loop0): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  179.828720][ T6706] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  180.047532][ T6746] loop1: detected capacity change from 0 to 128
[  180.156190][ T6746] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  180.180659][ T6746] ext4 filesystem being mounted at /70/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  180.585789][ T4459] Bluetooth: hci4: Frame reassembly failed (-84)
[  180.680676][ T6753] "syz.1.294" (6753) uses obsolete ecb(arc4) skcipher
[  182.433164][ T6758] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2
[  182.666397][ T5083] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  182.680991][ T5774] Bluetooth: hci4: command 0x1003 tx timeout
[  184.508076][ T5774] Bluetooth: hci5: command 0x1003 tx timeout
[  184.526109][ T5778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  185.788980][ T6770] loop2: detected capacity change from 0 to 512
[  185.854861][ T6770] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 9
[  185.914523][ T5770] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  186.155392][   T28] audit: type=1326 audit(1768198794.413:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6775 comm="syz.0.302" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4517b8f749 code=0x0
[  186.777365][   T49] Bluetooth: hci4: Frame reassembly failed (-84)
[  188.828178][ T5778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  189.094306][ T6800] loop3: detected capacity change from 0 to 2048
[  189.213176][ T6801] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  189.283639][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  189.606725][ T6804] loop1: detected capacity change from 0 to 128
[  189.697781][ T6800] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.016407][ T6804] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  190.242659][ T6804] ext4 filesystem being mounted at /74/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  190.554407][ T6807] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  191.229150][ T5778] Bluetooth: hci4: command 0x1003 tx timeout
[  191.235853][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  191.536841][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.672390][ T6810] "syz.1.310" (6810) uses obsolete ecb(arc4) skcipher
[  192.165815][ T6823] loop3: detected capacity change from 0 to 256
[  192.197431][ T6823] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  192.235394][ T6823] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  192.278210][   T27] usb 1-1: new low-speed USB device number 3 using dummy_hcd
[  192.308943][ T6823] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  192.480082][   T27] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  192.516734][   T27] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  192.546865][   T27] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  192.561304][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.580616][   T27] usb 1-1: config 0 descriptor??
[  192.711993][   T42] Bluetooth: hci4: Frame reassembly failed (-84)
[  193.077465][    T8] usb 1-1: USB disconnect, device number 3
[  194.685391][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  194.691931][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  194.748006][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  195.051726][ T5770] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  195.254266][ T6840] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  195.317241][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[  197.308081][ T5778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  197.737147][ T6858] loop1: detected capacity change from 0 to 512
