last executing test programs:

8.531839903s ago: executing program 3 (id=1801):
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mkdirat(0xffffffffffffff9c, 0x0, 0x1d0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f00000001c0)='./file0\x00')
r1 = socket$unix(0x1, 0x5, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

8.42098491s ago: executing program 3 (id=1804):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x9, &(0x7f0000006680))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x8)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xd, 0xfffffffb, 0x7ffeffff}}}}]}, 0x44}}, 0x20040084)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)=@newqdisc={0x44, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffdfdfc, {0x0, 0x0, 0x0, r4, {}, {0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x4, 0x30, 0x2}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400dc}, 0x24000080)

8.270555061s ago: executing program 3 (id=1805):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000300)='./file0\x00', 0x1808014, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"/716, @ANYRESHEX, @ANYRESDEC, @ANYRES16], 0x5, 0x5593, &(0x7f00000061c0)="$eJzs3EtvG2UXAOAzTtP71y9CLNh1pAopkWqrTi+CFQVacRGtKi4LVuDYruXW9kSx64auumCJWPBPEEisWPIbWMASdogFiB1SkWcmULdJC63jQPs80vjMHL8+874jK9KZiRzAU2sp/e2XJI7FoYhYiIijSeT7SblF3I44X4x9LiKOR0Tlri0p838m9kfE4Yg4Nile1EzKtz47OT5x9uc3f/362wP7jnz+1Xd7unBgTz0fEf31Yv9mv4hZJw93Fsp8Y9zNY//MuIzrUzX6WZG/2V7LK9xsbI1r5PF0pxifrd8YTuLVXqM5iZ3u1Ty/PihOOBx3tupMPpBea2zkx632Wh67wyyPnVvFeTdvFX/bbg1HRZ1WWe+jvHyMRluxyLc328V61q/nsTkYlfmibtZqb07iuIzl6aKZ9Vr5PNYe9Sr/+73VHdzYTMftjWE3G6Rna/UXavVz1fpG1mqP2meqjX7r3Jl0udObDKuO2o3++U6WdXrtWjPrr6TLnWazWq+nyxfaa93GIK3Xa6drp6pnV8q9k+lrl99Le610eRJf6Q5ujLq9YXo120iLT6ykq7XTL66kJ+rpO5eupFfevnjx0pV3P7jw/uWXL73xajnovmmly6unVler9VPV1frKU7T+j8tJ/4P1J9unf/j+8S4bFHb4ggGws/v6/7i3/w/9PzBzD+j/49pD+v/+9fJ4d/r/2Lb/r0z3/zHL/n/SUun/H97/Vvag/10M/f8urh8ey6P1//tnPg8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAObux8UvXs93lorjI2X+f2XqmfI4iYhKRNzZxkLsn6q5UNZZ3GH84j1z+CaJvMLkHAfK7XBEnC+33/+/21cBAAAAnlxf3j7+adGtFy9Lez0h5qm4aVM5+uGM6iURsbj004yqVSYvz86oWP793hebM6qW38A6OKNixS23fbOq9rcsTIWDd4WkCJW5TgcAAJiL6U5gvl0IAAAA8/TJA999aW7zYM6S2HqUufUsOP/P+78eCB6aeg8AAAD4D0r2egIAAADArsv7f7//BwAAAE+24vf/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YOd+ctMGojgAPxsM/auiqvtepTs4Ro/QZZeFA/QSHIGeoFIvwBmolEWOkIQIe4LkBKRIjHGCvk+ynRlHP88AmzeWBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAu/a9Wsz+/vv4+Mebv7fY0maYDAAAAHLCpVrP6j0nTfp/6P6auz6ldREQZEYdq90GMWpmDlFMd+f/q0Rj+RdQJu/5xOt5FxLd03Hzq+lMAAACAy7VeLKdNtd6c0hLAVb+j4kyaRZvyw/dMeUVEVJPrTGnl7vQlU1j9+x7Gz0xp9QLWm0xhzZLb8PC9Ua6HtA1al4eZzOsvsW6V3TwXAADoU7sSOFKFAAAAcAF+9D0AzuFpaV/sT/v3jOPmkl4Ivm21AAAAgFeo6HsAAAAAQOfq+v8l7f9X2P8PAAAAsmv2/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKBLm2o1Wy+W02P358/MudueJt+MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB79ucdBUIgDMJg7/rOZO5/WGnQ0NikCoSPvzEYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN787i//J6bGmWTutbH0PJKsnRpbp8beuXH0h/H1awAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYn5cUCIEgiII5438nff/DSoKeQYQIaHhUUYsGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAL/rdL/8npsaZZO60sXQ8kqxdNbauGnsPGkcPxtu/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYt2PfNqowAOCffbaTFBAhoEgEoSJ1gIWmbmnpihAoYuBPQIpSpwRcCm0GWkWULGwoC0sXBCNCSKCw5X/o3EhdytYhQ5CYGILufJeeY5dEBc6m+f2kd+/z+Xrve+dTlc/vDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQ2HkrviniJN1Mp5uJqOf77u6uLaX99oE+tbVxby5taVyrOvHx93L5xcnZ0SUCAADA8ZEU9X1E3G9uLqR9fTqr/5vFMWnN/90zvbio5w/W/du7a5P5W3NF/f/rLw9e2B9oOsnGSU+6vNLtnBlMpfEfTXHsPXvoEY3symffvSTZB1J/b/35nWZ2PWtf37nzTisLJ6rIFgB4HKeLPg+Kv4fSvj3KxAA4Nhqlwruo/5Pp0eYEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUIWd9XiqiGsRMdd4GKe2d9eWhvVfbtyb28rbhdu3N8rnTE/RjIjllW7nTIVzGV/F1bz58WK327l2/UbVwcmIGPLWraP98yRP/5HHtCKib8+pF4ec54MjjHXgPANBfntGtddwKp3foQfX+vbUBi7423s9o7gBqgrq+eczLvkMBpOPvo0PCYp7799PrOL/jgAAeOI185ZWovebmwvpvtpMxN73/fX/q6U4+ur+vVu9Pb3XW6X6/8GHF+6WxyrX/+2K5vd/ML965dP56zduvr5yZfFy53LnkzfOtt9sn7t4/vzF+ey7kvnlqPvGBAAAgH+glbdy/V+fGVz/P1GK42/W/8v1/2fftr8oj5Wo/4d6uOg36kwAAACOo9Z+9Nwrf/xeG3JErdWKzxdXV6+1e9v912d720rTfUwTeSvX/8nMqLMCAAAAqrCzXutb/79UiuOI6/9P//DST+VzJhExFXE1Ijqnl652L1U3nbFWxc+bs4Fao54pAAAAozKVt/L6fzN7/r++/8hDPSJeOxXxZ/4b/jhi/Z+8+9WP5bHKz/+fq3SW46c+27seWT8b0ZgddUYAAAA8ySbzlhb7vzU3Fz76+cT7Lc//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFTtrwAAAP//VDwyJg==")
r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)

6.052253793s ago: executing program 3 (id=1812):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40050)

5.961611359s ago: executing program 0 (id=1813):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x9, &(0x7f0000006680))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xd, 0xfffffffb, 0x7ffeffff}}}}]}, 0x44}}, 0x20040084)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)=@newqdisc={0x44, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffdfdfc, {0x0, 0x0, 0x0, r4, {}, {0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x4, 0x30, 0x2}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400dc}, 0x24000080)

5.677157309s ago: executing program 1 (id=1814):
r0 = openat$sysfs(0xffffff9c, &(0x7f00000003c0)='/sys/power/pm_trace_dev_match', 0x20800, 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_emit_ethernet(0x56, &(0x7f0000002280)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff000d040000a017000000eb1e3a2f228982f893281b41a48a95ea00848a47bf1c379c23517a71910e13799afe5a20abca65daefc96f4ba79cc49beadbc5a9a3a9b35ccdf5e24442065c23"], 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
read$FUSE(r2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000007000000060000000c"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000085000000a000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r6=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000040)=r5, 0x4)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r7 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000080)=0x80000003)
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0xffe, 0x3, 0x1000, 0x3a, 0x0, 0x0, 0x7}, 0x75)
r8 = dup2(r7, r7)
read$FUSE(r0, &(0x7f00000063c0)={0x2020}, 0xc74)
syz_fuse_handle_req(r8, &(0x7f0000000280)="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", 0x2000, 0x0)
syz_usb_connect(0x1, 0x2d, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x28}}, 0x0)

5.606716604s ago: executing program 0 (id=1815):
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f00000001c0)='./file0\x00')
r1 = socket$unix(0x1, 0x5, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

5.288997446s ago: executing program 0 (id=1816):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r3, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x4cbe8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), &(0x7f0000000600)=0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0xb}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x17}}], 0x400000000000179, 0x0, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x39}, 0x0, 0x1, 0x0, 0x4}, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r5, 0x400452c8, &(0x7f0000000100))

4.908394822s ago: executing program 3 (id=1817):
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
socket(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x300000d, 0x13, 0xffffffffffffffff, 0x0)
readlink(&(0x7f0000000180)='./file0\x00', &(0x7f0000000040)=""/253, 0xfd)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00')
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x20)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000240)={@empty, @dev={0xac, 0x14, 0x14, 0xc}}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000010000000000000400ea0018010000756c6c25000000007b1ef8ff00000000bfa100000000000007010000f8ffffffb700000008000000b70000000000000885000000060000001803000000100000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb70300"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_setup(0x8c3, &(0x7f0000000280)={0x0, 0x93d2, 0x2, 0x45, 0x227})
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x7c}}, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000080)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0xb6, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x64}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffc42}, 0x58)

3.911290591s ago: executing program 1 (id=1818):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x81}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB], 0x68}, 0x1, 0x7}, 0x0)

3.763022561s ago: executing program 3 (id=1820):
r0 = socket$rds(0x15, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
bind$alg(0xffffffffffffffff, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha224)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
sendmsg$alg(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000003c0)}], 0x1, 0x0, 0x0, 0x2400c094}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x401, 0x0, 0xffffffff, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e23}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5, 0x9, 0x1}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x2000c0d0)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001b80), r1)
mlockall(0x6)
write(0xffffffffffffffff, &(0x7f0000000000)="9882e70131b512e63686ac1bbdd3a351e8247a1dd5d23b46bd2d3693c93c8482b998977f64868edc9c6c9dab0db4ea64a176f96e0f15fc4365969b0bfc85c0516060c1bdd5e0a8230406c3b2a637577ffe3607fcb7ac7cdb8f642361249819d1c0c24464960b41c80b604ed619922900000000000000", 0x76)
munmap(&(0x7f0000ff2000/0xb000)=nil, 0xb000)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff0000/0xd000)=nil, &(0x7f0000ff3000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$IEEE802154_LIST_IFACE(r1, &(0x7f0000001c80)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f0000001bc0)={0x14, r3, 0x50be6fea6f3bdfbb, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
syz_usb_connect(0x0, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0xfffff000)
syz_open_dev$midi(0x0, 0x3, 0x4a243)
close(0x3)

2.666664166s ago: executing program 2 (id=1822):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
pselect6(0x40, &(0x7f0000000080)={0x1, 0x1000000000002, 0x120000000001, 0x2, 0x4ff, 0xe5, 0x1000001000, 0x400080000069}, 0x0, &(0x7f0000000000)={0x3fe, 0x0, 0x0, 0x9, 0x80000000086, 0x8000800, 0x5}, 0x0, 0x0)

2.512291837s ago: executing program 1 (id=1823):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{0x0}], 0x1)
r1 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
pselect6(0x40, &(0x7f0000000080)={0x1, 0x1000000000002, 0x120000000001, 0x2, 0x4ff, 0xe5, 0x1000001000, 0x400080000069}, 0x0, &(0x7f0000000000)={0x3fe, 0x0, 0x0, 0x9, 0x80000000086, 0x8000800, 0x5}, 0x0, 0x0)

2.436648012s ago: executing program 2 (id=1824):
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f00000001c0)='./file0\x00')
r1 = socket$unix(0x1, 0x5, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

2.260522684s ago: executing program 1 (id=1825):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chdir(&(0x7f00000001c0)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

2.218397947s ago: executing program 2 (id=1826):
r0 = openat$sysfs(0xffffff9c, &(0x7f00000003c0)='/sys/power/pm_trace_dev_match', 0x20800, 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_emit_ethernet(0x56, &(0x7f0000002280)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff000d040000a017000000eb1e3a2f228982f893281b41a48a95ea00848a47bf1c379c23517a71910e13799afe5a20abca65daefc96f4ba79cc49beadbc5a9a3a9b35ccdf5e24442065c23"], 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
read$FUSE(r2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000007000000060000000c"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000085000000a000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r6=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000040)=r5, 0x4)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r7 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000080)=0x80000003)
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0xffe, 0x3, 0x1000, 0x3a, 0x0, 0x0, 0x7}, 0x75)
r8 = dup2(r7, r7)
read$FUSE(r0, &(0x7f00000063c0)={0x2020}, 0xc74)
syz_fuse_handle_req(r8, &(0x7f0000000280)="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", 0x2000, 0x0)
syz_usb_connect(0x1, 0x2d, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x28}}, 0x0)

1.948399306s ago: executing program 1 (id=1827):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setxattr$incfs_metadata(0x0, 0x0, &(0x7f0000000880)="22cf", 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket(0x80000000000000a, 0x2, 0x0)
r3 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
socket(0x80000000000000a, 0x2, 0x0)
close_range(r2, r3, 0x0)
sendmsg(r1, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000400000/0x1000)=nil, 0x20400000}, 0x1})
syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
r5 = eventfd(0xfffffff9)
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000040)={0x1, r5})
read(r5, &(0x7f0000000040)=""/232, 0xe8)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x400)
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x3)

