last executing test programs:

5m36.720763936s ago: executing program 32 (id=28):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
semtimedop(0x0, &(0x7f0000000280)=[{0x0, 0xb908, 0x1000}], 0x1, &(0x7f00000002c0))

4m52.310068394s ago: executing program 2 (id=88):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_IOCTL(r0, &(0x7f0000002140)={0x20, 0x0, r1, {0x403, 0x4, 0x8, 0xfff}}, 0x20)
syz_fuse_handle_req(r0, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
getdents64(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file0\x00', 0x2200400, &(0x7f00000004c0)=ANY=[], 0x6, 0x237, &(0x7f0000000fc0)="$eJzsmL9rFEEUx78zt7feivijSWFjYcCI5i63h5Lm0AiClQiJvyo9zBpiLjm5rGACYoKNjXYWShoL/wGLFFYWdv4DghYqCBZeYWFjM/J2ZvcmmTtWl+t8n2L4zsybH+/N21csGIb5b/n65dfnJ+em504C2Idx7DHj30uAEFqLjb79p+f3Tjxrnt96/fHVu5X9D97s3o+WKLVzoDLscAV4AN7OlBAnA9Je/ZvEuOnMQWb6MiSOG30VAlWjb0LiitERBK4bfcfSHbKvVm8vtqPqrU57nsQUNXVqQmoa9hXpfr1Ngfn0ykqpA9b86tr6UqvdjrqW8MzcgKlCIjtsacwJYRk+ejMSTet+FMVrjx9tUj+NzZQVvzok6uZtGxCYNePT2Epjo0Ni+X/Y6+9fcvwf4K0wyQDkOVnRovlzJMGyxaHJYssnyJ2z7tRBFLkGdq4qoz9FkXRX+QDZDEuvf0udRHj5uXjGPGiBsy7u9kI9HPwBPA0AjPyVXVHIi1SM9cR7d+qbFnJoPiuRf4RIM+HFgHdPK68eqfztndMPsXjEApBf2Yg3orcAPmzr+qFeChyz6pNn1Y9avHy3trq2Prm43FqIFqKVMGycFsDGqbCWFCLdOnWvX5+DpD7tRZDtXx5i60sf91tx3K3r1hc+AsRxN0z6ofXZzG53ftwwy2JcAHBUd6ik+dmOJecM4WsbmdiSmnCNGIZhGIZhGIZhGIZhGIZhCnEEIvkLmkN4KbH+EwAA//94BVRa")
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x109000, 0x108)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0)
sendfile(r2, r2, 0x0, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r3, &(0x7f0000000e00)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008084}, 0x11)

4m51.146278721s ago: executing program 2 (id=89):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getrlimit(0xb, &(0x7f0000000040))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
read$msr(r1, &(0x7f0000000580)=""/245, 0xf5)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000980)=0x79, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r3 = fcntl$dupfd(r2, 0x406, r2)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0xe4}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x24000094, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
write$binfmt_elf64(r3, &(0x7f0000000f80)=ANY=[], 0x556)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000500)=@file={0x0, './file0\x00'}, 0x6e)
setsockopt$inet_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x24, 0x0, "43cad7244bde5bbd8035d89034a56bad61a87c614899a37c5d0d7da4d7fc948375f3593dbd21eb7618ffb4ff4984e01eedc37998dd16526edb40eaadabe6cd2bd9f9dfeade7787ea64309c01ae05fb70"}, 0xd8)
setsockopt$inet_tcp_int(r4, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6)
socket$netlink(0x10, 0x3, 0x8000000004)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000180)=ANY=[@ANYRES16], 0xb4}}, 0x40)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0xc1105511, &(0x7f0000000040))

4m49.979927398s ago: executing program 2 (id=91):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000ac0)=""/102392, 0x18ff8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x13, &(0x7f0000000180)=0x800001, 0x4)

4m48.015907784s ago: executing program 2 (id=94):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04f74120"], 0x7)
mknod(&(0x7f0000000140)='./file3\x00', 0x400, 0xfffff930)

4m47.176393325s ago: executing program 2 (id=97):
openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_BLANKSCREEN(r0, 0x560e, &(0x7f0000000000))
fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, <r1=>0x0})
r2 = getpgrp(r1)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000), 0xc)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(r2, 0xe, &(0x7f0000000100)={0x8, 0x100080000100008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000140))
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000280)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f0000000380))
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
read$FUSE(r7, &(0x7f0000001d00)={0x2020}, 0x2020)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000040)={0x8, 0x41})
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000010c0)='gid_map\x00')
preadv(r8, &(0x7f0000000000)=[{&(0x7f0000000040)=""/239, 0xef}], 0x1, 0xe, 0x79)
lseek(r8, 0x6, 0x1)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)

4m40.772540149s ago: executing program 5 (id=105):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000ac0)=""/102392, 0x18ff8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x13, &(0x7f0000000180)=0x800001, 0x4)

4m37.819785517s ago: executing program 2 (id=110):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000440), 0x10)
listen(r3, 0xfffffffe)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
write$binfmt_elf64(r4, &(0x7f0000000e00)=ANY=[], 0x78c)
r5 = accept4$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {0x0}], 0x2}}], 0x1, 0x2, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000001c0)=0x80000000)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8091, 0x0, 0x0)
ioctl$NILFS_IOCTL_SET_ALLOC_RANGE(r2, 0x40106e8c, &(0x7f0000000180)=[0xa909, 0x5])
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, 0x0, 0x22040, 0x0)
ioctl$PPPIOCATTACH(r6, 0x4004743d, &(0x7f0000000340)=0x1)
preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)=""/241, 0xf1}], 0x1, 0xffffbdea, 0x0)

4m37.735312926s ago: executing program 5 (id=111):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4040, &(0x7f00000015c0)=ANY=[], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='pids.current\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)

4m29.414589116s ago: executing program 5 (id=123):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000ac0)=""/102392, 0x18ff8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x13, &(0x7f0000000180)=0x800001, 0x4)

4m26.579616434s ago: executing program 5 (id=125):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00')
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x39000, 0x0)

4m22.237098437s ago: executing program 33 (id=110):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000440), 0x10)
listen(r3, 0xfffffffe)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
write$binfmt_elf64(r4, &(0x7f0000000e00)=ANY=[], 0x78c)
r5 = accept4$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {0x0}], 0x2}}], 0x1, 0x2, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000001c0)=0x80000000)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8091, 0x0, 0x0)
ioctl$NILFS_IOCTL_SET_ALLOC_RANGE(r2, 0x40106e8c, &(0x7f0000000180)=[0xa909, 0x5])
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, 0x0, 0x22040, 0x0)
ioctl$PPPIOCATTACH(r6, 0x4004743d, &(0x7f0000000340)=0x1)
preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)=""/241, 0xf1}], 0x1, 0xffffbdea, 0x0)

4m22.189547187s ago: executing program 5 (id=130):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$unix(0x1, 0x5, 0x0)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2)