[  197.763995][ T6858] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  197.826095][ T6858] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2852: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  197.850371][ T6858] EXT4-fs (loop1): 1 truncate cleaned up
[  197.869608][ T6858] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.892518][ T6858] EXT4-fs warning (device loop1): verify_group_input:151: Cannot add at group 7 (only 1 groups)
[  198.210676][ T6854] loop2: detected capacity change from 0 to 32768
[  198.331321][ T6850] loop3: detected capacity change from 0 to 32768
[  198.348254][ T6854] ERROR: (device loop2): dbAllocNext: Corrupt dmap page
[  198.348254][ T6854] 
[  198.391912][ T6854] ERROR: (device loop2): remounting filesystem as read-only
[  198.411702][ T6850] JBD2: Ignoring recovery information on journal
[  198.592844][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.604103][  T112] ------------[ cut here ]------------
[  198.610453][  T112] WARNING: CPU: 1 PID: 112 at fs/jfs/jfs_dmap.c:2875 dbAdjTree+0x448/0x4d0
[  198.619578][  T112] Modules linked in:
[  198.623549][  T112] CPU: 1 PID: 112 Comm: jfsCommit Not tainted syzkaller #0
[  198.631259][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  198.641825][  T112] RIP: 0010:dbAdjTree+0x448/0x4d0
[  198.642773][ T6850] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  198.646901][  T112] Code: e8 cd 67 df fe e9 5a ff ff ff e8 13 f8 87 fe eb 05 e8 0c f8 87 fe 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 f8 f7 87 fe <0f> 0b eb e8 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ee fb ff ff 4c
[  198.646951][  T112] RSP: 0018:ffffc90002d47648 EFLAGS: 00010293
[  198.646971][  T112] RAX: ffffffff82fdb308 RBX: ffff888075268010 RCX: ffff8880193b1e00
[  198.646987][  T112] RDX: 0000000000000000 RSI: 0000000000000155 RDI: 0000000000020056
[  198.647000][  T112] RBP: 0000000000020056 R08: ffffea0001d49a07 R09: 1ffffd40003a9340
[  198.647014][  T112] R10: dffffc0000000000 R11: fffff940003a9341 R12: ffff888075268018
[  198.647030][  T112] R13: dffffc0000000000 R14: 0000000000000004 R15: 0000000000000155
[  198.647044][  T112] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  198.647060][  T112] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  198.647074][  T112] CR2: 00007fbffd86e000 CR3: 0000000060ff1000 CR4: 00000000003506e0
[  198.647093][  T112] Call Trace:
[  198.647108][  T112]  <TASK>
[  198.647118][  T112]  ? lock_page+0x2a0/0x2a0
[  198.762051][  T112]  dbJoin+0x238/0x300
[  198.767074][  T112]  dbFreeBits+0x4e1/0xda0
[  198.771997][  T112]  dbFree+0x332/0x650
[  198.776058][  T112]  txFreeMap+0x9e6/0xde0
[  198.780697][  T112]  ? __mark_inode_dirty+0x3a8/0xca0
[  198.785970][  T112]  xtTruncate+0xcce/0x2dc0
[  198.790972][  T112]  ? xtInitRoot+0x170/0x170
[  198.795580][  T112]  jfs_free_zero_link+0x33b/0x490
[  198.801062][  T112]  ? jfs_write_failed+0x190/0x190
[  198.806147][  T112]  ? _raw_spin_lock_irq+0xaf/0xe0
[  198.811659][  T112]  ? _raw_spin_unlock_irq+0x23/0x50
[  198.816922][  T112]  ? lockdep_hardirqs_on+0x98/0x150
[  198.822605][  T112]  jfs_evict_inode+0x35d/0x440
[  198.827441][  T112]  ? evict+0x480/0x870
[  198.832009][  T112]  ? jfs_write_inode+0x220/0x220
[  198.837011][  T112]  evict+0x486/0x870
[  198.841393][  T112]  ? __lock_acquire+0x7c80/0x7c80
[  198.846490][  T112]  ? proc_nr_inodes+0x230/0x230
[  198.851809][  T112]  ? do_raw_spin_unlock+0x121/0x230
[  198.857090][  T112]  ? _raw_spin_unlock+0x28/0x40
[  198.862430][  T112]  ? iput+0x70a/0x920
[  198.867327][  T112]  jfs_lazycommit+0x42b/0xa60
[  198.872587][  T112]  ? txFreelock+0x5a0/0x5a0
[  198.877153][  T112]  ? do_task_dead+0xd0/0xd0
[  198.882127][  T112]  ? __kthread_parkme+0x7a/0x1c0
[  198.887150][  T112]  kthread+0x2fa/0x390
[  198.891777][  T112]  ? txFreelock+0x5a0/0x5a0
[  198.896725][  T112]  ? kthread_blkcg+0xd0/0xd0
[  198.901772][  T112]  ret_from_fork+0x48/0x80