1.668178365s ago: executing program 0 (id=1828):
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
socket(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x300000d, 0x13, 0xffffffffffffffff, 0x0)
readlink(&(0x7f0000000180)='./file0\x00', &(0x7f0000000040)=""/253, 0xfd)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00')
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x20)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000240)={@empty, @dev={0xac, 0x14, 0x14, 0xc}}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000010000000000000400ea0018010000756c6c25000000007b1ef8ff00000000bfa100000000000007010000f8ffffffb700000008000000b70000000000000885000000060000001803000000100000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb70300"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_setup(0x8c3, &(0x7f0000000280)={0x0, 0x93d2, 0x2, 0x45, 0x227})
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x7c}}, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000080)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0xb6, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x64}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffc42}, 0x58)

1.415590832s ago: executing program 2 (id=1829):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x40, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x1, 0x42, 0x0, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000000)={0x110003, 0x0, {[0x8, 0x3, 0xfffffffffffffc8d, 0x839, 0x2000000000000, 0x9, 0xb, 0xfffffffffffffffa]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

452.579499ms ago: executing program 2 (id=1830):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmmsg$inet(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000001500)="b25b365c0254", 0x6}, {&(0x7f0000002800)="cf", 0x1}, {&(0x7f0000000380)="08e0ac8fb1d99df61d7b518d0a62071e", 0x10}, {&(0x7f0000000180)="8a", 0x1}, {&(0x7f0000002b40)='-', 0x1}], 0x5}}, {{0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000000c00)="ce90bfdbcfb8a86ae126799f98c36e23e210f053830ac8e978a0785884001a7099c4b9016f1a65a57390caf78c272cbf9711f94505dd525af1ff7d013438df5b844226f41b81e58eb73366428200a6664592e29b6e2b8031dcb878139ab94fb38bd785edaeab4111749ccc886f8ddf476c3c466820a607422fd43d4ef6a9", 0x7e}, {&(0x7f00000007c0)="f2e659a0b00d26c2ee15bbdf21c625bd1e67dee03c0d5862d425c076b8577bb0b50607802b1c3ab21a39c9eb5b6ca033319be5ed6e5d21f0f39fee6a8c98dc0bc39a76bf896971072aec73", 0x4b}, {&(0x7f0000002e40)="d4", 0x1}], 0x3}}, {{0x0, 0x0, &(0x7f0000000440)}}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000340)='\x00', 0x1}, {&(0x7f0000000880)="87141af223663a746046bdc339de81564cdb", 0x12}, {&(0x7f00000009c0)="c71924", 0x3}], 0x3}}], 0x4, 0x4000000)

317.899178ms ago: executing program 2 (id=1831):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x81}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB], 0x68}, 0x1, 0x7}, 0x0)

288.48631ms ago: executing program 0 (id=1832):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
pselect6(0x40, &(0x7f0000000080)={0x1, 0x1000000000002, 0x120000000001, 0x2, 0x4ff, 0xe5, 0x1000001000, 0x400080000069}, 0x0, &(0x7f0000000000)={0x3fe, 0x0, 0x0, 0x9, 0x80000000086, 0x8000800, 0x5}, 0x0, 0x0)

15.002429ms ago: executing program 1 (id=1833):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{0x0}], 0x1)
r1 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
pselect6(0x40, &(0x7f0000000080)={0x1, 0x1000000000002, 0x120000000001, 0x2, 0x4ff, 0xe5, 0x1000001000, 0x400080000069}, 0x0, &(0x7f0000000000)={0x3fe, 0x0, 0x0, 0x9, 0x80000000086, 0x8000800, 0x5}, 0x0, 0x0)

0s ago: executing program 0 (id=1834):
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f00000001c0)='./file0\x00')
r1 = socket$unix(0x1, 0x5, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

kernel console output (not intermixed with test programs):