4m18.571562416s ago: executing program 5 (id=132):
r0 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x31, &(0x7f0000000040)=0x105)
prlimit64(r1, 0xe, &(0x7f0000000100)={0x8, 0x80000100008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc1105518, &(0x7f0000000c40)={{0x5, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0xfffffffffffffffd, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x80000, 0xf, 0x80000000000000, 0x592a, 0x9, 0x0, 0xfffffffe, 0x4, 0x7, 0x0, 0x7, 0x7ff, 0xfffffffe, 0x0, 0x40, 0x0, 0x0, 0x100000001, 0x8, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x20000000, 0x0, 0x2, 0x0, 0x5, 0x0, 0x0, 0xfffffffffffffffd, 0xfffffffd, 0x0, 0x0, 0x0, 0x4000, 0x3, 0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0x4, 0x0, 0x0, 0x40, 0xfffffffffffffffc, 0x0, 0x0, 0x541ec3ed, 0xfffffffffffffffa, 0x0, 0x401, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x400000000000, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x80000000000000, 0xfffffffc, 0x1, 0x8, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x4, 0x0, 0xb5, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xde4, 0x7, 0x0, 0x100000000]})
pipe2(&(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
sendfile(r5, r6, 0x0, 0x1)

4m13.383651253s ago: executing program 6 (id=136):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\'\x00\x00\x00\a'], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='2', 0x1, 0x4fed0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r4, &(0x7f0000000000), 0xd)

4m11.502246978s ago: executing program 6 (id=138):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x24, &(0x7f0000000000)={0x1, 0x4, 0x20ac1d, 0x401})
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = socket(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000180))
tkill(0x0, 0x36)
prlimit64(0x0, 0x7, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x0, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102400, 0x19000)
socket$inet(0x2, 0x2, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x42, 0x0, 0x0)
syz_open_dev$sndctrl(0x0, 0xfffffffffffffffb, 0x204000)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)
connect$bt_l2cap(r1, 0x0, 0x0)

4m3.687792827s ago: executing program 6 (id=143):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_SET_LEDBIT(r0, 0x40045569, 0xc)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x11)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000100)={{0x100}, 'syz1\x00', 0x19})
ioctl$UI_DEV_CREATE(r0, 0x5501)

4m1.91714453s ago: executing program 34 (id=132):
r0 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x31, &(0x7f0000000040)=0x105)
prlimit64(r1, 0xe, &(0x7f0000000100)={0x8, 0x80000100008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc1105518, &(0x7f0000000c40)={{0x5, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0xfffffffffffffffd, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x80000, 0xf, 0x80000000000000, 0x592a, 0x9, 0x0, 0xfffffffe, 0x4, 0x7, 0x0, 0x7, 0x7ff, 0xfffffffe, 0x0, 0x40, 0x0, 0x0, 0x100000001, 0x8, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x20000000, 0x0, 0x2, 0x0, 0x5, 0x0, 0x0, 0xfffffffffffffffd, 0xfffffffd, 0x0, 0x0, 0x0, 0x4000, 0x3, 0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0x4, 0x0, 0x0, 0x40, 0xfffffffffffffffc, 0x0, 0x0, 0x541ec3ed, 0xfffffffffffffffa, 0x0, 0x401, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x400000000000, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x80000000000000, 0xfffffffc, 0x1, 0x8, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x4, 0x0, 0xb5, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xde4, 0x7, 0x0, 0x100000000]})
pipe2(&(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
sendfile(r5, r6, 0x0, 0x1)

3m54.080523935s ago: executing program 6 (id=150):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f00000002c0)=@security={'security\x00', 0xe, 0x4, 0x3d0, 0xffffffff, 0xe8, 0xe8, 0xe8, 0xffffffff, 0xffffffff, 0x3c0, 0x3c0, 0x3c0, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xc0, 0xe8, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00', 0x0, 0x1, 0x0, 0x2}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x3, 0x4}, {0xffffffffffffffff, 0x4, 0x2}}}}, {{@ip={@multicast1, @local, 0xff, 0xffffffff, 'veth0_macvtap\x00', 'vlan0\x00', {}, {}, 0x9e48d1773ed66a78, 0x0, 0x6b}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x7, 'syz1\x00', {0x3}}}}, {{@ip={@local, @empty, 0xff, 0x0, 'batadv_slave_0\x00', 'geneve0\x00', {0xff}, {}, 0x4, 0x1, 0x46}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x9, 'system_u:object_r:devicekit_var_run_t:s0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x0, 0xfffffffb}}}}, 0x430)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x8911, 0x0)
fstat(r0, 0x0)
getuid()
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5cb000)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(r1, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x14, 0x1e, 0x109, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x2b1e, 0x0, 0x20000000}, 0x4000010)

3m52.459725535s ago: executing program 6 (id=152):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000380)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xffff)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000005980)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000300)="a9", 0x1}], 0x1, 0x0, 0x0, 0x48004}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000440)="f5ef50fe11a79158578d664b43e5b65904c4a77842a2d421c6154d4ba91b7c278c16f74161a27f2f45bdfa72948c8d6ee071ac97d8f4c93dacb8bcbbeea1d12c553245246f6949d21c4556b1ceeafac54ac1e948659c9623f81fef8c4ec13341a097005a8594486ee212ed99d48aad9c19c47060d6bafe3721c3c2488f40be0a2646c142a9894bec2fdef92177a2e759395ff54b32c04566bf8b4eaae07ff224c922c3941e73709022cbb3ceedaf5a69008b38982a8c", 0xb6}, {0x0}, {&(0x7f0000000580)="3cbb75177cda7afe6b1dde91fec4e0e6142f62f3a66709bf4f3e70b7f776be877b3120e01a3940dc7d35a330e3ae3240e8405a79871e2a2801b26ba8132103d8cae28e95abe3f86cc0beb2f53f85d3b3d5fcc1fcbde0fabbae87893097d899773fa87fc65927beed86fb1892a80766b52d5a8aff4c01882f3edf17", 0x7b}], 0x3, &(0x7f00000006c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [r5, 0xffffffffffffffff, 0xffffffffffffffff, r3]}}, @rights={{0x1c, 0x1, 0x1, [r6, r4, 0xffffffffffffffff]}}], 0x68, 0x40}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4004080}}], 0x3, 0x200000d1)

3m50.312376453s ago: executing program 6 (id=153):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, 0x0)
syz_mount_image$squashfs(&(0x7f0000000140), &(0x7f0000002580)='./file0\x00', 0x801, &(0x7f00000003c0)=ANY=[], 0x2, 0x182, &(0x7f00000001c0)="$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")
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x3, 0x5, &(0x7f00000006c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}, [@call={0x85, 0x0, 0x0, 0x27}, @call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f0000000680)='GPL\x00'}, 0x94)