[  198.906237][  T112]  ? kthread_blkcg+0xd0/0xd0
[  198.911396][  T112]  ret_from_fork_asm+0x11/0x20
[  198.916241][  T112]  </TASK>
[  198.919707][  T112] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  198.927025][  T112] CPU: 1 PID: 112 Comm: jfsCommit Not tainted syzkaller #0
[  198.934524][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  198.944629][  T112] Call Trace:
[  198.947988][  T112]  <TASK>
[  198.950958][  T112]  dump_stack_lvl+0x16c/0x230
[  198.955697][  T112]  ? show_regs_print_info+0x20/0x20
[  198.960943][  T112]  ? load_image+0x3b0/0x3b0
[  198.965514][  T112]  panic+0x2c0/0x710
[  198.969553][  T112]  ? bpf_jit_dump+0xd0/0xd0
[  198.974116][  T112]  ? ret_from_fork_asm+0x11/0x20
[  198.979143][  T112]  __warn+0x2e0/0x470
[  198.983180][  T112]  ? dbAdjTree+0x448/0x4d0
[  198.987650][  T112]  ? dbAdjTree+0x448/0x4d0
[  198.992120][  T112]  report_bug+0x2be/0x4f0
[  198.996492][  T112]  ? dbAdjTree+0x448/0x4d0
[  199.000957][  T112]  ? dbAdjTree+0x448/0x4d0
[  199.005437][  T112]  ? dbAdjTree+0x44a/0x4d0
[  199.009882][  T112]  handle_bug+0xcf/0x120
[  199.014148][  T112]  exc_invalid_op+0x1a/0x50
[  199.018671][  T112]  asm_exc_invalid_op+0x1a/0x20
[  199.023551][  T112] RIP: 0010:dbAdjTree+0x448/0x4d0
[  199.028609][  T112] Code: e8 cd 67 df fe e9 5a ff ff ff e8 13 f8 87 fe eb 05 e8 0c f8 87 fe 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 f8 f7 87 fe <0f> 0b eb e8 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ee fb ff ff 4c
[  199.048241][  T112] RSP: 0018:ffffc90002d47648 EFLAGS: 00010293
[  199.054333][  T112] RAX: ffffffff82fdb308 RBX: ffff888075268010 RCX: ffff8880193b1e00
[  199.062331][  T112] RDX: 0000000000000000 RSI: 0000000000000155 RDI: 0000000000020056
[  199.070331][  T112] RBP: 0000000000020056 R08: ffffea0001d49a07 R09: 1ffffd40003a9340
[  199.078335][  T112] R10: dffffc0000000000 R11: fffff940003a9341 R12: ffff888075268018
[  199.086331][  T112] R13: dffffc0000000000 R14: 0000000000000004 R15: 0000000000000155
[  199.094332][  T112]  ? dbAdjTree+0x448/0x4d0
[  199.098791][  T112]  ? dbAdjTree+0x448/0x4d0
[  199.103246][  T112]  ? lock_page+0x2a0/0x2a0
[  199.107692][  T112]  dbJoin+0x238/0x300
[  199.111714][  T112]  dbFreeBits+0x4e1/0xda0
[  199.116094][  T112]  dbFree+0x332/0x650
[  199.120119][  T112]  txFreeMap+0x9e6/0xde0
[  199.124967][  T112]  ? __mark_inode_dirty+0x3a8/0xca0
[  199.130200][  T112]  xtTruncate+0xcce/0x2dc0
[  199.134677][  T112]  ? xtInitRoot+0x170/0x170
[  199.139235][  T112]  jfs_free_zero_link+0x33b/0x490
[  199.144420][  T112]  ? jfs_write_failed+0x190/0x190
[  199.149634][  T112]  ? _raw_spin_lock_irq+0xaf/0xe0
[  199.154701][  T112]  ? _raw_spin_unlock_irq+0x23/0x50
[  199.160370][  T112]  ? lockdep_hardirqs_on+0x98/0x150
[  199.165602][  T112]  jfs_evict_inode+0x35d/0x440
[  199.170395][  T112]  ? evict+0x480/0x870
[  199.174514][  T112]  ? jfs_write_inode+0x220/0x220
[  199.179495][  T112]  evict+0x486/0x870
[  199.183417][  T112]  ? __lock_acquire+0x7c80/0x7c80
[  199.188472][  T112]  ? proc_nr_inodes+0x230/0x230
[  199.193362][  T112]  ? do_raw_spin_unlock+0x121/0x230
[  199.198588][  T112]  ? _raw_spin_unlock+0x28/0x40
[  199.203464][  T112]  ? iput+0x70a/0x920
[  199.207471][  T112]  jfs_lazycommit+0x42b/0xa60
[  199.212181][  T112]  ? txFreelock+0x5a0/0x5a0
[  199.216705][  T112]  ? do_task_dead+0xd0/0xd0
[  199.221239][  T112]  ? __kthread_parkme+0x7a/0x1c0
[  199.226220][  T112]  kthread+0x2fa/0x390
[  199.230315][  T112]  ? txFreelock+0x5a0/0x5a0
[  199.234945][  T112]  ? kthread_blkcg+0xd0/0xd0
[  199.239562][  T112]  ret_from_fork+0x48/0x80
[  199.244008][  T112]  ? kthread_blkcg+0xd0/0xd0
[  199.248621][  T112]  ret_from_fork_asm+0x11/0x20
[  199.253426][  T112]  </TASK>
[  199.257028][  T112] Kernel Offset: disabled
[  199.261440][  T112] Rebooting in 86400 seconds..