t/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  273.844203][   T28] audit: type=1326 audit(1759785087.159:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7540 comm="syz.2.439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  283.001004][   T28] audit: type=1326 audit(1759785096.769:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  283.046753][   T28] audit: type=1326 audit(1759785096.799:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  283.076983][   T28] audit: type=1326 audit(1759785096.799:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  283.136916][   T28] audit: type=1326 audit(1759785096.799:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  283.512554][   T28] audit: type=1326 audit(1759785096.799:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  283.935288][   T28] audit: type=1326 audit(1759785096.799:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  284.060721][   T28] audit: type=1326 audit(1759785096.799:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  284.121556][   T28] audit: type=1326 audit(1759785096.799:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fef7318d710 code=0x7ffc0000
[  284.144598][   T28] audit: type=1326 audit(1759785096.799:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  284.173175][   T28] audit: type=1326 audit(1759785096.799:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  284.221573][ T7640] netlink: 4 bytes leftover after parsing attributes in process `syz.2.453'.
[  286.325454][ T7690] netlink: 4 bytes leftover after parsing attributes in process `syz.0.457'.
[  288.099833][   T28] kauditd_printk_skb: 23 callbacks suppressed
[  288.099848][   T28] audit: type=1326 audit(1759785101.869:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.1.461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  288.108967][ T7714] loop3: detected capacity change from 0 to 512
[  288.138828][   T28] audit: type=1326 audit(1759785101.869:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.1.461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  288.197915][ T7714] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  288.247108][ T7714] EXT4-fs (loop3): orphan cleanup on readonly fs
[  288.396851][ T7714] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #4: comm syz.3.463: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 1(1)
[  288.515119][ T7714] EXT4-fs error (device loop3): ext4_quota_enable:7134: comm syz.3.463: Bad quota inode: 4, type: 1
[  288.545414][ T7714] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  288.582317][ T7714] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  288.620905][ T7714] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  290.411512][ T7729] process 'syz.3.463' launched './file2' with NULL argv: empty string added
[  290.925026][ T7729] EXT4-fs error (device loop3): ext4_lookup:1862: inode #2: comm syz.3.463: deleted inode referenced: 16
[  292.094476][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.104716][ T7740] netlink: 4 bytes leftover after parsing attributes in process `syz.2.467'.
[  293.388986][ T7753] netlink: 4 bytes leftover after parsing attributes in process `syz.3.473'.
[  293.689113][   T28] audit: type=1326 audit(1759785107.459:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  293.749473][   T28] audit: type=1326 audit(1759785107.459:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  293.780466][   T28] audit: type=1326 audit(1759785107.459:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  293.813134][   T28] audit: type=1326 audit(1759785107.459:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  293.974584][   T28] audit: type=1326 audit(1759785107.459:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  294.067574][   T28] audit: type=1326 audit(1759785107.459:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  294.107237][   T28] audit: type=1326 audit(1759785107.459:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  294.187192][   T28] audit: type=1326 audit(1759785107.459:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  294.270198][   T28] audit: type=1326 audit(1759785107.459:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fef7318d710 code=0x7ffc0000
[  294.356515][   T28] audit: type=1326 audit(1759785107.459:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  299.658416][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  299.658430][   T28] audit: type=1326 audit(1759785113.349:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.1.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  300.595651][   T28] audit: type=1326 audit(1759785113.349:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.1.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  300.838287][   T28] audit: type=1326 audit(1759785113.689:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.1.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  300.953942][ T7801] netlink: 32 bytes leftover after parsing attributes in process `syz.3.487'.
[  300.968342][ T7801] erspan0: left promiscuous mode
[  300.994327][ T7801] erspan0: left allmulticast mode
[  301.040992][ T7801] overlayfs: failed to resolve './file1': -2
[  301.204916][ T7805] netlink: 12 bytes leftover after parsing attributes in process `syz.1.488'.
[  305.329155][ T7821] can0: slcan on ptm0.
[  306.843074][    C0] sched: RT throttling activated
[  307.236724][ T7820] can0 (unregistered): slcan off ptm0.
[  307.451095][   T28] audit: type=1326 audit(1759785121.059:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  307.618425][ T7843] loop3: detected capacity change from 0 to 16
[  308.276524][ T7843] erofs: (device loop3): mounted with root inode @ nid 36.
[  308.301322][ T7841] erofs: (device loop3): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[  308.312706][ T7841] syz.3.495: attempt to access beyond end of device
[  308.312706][ T7841] loop3: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16
[  308.537099][   T28] audit: type=1326 audit(1759785121.059:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  308.655956][ T7846] netlink: 12 bytes leftover after parsing attributes in process `syz.1.498'.
[  309.375442][   T28] audit: type=1326 audit(1759785121.069:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  309.398192][    C0] vkms_vblank_simulate: vblank timer overrun
[  309.763528][   T28] audit: type=1326 audit(1759785121.069:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  310.168557][   T28] audit: type=1326 audit(1759785121.069:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  310.226824][ T7860] loop1: detected capacity change from 0 to 256
[  310.257706][ T7865] loop0: detected capacity change from 0 to 512
[  310.279030][   T28] audit: type=1326 audit(1759785121.069:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  310.315345][ T7865] EXT4-fs: Mount option(s) incompatible with ext3
[  310.327200][ T7860] FAT-fs (loop1): bogus sectors per cluster 223
[  310.350214][ T7860] FAT-fs (loop1): Can't find a valid FAT filesystem
[  310.379115][   T28] audit: type=1326 audit(1759785121.069:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  310.433169][   T28] audit: type=1326 audit(1759785121.069:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  310.734974][   T28] audit: type=1326 audit(1759785121.069:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  312.236173][   T28] audit: type=1326 audit(1759785121.069:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.2.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  312.366201][ T5791] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  312.371622][ T7874] netlink: 1624 bytes leftover after parsing attributes in process `syz.2.504'.
[  312.433323][ T7860] netlink: 'syz.1.501': attribute type 12 has an invalid length.
[  312.441325][ T7860] netlink: 'syz.1.501': attribute type 29 has an invalid length.
[  312.496607][ T7860] netlink: 148 bytes leftover after parsing attributes in process `syz.1.501'.
[  312.583331][ T7860] netlink: 'syz.1.501': attribute type 2 has an invalid length.
[  313.056272][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  313.056289][   T28] audit: type=1326 audit(1759785126.829:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  313.153576][   T28] audit: type=1326 audit(1759785126.839:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  313.220054][   T28] audit: type=1326 audit(1759785126.839:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  313.311045][   T28] audit: type=1326 audit(1759785126.859:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  313.398089][   T28] audit: type=1326 audit(1759785126.859:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  313.469444][   T28] audit: type=1326 audit(1759785126.859:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  313.519470][   T28] audit: type=1326 audit(1759785126.859:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  313.638963][ T7895] netlink: 12 bytes leftover after parsing attributes in process `syz.2.509'.
[  313.668430][   T28] audit: type=1326 audit(1759785126.879:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbcfd38d710 code=0x7ffc0000
[  313.778017][   T28] audit: type=1326 audit(1759785126.879:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  313.908279][   T28] audit: type=1326 audit(1759785126.919:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7882 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  314.231025][ T7901] loop1: detected capacity change from 0 to 1024
[  314.820037][ T7356] hfsplus: b-tree write err: -5, ino 4
[  316.116553][ T7924] loop1: detected capacity change from 0 to 16
[  316.346138][ T7924] erofs: (device loop1): mounted with root inode @ nid 36.
[  316.368193][ T7923] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[  316.378707][ T7923] syz.1.513: attempt to access beyond end of device
[  316.378707][ T7923] loop1: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16
[  316.834636][ T7927] fuse: Bad value for 'fd'
[  317.704277][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  317.710865][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  318.227749][ T7943] netlink: 12 bytes leftover after parsing attributes in process `syz.0.519'.
[  319.204327][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  319.204342][   T28] audit: type=1326 audit(1759785132.959:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  319.232884][    C1] vkms_vblank_simulate: vblank timer overrun
[  319.244011][ T5101] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  319.254042][ T5101] CPU: 0 PID: 5101 Comm: kworker/u5:1 Not tainted syzkaller #0
[  319.262066][ T5101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  319.272596][ T5101] Workqueue: hci1 hci_rx_work
[  319.277563][ T5101] Call Trace:
[  319.281301][ T5101]  <TASK>
[  319.284458][ T5101]  dump_stack_lvl+0x16c/0x230
[  319.289288][ T5101]  ? show_regs_print_info+0x20/0x20
[  319.294637][ T5101]  ? load_image+0x3b0/0x3b0
[  319.299288][ T5101]  sysfs_create_dir_ns+0x256/0x280
[  319.304702][ T5101]  ? hci_rx_work+0x43a/0xd80
[  319.309769][ T5101]  ? sysfs_warn_dup+0xa0/0xa0
[  319.314690][ T5101]  ? do_raw_spin_unlock+0x121/0x230
[  319.320065][ T5101]  kobject_add_internal+0x6b8/0xc70
[  319.325420][ T5101]  kobject_add+0x156/0x220
[  319.329887][ T5101]  ? __rwlock_init+0x150/0x150
[  319.334765][ T5101]  ? kobject_init+0x1e0/0x1e0
[  319.339738][ T5101]  ? _raw_spin_unlock+0x28/0x40
[  319.344822][ T5101]  ? get_device_parent+0x366/0x390
[  319.349959][ T5101]  device_add+0x408/0xc20
[  319.354426][ T5101]  hci_conn_add_sysfs+0xd5/0x1e0
[  319.359673][ T5101]  le_conn_complete_evt+0xf36/0x1500
[  319.365063][ T5101]  ? hci_event_packet+0x4a7/0x1210
[  319.370216][ T5101]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  319.376494][ T5101]  ? __copy_skb_header+0xa7/0x550
[  319.381678][ T5101]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  319.387779][ T5101]  ? skb_pull_data+0xfb/0x200
[  319.392572][ T5101]  hci_le_conn_complete_evt+0x187/0x440
[  319.398508][ T5101]  ? hci_remote_host_features_evt+0x160/0x160
[  319.404859][ T5101]  hci_event_packet+0x795/0x1210
[  319.409936][ T5101]  ? bis_list+0x290/0x290
[  319.414321][ T5101]  ? lockdep_hardirqs_on+0x98/0x150
[  319.419657][ T5101]  ? hci_send_to_monitor+0xd7/0x4f0
[  319.425227][ T5101]  hci_rx_work+0x43a/0xd80
[  319.429845][ T5101]  ? process_scheduled_works+0x957/0x15b0
[  319.435773][ T5101]  process_scheduled_works+0xa45/0x15b0
[  319.441375][ T5101]  ? assign_work+0x400/0x400
[  319.446051][ T5101]  ? assign_work+0x39e/0x400
[  319.450659][ T5101]  worker_thread+0xa55/0xfc0
[  319.455462][ T5101]  kthread+0x2fa/0x390
[  319.459735][ T5101]  ? pr_cont_work+0x560/0x560
[  319.464614][ T5101]  ? kthread_blkcg+0xd0/0xd0
[  319.469215][ T5101]  ret_from_fork+0x48/0x80
[  319.473653][ T5101]  ? kthread_blkcg+0xd0/0xd0
[  319.478446][ T5101]  ret_from_fork_asm+0x11/0x20
[  319.483255][ T5101]  </TASK>
[  319.488463][ T5101] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  319.503486][ T5101] Bluetooth: hci1: failed to register connection device
[  319.514085][   T28] audit: type=1326 audit(1759785132.959:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  319.543178][   T28] audit: type=1326 audit(1759785132.959:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  319.579766][   T28] audit: type=1326 audit(1759785132.959:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  319.671760][   T28] audit: type=1326 audit(1759785132.959:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  319.777067][   T28] audit: type=1326 audit(1759785132.969:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  319.868186][   T28] audit: type=1326 audit(1759785132.969:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  319.950818][   T28] audit: type=1326 audit(1759785132.969:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  319.976348][   T28] audit: type=1326 audit(1759785132.969:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  320.302606][   T28] audit: type=1326 audit(1759785132.969:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.1.518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbcfd38d710 code=0x7ffc0000
[  320.497482][ T7964] netlink: 8 bytes leftover after parsing attributes in process `syz.2.516'.
[  320.993185][ T7970] loop1: detected capacity change from 0 to 16
[  321.248309][ T7970] erofs: (device loop1): mounted with root inode @ nid 36.
[  321.271029][ T7967] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[  321.281683][ T7967] syz.1.523: attempt to access beyond end of device
[  321.281683][ T7967] loop1: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16
[  321.582261][ T7964] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  325.301221][ T7985] netlink: 12 bytes leftover after parsing attributes in process `syz.3.528'.
[  325.659083][ T5101] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  325.760854][   T28] kauditd_printk_skb: 7 callbacks suppressed
[  325.760870][   T28] audit: type=1326 audit(1759785139.529:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  325.789543][    C0] vkms_vblank_simulate: vblank timer overrun
[  325.845300][   T28] audit: type=1326 audit(1759785139.529:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  325.897427][   T28] audit: type=1326 audit(1759785139.579:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  327.145522][   T28] audit: type=1326 audit(1759785139.579:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  327.187324][   T28] audit: type=1326 audit(1759785139.579:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  327.209793][    C0] vkms_vblank_simulate: vblank timer overrun
[  327.317833][   T28] audit: type=1326 audit(1759785139.579:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  327.340690][    C0] vkms_vblank_simulate: vblank timer overrun
[  327.351185][   T50] Bluetooth: hci1: command 0x0406 tx timeout
[  327.361137][   T28] audit: type=1326 audit(1759785139.579:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  327.413228][   T28] audit: type=1326 audit(1759785139.589:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  327.437039][   T28] audit: type=1326 audit(1759785139.589:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  327.461768][   T28] audit: type=1326 audit(1759785139.589:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  329.283819][ T8019] netlink: 12 bytes leftover after parsing attributes in process `syz.3.539'.
[  331.123523][   T50] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  331.135107][   T50] CPU: 1 PID: 50 Comm: kworker/u5:0 Not tainted syzkaller #0
[  331.142561][   T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  331.152680][   T50] Workqueue: hci2 hci_rx_work
[  331.157446][   T50] Call Trace:
[  331.160897][   T50]  <TASK>
[  331.163959][   T50]  dump_stack_lvl+0x16c/0x230
[  331.168800][   T50]  ? show_regs_print_info+0x20/0x20
[  331.174334][   T50]  ? load_image+0x3b0/0x3b0
[  331.179020][   T50]  sysfs_create_dir_ns+0x256/0x280
[  331.184242][   T50]  ? hci_rx_work+0x43a/0xd80
[  331.189078][   T50]  ? sysfs_warn_dup+0xa0/0xa0
[  331.194002][   T50]  ? do_raw_spin_unlock+0x121/0x230
[  331.199363][   T50]  kobject_add_internal+0x6b8/0xc70
[  331.204801][   T50]  kobject_add+0x156/0x220
[  331.209990][   T50]  ? __rwlock_init+0x150/0x150
[  331.214953][   T50]  ? kobject_init+0x1e0/0x1e0
[  331.219704][   T50]  ? _raw_spin_unlock+0x28/0x40
[  331.224625][   T50]  ? get_device_parent+0x366/0x390
[  331.229814][   T50]  device_add+0x408/0xc20
[  331.234217][   T50]  hci_conn_add_sysfs+0xd5/0x1e0
[  331.239583][   T50]  le_conn_complete_evt+0xf36/0x1500
[  331.244995][   T50]  ? hci_event_packet+0x4a7/0x1210
[  331.250369][   T50]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  331.256960][   T50]  ? __copy_skb_header+0xa7/0x550
[  331.262484][   T50]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  331.268454][   T50]  ? skb_pull_data+0xfb/0x200
[  331.273303][   T50]  hci_le_conn_complete_evt+0x187/0x440
[  331.279190][   T50]  ? hci_remote_host_features_evt+0x160/0x160