3m35.050060775s ago: executing program 35 (id=153):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, 0x0)
syz_mount_image$squashfs(&(0x7f0000000140), &(0x7f0000002580)='./file0\x00', 0x801, &(0x7f00000003c0)=ANY=[], 0x2, 0x182, &(0x7f00000001c0)="$eJzskruuElEUhr89M1y8EW1poDBeCmUY1FhaYu8DSGBE4qDCkCiExDHGUFgYS5/A1zDxBbQwPgA1BbE+mZN9mTkbziOc/RXz77Vmrb3mX/AynaU14GS/HvIEhU+DP0IQAC2hcztP6zejf41+1cJvU/fU5D8ZbabLVdXUtLmhE68GSRLP28B/lStTae+jx05d9W+/HsrDcyDP81zmRiDLuWrV+MDMqmkGcEmZyMsaaUQGt4HOYvq2ky5X9ybTwTgex68jv/cofBCGD6POi0kSh/oprBHGClLvArU6JfJ9Bfhs4sscoKwXn2beV+3eqt7hBxqCYzyrt1DBzwNb+vfKeMYt5Ge9ywTGLXBT3RKgLPUR+FdMT9ErqJlZdVV1f/gmGW0QiKLtBwG+CuRaqZQXRlsr6D3OuKav3HA2XNI/srU12jr6ywSZfH4x0R2/2NO8K0/vB4vFvCuKU1TmouuZvTA59btnbR/45Z3brcPhcDgcDofD4XBcNE4DAAD//0i6cAw=")
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x3, 0x5, &(0x7f00000006c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}, [@call={0x85, 0x0, 0x0, 0x27}, @call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f0000000680)='GPL\x00'}, 0x94)

2m31.759479887s ago: executing program 4 (id=234):
writev(0xffffffffffffffff, &(0x7f0000000240)=[{0x0}], 0x1)
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000180)=0x8001fffd)
socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x1ca5}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
quotactl_fd$Q_SETQUOTA(r1, 0xffffffff80000800, 0x0, &(0x7f00000002c0)={0xffffffffffffff85, 0x6, 0x0, 0x5, 0x6, 0x8, 0x9, 0xfff, 0x8})
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, 0x0, 0x0)
setsockopt$sock_int(r2, 0x1, 0x12, &(0x7f0000000080)=0x10000008, 0x4)
recvfrom(r2, &(0x7f0000000440)=""/145, 0x91, 0x40010062, 0x0, 0x0)
listen(0xffffffffffffffff, 0x802)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mounts\x00')
read$FUSE(r3, &(0x7f0000000d80)={0x2020, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x2020)
capget(&(0x7f0000000440)={0x20071026, r4}, &(0x7f0000000480)={0x1, 0x6, 0x40, 0x1ff, 0x5, 0x2})
socket$kcm(0xa, 0x2, 0x0)

2m30.679292226s ago: executing program 4 (id=235):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
r4 = syz_open_procfs(0x0, &(0x7f00000009c0)='net/tcp6\x00')
preadv(r4, &(0x7f00000000c0)=[{&(0x7f00000002c0)=""/156, 0x9c}], 0x1, 0x443, 0x10000)

2m29.61080857s ago: executing program 4 (id=236):
syz_mount_image$xfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x1010894, &(0x7f0000000000), 0x1, 0x96e0, &(0x7f000001c400)="$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")
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x380407b, 0x0, 0x1, 0x0, &(0x7f0000000040))
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2m28.075567736s ago: executing program 4 (id=237):
syz_mount_image$erofs(&(0x7f0000000140), &(0x7f0000000000)='./file2\x00', 0x300000c, &(0x7f0000000080)=ANY=[], 0xfe, 0x26e, &(0x7f0000000640)="$eJzsmL1rFEEYxp+Z/bicpyE2FjYWBlQk97HXpAkSQbASIfGr0sOsIWbNwd0K3oHEYGOjnYVgY+E/YBEwVQo7/QMCWqggKHiFhY3Nynzs7uR27261zfsrJs+9887MOw+zbxEQBHFg+frl9+en5+eXwYDDmEVJx79bAGNKcyP/04v7Z58vXHj55uPrdxvTD3fiuKX/iiVRZCxgwNSY820Au4sWNpOTktViCrP6xzK40D+EvgKOMzp+DQxVrW+B46rWPhhuaH3X0G2RX63eWQv86u12sCJEXQwNMXhiaOpUJy5isMWwooNRZIEZ9XP011tB4He6vUTYeq6XnRohomhcTmJsDg5cDBa5rBW707JC4eL1J4+3RCj2pq78kzTA0dD7NcGwpOPzKAlvADxSlhj3P27H9xcOpKgqs7f981bmiolJ959SYuFXbo54kEJ8QKfL9h062lAXShydK+R+RsRuD0/NZCLjBZe2DO3jxP51e32him5o/est1NORwh7xFllq5jnt7cSdK+Z1Kna3179U9BbPygAKFe/qaoanSjkVOplIgVvkCEutOjbYeZ/N+SZF3MmSl5k6FrHJR7Di78cp+NSD+EMMNv/rqQd+p4z+Oi/uWKnwR7S3rfpH9IrhFNL+YRv9oxbaqHV7/bm1e61Vf9Xf8LxmqZJ0PL9ekx062/iSfliW/emQsb+T3yrhchcPWmHYaajRZS7KCMOOJ397xmeztN3+eVMvC3ERwMn0WDfZ0cqW5aocLnOFOp1NQmVEhQRBEARBEARBEARBEARBEMPMGPoEmPwvqGDvCFDW8Wg/3mUZ/RsAAP//9IMvBQ==")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

2m26.741027897s ago: executing program 4 (id=238):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x2000, &(0x7f0000001ac0)={&(0x7f0000000000)={0x20, 0x2e, 0x1, 0xf0bd26, 0x25dfdbfc, {0x4}, [@typed={0xc, 0xc, 0x0, 0x0, @u64=0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x4c0d9}, 0x20000000)

2m22.587892218s ago: executing program 4 (id=243):
openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_BLANKSCREEN(r0, 0x560e, &(0x7f0000000000))
fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, <r1=>0x0})
r2 = getpgrp(r1)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000), 0xc)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(r2, 0xe, &(0x7f0000000100)={0x8, 0x100080000100008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000140))
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000280)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f0000000380))
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000040)={0x8, 0x41})
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000010c0)='gid_map\x00')
preadv(r7, &(0x7f0000000000)=[{&(0x7f0000000040)=""/239, 0xef}], 0x1, 0xe, 0x79)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)

2m21.77141517s ago: executing program 36 (id=243):
openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_BLANKSCREEN(r0, 0x560e, &(0x7f0000000000))
fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, <r1=>0x0})
r2 = getpgrp(r1)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000), 0xc)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(r2, 0xe, &(0x7f0000000100)={0x8, 0x100080000100008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000140))
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000280)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f0000000380))
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000040)={0x8, 0x41})
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000010c0)='gid_map\x00')
preadv(r7, &(0x7f0000000000)=[{&(0x7f0000000040)=""/239, 0xef}], 0x1, 0xe, 0x79)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)