[  331.285634][   T50]  hci_event_packet+0x795/0x1210
[  331.291067][   T50]  ? bis_list+0x290/0x290
[  331.296878][   T50]  ? lockdep_hardirqs_on+0x98/0x150
[  331.296958][   T50]  ? hci_send_to_monitor+0xd7/0x4f0
[  331.296997][   T50]  hci_rx_work+0x43a/0xd80
[  331.297038][   T50]  ? process_scheduled_works+0x957/0x15b0
[  331.297067][   T50]  process_scheduled_works+0xa45/0x15b0
[  331.297201][   T50]  ? assign_work+0x400/0x400
[  331.297236][   T50]  ? assign_work+0x39e/0x400
[  331.297270][   T50]  worker_thread+0xa55/0xfc0
[  331.297328][   T50]  kthread+0x2fa/0x390
[  331.297348][   T50]  ? pr_cont_work+0x560/0x560
[  331.297375][   T50]  ? kthread_blkcg+0xd0/0xd0
[  331.297395][   T50]  ret_from_fork+0x48/0x80
[  331.297431][   T50]  ? kthread_blkcg+0xd0/0xd0
[  331.297453][   T50]  ret_from_fork_asm+0x11/0x20
[  331.297501][   T50]  </TASK>
[  331.299542][   T50] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  331.299591][   T50] Bluetooth: hci2: failed to register connection device
[  331.616403][ T8044] netlink: 'syz.3.545': attribute type 12 has an invalid length.
[  332.604204][ T8065] netlink: 12 bytes leftover after parsing attributes in process `syz.1.551'.
[  334.237280][   T50] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  335.055619][ T8083] loop3: detected capacity change from 0 to 256
[  338.243252][   T50] Bluetooth: hci2: command 0x0406 tx timeout
[  338.384617][ T8095] netlink: 12 bytes leftover after parsing attributes in process `syz.2.562'.
[  338.725071][ T8099] netlink: 8 bytes leftover after parsing attributes in process `syz.1.560'.
[  338.746694][ T8099] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  339.763288][ T8109] loop3: detected capacity change from 0 to 16
[  339.781452][ T8109] erofs: (device loop3): mounted with root inode @ nid 36.
[  340.023644][ T5101] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  344.420648][ T5101] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  344.433397][ T5101] CPU: 0 PID: 5101 Comm: kworker/u5:1 Not tainted syzkaller #0
[  344.441128][ T5101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  344.451591][ T5101] Workqueue: hci3 hci_rx_work
[  344.456433][ T5101] Call Trace:
[  344.459847][ T5101]  <TASK>
[  344.462903][ T5101]  dump_stack_lvl+0x16c/0x230
[  344.467759][ T5101]  ? show_regs_print_info+0x20/0x20
[  344.473140][ T5101]  ? load_image+0x3b0/0x3b0
[  344.477896][ T5101]  sysfs_create_dir_ns+0x256/0x280
[  344.483282][ T5101]  ? hci_rx_work+0x43a/0xd80
[  344.488631][ T5101]  ? sysfs_warn_dup+0xa0/0xa0
[  344.493473][ T5101]  ? do_raw_spin_unlock+0x121/0x230
[  344.498997][ T5101]  kobject_add_internal+0x6b8/0xc70
[  344.504262][ T5101]  kobject_add+0x156/0x220
[  344.509060][ T5101]  ? __rwlock_init+0x150/0x150
[  344.513897][ T5101]  ? kobject_init+0x1e0/0x1e0
[  344.518637][ T5101]  ? _raw_spin_unlock+0x28/0x40
[  344.523813][ T5101]  ? get_device_parent+0x366/0x390
[  344.529183][ T5101]  device_add+0x408/0xc20
[  344.534200][ T5101]  hci_conn_add_sysfs+0xd5/0x1e0
[  344.539660][ T5101]  le_conn_complete_evt+0xf36/0x1500
[  344.545110][ T5101]  ? hci_event_packet+0x4a7/0x1210
[  344.550347][ T5101]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  344.556656][ T5101]  ? __copy_skb_header+0xa7/0x550
[  344.561846][ T5101]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  344.567544][ T5101]  ? skb_pull_data+0xfb/0x200
[  344.572399][ T5101]  hci_le_conn_complete_evt+0x187/0x440
[  344.578280][ T5101]  ? hci_remote_host_features_evt+0x160/0x160
[  344.584405][ T5101]  hci_event_packet+0x795/0x1210
[  344.589511][ T5101]  ? bis_list+0x290/0x290
[  344.593942][ T5101]  ? lockdep_hardirqs_on+0x98/0x150
[  344.599228][ T5101]  ? hci_send_to_monitor+0xd7/0x4f0
[  344.604739][ T5101]  hci_rx_work+0x43a/0xd80
[  344.609322][ T5101]  ? process_scheduled_works+0x957/0x15b0
[  344.615101][ T5101]  process_scheduled_works+0xa45/0x15b0
[  344.620826][ T5101]  ? assign_work+0x400/0x400
[  344.625498][ T5101]  ? assign_work+0x39e/0x400
[  344.630179][ T5101]  worker_thread+0xa55/0xfc0
[  344.635035][ T5101]  kthread+0x2fa/0x390
[  344.639152][ T5101]  ? pr_cont_work+0x560/0x560
[  344.643885][ T5101]  ? kthread_blkcg+0xd0/0xd0
[  344.648613][ T5101]  ret_from_fork+0x48/0x80
[  344.653269][ T5101]  ? kthread_blkcg+0xd0/0xd0
[  344.657922][ T5101]  ret_from_fork_asm+0x11/0x20
[  344.662840][ T5101]  </TASK>
[  344.680194][ T5101] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  344.698957][ T5101] Bluetooth: hci3: failed to register connection device
[  345.854740][ T8150] syz.1.580 (8150) used greatest stack depth: 17960 bytes left
[  348.109958][ T8163] netlink: 8 bytes leftover after parsing attributes in process `syz.1.581'.
[  349.055021][ T8163] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  349.592740][   T50] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  350.833500][ T5852] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  353.585726][ T8195] loop0: detected capacity change from 0 to 164
[  356.363830][ T5101] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  357.734840][   T50] Bluetooth: Frame is too long (len 18, expected len 4)
[  359.158842][   T50] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  359.322340][ T8250] netlink: 'syz.2.611': attribute type 10 has an invalid length.
[  359.341039][ T8250] bridge_slave_1: left allmulticast mode
[  359.384531][ T8250] bridge_slave_1: left promiscuous mode
[  359.426895][ T8250] bridge0: port 2(bridge_slave_1) entered disabled state
[  361.800392][ T8275] loop0: detected capacity change from 0 to 512
[  361.835039][ T8275] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  361.921672][ T8275] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.621: bad orphan inode 11
[  361.987203][ T8275] ext4_test_bit(bit=10, block=4) = 1
[  362.012957][ T5101] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  362.022363][ T8275] is_bad_inode(inode)=0
[  362.042548][ T8275] NEXT_ORPHAN(inode)=2080374784
[  362.073481][ T8275] max_ino=32
[  362.076785][ T8275] i_nlink=0
[  362.112694][ T8275] EXT4-fs (loop0): 1 truncate cleaned up
[  362.144675][ T8275] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.324808][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.569969][   T50] Bluetooth: hci1: command 0x0406 tx timeout
[  363.845703][ T8297] netlink: 1688 bytes leftover after parsing attributes in process `syz.3.629'.
[  366.784529][ T8311] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2932343455 (187669981120 ns) > initial count (82894967680 ns). Using initial count to start timer.
[  367.134740][ T8317] kvm: pic: non byte write
[  367.705547][ T8328] input: syz0 as /devices/virtual/input/input15
[  370.623423][ T5839] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  370.803531][ T5839] usb 4-1: Using ep0 maxpacket: 16
[  370.820594][ T5839] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  370.848246][ T5839] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  370.899148][ T5839] usb 4-1: New USB device found, idVendor=054c, idProduct=05c4, bcdDevice= 0.00
[  370.928454][ T5839] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.970849][ T5839] usb 4-1: config 0 descriptor??
[  371.153264][   T27] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  371.283795][ T8347] netlink: 1688 bytes leftover after parsing attributes in process `syz.2.640'.
[  371.323491][   T27] usb 2-1: device descriptor read/64, error -71
[  371.424821][ T5839] playstation 0003:054C:05C4.0007: hidraw0: USB HID v0.00 Device [HID 054c:05c4] on usb-dummy_hcd.3-1/input0
[  371.456122][ T8349] netlink: 'syz.2.645': attribute type 72 has an invalid length.
[  371.614204][ T5839] playstation 0003:054C:05C4.0007: Invalid byte count transferred, expected 16 got 14
[  371.626569][ T5839] playstation 0003:054C:05C4.0007: Failed to retrieve DualShock4 pairing info: -22
[  371.646843][   T27] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  371.676141][ T5839] playstation 0003:054C:05C4.0007: Failed to get MAC address from DualShock4
[  371.703133][ T5839] playstation 0003:054C:05C4.0007: Failed to create dualshock4.
[  371.745986][ T5839] playstation: probe of 0003:054C:05C4.0007 failed with error -22
[  371.821897][ T5839] usb 4-1: USB disconnect, device number 10
[  371.833383][   T27] usb 2-1: device descriptor read/64, error -71
[  372.004790][   T27] usb usb2-port1: attempt power cycle
[  372.630498][   T27] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  372.670094][   T27] usb 2-1: device descriptor read/8, error -71
[  374.251395][   T27] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  374.303508][   T27] usb 2-1: device descriptor read/8, error -71
[  374.539914][ T8366] loop3: detected capacity change from 0 to 16
[  374.553647][ T8366] erofs: (device loop3): mounted with root inode @ nid 36.
[  374.562568][   T27] usb usb2-port1: unable to enumerate USB device
[  374.581620][ T8362] erofs: (device loop3): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[  374.592238][ T8362] syz.3.650: attempt to access beyond end of device
[  374.592238][ T8362] loop3: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16
[  379.056687][ T8409] netlink: 4 bytes leftover after parsing attributes in process `syz.1.661'.
[  379.089339][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  379.100022][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  381.018717][ T8436] input: syz0 as /devices/virtual/input/input16
[  382.493288][ T8449] netlink: 4 bytes leftover after parsing attributes in process `syz.0.676'.
[  383.798499][ T8470] netlink: 4 bytes leftover after parsing attributes in process `syz.2.679'.
[  384.926590][ T8479] loop3: detected capacity change from 0 to 128
[  386.372361][ T8494] netlink: 8 bytes leftover after parsing attributes in process `syz.1.686'.
[  386.476244][ T8494] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  386.983343][ T8500] netlink: 4 bytes leftover after parsing attributes in process `syz.3.690'.
[  388.659415][ T8520] loop3: detected capacity change from 0 to 512
[  388.675246][ T8520] EXT4-fs: Ignoring removed mblk_io_submit option
[  388.733402][ T8520] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  388.846438][ T8520] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e04ce028, mo2=0002]
[  388.901039][ T8520] System zones: 0-1, 15-15, 18-18, 34-34
[  388.979002][ T8520] EXT4-fs (loop3): orphan cleanup on readonly fs
[  389.011284][ T8520] __quota_error: 8 callbacks suppressed
[  389.011297][ T8520] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  389.053678][ T8520] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  389.082246][ T8520] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  389.100971][ T8520] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.696: bg 0: block 40: padding at end of block bitmap is not set
[  389.137487][ T8520] EXT4-fs (loop3): Remounting filesystem read-only
[  389.144663][ T8520] EXT4-fs (loop3): 1 truncate cleaned up
[  389.157024][ T8525] netlink: 'syz.1.698': attribute type 72 has an invalid length.
[  389.176393][ T8520] EXT4-fs (loop3): mounted filesystem 00000000-0000-5000-0000-000000000000 ro without journal. Quota mode: writeback.
[  389.339506][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-5000-0000-000000000000.
[  394.038938][ T8555] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.707'.
[  395.458079][ T8566] overlayfs: failed to resolve './file1': -2
[  396.032703][ T8564] netlink: 'syz.0.708': attribute type 4 has an invalid length.
[  396.266939][ T8564] netlink: 17 bytes leftover after parsing attributes in process `syz.0.708'.
[  396.590379][ T8576] netlink: 4 bytes leftover after parsing attributes in process `syz.3.713'.
[  400.325224][ T8588] netlink: 32 bytes leftover after parsing attributes in process `syz.1.716'.
[  400.354780][ T8588] erspan0: left promiscuous mode
[  400.364880][ T8588] erspan0: left allmulticast mode
[  400.461134][ T8588] overlayfs: missing 'lowerdir'
[  401.769719][ T8605] overlayfs: failed to resolve './file1': -2
[  402.436619][ T8606] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.720'.
[  402.726045][ T8610] loop3: detected capacity change from 0 to 512
[  402.799673][ T8610] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  403.035702][ T8610] EXT4-fs (loop3): orphan cleanup on readonly fs
[  403.232769][ T8610] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:512: comm syz.3.722: Block bitmap for bg 0 marked uninitialized
[  403.334827][ T8610] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  403.380180][ T8610] EXT4-fs (loop3): 1 orphan inode deleted
[  403.412704][ T8610] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  403.602088][ T8619] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:512: comm syz.3.722: Block bitmap for bg 0 marked uninitialized
[  405.563564][ T5101] Bluetooth: hci3: command 0x0406 tx timeout
[  405.691235][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.068294][ T8633] netlink: 32 bytes leftover after parsing attributes in process `syz.3.728'.
[  407.007565][ T8636] overlayfs: failed to resolve './file1': -2
[  407.034524][ T8633] overlayfs: missing 'lowerdir'
[  407.080313][ T8638] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.732'.
[  407.451625][   T28] audit: type=1326 audit(1759785221.219:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.502920][   T28] audit: type=1326 audit(1759785221.219:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.554919][ T8658] netlink: 4 bytes leftover after parsing attributes in process `syz.3.737'.
[  407.572724][   T28] audit: type=1326 audit(1759785221.219:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.651037][   T28] audit: type=1326 audit(1759785221.219:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.712230][   T28] audit: type=1326 audit(1759785221.219:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.760873][   T28] audit: type=1326 audit(1759785221.219:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.799418][   T28] audit: type=1326 audit(1759785221.219:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.823323][   T28] audit: type=1326 audit(1759785221.219:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.846630][   T28] audit: type=1326 audit(1759785221.219:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  407.882084][   T28] audit: type=1326 audit(1759785221.219:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.1.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  410.727665][ T8680] overlayfs: failed to resolve './file1': -2
[  414.243162][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  414.243178][   T28] audit: type=1326 audit(1759785227.999:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  414.335559][   T28] audit: type=1326 audit(1759785227.999:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  414.427762][   T28] audit: type=1326 audit(1759785227.999:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  414.514644][   T28] audit: type=1326 audit(1759785227.999:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  414.565853][ T8709] netlink: 4 bytes leftover after parsing attributes in process `syz.0.751'.
[  414.606028][   T28] audit: type=1326 audit(1759785228.009:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  414.663365][ T8711] netlink: 32 bytes leftover after parsing attributes in process `syz.2.752'.
[  414.693406][   T28] audit: type=1326 audit(1759785228.009:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  414.733590][ T8711] erspan0: left promiscuous mode
[  414.750732][ T8711] erspan0: left allmulticast mode
[  414.763084][   T28] audit: type=1326 audit(1759785228.009:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  414.857304][   T28] audit: type=1326 audit(1759785228.009:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  414.893285][ T8711] overlayfs: failed to resolve './file1': -2
[  414.920428][   T28] audit: type=1326 audit(1759785228.009:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3b8318d710 code=0x7ffc0000
[  414.983506][   T28] audit: type=1326 audit(1759785228.009:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8693 comm="syz.3.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  415.240907][ T8718] overlayfs: failed to resolve './file1': -2
[  419.117927][ T8747] netlink: 8 bytes leftover after parsing attributes in process `syz.3.760'.
[  419.229207][ T8747] erspan0: entered promiscuous mode
[  419.291935][ T8747] erspan0: entered allmulticast mode
[  419.391168][ T8751] overlayfs: failed to resolve './file1': -2
[  419.441639][ T8747] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  419.520574][ T8750] netlink: 32 bytes leftover after parsing attributes in process `syz.2.763'.
[  420.886411][ T8757] syz.1.762 uses obsolete (PF_INET,SOCK_PACKET)
[  420.924760][ T8757] syzkaller1: entered promiscuous mode
[  420.955962][ T8757] syzkaller1: entered allmulticast mode
[  422.010774][ T8774] netlink: 4 bytes leftover after parsing attributes in process `syz.2.764'.
[  424.249567][   T28] kauditd_printk_skb: 6 callbacks suppressed
[  424.249589][   T28] audit: type=1326 audit(1759785237.999:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.358688][   T28] audit: type=1326 audit(1759785238.069:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.419556][   T28] audit: type=1326 audit(1759785238.069:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.449913][ T8787] netlink: 8 bytes leftover after parsing attributes in process `syz.2.772'.
[  424.482925][ T8789] netlink: 8 bytes leftover after parsing attributes in process `syz.1.771'.
[  424.485106][   T28] audit: type=1326 audit(1759785238.069:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.528498][ T8789] macvlan0: entered promiscuous mode
[  424.550029][   T28] audit: type=1326 audit(1759785238.089:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.574052][ T8789] batadv0: entered promiscuous mode
[  424.593148][   T28] audit: type=1326 audit(1759785238.089:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.626685][   T28] audit: type=1326 audit(1759785238.089:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.690632][   T28] audit: type=1326 audit(1759785238.089:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.736546][ T8789] hsr1: entered allmulticast mode
[  424.742100][ T8789] macvlan0: entered allmulticast mode
[  424.792239][   T28] audit: type=1326 audit(1759785238.089:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.815912][   T28] audit: type=1326 audit(1759785238.089:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8782 comm="syz.0.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  424.851871][ T8789] veth1_vlan: entered allmulticast mode
[  424.858907][ T8789] batadv0: entered allmulticast mode
[  425.519166][ T8802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.774'.
[  425.530110][ T8802] erspan0: entered promiscuous mode
[  425.535613][ T8802] erspan0: entered allmulticast mode
[  425.560055][ T8802] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  425.723124][ T8805] input: syz0 as /devices/virtual/input/input17
[  426.054573][ T8808] veth0: entered promiscuous mode
[  426.064461][ T8808] netlink: 4 bytes leftover after parsing attributes in process `syz.0.777'.
[  426.165235][ T8809] netlink: 28 bytes leftover after parsing attributes in process `syz.0.777'.
[  433.590868][ T8834] netlink: 12 bytes leftover after parsing attributes in process `syz.1.784'.
[  433.699041][ T8841] netlink: 12 bytes leftover after parsing attributes in process `syz.2.785'.
[  433.755811][ T8841] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  433.766168][ T8841] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  433.775344][ T8841] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  433.784306][ T8841] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  433.834657][ T8841] netlink: 12 bytes leftover after parsing attributes in process `syz.2.785'.
[  435.933305][   T27] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  436.171480][ T8858] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  436.189757][ T8858] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  436.206439][ T8858] bond0: (slave ipvlan2): Error -95 calling set_mac_address
[  436.313427][   T27] usb 4-1: Using ep0 maxpacket: 8
[  436.375798][   T27] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  436.390974][ T8861] input: syz0 as /devices/virtual/input/input18
[  436.403116][   T27] usb 4-1: config 0 has no interfaces?
[  436.412129][   T27] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  436.454404][   T27] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  436.463291][   T27] usb 4-1: Product: syz
[  436.467948][   T27] usb 4-1: Manufacturer: syz
[  436.472803][   T27] usb 4-1: SerialNumber: syz
[  436.501010][   T27] usb 4-1: config 0 descriptor??
[  436.546623][ T8858] warning: `syz.2.791' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  438.090146][    T9] usb 4-1: USB disconnect, device number 11
[  438.846532][ T8886] loop3: detected capacity change from 0 to 16
[  438.862065][ T8886] erofs: (device loop3): mounted with root inode @ nid 36.
[  438.876747][ T8883] netlink: 12 bytes leftover after parsing attributes in process `syz.1.797'.
[  440.528367][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  440.538798][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  441.101558][ T8893] netlink: 256 bytes leftover after parsing attributes in process `syz.1.802'.
[  441.128711][ T8893] netlink: 48 bytes leftover after parsing attributes in process `syz.1.802'.
[  442.751041][ T8910] nbd0: detected capacity change from 0 to 127
[  442.828414][ T6089] block nbd0: Send control failed (result -32)
[  442.836705][ T5101] block nbd0: Receive control failed (result -104)
[  442.845867][ T6089] block nbd0: Request send failed, requeueing
[  442.857960][ T6089] block nbd0: Dead connection, failed to find a fallback
[  442.868617][ T6089] block nbd0: shutting down sockets
[  442.875567][ T6089] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  442.886978][ T6089] Buffer I/O error on dev nbd0, logical block 1, async page read
[  442.904366][ T6089] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  442.915878][ T6089] Buffer I/O error on dev nbd0, logical block 2, async page read
[  442.925559][ T6089] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  442.935532][ T6089] Buffer I/O error on dev nbd0, logical block 3, async page read
[  443.824515][ T8925] netlink: 32 bytes leftover after parsing attributes in process `syz.0.811'.
[  444.069575][ T8925] overlayfs: failed to resolve './file1': -2
[  446.332792][ T8951] netlink: 8 bytes leftover after parsing attributes in process `syz.0.820'.
[  446.783876][ T8962] netlink: 4 bytes leftover after parsing attributes in process `syz.3.823'.
[  448.021005][ T8989] netlink: 8 bytes leftover after parsing attributes in process `syz.3.830'.
[  449.319843][ T9018] netlink: 8 bytes leftover after parsing attributes in process `syz.2.841'.
[  450.779951][ T9034] netlink: 4 bytes leftover after parsing attributes in process `syz.2.843'.
[  451.155445][ T9045] netlink: 32 bytes leftover after parsing attributes in process `syz.1.847'.
[  451.175222][ T9045] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  451.201518][ T9045] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  452.038133][ T9051] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[  455.457471][ T9086] netlink: 4 bytes leftover after parsing attributes in process `syz.1.860'.
[  455.814869][ T9091] netlink: 32 bytes leftover after parsing attributes in process `syz.2.861'.
[  455.835779][ T9091] erspan0: left promiscuous mode
[  455.864337][ T9091] erspan0: left allmulticast mode
[  455.893993][ T9092] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  455.933904][ T9092] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  456.072177][ T9094] netlink: 4 bytes leftover after parsing attributes in process `syz.3.862'.
[  458.947911][ T9120] netlink: 4 bytes leftover after parsing attributes in process `syz.2.871'.
[  460.647405][   T28] kauditd_printk_skb: 8 callbacks suppressed
[  460.647422][   T28] audit: type=1326 audit(1759785274.419:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  460.733160][   T28] audit: type=1326 audit(1759785274.419:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  460.793930][   T28] audit: type=1326 audit(1759785274.419:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  460.872750][   T28] audit: type=1326 audit(1759785274.419:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  460.933085][   T28] audit: type=1326 audit(1759785274.419:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  461.157807][   T28] audit: type=1326 audit(1759785274.419:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  461.253084][   T28] audit: type=1326 audit(1759785274.419:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  461.319839][   T28] audit: type=1326 audit(1759785274.419:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  461.388746][   T28] audit: type=1326 audit(1759785274.419:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  461.474146][   T28] audit: type=1326 audit(1759785274.419:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9131 comm="syz.1.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcfd38eec9 code=0x7ffc0000
[  462.704510][ T9166] netlink: 4 bytes leftover after parsing attributes in process `syz.1.883'.
[  463.228707][ T9170] netlink: 4 bytes leftover after parsing attributes in process `syz.0.884'.
[  463.286297][ T9170] dummy0: entered promiscuous mode
[  463.302652][ T9170] macvtap1: entered promiscuous mode
[  463.320998][ T9170] macvtap1: entered allmulticast mode
[  463.340478][ T9170] dummy0: entered allmulticast mode
[  463.357901][ T9173] macvtap1: left promiscuous mode
[  463.363992][ T9173] macvtap1: left allmulticast mode
[  463.369258][ T9173] dummy0: left allmulticast mode
[  469.489708][   T28] kauditd_printk_skb: 34 callbacks suppressed
[  469.489726][   T28] audit: type=1326 audit(1759785283.259:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  469.576101][   T28] audit: type=1326 audit(1759785283.259:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  469.705858][   T28] audit: type=1326 audit(1759785283.269:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  469.836560][ T9229] overlayfs: missing 'lowerdir'
[  469.923343][   T28] audit: type=1326 audit(1759785283.269:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  470.182427][   T28] audit: type=1326 audit(1759785283.269:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  470.445462][   T28] audit: type=1326 audit(1759785283.279:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  470.610766][   T28] audit: type=1326 audit(1759785283.279:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  470.726528][   T28] audit: type=1326 audit(1759785283.279:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  470.798341][   T28] audit: type=1326 audit(1759785283.279:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fef7318d710 code=0x7ffc0000
[  470.838913][   T28] audit: type=1326 audit(1759785283.279:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.2.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  471.408710][ T9235] netlink: 8 bytes leftover after parsing attributes in process `syz.1.906'.
[  471.539840][ T9235] erspan0: entered promiscuous mode
[  471.687212][ T9235] erspan0: entered allmulticast mode
[  472.463630][ T9235] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  473.243494][ T6089] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 30 seconds
[  473.269163][ T9249] netlink: 4 bytes leftover after parsing attributes in process `syz.3.908'.
[  474.551831][ T9261] netlink: 6 bytes leftover after parsing attributes in process `syz.1.911'.
[  474.607282][ T9261] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  475.106921][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  475.106936][   T28] audit: type=1326 audit(1759785288.879:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  475.222679][   T28] audit: type=1326 audit(1759785288.909:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  475.249699][   T28] audit: type=1326 audit(1759785288.919:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  475.278534][   T28] audit: type=1326 audit(1759785288.929:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  475.471010][ T9271] overlayfs: missing 'lowerdir'
[  476.181350][   T28] audit: type=1326 audit(1759785288.929:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  476.208225][   T28] audit: type=1326 audit(1759785288.929:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  476.243361][   T28] audit: type=1326 audit(1759785288.929:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  476.529881][   T28] audit: type=1326 audit(1759785288.929:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  476.620582][   T28] audit: type=1326 audit(1759785288.929:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  476.679305][   T28] audit: type=1326 audit(1759785288.929:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  478.048943][ T9295] netlink: 4 bytes leftover after parsing attributes in process `syz.0.915'.
[  478.310366][ T9288] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  478.428744][ T9288] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  478.627595][ T9288] siw: device registration error -19
[  479.531149][ T9311] netlink: 4 bytes leftover after parsing attributes in process `syz.3.922'.
[  479.823437][ T9320] overlayfs: missing 'lowerdir'
[  480.656873][ T9322] netlink: 'syz.2.926': attribute type 7 has an invalid length.
[  480.684288][ T9322] netlink: 'syz.2.926': attribute type 7 has an invalid length.
[  483.611983][ T9343] input: syz0 as /devices/virtual/input/input19
[  483.928638][ T9346] overlayfs: missing 'lowerdir'
[  486.510619][ T9366] netlink: 32 bytes leftover after parsing attributes in process `syz.0.940'.
[  490.825139][ T9389] overlayfs: missing 'lowerdir'
[  491.354462][ T9405] netlink: 32 bytes leftover after parsing attributes in process `syz.3.953'.
[  491.874770][ T9425] overlayfs: missing 'lowerdir'
[  493.400243][ T9445] loop3: detected capacity change from 0 to 128
[  493.418299][ T9444] netlink: 32 bytes leftover after parsing attributes in process `syz.2.968'.
[  493.450727][ T9445] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  493.573609][ T9445] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  494.541015][ T9474] netlink: 32 bytes leftover after parsing attributes in process `syz.3.978'.
[  495.982884][ T9510] netlink: 4 bytes leftover after parsing attributes in process `syz.0.990'.
[  496.633054][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  496.633071][   T28] audit: type=1326 audit(1759785310.399:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  496.753195][   T28] audit: type=1326 audit(1759785310.409:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  496.867785][   T28] audit: type=1326 audit(1759785310.409:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  496.956727][   T28] audit: type=1326 audit(1759785310.409:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  497.014837][   T28] audit: type=1326 audit(1759785310.409:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  497.055013][   T28] audit: type=1326 audit(1759785310.409:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  497.116741][   T28] audit: type=1326 audit(1759785310.409:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  497.176662][   T28] audit: type=1326 audit(1759785310.459:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3b8318d710 code=0x7ffc0000
[  497.278452][   T28] audit: type=1326 audit(1759785310.459:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  497.387656][   T28] audit: type=1326 audit(1759785310.459:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.3.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  497.439531][ T9538] input: syz0 as /devices/virtual/input/input20
[  498.435350][ T9556] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1006'.
[  500.261198][ T9593] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1018'.
[  500.881729][ T9602] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1020'.
[  501.959334][ T9615] input: syz0 as /devices/virtual/input/input21
[  501.974900][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  501.990913][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  502.015683][ T9619] netlink: 'syz.2.1027': attribute type 7 has an invalid length.
[  502.083196][ T9619] netlink: 'syz.2.1027': attribute type 23 has an invalid length.
[  502.115460][   T28] kauditd_printk_skb: 18 callbacks suppressed
[  502.115476][   T28] audit: type=1326 audit(1759785315.889:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.144957][    C0] vkms_vblank_simulate: vblank timer overrun
[  502.237381][   T28] audit: type=1326 audit(1759785315.919:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.294651][   T28] audit: type=1326 audit(1759785315.959:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.322258][ T9623] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1028'.
[  502.329815][   T28] audit: type=1326 audit(1759785315.959:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.398438][   T28] audit: type=1326 audit(1759785315.959:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.475111][   T28] audit: type=1326 audit(1759785315.959:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.543626][   T28] audit: type=1326 audit(1759785315.959:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.632164][   T28] audit: type=1326 audit(1759785315.959:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.700629][   T28] audit: type=1326 audit(1759785315.959:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  502.779437][   T28] audit: type=1326 audit(1759785315.959:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz.0.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdc78eec9 code=0x7ffc0000
[  503.901656][ T6089] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 60 seconds
[  507.163925][ T9670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1044'.
[  509.090359][ T9692] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1048'.
[  509.125985][   T28] kauditd_printk_skb: 30 callbacks suppressed
[  509.126003][   T28] audit: type=1326 audit(1759785322.889:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  509.202443][   T28] audit: type=1326 audit(1759785322.889:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  510.826809][   T28] audit: type=1326 audit(1759785322.889:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  510.945644][   T28] audit: type=1326 audit(1759785322.889:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  511.034333][   T28] audit: type=1326 audit(1759785322.889:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  511.123816][   T28] audit: type=1326 audit(1759785322.889:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  511.190592][   T28] audit: type=1326 audit(1759785322.889:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  511.284879][   T28] audit: type=1326 audit(1759785322.889:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  511.353488][   T28] audit: type=1326 audit(1759785322.889:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8318eec9 code=0x7ffc0000
[  511.428265][   T28] audit: type=1326 audit(1759785322.889:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9688 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3b8318d710 code=0x7ffc0000
[  520.970944][ T9762] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1068'.
[  523.990392][ T9773] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1071'.
[  532.039709][ T9819] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1086'.
[  533.973769][ T6089] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 90 seconds
[  535.731456][ T9843] loop3: detected capacity change from 0 to 32768
[  536.277360][ T9843] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  536.507821][ T9843] batman_adv: batadv0: Adding interface: gretap1