58.871233418s ago: executing program 3 (id=331):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
symlink(0x0, &(0x7f0000000040)='./file0\x00')
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x40041)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r3, 0x2275, &(0x7f0000000040))
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f00000000c0)={'dt2817\x00', [0x5c25, 0x0, 0x3, 0x0, 0x5, 0x8, 0xc, 0x20000009, 0x7ffd, 0xfa, 0x4, 0x1, 0x200004, 0x403, 0x8, 0x9, 0x4, 0x2, 0x3, 0x3, 0x5, 0x100, 0xb27, 0x9, 0x800b, 0xa1cf, 0x7, 0x8, 0x800007, 0x10004, 0xfffdfff3]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000300)=r4, 0x4)
syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x48814}, 0xc000)
ioctl$TCSETS(r0, 0x89f2, &(0x7f00000011c0)={0x6, 0xffff, 0x0, 0xd, 0x0, "5dee000000594000"})

56.988678571s ago: executing program 3 (id=333):
syz_mount_image$ocfs2(&(0x7f00000026c0), &(0x7f0000004780)='./file0\x00', 0x200000, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1, 0x4703, &(0x7f0000004800)="$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")
creat(&(0x7f00000000c0)='./file0\x00', 0x6)

53.499479294s ago: executing program 3 (id=335):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="0000000000004a641c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}, 0x1, 0x0, 0x0, 0x8d0}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newlink={0x80, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x50, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x3c, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}}, @IFLA_GRE_REMOTE={0x14, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x200}, @IFLA_GRE_FLOWINFO={0x8, 0xc, 0x2}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x80}}, 0x884)

52.940114899s ago: executing program 3 (id=336):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7)
r1 = creat(&(0x7f0000000380)='./file0\x00', 0x98)
writev(r1, &(0x7f0000000100)=[{&(0x7f0000000080)='P', 0x1}, {&(0x7f0000000040)="90ddd5", 0xfffffe7e}], 0x2)
unlink(&(0x7f0000000200)='./file0\x00')
mount$9p_unix(&(0x7f0000000280)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0xb15009, 0x0)

51.223485113s ago: executing program 3 (id=337):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
eventfd2(0x1, 0x1)
pipe2(&(0x7f0000000000), 0x80000)
syz_emit_ethernet(0x0, 0x0, 0x0)
creat(0x0, 0x150)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r2 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGMASK(r2, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"})
ioctl$EVIOCGMASK(r2, 0x80104592, 0x0)
r3 = openat$binfmt_register(0xffffff9c, &(0x7f0000000180), 0x1, 0x0)
write$binfmt_register(r3, 0x0, 0x0)

48.972882705s ago: executing program 3 (id=340):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)={0x1c8, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'batadv0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'bond_slave_1\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'erspan0\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'ip6erspan0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_hsr\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'gretap0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'batadv_slave_1\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'macvlan0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'xfrm0\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan1\x00'}}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x89}, 0x24048800)

32.775218656s ago: executing program 37 (id=340):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)={0x1c8, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'batadv0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'bond_slave_1\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'erspan0\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'ip6erspan0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_hsr\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'gretap0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'batadv_slave_1\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'macvlan0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'xfrm0\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan1\x00'}}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x89}, 0x24048800)

19.290232063s ago: executing program 8 (id=396):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file0\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x5, 0x4459, &(0x7f0000004480)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000300)='./bus\x00', 0x400, 0x0, 0x0, 0x0, &(0x7f0000000300))
syz_mount_image$exfat(&(0x7f0000000100), &(0x7f0000000140)='./bus\x00', 0x0, &(0x7f00000003c0)=ANY=[], 0x22, 0x151f, &(0x7f000000a940)="$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")
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2, 0x11, r0, 0x0)
read(r0, &(0x7f0000002400)=""/4096, 0x1000)

16.948136884s ago: executing program 7 (id=401):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='2', 0x1, 0x4fed0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r4, &(0x7f0000000000), 0xd)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)

15.149070731s ago: executing program 7 (id=403):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r3, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)

13.295585691s ago: executing program 8 (id=407):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

11.575403393s ago: executing program 8 (id=410):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)

11.194862888s ago: executing program 8 (id=413):
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x14, 0x2c, 0x0, @rand_addr=' \x01\x00', @local, {[], {{0x3b00, 0x5, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x80}}}}}}}, 0x0)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
openat$zero(0xffffffffffffff9c, 0x0, 0x3091c0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setresgid(0xee00, 0xee00, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair(0x4, 0x0, 0x0, &(0x7f00000002c0))
prlimit64(r1, 0xc, 0x0, 0x0)

10.407642673s ago: executing program 7 (id=415):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x1)
socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
symlink(0x0, &(0x7f0000000040)='./file0\x00')
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x40041)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000040))

8.611357808s ago: executing program 0 (id=417):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000000c0), 0x88002, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0xd)
epoll_create1(0x80000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x4000000000001, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
read(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0xfffffffc)
close_range(r0, 0xffffffffffffffff, 0x0)

6.935485561s ago: executing program 9 (id=419):
r0 = socket(0x10, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000940)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x50}, 0x1, 0x0, 0x0, 0x11}, 0x40004)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000001c0)={0x10000014})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r3, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmmsg(r5, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000001e80)=""/4098, 0x20001b80}, {&(0x7f0000001b80)=""/96, 0x65}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r4, r3, 0x0, 0x578410eb)

6.278615781s ago: executing program 8 (id=420):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, 0x0, 0x0)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
recvmsg(r1, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x0)

6.165825174s ago: executing program 8 (id=421):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd27, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x4, 0xffff2153, 0x2, 0xa, 0xd, 0x1c4, 0x7, 0x2, 0x6}}}}]}, 0x58}}, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r6, {0x4, 0x5}, {}, {0x7, 0x5}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x4, 0xb, 0x20000000, 0x9, 0x3}}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x20048091}, 0x0)

6.083344156s ago: executing program 1 (id=422):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

5.842101772s ago: executing program 7 (id=423):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xc}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
arch_prctl$ARCH_GET_GS(0x1004, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80000)
fcntl$setpipe(r0, 0x407, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x28, 0x2, 0xffffffff82048008, 0x0, 0x40, 0x8, 0x0, 0x0, 0x0, 0x104, 0x8}}, 0x50)
vmsplice(r0, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
fcntl$setpipe(r0, 0x407, 0x2000000)
ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
ioctl$RTC_WKALM_SET(r1, 0x4028700f, 0x0)

5.707499642s ago: executing program 9 (id=424):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)

5.582921782s ago: executing program 1 (id=425):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in=@local, 0x1, 0x71c, 0x0, 0x0, 0xa, 0x0, 0xc2ca4bd923256b4d, 0x32}, {@in=@loopback, 0x0, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x3f}, {0x0, 0x192, 0x9ba3, 0xffff, 0x251c, 0x3, 0x6, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x21}, {0xffffffff}, 0x80, 0x34ff, 0x2, 0x1}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x2000c002}, 0x0)

5.342361742s ago: executing program 9 (id=426):
userfaultfd(0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000200)={0x2020}, 0x2020)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='io.latency\x00', 0x2, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000140)={{0x0, 0x3, 0x2, 0x2, 0xfffffff2}})