[  536.538943][ T9843] batman_adv: batadv0: Interface activated: gretap1
[  536.944254][ T9855] syz.3.1085 (9855) used greatest stack depth: 17712 bytes left
[  537.262284][ T5792] ocfs2: Unmounting device (7,3) on (node local)
[  537.943134][ T5829] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  538.008746][ T5101] Bluetooth: hci0: unexpected event for opcode 0x0004
[  538.109102][ T9873] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1099'.
[  538.133089][ T5829] usb 4-1: Using ep0 maxpacket: 32
[  538.141017][ T5829] usb 4-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  538.153546][ T5829] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  538.163424][ T5829] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  538.184397][ T5829] usb 4-1: config 0 descriptor??
[  538.201272][ T9864] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  538.225337][ T5829] hub 4-1:0.0: bad descriptor, ignoring hub
[  538.231516][ T5829] hub: probe of 4-1:0.0 failed with error -5
[  538.275738][ T5829] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  538.344269][ T9876] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1100'.
[  539.338933][ T9881] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1101'.
[  540.075106][ T9895] input: syz0 as /devices/virtual/input/input22
[  540.345742][ T9901] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1109'.
[  541.743284][ T5852] usb 4-1: USB disconnect, device number 12
[  541.869883][ T9914] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1113'.
[  542.045993][ T5101] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  542.057367][ T5101] Bluetooth: hci0: Injecting HCI hardware error event
[  542.066972][ T5101] Bluetooth: hci0: hardware error 0x00
[  545.113378][ T5101] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  546.855878][ T9939] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1122'.
[  548.330055][ T9950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1125'.
[  551.983469][ T9995] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1141'.
[  551.983545][ T9997] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1142'.
[  552.103717][ T9995] macvtap1: entered promiscuous mode
[  552.130055][ T9995] macvtap1: entered allmulticast mode
[  552.741843][T10003] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1143'.
[  553.451635][T10003] lo: entered promiscuous mode
[  553.520220][T10003] lo: entered allmulticast mode
[  553.541403][T10003] tunl0: entered promiscuous mode
[  553.551129][T10003] tunl0: entered allmulticast mode
[  553.559358][T10003] gre0: entered promiscuous mode
[  553.573512][T10003] gre0: entered allmulticast mode
[  553.581723][T10003] gretap0: entered promiscuous mode
[  553.592118][T10003] gretap0: entered allmulticast mode
[  553.612666][T10003] erspan0: entered promiscuous mode
[  553.622253][T10003] erspan0: entered allmulticast mode
[  553.641385][T10003] ip_vti0: entered promiscuous mode
[  553.652324][T10003] ip_vti0: entered allmulticast mode
[  553.659256][T10003] ip6_vti0: entered promiscuous mode
[  553.670291][T10003] ip6_vti0: entered allmulticast mode
[  553.678099][T10003] sit0: entered promiscuous mode
[  553.687905][T10003] sit0: entered allmulticast mode
[  553.695319][T10003] ip6tnl0: entered promiscuous mode
[  553.701192][T10003] ip6tnl0: entered allmulticast mode
[  553.717628][T10003] ip6gre0: entered promiscuous mode
[  553.726247][T10003] ip6gre0: entered allmulticast mode
[  553.737789][T10003] syz_tun: entered promiscuous mode
[  553.747353][T10003] syz_tun: entered allmulticast mode
[  553.755963][T10003] ip6gretap0: entered promiscuous mode
[  553.762711][T10003] ip6gretap0: entered allmulticast mode
[  553.779978][T10003] bridge0: entered promiscuous mode
[  553.788209][T10003] bridge0: entered allmulticast mode
[  553.798001][T10003] vcan0: entered promiscuous mode
[  553.808702][T10003] vcan0: entered allmulticast mode
[  553.820911][T10003] bond0: entered promiscuous mode
[  553.832144][T10003] bond_slave_0: entered promiscuous mode
[  553.840293][T10003] bond_slave_1: entered promiscuous mode
[  553.856208][T10003] bond0: entered allmulticast mode
[  553.872767][T10003] bond_slave_0: entered allmulticast mode
[  553.900970][T10003] bond_slave_1: entered allmulticast mode
[  553.911783][T10003] team0: entered promiscuous mode
[  553.921300][T10003] team_slave_0: entered promiscuous mode
[  553.938574][T10003] team_slave_1: entered promiscuous mode
[  553.950112][T10003] team0: entered allmulticast mode
[  553.959387][T10003] team_slave_0: entered allmulticast mode
[  553.967790][T10003] team_slave_1: entered allmulticast mode
[  553.979235][T10003] dummy0: entered allmulticast mode
[  553.988337][T10003] nlmon0: entered promiscuous mode
[  553.994869][T10003] nlmon0: entered allmulticast mode
[  554.007721][T10003] caif0: entered promiscuous mode
[  554.019910][T10003] caif0: entered allmulticast mode
[  554.027914][T10003] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  554.567874][T10021] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1151'.
[  554.753295][T10025] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1152'.
[  554.784754][T10025] macvtap2: entered promiscuous mode
[  554.791048][T10025] macvtap2: entered allmulticast mode
[  554.800119][T10025] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  555.714124][T10035] macvtap2: left promiscuous mode
[  555.720266][T10035] macvtap2: left allmulticast mode
[  558.531806][T10052] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1162'.
[  559.141211][   T28] kauditd_printk_skb: 7 callbacks suppressed
[  559.141229][   T28] audit: type=1326 audit(1759785372.899:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.222398][   T28] audit: type=1326 audit(1759785372.899:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.246792][   T28] audit: type=1326 audit(1759785372.909:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.270521][   T28] audit: type=1326 audit(1759785372.909:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.303448][   T28] audit: type=1326 audit(1759785372.909:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.330384][   T28] audit: type=1326 audit(1759785372.939:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.353739][   T28] audit: type=1326 audit(1759785372.939:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.423445][   T28] audit: type=1326 audit(1759785372.939:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.474929][   T28] audit: type=1326 audit(1759785372.969:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  559.534701][   T28] audit: type=1326 audit(1759785372.969:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10058 comm="syz.2.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  563.409397][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  563.416099][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  564.664233][   T24] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 120 seconds
[  567.024798][T10100] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1170'.
[  567.164398][T10100] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  569.276448][T10107] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1179'.
[  569.325812][T10107] macvtap2: entered promiscuous mode
[  569.343436][T10107] macvtap2: entered allmulticast mode
[  569.365598][T10107] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  569.451006][T10109] macvtap2: left promiscuous mode
[  569.469158][T10109] macvtap2: left allmulticast mode
[  569.899087][T10117] geneve2: entered promiscuous mode
[  569.905466][T10117] geneve2: entered allmulticast mode
[  569.926494][T10118] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1184'.
[  570.223280][   T27] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  570.485111][   T27] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  571.010280][   T27] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 24623, setting to 1024
[  571.063935][   T27] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  571.099970][   T27] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  571.138328][   T27] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  571.349780][T10119] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  572.030522][   T27] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  573.620626][   T27] usb 4-1: USB disconnect, device number 13
[  573.915393][ T8966] udevd[8966]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  577.525573][T10188] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1204'.
[  581.760361][ T5156] udevd[5156]: worker [8824] /devices/virtual/block/nbd0 is taking a long time
[  583.228804][T10228] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1217'.
[  584.696662][ T5839] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  585.213153][ T5839] usb 2-1: Using ep0 maxpacket: 8
[  585.232108][ T5839] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  585.261602][ T5839] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  585.280628][ T5839] usb 2-1: Product: syz
[  585.299984][ T5839] usb 2-1: Manufacturer: syz
[  585.313173][ T5839] usb 2-1: SerialNumber: syz
[  585.334865][ T5839] usb 2-1: config 0 descriptor??
[  585.561358][ T5839] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  586.902852][ T5839] dvb_usb_rtl28xxu: probe of 2-1:0.0 failed with error -71
[  587.058898][ T5839] usb 2-1: USB disconnect, device number 12
[  589.515524][T10285] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1235'.
[  594.250719][T10321] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1248'.
[  594.329888][T10321] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  594.793925][   T24] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 150 seconds
[  595.469572][T10332] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1250'.
[  595.540565][T10332] macvtap1: entered promiscuous mode
[  595.596885][T10332] macvtap1: entered allmulticast mode
[  595.603950][T10332] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  595.844150][T10341] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1253'.
[  599.080952][T10354] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1258'.
[  599.234688][T10355] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1257'.
[  600.598277][T10368] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1261'.
[  600.618418][T10368] macvtap3: entered promiscuous mode
[  600.633309][T10368] macvtap3: entered allmulticast mode
[  600.644973][T10368] 8021q: adding VLAN 0 to HW filter on device macvtap3
[  600.654166][T10369] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1263'.
[  601.614622][T10380] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1267'.
[  602.753541][T10388] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1269'.
[  602.763359][T10388] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1269'.
[  602.784958][T10388] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  602.794235][T10388] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  602.803439][T10388] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  602.812498][T10388] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  602.858917][T10388] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1269'.
[  602.877630][T10388] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1269'.
[  606.000744][T10404] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1275'.
[  607.521206][T10424] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1279'.
[  609.962378][T10443] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1285'.
[  610.418789][T10446] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1286'.
[  610.574258][T10435] loop1: detected capacity change from 0 to 32768
[  610.701653][T10435] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  610.830559][T10435] XFS (loop1): Ending clean mount
[  610.902379][T10435] XFS (loop1): Quotacheck needed: Please wait.
[  611.027341][T10435] XFS (loop1): Quotacheck: Done.
[  612.533267][T10467] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  612.679342][ T5782] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  614.102701][T10497] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1297'.
[  615.536478][T10502] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1299'.
[  615.594270][T10502] macvtap2: entered promiscuous mode
[  615.600067][T10502] macvtap2: entered allmulticast mode
[  615.615753][T10502] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  615.670257][T10508] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1300'.
[  615.825610][T10506] macvtap2: left promiscuous mode
[  615.970363][T10506] macvtap2: left allmulticast mode
[  618.556354][T10534] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1308'.
[  619.171595][T10528] loop0: detected capacity change from 0 to 4096
[  619.349683][T10544] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1311'.
[  619.374883][T10544] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1311'.
[  619.385133][T10544] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1311'.
[  619.394627][T10544] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1311'.
[  619.534061][T10547] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1312'.
[  620.341733][T10528] NILFS (loop0): invalid segment: Checksum error in segment payload
[  620.360844][T10528] NILFS (loop0): trying rollback from an earlier position
[  620.619804][T10528] NILFS (loop0): recovery complete
[  620.646032][T10552] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  620.802151][T10554] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1314'.
[  620.846329][T10554] macvtap3: entered promiscuous mode
[  620.871709][T10554] macvtap3: entered allmulticast mode
[  620.896751][T10554] 8021q: adding VLAN 0 to HW filter on device macvtap3
[  621.130543][T10559] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1316'.
[  623.991490][T10592] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1326'.
[  624.048018][T10592] macvtap1: entered promiscuous mode
[  624.088944][T10597] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1329'.
[  624.115260][T10592] macvtap1: entered allmulticast mode
[  624.128134][T10592] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  624.151645][T10595] macvtap1: left promiscuous mode
[  624.157833][T10595] macvtap1: left allmulticast mode
[  624.679484][T10604] loop3: detected capacity change from 0 to 256
[  624.847585][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  624.855706][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  624.862272][   T24] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 180 seconds
[  626.061083][T10614] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1334'.
[  626.093581][T10614] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1334'.
[  626.137413][T10614] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  626.146740][T10614] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  626.156529][T10614] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  626.165676][T10614] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  626.209493][T10614] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1334'.
[  626.223261][T10614] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1334'.
[  626.998194][T10625] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1337'.
[  627.104956][T10628] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1339'.
[  627.439758][T10625] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  627.632866][T10626] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1338'.
[  628.167698][T10637] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1341'.
[  630.558922][T10657] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1348'.
[  630.986294][T10663] loop1: detected capacity change from 0 to 1024
[  632.024193][ T7351] hfsplus: b-tree write err: -5, ino 4
[  632.336081][T10671] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1351'.
[  632.571755][T10674] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1353'.
[  632.671428][T10674] netlink: 'syz.2.1353': attribute type 7 has an invalid length.
[  632.758844][T10674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1353'.
[  632.868521][T10674] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1353'.
[  632.968283][T10674] netlink: 'syz.2.1353': attribute type 7 has an invalid length.
[  633.058928][T10674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1353'.
[  633.281319][T10681] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1358'.
[  633.868763][T10693] netlink: 'syz.1.1359': attribute type 12 has an invalid length.
[  634.337674][T10694] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1359'.
[  634.427780][T10697] netlink: 6 bytes leftover after parsing attributes in process `syz.3.1361'.
[  634.486694][T10697] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  634.800786][T10705] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1363'.
[  634.859683][T10705] netlink: 'syz.3.1363': attribute type 7 has an invalid length.
[  634.870408][T10705] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1363'.
[  634.892691][T10705] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  634.902191][T10705] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  634.911894][T10705] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  634.920767][T10705] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  634.935719][T10705] netlink: 'syz.3.1363': attribute type 7 has an invalid length.
[  638.001867][T10740] __nla_validate_parse: 3 callbacks suppressed
[  638.001887][T10740] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1373'.
[  639.375736][T10740] netlink: 'syz.2.1373': attribute type 7 has an invalid length.
[  640.372127][T10740] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1373'.
[  640.387003][T10740] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1373'.
[  640.449869][T10740] netlink: 'syz.2.1373': attribute type 7 has an invalid length.
[  640.508737][T10740] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1373'.
[  641.081934][T10759] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1377'.
[  641.105936][T10759] macvtap2: entered promiscuous mode
[  641.111539][T10759] macvtap2: entered allmulticast mode
[  641.148233][T10759] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  644.191651][T10783] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1384'.
[  644.260522][T10783] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1384'.
[  644.698640][T10786] syz.1.1385[10786] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  644.698753][T10786] syz.1.1385[10786] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  648.408273][ T5156] udevd[5156]: worker [8824] /devices/virtual/block/nbd0 timeout; kill it
[  648.748382][ T5156] udevd[5156]: seq 12235 '/devices/virtual/block/nbd0' killed
[  648.943337][T10817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1393'.
[  648.973292][T10817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1393'.
[  649.934461][T10824] Bluetooth: hci4: Frame reassembly failed (-84)
[  649.970347][ T7351] Bluetooth: hci4: Frame reassembly failed (-84)
[  651.099218][   T28] kauditd_printk_skb: 15 callbacks suppressed
[  651.499805][   T28] audit: type=1326 audit(1759785464.797:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  652.475371][ T5101] Bluetooth: hci4: command 0x1003 tx timeout
[  652.484882][ T9917] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  652.516793][   T28] audit: type=1326 audit(1759785464.797:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  653.003188][   T28] audit: type=1326 audit(1759785464.937:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  653.027435][   T28] audit: type=1326 audit(1759785464.937:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  653.072444][   T28] audit: type=1326 audit(1759785464.937:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  653.127400][   T28] audit: type=1326 audit(1759785464.937:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  653.321856][   T28] audit: type=1326 audit(1759785466.069:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  653.407845][   T28] audit: type=1326 audit(1759785466.069:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  653.480076][   T28] audit: type=1326 audit(1759785466.153:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  653.550990][   T28] audit: type=1326 audit(1759785466.153:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10829 comm="syz.2.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7318eec9 code=0x7ffc0000
[  654.414254][T10849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1402'.
[  654.435923][T10849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1402'.
[  655.416807][   T24] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 210 seconds
[  657.712129][T10883] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1412'.
[  657.737601][T10883] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1412'.
[  657.779174][T10883] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1412'.
[  657.799513][T10883] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1412'.
[  659.461606][T10899] overlayfs: failed to clone upperpath
[  659.597123][T10903] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1421'.
[  659.675648][T10903] macvtap4: entered promiscuous mode
[  659.691781][T10903] macvtap4: entered allmulticast mode
[  659.698793][T10903] 8021q: adding VLAN 0 to HW filter on device macvtap4
[  659.743134][T10906] macvtap4: left promiscuous mode
[  659.753464][T10906] macvtap4: left allmulticast mode
[  660.063482][T10915] binder: 10909:10915 ioctl c0306201 0 returned -14
[  660.089938][T10915] loop3: detected capacity change from 0 to 128
[  660.432920][T10915] virtio-fs: tag </dev/md0> not found
[  661.415010][T10928] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1427'.
[  663.867694][T10948] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1434'.
[  665.071573][T10938] loop0: detected capacity change from 0 to 40427
[  665.164509][T10938] F2FS-fs (loop0): invalid crc value
[  665.193466][T10959] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1437'.
[  665.254225][T10938] F2FS-fs (loop0): Found nat_bits in checkpoint
[  665.265082][T10959] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1437'.
[  665.304851][T10959] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1437'.
[  665.362527][T10959] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1437'.
[  665.530634][T10938] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  665.941021][T10977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1443'.
[  667.495578][T10989] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1445'.
[  667.600612][T10989] macvtap4: entered promiscuous mode
[  667.624700][T10989] macvtap4: entered allmulticast mode
[  667.738134][T10989] 8021q: adding VLAN 0 to HW filter on device macvtap4
[  671.665137][T11013] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1454'.
[  671.797730][T11009] kvm: requested 80457 ns i8254 timer period limited to 200000 ns
[  671.858840][T11009] kvm: requested 82133 ns i8254 timer period limited to 200000 ns
[  671.881524][T11009] kvm: requested 195276 ns i8254 timer period limited to 200000 ns
[  671.905608][T11009] kvm: requested 109790 ns i8254 timer period limited to 200000 ns
[  671.939085][T11009] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[  671.959718][T11009] kvm: requested 110628 ns i8254 timer period limited to 200000 ns
[  685.682507][T11082] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1479'.
[  686.528607][T11097] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1483'.
[  686.576038][T11097] erspan0: entered promiscuous mode
[  686.582317][T11097] erspan0: entered allmulticast mode
[  686.706056][T11097] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  688.794305][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  688.819998][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  688.826563][   T24] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 240 seconds
[  689.954606][T11109] loop0: detected capacity change from 0 to 1024
[  689.981908][T11109] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  690.047528][T11109] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  691.332098][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  691.714166][T11124] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1491'.
[  695.593878][T11142] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1496'.
[  696.319906][T11142] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  702.497628][T11168] loop0: detected capacity change from 0 to 32768
[  702.842020][ T8853] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by udevd (8853)
[  703.220880][T11189] netlink: 'syz.1.1511': attribute type 1 has an invalid length.
[  703.387556][T11189] 8021q: adding VLAN 0 to HW filter on device bond1
[  703.517064][T11191] bridge_slave_0: left allmulticast mode
[  703.577144][T11191] bridge_slave_0: left promiscuous mode
[  703.619514][T11191] bridge0: port 1(bridge_slave_0) entered disabled state
[  703.751485][T11191] bridge_slave_1: left allmulticast mode
[  703.757861][T11191] bridge_slave_1: left promiscuous mode
[  703.822418][T11191] bridge0: port 2(bridge_slave_1) entered disabled state
[  703.954985][T11191] bond0: (slave bond_slave_0): Releasing backup interface
[  704.038935][T11191] bond_slave_0: left promiscuous mode
[  704.059590][T11191] bond_slave_0: left allmulticast mode
[  704.129342][T11191] bond0: (slave bond_slave_1): Releasing backup interface
[  704.395358][T11191] bond_slave_1: left promiscuous mode
[  704.421253][T11191] bond_slave_1: left allmulticast mode
[  704.452679][T11191] team_slave_0: left allmulticast mode
[  704.483121][T11191] team_slave_0: left promiscuous mode
[  704.755221][T11191] team0: Port device team_slave_0 removed
[  704.768312][T11191] team_slave_1: left allmulticast mode
[  704.821650][T11191] team_slave_1: left promiscuous mode
[  704.854193][T11191] team0: Port device team_slave_1 removed
[  704.898968][T11191] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  704.920850][T11191] batman_adv: batadv0: Removing interface: batadv_slave_0
[  705.460056][T11191] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  705.467704][T11191] batman_adv: batadv0: Removing interface: batadv_slave_1
[  706.022321][T11189] A link change request failed with some changes committed already. Interface bond1 may have been left with an inconsistent configuration, please check.
[  706.101985][T11194] 8021q: adding VLAN 0 to HW filter on device bond1
[  706.114480][T11194] bond1: (slave vxcan1): The slave device specified does not support setting the MAC address
[  706.129657][T11194] bond1: (slave vxcan1): Error -95 calling set_mac_address
[  706.311735][T11224] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1514'.
[  706.389612][T11224] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  709.472930][T11242] loop0: detected capacity change from 0 to 32768
[  709.577685][T11242] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.1523 (11242)
[  709.726002][T11242] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  709.764690][T11242] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  709.775690][T11242] BTRFS info (device loop0): using free space tree
[  710.163346][T11280] syz.3.1530[11280] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  710.163492][T11280] syz.3.1530[11280] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  710.536905][T11280] loop3: detected capacity change from 0 to 40427
[  710.602966][T11280] F2FS-fs (loop3): Invalid log_blocksize (0), supports only 12
[  710.610922][T11280] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  710.648762][T11280] F2FS-fs (loop3): invalid crc value
[  710.670243][T11280] F2FS-fs (loop3): Found nat_bits in checkpoint
[  710.927254][T11287] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1531'.
[  710.947597][T11280] F2FS-fs (loop3): Start checkpoint disabled!
[  710.971882][T11280] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  710.979441][T11280] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  711.292907][T11242] BTRFS error (device loop0): open_ctree failed: -4
[  711.567019][ T8853] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by udevd (8853)
[  715.643102][T11334] overlayfs: failed to clone upperpath
[  721.288148][   T24] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 270 seconds
[  721.543059][T11372] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  721.550496][T11372] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  721.560685][T11372] vhci_hcd vhci_hcd.0: Device attached
[  722.230555][T11373] vhci_hcd: connection closed
[  722.248114][   T27] usb 33-1: new high-speed USB device number 2 using vhci_hcd
[  722.429467][ T7356] vhci_hcd: stop threads
[  722.496723][ T7356] vhci_hcd: release socket
[  722.633367][ T7356] vhci_hcd: disconnect device
[  723.147401][T11387] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1559'.
[  727.902093][   T27] vhci_hcd: vhci_device speed not set
[  728.320411][T11409] loop3: detected capacity change from 0 to 736
[  728.821731][T11414] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1572'.
[  728.987799][T11414] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1572'.
[  730.017899][T11423] tap0: tun_chr_ioctl cmd 1074025673
[  730.062005][T11427] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1577'.
[  733.195281][T11445] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1585'.
[  733.210926][T11445] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1585'.
[  733.812035][T11455] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1588'.
[  738.321250][T11495] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1598'.
[  738.422954][T11499] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1600'.
[  740.008549][T11512] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1604'.
[  740.331362][T11515] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  742.124104][T11534] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1611'.
[  745.835223][T11552] loop3: detected capacity change from 0 to 256
[  745.942517][T11553] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1615'.
[  753.280610][T11605] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1634'.
[  753.340646][T11605] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1634'.
[  753.516131][T11609] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1636'.
[  753.613910][T11614] netlink: 6 bytes leftover after parsing attributes in process `syz.1.1638'.
[  753.701866][T11614] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  753.790295][   T24] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 300 seconds
[  754.471753][T11627] fuse: Bad value for 'fd'
[  754.485233][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  754.491789][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  754.620049][T11609] loop0: detected capacity change from 0 to 32768
[  754.670908][T11635] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1646'.
[  754.681259][T11635] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1646'.
[  754.692091][T11609] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  754.809020][T11645] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1649'.
[  754.911683][T11609] XFS (loop0): Ending clean mount
[  754.970276][T11609] XFS (loop0): Quotacheck needed: Please wait.
[  755.258911][T11609] XFS (loop0): Quotacheck: Done.
[  755.375525][T11654] netlink: 6 bytes leftover after parsing attributes in process `syz.1.1652'.
[  755.854517][T11654] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  756.342375][ T5786] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  757.923930][T11672] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1657'.
[  757.934047][T11672] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1657'.
[  758.449334][T11689] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  758.912546][T11698] __nla_validate_parse: 2 callbacks suppressed
[  758.912567][T11698] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1669'.
[  758.946500][T11698] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1669'.
[  763.414032][T11738] syz.2.1681[11738] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  763.414188][T11738] syz.2.1681[11738] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  766.502578][T11747] loop0: detected capacity change from 0 to 32768
[  767.037710][T11747] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  767.379599][T11747] XFS (loop0): Ending clean mount
[  767.458355][T11747] XFS (loop0): Quotacheck needed: Please wait.
[  767.579241][T11747] XFS (loop0): Quotacheck: Done.
[  768.491623][T11785] syz.3.1695[11785] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  768.491729][T11785] syz.3.1695[11785] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  768.752980][T11784] loop3: detected capacity change from 0 to 40427
[  768.785163][T11784] F2FS-fs (loop3): Invalid log_blocksize (0), supports only 12
[  768.793230][T11784] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  768.839015][ T5786] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  768.848171][T11784] F2FS-fs (loop3): invalid crc value
[  768.904803][T11784] F2FS-fs (loop3): Found nat_bits in checkpoint
[  768.966482][T11784] F2FS-fs (loop3): Start checkpoint disabled!
[  768.991240][T11784] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  768.998528][T11784] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  775.846180][T11831] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1707'.
[  776.156742][T11842] syz.1.1711[11842] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  776.156886][T11842] syz.1.1711[11842] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  776.344370][T11828] loop3: detected capacity change from 0 to 32768
[  776.424134][T11828] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  776.630439][T11828] XFS (loop3): Ending clean mount
[  776.663317][T11828] XFS (loop3): Quotacheck needed: Please wait.
[  776.856545][T11828] XFS (loop3): Quotacheck: Done.
[  776.950292][ T5792] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  778.905950][T11880] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1719'.
[  779.282185][T11889] syz.3.1723[11889] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  779.282333][T11889] syz.3.1723[11889] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  779.395580][T11876] loop0: detected capacity change from 0 to 32768
[  779.545864][T11893] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1724'.
[  779.652783][T11893] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  779.675915][T11889] loop3: detected capacity change from 0 to 40427
[  779.687624][T11889] F2FS-fs (loop3): Invalid log_blocksize (0), supports only 12
[  779.695526][T11889] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  779.724252][T11889] F2FS-fs (loop3): invalid crc value
[  779.735623][T11876] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  779.771003][T11889] F2FS-fs (loop3): Found nat_bits in checkpoint
[  779.795932][T11876] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  779.853995][T11876] BTRFS info (device loop0): using free space tree
[  779.900469][T11889] F2FS-fs (loop3): Start checkpoint disabled!
[  779.924630][T11889] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  779.932660][T11889] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  780.320732][T11876] BTRFS info (device loop0): enabling ssd optimizations
[  780.364521][T11876] BTRFS info (device loop0): auto enabling async discard