5.340645105s ago: executing program 1 (id=427):
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0x2, 0x300)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6(0xa, 0x2, 0x0)
syz_open_procfs$pagemap(0x0, &(0x7f0000000100))
epoll_create1(0x0)
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x0, 0x8)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x48885)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

4.719492194s ago: executing program 9 (id=428):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\'\x00\x00\x00\a'], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='2', 0x1, 0x4fed0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)

3.475799252s ago: executing program 7 (id=429):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
recvmsg$unix(r1, 0x0, 0x2000)
sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0x1}], 0x1}, 0x0)

3.353011818s ago: executing program 9 (id=430):
r0 = openat$comedi(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcmda12\x00', [0x101, 0x80000000, 0x5, 0x400, 0xe, 0x800007, 0x7, 0x6, 0x8, 0xfd, 0xffffffff, 0x4001, 0x1, 0x21, 0x10000b, 0xfd, 0x4, 0x7a, 0x4, 0x40000003, 0x89, 0x12, 0x207f, 0x0, 0x8, 0xe69, 0x1, 0x4, 0xc18771e, 0x0, 0x1]})

3.265985842s ago: executing program 1 (id=431):
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x14, 0x2c, 0x0, @rand_addr=' \x01\x00', @local, {[], {{0x3b00, 0x5, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x80}}}}}}}, 0x0)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
openat$zero(0xffffffffffffff9c, 0x0, 0x3091c0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setresgid(0xee00, 0xee00, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair(0x4, 0x0, 0x0, &(0x7f00000002c0))
prlimit64(r1, 0xc, 0x0, 0x0)