[  780.605699][ T5786] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  781.291981][T11922] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  781.304586][T11922] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  781.518949][T11922] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  781.530329][T11922] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  781.680523][T11922] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  781.693215][T11922] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  781.822915][T11922] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  781.846015][T11922] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  782.189538][T11922] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  782.201999][T11922] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  782.268119][T11922] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  782.281015][T11922] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  782.334842][T11922] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  782.344994][T11922] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  782.423940][T11922] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  782.433801][T11922] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  783.816223][T11948] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1735'.
[  783.858850][T11948] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  783.979807][T11952] loop3: detected capacity change from 0 to 256
[  785.955930][   T24] block nbd0: Possible stuck request ffff8880219e0000: control (read@0,1024B). Runtime 330 seconds
[  786.772850][T11972] loop0: detected capacity change from 0 to 32768
[  786.791984][T11972] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.1742 (11972)
[  786.844032][T11972] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  786.899012][T11972] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  786.908905][T11972] BTRFS info (device loop0): setting nodatasum
[  786.936518][T11972] BTRFS info (device loop0): force zlib compression, level 3
[  786.955115][T11972] BTRFS info (device loop0): enabling ssd optimizations
[  786.973251][T11972] BTRFS info (device loop0): allowing degraded mounts
[  786.995102][T11972] BTRFS info (device loop0): using free space tree
[  788.033038][ T5786] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  788.072765][T12009] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1748'.
[  788.887995][T12009] loop3: detected capacity change from 0 to 32768
[  788.916344][T12017] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1751'.
[  788.944713][T12009] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  788.957295][T12017] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1751'.
[  789.122791][T12009] XFS (loop3): Ending clean mount
[  789.157996][T12009] XFS (loop3): Quotacheck needed: Please wait.
[  789.356244][T12009] XFS (loop3): Quotacheck: Done.
[  789.980630][T12032] overlayfs: failed to clone upperpath
[  790.345159][ T5792] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  794.898582][T12053] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1762'.
[  794.938351][T12053] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  797.124439][T12068] overlayfs: failed to clone upperpath
[  798.592859][T12074] loop0: detected capacity change from 0 to 32768
[  798.604915][T12074] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.1769 (12074)
[  798.635476][T12074] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  798.651731][T12074] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  798.666379][T12074] BTRFS info (device loop0): turning off barriers
[  798.673344][T12074] BTRFS info (device loop0): setting nodatasum
[  798.684766][T12074] BTRFS info (device loop0): force zlib compression, level 3
[  798.694461][T12074] BTRFS info (device loop0): ignoring bad roots
[  798.703561][T12074] BTRFS info (device loop0): turning on barriers
[  798.710113][T12074] BTRFS info (device loop0): unrecognized rescue option 'ignoremetacsums'
[  798.720037][T12074] BTRFS error (device loop0): unrecognized rescue value ignoremetacsums
[  798.905621][T12074] BTRFS error (device loop0): open_ctree failed: -22
[  799.681825][T10157] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by udevd (10157)
[  801.251541][T12118] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1782'.
[  801.284153][T12118] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  801.301975][T12116] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1783'.
[  801.392144][T12116] macvtap5: entered promiscuous mode
[  801.398513][T12116] macvtap5: entered allmulticast mode
[  801.411450][T12116] 8021q: adding VLAN 0 to HW filter on device macvtap5
[  804.453631][T12149] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1795'.
[  804.484096][T12149] macvtap6: entered promiscuous mode
[  804.496580][T12149] macvtap6: entered allmulticast mode
[  804.509688][T12149] 8021q: adding VLAN 0 to HW filter on device macvtap6
[  805.818385][T12164] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1799'.
[  805.842946][T12164] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1799'.
[  806.070758][T12172] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1803'.
[  807.798626][T12178] loop3: detected capacity change from 0 to 40427
[  807.822185][T12178] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  807.830163][T12178] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  807.877053][T12178] F2FS-fs (loop3): invalid crc value
[  807.900829][T12178] F2FS-fs (loop3): Found nat_bits in checkpoint
[  808.137906][T12178] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  808.159105][T12178] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  809.041541][T12206] overlayfs: failed to resolve './file2': -2
[  809.676124][T12216] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1817'.
[  810.590024][T12219] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1816'.
[  811.004214][T12219] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  812.024263][T12227] geneve2: entered promiscuous mode
[  812.076869][T12227] geneve2: entered allmulticast mode
[  812.115766][T12238] overlayfs: failed to resolve './file2': -2
[  812.171831][ T5853] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  812.439886][ T5853] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  812.481563][ T5853] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  812.515458][ T5853] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  812.537180][ T5853] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  812.552161][T12233] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  812.563465][ T5853] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  813.053734][T12250] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1828'.
[  813.906147][ T5853] usb 4-1: USB disconnect, device number 14
[  814.684196][   T29] INFO: task udevd:8824 blocked for more than 143 seconds.
[  814.921809][   T29]       Not tainted syzkaller #0
[  815.017912][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  815.175599][   T29] task:udevd           state:D stack:25712 pid:8824  ppid:5156   flags:0x00004006
[  815.214520][   T29] Call Trace:
[  815.224276][   T29]  <TASK>
[  815.228744][   T29]  __schedule+0x14d2/0x44d0
[  815.240976][   T29]  ? asan.module_dtor+0x20/0x20
[  815.246509][   T29]  ? mark_lock+0x94/0x320
[  815.255429][   T29]  ? lock_chain_count+0x20/0x20
[  815.263821][   T29]  ? _raw_spin_lock_irq+0xaf/0xe0
[  815.264759][T12266] overlayfs: failed to resolve './file2': -2
[  815.270152][   T29]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  815.287238][   T29]  schedule+0xbd/0x170
[  815.292283][   T29]  io_schedule+0x80/0xd0
[  815.297454][   T29]  folio_wait_bit_common+0x6eb/0xf70
[  815.303531][   T29]  ? folio_wait_bit+0x30/0x30
[  815.308524][   T29]  ? _compound_head+0x120/0x120
[  815.313955][   T29]  ? filemap_add_folio+0x192/0x3c0
[  815.319816][   T29]  ? __filemap_get_folio+0x70a/0xbc0
[  815.328930][   T29]  ? blkdev_writepage+0x30/0x30
[  815.335352][   T29]  do_read_cache_folio+0x1c0/0x7e0
[  815.340794][   T29]  ? blkdev_writepage+0x30/0x30
[  815.345747][   T29]  read_part_sector+0xd2/0x350
[  815.355836][   T29]  adfspart_check_POWERTEC+0x8d/0xf00
[  815.361467][   T29]  ? adfspart_check_ADFS+0x660/0x660
[  815.366990][   T29]  ? put_partition+0x350/0x350
[  815.372734][   T29]  ? alloc_pages+0x4dc/0x740
[  815.377511][   T29]  bdev_disk_changed+0x73a/0x1410
[  815.383060][   T29]  ? bdev_resize_partition+0xf0/0xf0
[  815.388785][   T29]  ? iput+0x347/0x920
[  815.393111][   T29]  blkdev_get_whole+0x30d/0x390
[  815.398239][   T29]  blkdev_get_by_dev+0x279/0x600
[  815.403347][   T29]  blkdev_open+0x152/0x360
[  815.408064][   T29]  ? blkdev_mmap+0x1b0/0x1b0
[  815.414705][   T29]  do_dentry_open+0x8c6/0x1500
[  815.419542][   T29]  path_openat+0x274b/0x3190
[  815.424371][   T29]  ? __kasan_slab_alloc+0x6c/0x80
[  815.429756][   T29]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  815.436263][   T29]  ? verify_lock_unused+0x140/0x140
[  815.441538][   T29]  ? do_filp_open+0x3d0/0x3d0
[  815.447513][   T29]  ? __virt_addr_valid+0x18c/0x540
[  815.453013][   T29]  do_filp_open+0x1c5/0x3d0
[  815.458046][   T29]  ? vfs_tmpfile+0x490/0x490
[  815.463005][   T29]  ? _raw_spin_unlock+0x28/0x40
[  815.468236][   T29]  ? alloc_fd+0x58f/0x630
[  815.472683][   T29]  do_sys_openat2+0x12c/0x1c0
[  815.477728][   T29]  ? do_sys_open+0xe0/0xe0
[  815.482736][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  815.489164][   T29]  ? lock_chain_count+0x20/0x20
[  815.494103][   T29]  __x64_sys_openat+0x139/0x160
[  815.499228][   T29]  do_syscall_64+0x55/0xb0
[  815.503965][   T29]  ? clear_bhb_loop+0x40/0x90
[  815.508899][   T29]  ? clear_bhb_loop+0x40/0x90
[  815.513913][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  815.520355][   T29] RIP: 0033:0x7fc0e4fd0407
[  815.525020][   T29] RSP: 002b:00007ffc038b4cc0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  815.533820][   T29] RAX: ffffffffffffffda RBX: 00007fc0e4f44880 RCX: 00007fc0e4fd0407
[  815.542586][   T29] RDX: 00000000000a0800 RSI: 000055afd6b0cce0 RDI: ffffffffffffff9c
[  815.550799][   T29] RBP: 000055afd6afd910 R08: 0000000000000000 R09: 0000000000000000
[  815.560066][   T29] R10: 0000000000000000 R11: 0000000000000202 R12: 000055afd6b27690
[  815.568543][   T29] R13: 000055afd6b15410 R14: 0000000000000000 R15: 000055afd6b27690
[  815.577093][   T29]  </TASK>
[  815.585814][   T29] 
[  815.585814][   T29] Showing all locks held in the system:
[  815.594174][   T29] 1 lock held by khungtaskd/29:
[  815.599092][   T29]  #0: ffffffff8cd2ff20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  815.609846][   T29] 2 locks held by kworker/u4:8/3536:
[  815.615616][   T29] 2 locks held by getty/5549:
[  815.620343][   T29]  #0: ffff88814cab90a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  815.630788][   T29]  #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x425/0x1380
[  815.644504][   T29] 1 lock held by udevd/8824:
[  815.655545][   T29]  #0: ffff88814179c4c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x121/0x600
[  815.673707][   T29] 3 locks held by kworker/0:0/11262:
[  815.679844][   T29] 1 lock held by syz.2.1831/12260:
[  815.685495][   T29] 2 locks held by syz.1.1833/12264:
[  815.696319][   T29]  #0: ffffffff8cbed1a8 (sched_core_mutex){+.+.}-{3:3}, at: sched_core_get+0x52/0x180
[  815.707182][   T29]  #1: ffffffff8cd358f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x830
[  815.737275][   T29] 3 locks held by syz.0.1834/12268:
[  815.742789][   T29] 
[  815.745411][   T29] =============================================
[  815.745411][   T29] 
[  815.754274][   T29] NMI backtrace for cpu 0
[  815.759031][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  815.766274][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  815.776672][   T29] Call Trace:
[  815.779997][   T29]  <TASK>
[  815.783023][   T29]  dump_stack_lvl+0x16c/0x230
[  815.787847][   T29]  ? preempt_count_add+0x91/0x1a0
[  815.792914][   T29]  ? show_regs_print_info+0x20/0x20
[  815.798390][   T29]  ? load_image+0x3b0/0x3b0
[  815.802949][   T29]  nmi_cpu_backtrace+0x39b/0x3d0
[  815.808019][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  815.814310][   T29]  ? _printk+0xd0/0x110
[  815.818591][   T29]  ? load_image+0x3b0/0x3b0
[  815.823518][   T29]  ? load_image+0x3b0/0x3b0
[  815.828234][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  815.834617][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  815.840899][   T29]  watchdog+0xf41/0xf80
[  815.845375][   T29]  ? watchdog+0x1e1/0xf80
[  815.850000][   T29]  kthread+0x2fa/0x390
[  815.854177][   T29]  ? hungtask_pm_notify+0x90/0x90
[  815.859311][   T29]  ? kthread_blkcg+0xd0/0xd0
[  815.863922][   T29]  ret_from_fork+0x48/0x80
[  815.868360][   T29]  ? kthread_blkcg+0xd0/0xd0
[  815.873145][   T29]  ret_from_fork_asm+0x11/0x20
[  815.877944][   T29]  </TASK>
[  815.881858][   T29] Sending NMI from CPU 0 to CPUs 1:
[  815.887317][    C1] NMI backtrace for cpu 1
[  815.887330][    C1] CPU: 1 PID: 5786 Comm: syz-executor Not tainted syzkaller #0
[  815.887346][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  815.887356][    C1] RIP: 0010:kasan_check_range+0x41/0x290
[  815.887381][    C1] Code: 54 53 4c 8d 04 37 49 39 f8 0f 82 5a 02 00 00 49 89 f9 49 c1 e9 2f 41 81 f9 ff ff 01 00 0f 82 46 02 00 00 49 89 ff 49 c1 ef 03 <49> ba 00 00 00 00 00 fc ff df 4f 8d 1c 17 49 ff c8 4d 89 c1 49 c1
[  815.887395][    C1] RSP: 0018:ffffc90003bb74a0 EFLAGS: 00000a06
[  815.887410][    C1] RAX: ffffc90003bb7c01 RBX: 0000000000000010 RCX: ffffffff813ab908
[  815.887422][    C1] RDX: 0000000000000001 RSI: 0000000000000010 RDI: ffffc90003bb7618
[  815.887432][    C1] RBP: 0000000000000000 R08: ffffc90003bb7628 R09: 000000000001ffff
[  815.887443][    C1] R10: 0000000000000004 R11: 0000000000000000 R12: ffffc90003bb75c8
[  815.887453][    C1] R13: dffffc0000000000 R14: ffffc90003bb7618 R15: 1ffff92000776ec3
[  815.887465][    C1] FS:  000055556b441500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  815.887479][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  815.887490][    C1] CR2: 000055556b464608 CR3: 0000000062e2c000 CR4: 00000000003506e0
[  815.887505][    C1] Call Trace:
[  815.887510][    C1]  <TASK>
[  815.887519][    C1]  __asan_memset+0x22/0x40
[  815.887540][    C1]  ? simple_offset_add+0x12a/0x1d0
[  815.887564][    C1]  unwind_next_frame+0x1648/0x2970
[  815.887603][    C1]  ? __xa_alloc_cyclic+0x91/0x2d0
[  815.887624][    C1]  ? __xa_alloc_cyclic+0x91/0x2d0
[  815.887643][    C1]  ? stack_trace_save+0xe0/0xe0
[  815.887662][    C1]  arch_stack_walk+0x144/0x190
[  815.887681][    C1]  ? simple_offset_add+0x12a/0x1d0
[  815.887706][    C1]  stack_trace_save+0x9c/0xe0
[  815.887725][    C1]  ? stack_trace_snprint+0xf0/0xf0
[  815.887749][    C1]  kasan_set_track+0x4e/0x70
[  815.887765][    C1]  ? kasan_set_track+0x4e/0x70
[  815.887780][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[  815.887796][    C1]  ? slab_post_alloc_hook+0x6e/0x4d0
[  815.887818][    C1]  ? kmem_cache_alloc_lru+0x115/0x2e0
[  815.887841][    C1]  ? xas_create+0x607/0x1720
[  815.887858][    C1]  ? xas_store+0xa6/0x19e0
[  815.887875][    C1]  ? __xa_alloc+0x143/0x220
[  815.887892][    C1]  ? __xa_alloc_cyclic+0x91/0x2d0
[  815.887939][    C1]  __kasan_slab_alloc+0x6c/0x80
[  815.887957][    C1]  slab_post_alloc_hook+0x6e/0x4d0
[  815.887985][    C1]  kmem_cache_alloc_lru+0x115/0x2e0
[  815.888009][    C1]  ? xas_create+0x607/0x1720
[  815.888030][    C1]  xas_create+0x607/0x1720
[  815.888064][    C1]  xas_store+0xa6/0x19e0
[  815.888091][    C1]  __xa_alloc+0x143/0x220
[  815.888117][    C1]  __xa_alloc_cyclic+0x91/0x2d0
[  815.888135][    C1]  ? get_inode_acl+0x30/0x30
[  815.888162][    C1]  simple_offset_add+0x12a/0x1d0
[  815.888184][    C1]  ? current_umask+0x16/0x70
[  815.888199][    C1]  ? shmem_tmpfile+0x140/0x140
[  815.888220][    C1]  ? simple_offset_init+0x1a0/0x1a0
[  815.888242][    C1]  ? set_cached_acl+0xd2/0x170
[  815.888265][    C1]  ? simple_acl_create+0x181/0x1b0
[  815.888292][    C1]  shmem_mknod+0xf7/0x1d0
[  815.888310][    C1]  ? shmem_mkdir+0x1a/0x60
[  815.888331][    C1]  shmem_mkdir+0x33/0x60
[  815.888351][    C1]  vfs_mkdir+0x296/0x440
[  815.888379][    C1]  do_mkdirat+0x1d4/0x440
[  815.888406][    C1]  ? vfs_mkdir+0x440/0x440
[  815.888436][    C1]  __x64_sys_mkdirat+0x89/0xa0
[  815.888462][    C1]  do_syscall_64+0x55/0xb0
[  815.888482][    C1]  ? clear_bhb_loop+0x40/0x90
[  815.888499][    C1]  ? clear_bhb_loop+0x40/0x90
[  815.888517][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  815.888533][    C1] RIP: 0033:0x7fcfdc78d617
[  815.888571][    C1] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  815.888584][    C1] RSP: 002b:00007ffd2996ba08 EFLAGS: 00000202 ORIG_RAX: 0000000000000102
[  815.888705][    C1] RAX: ffffffffffffffda RBX: 00007ffd2996ba60 RCX: 00007fcfdc78d617
[  815.888717][    C1] RDX: 00000000000001ff RSI: 00007ffd2996ba60 RDI: 00000000ffffff9c
[  815.888727][    C1] RBP: 00007ffd2996ba4c R08: 0000000000000005 R09: 00007ffd2996b7a5
[  815.888738][    C1] R10: 0000000000000000 R11: 0000000000000202 R12: 00000000000001a3
[  815.888747][    C1] R13: 00000000000927c0 R14: 00000000000c485b R15: 00007ffd2996baa0
[  815.888767][    C1]  </TASK>
[  815.921152][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  815.921174][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  815.921195][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  815.921208][   T29] Call Trace:
[  815.921217][   T29]  <TASK>
[  815.921226][   T29]  dump_stack_lvl+0x16c/0x230
[  815.921267][   T29]  ? show_regs_print_info+0x20/0x20
[  815.921297][   T29]  ? load_image+0x3b0/0x3b0
[  815.921333][   T29]  panic+0x2c0/0x710
[  815.921354][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  815.921389][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  815.921407][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  815.921441][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  815.921480][   T29]  watchdog+0xf80/0xf80
[  815.921511][   T29]  ? watchdog+0x1e1/0xf80
[  815.921547][   T29]  kthread+0x2fa/0x390
[  815.921567][   T29]  ? hungtask_pm_notify+0x90/0x90
[  815.921606][   T29]  ? kthread_blkcg+0xd0/0xd0
[  815.921626][   T29]  ret_from_fork+0x48/0x80
[  815.921653][   T29]  ? kthread_blkcg+0xd0/0xd0
[  815.921676][   T29]  ret_from_fork_asm+0x11/0x20
[  815.921723][   T29]  </TASK>
[  815.941541][   T29] Kernel Offset: disabled
[  816.442224][   T29] Rebooting in 86400 seconds..