3.004071414s ago: executing program 7 (id=432):
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f000000ac40)="$eJzs3X9sVeX9B/BzWwoN+C39jhUYfxAgBoMkyJYtjqB4MQa24eKlgsKcCEQlBivYRDcYqUWSZcaghU4EF5GQaDJjscM/FMywy7CMZfzY5hZjs4JSaZZsAzVrHDG69N77XO49l9tembNOXy/SnvPcz3me+9yT88d9X/qcGwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAURUcSc9+d0f3i0ZE1X77/Hz+e+OjGn4zfvX/roVvu23T/gjMjbto5a1nf+mlN8zdsbDjS/PS+ObdGUSLdL5Htf9u136q/88bbvlsdBly+MLOtrS31lJmuJzON4QUP9vcr/FkRRVFVbIDK7PbV7E5FwQC53cbiAQf0Tuui6O7J8ya1dT01bklyYU/xS6df9VBPYKhkr6ue89dSMv27InZErp136SUKLtFM//gF96m8CADgY5mZSm9yb0ezb3Fz7eZ4PdZOxtotsXZ4h9CS37gYmXGHl5rnpHh9iOaZzESFESXnGatnz3+unYr3j7VjUeNjzLPw0GykqS41z7Wx+lDNEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCzZOzxo2tWtD2y575fdtQceff9OVc+8KWOw22LT4y8eunKHWum/HTWsr7105rmb9jYcKT56X1zbo2i2nS/RKZ74kTL5b9NjZ3fvXfcG427n6vpq8yOG7bD8g6OXg87s0ZH0cq8Sk8Y9q81UZQqLKSb0Y7iwl3pnW+HAgAAAJ8nX0n/rsi1M3GwqqCdSKfJRPpfkAmL77Quiu6ePG9SW9dT45YkF/Zc/HipEuMlLzherl17/ieRF4xD/I2Pd74eDm0sGmdg8RHjef7SMWPefmty/eSvT5v7xA3PjOru+r8nZ2xJ/bGu5oUrru+tf/a6ovxfO3D+D2dO/gcAAOA/If/HxxnYYPn/jqVTt7z+i2Grft3a8MTB+h1/bv3OMzsXneq54Ud9L09N3v7o1UX5f1LBUxbl/zDjkP8roovL/wAAAPBZ9t/O/8micQY2WP5vONM3+wcHX6vr+PucxXt+9dAVi8+e/tv8U7t3DV9zR8v6uoeuLMr/M8vL/8Pypx0e/F2Y8OrRUTSz/JMKAAAAFAj/737+o4WQ1zOfHMTz+rX/vKp5380ffPMbD97zpzff/s2xA7MnrdteN/PgyzfVf1j5ve3dRfk/WV7+r/p0Xi4AAABQhuePrpw773jPucfPvtB18vDu3pMznjyzrqnvdOslLatXbTr2WlH+T5WX/0cMzcsBAAAALuDeO59bsfnVl/oe2H/X2Ck9FVc1XpK4ZduOqU0TPuq8tPfy7VuL8v/y8vL/yOw2u/Ih06kz/BVC6+goqu7fWZspHIparskVAAAAgE9IyOlbP1ixbOzOsb3jj59+rObQG4dn/2Vt55yN13RXdW/uXNZ4WdH9AkJiL3X//3Cng7D+v+D+f0Xr//MKmbv+zXZjAAAAAL6Iitfzh9vjZ765oNT375e7/n9J3cQTiba33lv11XMHzo1ZsP/7129aV9/be8+El37/wz9M/6i6KP83l5f/K/O3n+T3/wEAAMBF+F/7/r+lReMMbLD7/zdV9DWsWrd3+uota7csTCw7UH3qwdV731+w5l9Tb36+qea6A0X5v6W8/B+2o/JfXkc4P5tGR9H4/p3s3QR/Hqa7OlZor8orZE58rMeNoUe20D4ir5C2Ntbja6OjaHL/TnOs8P+h0BIrnK3JFnbFCsdCIXs95Ap7YoWOcKVtq8lON154MRSyCyzawwqKUbklEbEe75Xq0V+4YI+u3JMDAAB8oYTwnM2yVYXNKB5l2xODHTBysAMqBjugcrADhsUOiB9Y6vFoeWEhPH575yMbNjVMSb7y8NzHfvbms40T9j1+WV3v5g9f2XbvxJ3TW6YW5f9d5eX/cCqGZzal1v9HYf1/9nsNc+v/l4dCbazQHgqp+B0DUuE5MmH34fActalsj7PjcwUAAAD4XAufC1QO8TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/s3evcdJVd0JAj/d9INumqaNE9GMk3TUgGakaWwNw+AoaoxGRZpZddxkNBBoEGmE8FgFURtQZxziZ3ztrJnoCAoiu+qHGFeDwUhcxIw6iWLiA/Cxjq7r+h6VGM2E/XTfOkXVrS67EFDa+X7/6DpVv/O89eg69946FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/xjuPfjlk4YunP0PHzace8nqqqmL/kfH6Mv+cNW3vvjUPy5b9G9h/i9GnLll3kEXHjd/wbR/6Vi++ogzQmjtKleWFC977oqvPtS613HP3jFw48wbb63fUpWpNxMP/Tr/lGfuXBxbfbF/CHeXhVCRDgypSwKVmft1sb5960LYI2wLZEu01SYl0g2HB2pCWBK2BbJVra4JoS4ncMqG+++7vDNxTU0IXwkhVKfbeKY6aaMmHRhUlQRq04HpFUngt1sT2cBPypMA7LD4Zsi+6Fe15mdo6L5ckddf5U7r2KcrPbw+MdFQPN/rR+3iTuWoSj/QukNPW0F17BIFb4+13m294N1WsJ2v8LTlfpHKfEPZui1UHcontk0aP6d9dnykPDQ19SlW0y56np9+e/6E7Un3mtdh7EDDTnkdXvrYiun9lo2+9OrNvxqz4ayaA3a0m0/lbNLc9K5WHTKvuV7zPEajfJ70grdfwbekRl+6Qghbzz17xtfnTDz7iD63PLnu1QcfrNty9pwFvzhz4nmLLj55w7/Pf6lg/t/w0fP/+HKOt+V5uWOrH9Ync/P4SF1MvFmfzM0BAACg1+gNe01Xnv/6X73+/bWtMxed/u23Dj73w71afz3i/gFVB7yxrqn1/I2ff6Vg/t9Y2vH/eMi/Lne0a0MY1ZVYNCCEvbseTwIrY3e+OyCEL3elWvMDR6UCa0PYpytxULaqVIm+sURjKvByfSYwKhVYHwOtqcDyGLgiFbg4BlalAhNiYG0qcHQMhCn54/hqfWYcJQdqYmBcshFXxbMQ3qmPraW21aZsVQAAADtJZnZYmX8351yHHc0Qp5eranrKEM/ALpqhOlVDegabnVYVraGipxrKe6ohO+6Ojx5+Qc1lPdVccBpGWX6GG9f85X2LXjzsC2P3mvj5xUMvmPKz8eGst++uerx5yYtv7XvEzesK5v/NHz3/r+6mI2UFx/9DGNv1N+Yuz0Tas/FxrXkZAAAAgB1w0R//xR61Lw85oGHT+2X3zl/7xKMrfrl5j1NOf3/c8a//8PCaxnsL5v+jSjv/P+4T6ZOTOTwSd0NMHRBCc34gqXZkYSA56t0vEwAAAIDeIHs8PnssfErmNjlFOz2fLszfup3544H/Ud3m//09/7P2jq3/+mLZBd89d0TNgKX/9GrHhBNOPvqW47/1zj4VB/yyvGD+31ra+f+1+bdJJ9bHXlw9IIS+OYEHYy87A10aY+D5I/MDmfGvjxtgcawqc2JCtqrFscS4GGhOBZYUK/FotsTe+YHMk5VtfFF2HFMyJXICAAAA8ImLuwPicfl4/n/LGSNO++vvzfrbha88eN7qCy75q+Ed80eedP/THzbMvXJp2PTmEQXz/3Hbd/5/1zy44PT+9n4hDK0IoU/6hwGP1CYLA8ZAXVkmcW9tUlefdFULa0MY2TmwdFUvZNb/r0ivMfh4TVJVDOy93y1vD+pMLKsJYWhu4IlvLz2sMzEnFcg2flpNCF/qHG268bv6Jo1Xphu/tm8IX8wJZKua0DeEzsaq0lX9r+rMdQzSVa2qDmHPnEC2quHVIcwNAPRW8X/pxNwHZ82dN3V8e3vbzF2YiDvxa8KkKe1tTROmt0+sLtKniak+561jtKBwTKVe+mZTZo2ixSsnV5aSzv5QsDm3rcyO/IIzBzP345ehyq5xHlKZd7clPeQD9y9sIuR8lSo25PJdPOTa3Eq2PYkF9cf8VaFf6DtnVtvMpvPGz549c1jyt9TshyR/43GmZFsNS2+r2u76VsLLo+hyWSkfd1sNyq1k6OxpM4bOmjtvyJRp4ye3TW47p+XQP2sZMXz410YM7RxUc/K3h5EO6q7m1Ei3Li1xWDtxpF+oyKnkk/jQkJCQ6G2J/f7L5odH77n+nOt/9tqPz+/3zdPu3fvImT889KqpD1Xve/ji24ccWDD/n/HR8//4qRM/+DPrMxQ7/t8QD/Mnj287zD8uBpaUevy/odjR/OyJAY2pQEcMdDjMDwAAwGdD3B0Z92bGndKbb1m/buOSlrk/aHin5dY17Utvuum+U39y58ATvjQ47LXhuhM+VzD/7yjt9/87af3/7NL1JxRb5v+gWKK52Pr/6WX+s+v/dxRb/z+9zH92/f8ln8L6/3OygdQmecf6/wAAwGfBJ7f+f4/L+6cvEFCQocfl/dMXCCjI0OMy/qVeIGC71/9f8+Bff6Wq35g7/qTlN/WXvPZ39xzWeuS6zTP/5Etb10+877qxt6wpmP9fUdr838L9AAAAsPv4z5ddU3H02Xff0bJu6sZxbw5+98m3lgzq80HF0Q+3j3xh4Bu3nlcw/19S2vz/k1//LxQ7/7+xWKC12MKA1v8DAACglyq2/t89Q1sa/zCm/x+eHvab5Q/ePPqnj/z898v3+/mJPyvfZ8Gxz8+8bFLB/H9VafP/eNpFeV7u2JsP65M17UJ6Tbs367M/GQAAAIDeoTw0NVWWmDdvYdSjPn6bT2eWAv2odK7vvXLt2ZtfmH7c46ev+7uaEwbvOWHaBasa/2b4gXd+ftQley7ddGrB/H9tafP/vN9lXPrYiun9lo2+9MOrN/9qzIazag7YdvwfAAAA2HVK3S8BAAAAAAAAAAAAAAB8+s7tWHzhI8uOfe+bt//F/kcseXXwbXcd+Lsh/V664qoHJq1648zJXy/4/X8Y21Wu2O//43X/4u8L/igvd2y15/X/MvdPOfH2uV1LFj5SH8L+uYGpC6fuETLX5h+cG7jvjIMGdiYWpkusefbolzoT30kHjh/yuS2dicNTgXFxkcR90oF4VcUt/VOBuLzi4+lA3B6r0oGqTOCy/sk4ytLb6pW6ZFuVpbfVxroQBuQEstvq7rqkjbL0AK9JBbID/F46EAd4ciZQnu7V7f2SXsVAXSx6Q7+kVwAA7Lbit8DKMGlKe1tz/Aofb79QkX8b5S1ZtqCw2rISm9+UWZps8crJlaWk+6S/i2671nhlqO4cwrCCr6u5Wcq6Rrlzaulh0/1RkSH3tNpbeZFyadu76aqKj6gmGVHThOntEyt7HHhLz1kOqegxy7CCyU5ulvKuTVpCLSX0pYQRlbhtSuhyvF8empr6pHL9eQw2hDw9vSJK/b1+7jp/xV4FuXluO/TKt758zE+f++CfP/9E/2+cVnP7rO+/e+KvX7//wEOOuG5C05otBfP/htLm/9W549qSuRhAR7yy3sgBIYwrcUQAAADw2XfbRbfecfr09a9MWlvx5GOPTS0fc3rl1vl3zp93ycZ7Fx9/2cErdjR+2Fm//f5vBu//b89e9dJPR+7zwA03/58nD3v8z3//8I8eeqduZZ+x7xXM/xtLm//HPViZQ8HJ3o618fr/iwaE0HVp/YYksDIO97sDQvhyV6o1lkguqH9CLNGcBFbGHSYHxRLjWvOr6hsDq1KBl+szgbWpwPoYyOyluCVkduVcWR/CYV2psfklZsQSDanAmBhoTAWaYqA5FegfA6NSgdf6ZwKtqcDDMRCm5G+rH/fPbCsAAIDtkZlnVebfDel53qqKnjKU9ZShtqcM5T1lqO4pQ7FRxPt3xAyVqZNXynIyVaZrrUnVUpAhXgx/u/tVkCE8mp8zXbCg6Xj+QfZ8g7L8DFf+4NlT1w+e/tDqzcd8beBt/zhkz4Obp9e9t+CGp3475pzrnv/TQQXz/+bS5v+1+bdJ6+vj/H/b9f+SwIOxe1fHU8cbY+D5I/MDmR0D6+Nkd3G2qtZMicykfXEsMSoGGlOBGTEwKhUYNzYTWDIwP5CZaWcbX5RtfEqmRE4AAAAAPnFxB0HcTRPn/zce9YOr3x8wccuyeTPvH9vyxMmjv3H1XT+6d/9ld767YvCAce99p2D+P6q0+X9sr19uYxfH3rzYP4S7y7b1JhsYUpcE4n6Muvjz+H3rQtgjZwdHtkRbbVKiKtVweKAm+YV6Vbqq1TXJGgPx/ikb7r/v8s7ENTUhfCVn70u2jWeqkzZq0oFBVUmgNh2YXpEE4p6fbOAn5UkAdlh2r2B8QWVOdclq6L5ckdffZ+WaoOnhFewD7SZfd7+52lWq0w9k9qlmbd/TVlAdu0TB22Otd1tvfLc1eLflfpHKfEPZui1UHcontk0aP6d9dnwk95esBXbR85z7K9VS0jvhddjx8Xvbs+p0B5pTHx/N3Zfr/nVYFqu79LEV0/stG33p1Zt/NWbDWTUHlNyNIuIPhX+05X9XPpWzeXe16pB5zfW6z5NWnye98d9Ao6cthHDZ9cfsu+TdX+/33A3Pnbqu7Maxr/7lrHs2Lf+bysNHrXv/yaGjLy+Y/7eWNv+vSN12+V3cmLMGhHBgzsZ9JG7+YwYkn4M5geRTcs/CQHLI/V/ri35yAgAAwM6W3d2R3V8wJXObnBCenicX5m/dzvxxf8WobvOX2u9j121cedLQN6474G8vOPGNv7/28Kceuv6ysnXL//vYD1avuXzxe08UzP/HffT8v2+qm47/O/7PLuL4f7d2913RfdMPdOzQruiC6tglHP/v1u7+bnP8v1uO/zv+3x3H/3vg+H+3dvenreBb0gxfujonwdff+fPfTbzpg7mN+x180lPPHDrxun+6quXuu0555b+de9601761uWD+P6O0+b/1/7pftC+7/t+4Yuv/zSi2/l+H9f8AAIBdqshCc+l5XsHqfQUZ0qv3FWTocYHAHpcYtP7fdq//t3Dkv1904Q+fb7n2nTvHXb5m07Fnvvr0utXPzFpx3Lnnv9V6112tBfP/jtLm//Hl0C+39d6y/l/j2CJVXREDMywMCAAAwO6o2A4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPl2HnvbO+5d8/R/aBv1ixc1/f+v/+7/P1q594JvfuGn4L6f86RllazZcM+LMLfMOuvC4+Qum/UvH8tVHnBHClK5yZUnxsueu+OpDrXsd9+wdAzfOvPHW+i3VmXorM7d/nJc7tvphfQhLch6pi4k36zvvbAuccuLtcys6E4/Uh7B/bmDqwql7dCaW14cwODdw3xkHDexMLEyXWPPs0S91Jr6TDhw/5HNbOhOHZwJl6e5e1z/pblm6u5f3D2FATiDb3bP751eVbeO4TKA83caKuqSNGKiLRa+tS9qIgfZYYkrfEIZWhNAnXdU/VydV9UlXdU91UlWfdFUXVYcwMoRQka7quaqkqor0yB+tSqqKgb33u+XtQZ2JpVUhDM0NPPHtpYd1JmamAtnG/1NVCF/qfMmkG/9xZdJ4Zbrx/1oZwhdDCFXpEu9VJCWq0iVeqAhhz5zAto1YEcLcwGdD/PSZmPvgrLnzpo5vb2+buQsTVZm2asKkKe1tTROmt0+sTvWpmLKc9NYFH3/sm96eP6HzdvHKyZWlpCsy5Sq7unxIZd7dlt2997FftbmVbHs+CuqP+atCv9B3zqy2mU3njZ89e+aw5G+p2Q9J/vbJRJNtNay3bKtBuZUMnT1txtBZc+cNmTJt/OS2yW3ntBz6Zy0jhg//2oihnYNqTv7ujJEu/eRH+oWKnEo+ife/hIREb0uU5326Ne/un+MFX/S3dbQyVHd9QBdMK3KzlHWNcmcM+qiPOeKP8zWlxxENK5g4FGQ5pOcsLQWTiW1ZapIsXV/rCiaHuTWVd23SeL88NDX1KbYdGvLv5m7e13dg8z6d2XSlpgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4FAAA//8fSxmR")
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})

2.207376626s ago: executing program 0 (id=433):
io_uring_setup(0x650b, 0x0)
setuid(0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
gettid()

1.201628042s ago: executing program 1 (id=434):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040))

1.063335379s ago: executing program 0 (id=435):
openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e23, 0x1, @empty, 0xfffffffe}], 0x1c)
capset(&(0x7f0000a31000)={0x20080522}, &(0x7f0000000080))
memfd_create(0x0, 0x1)
openat$comedi(0xffffff9c, &(0x7f0000000100)='/dev/comedi0\x00', 0x101001, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$FS_IOC_READ_VERITY_METADATA(0xffffffffffffffff, 0xc0286687, &(0x7f0000000280)={0x3, 0x1, 0x7f, &(0x7f0000000080)=""/127})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000009c0)=@newsa={0x10c, 0x10, 0x421, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@multicast2}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@empty, {}, {}, {}, 0x0, 0x0, 0x2}, [@replay_esn_val={0x1c}]}, 0x10c}}, 0x0)
r3 = msgget$private(0x0, 0x31)
msgsnd(r3, 0x0, 0x1b, 0x5f005e4c1fdd0237)
msgrcv(r3, &(0x7f0000000040)={0x0, ""/175}, 0xb7, 0x3, 0x800)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

1.002603788s ago: executing program 1 (id=436):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

657.241932ms ago: executing program 0 (id=437):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0xf0, 0x10, 0x633, 0x70bd2c, 0x0, {{@in6=@private2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a}, {@in=@multicast2, 0xfffffffd, 0x32}, @in6=@loopback, {0x0, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0xfffffffffffffffc}, {0x0, 0x0, 0x0, 0xa}, {}, 0x100, 0x0, 0x2}}, 0xf0}}, 0x0)

454.76276ms ago: executing program 0 (id=438):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x48, 0x2, 0x6, 0x5, 0x0, 0x0, {0x5}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x48}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000050)

167.687847ms ago: executing program 0 (id=439):
userfaultfd(0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
r0 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000140)={{0x0, 0x3, 0x2, 0x2, 0xfffffff2}})

0s ago: executing program 9 (id=440):
syz_emit_ethernet(0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
madvise(&(0x7f000042f000/0x800000)=nil, 0x80fd00, 0x66)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x4}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x1)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40186f40, &(0x7f0000000440)=0x40)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha256)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet6(r2, &(0x7f0000000100)="1f", 0x1, 0x20004044, 0x0, 0xb3)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[])
syz_open_procfs(0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x4)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r3, 0x11c, 0x4, &(0x7f0000000040)=""/173, &(0x7f00000002c0)=0xad)
socket$nl_netfilter(0x10, 0x3, 0xc)

kernel console output (not intermixed with test programs):

sb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  148.711550][ T5765] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  148.759178][ T5765] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  148.802549][ T5765] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.888738][ T5765] usb 5-1: config 0 descriptor??
[  148.940349][ T5765] hub 5-1:0.0: USB hub found
[  150.279633][ T5765] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  150.382512][ T6273] Bluetooth: MGMT ver 1.23
[  151.003986][ T5765] usbhid 5-1:0.0: can't add hid device: -71
[  151.047902][ T5765] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  151.125741][ T5957] 8021q: adding VLAN 0 to HW filter on device batadv0
[  151.138981][ T5765] usb 5-1: USB disconnect, device number 3
[  151.389682][ T6284] loop2: detected capacity change from 0 to 16
[  152.335050][ T5957] veth0_vlan: entered promiscuous mode
[  152.405837][ T5957] veth1_vlan: entered promiscuous mode
[  152.891178][ T4937] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  152.898319][ T4937] Bluetooth: hci2: command 0x0401 tx timeout
[  154.321705][ T5957] veth0_macvtap: entered promiscuous mode
[  154.382680][ T5957] veth1_macvtap: entered promiscuous mode
[  154.409548][ T6301] loop0: detected capacity change from 0 to 1024
[  154.577982][ T5957] batman_adv: batadv0: Interface activated: batadv_slave_0
[  154.646011][ T6303] loop5: detected capacity change from 0 to 512
[  154.784936][ T6303] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  154.837027][ T5957] batman_adv: batadv0: Interface activated: batadv_slave_1
[  154.963367][ T6303] EXT4-fs (loop5): 1 truncate cleaned up
[  154.993493][  T146] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.004030][ T6303] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.042257][ T6301] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.054675][  T146] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.093247][  T146] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.114939][  T146] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.118295][ T6301] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  155.174997][ T6301] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2860: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  155.211224][ T6301] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  155.320833][ T6301] EXT4-fs (loop0): This should not happen!! Data will be lost
[  155.320833][ T6301] 
[  155.377089][ T5622] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.416963][ T6310] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 4 with error 28
[  155.486600][ T6312] loop4: detected capacity change from 0 to 8
[  155.500280][ T6301] EXT4-fs (loop0): Total free blocks count 0
[  155.522426][ T6310] EXT4-fs (loop0): This should not happen!! Data will be lost
[  155.522426][ T6310] 
[  155.542121][ T6312] SQUASHFS error: lzo decompression failed, data probably corrupt
[  155.580392][ T6310] EXT4-fs (loop0): Total free blocks count 0
[  155.589478][ T6312] SQUASHFS error: Failed to read block 0x1c6: -5
[  155.641411][ T6312] SQUASHFS error: Unable to read metadata cache entry [1c4]
[  155.652838][ T6053] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.688728][ T6053] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.697540][ T6312] SQUASHFS error: Unable to read inode 0x11f
[  155.739489][ T6310] EXT4-fs (loop0): Free/Dirty block details
[  155.778676][ T6301] EXT4-fs (loop0): Free/Dirty block details
[  155.821439][ T6310] EXT4-fs (loop0): free_blocks=20480
[  155.918286][ T6053] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.997632][ T6053] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.094437][ T6324] loop5: detected capacity change from 0 to 2048
[  156.194797][ T6324] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  156.259690][ T5621] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[  161.895089][ T5643] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  162.069935][ T5643] usb 6-1: Using ep0 maxpacket: 32
[  162.080555][ T5643] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  162.522550][ T5643] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  162.534440][ T5643] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  162.560008][ T5643] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.617195][ T5643] usb 6-1: config 0 descriptor??
[  162.633817][ T5643] usb 6-1: can't set config #0, error -71
[  162.707406][ T5643] usb 6-1: USB disconnect, device number 2
[  163.420727][ T6371] loop4: detected capacity change from 0 to 512
[  164.795463][ T6371] EXT4-fs: Ignoring removed i_version option
[  164.899162][ T6371] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.921102][ T6371] ext4 filesystem being mounted at /15/file7 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.942754][ T6371] EXT4-fs error (device loop4): ext4_lookup:1785: inode #15: comm syz.4.104: invalid fast symlink length 10
[  164.959087][ T6371] EXT4-fs (loop4): Remounting filesystem read-only
[  165.107655][ T5625] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.118581][ T6381] loop0: detected capacity change from 0 to 1024
[  165.276879][ T6381] hfsplus: failed to load attributes file
[  165.381145][ T6382] input: syz1 as /devices/virtual/input/input6
[  165.596079][ T6385] loop4: detected capacity change from 0 to 2048
[  165.684879][ T6385] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  166.512448][ T6403] loop4: detected capacity change from 0 to 8
[  166.568733][ T6403] squashfs image failed sanity check
[  171.793793][ T6432] loop6: detected capacity change from 0 to 512
[  171.826543][ T6432] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  171.917819][ T6432] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.963112][ T6432] ext4 filesystem being mounted at /2/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.105711][ T5957] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.397093][ T6449] loop6: detected capacity change from 0 to 1024
[  173.429377][ T6449] EXT4-fs: Ignoring removed orlov option
[  173.460446][ T6447] loop5: detected capacity change from 0 to 2048
[  173.526595][ T6447] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  173.571845][ T6449] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.843568][ T5957] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.280147][   T47] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  177.461317][   T47] usb 1-1: Using ep0 maxpacket: 32
[  177.484419][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  177.544098][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  177.591796][   T47] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  177.651586][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.707307][   T47] usb 1-1: config 0 descriptor??
[  177.772349][   T47] hub 1-1:0.0: USB hub found
[  179.105919][   T47] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[  179.229556][   T47] usbhid 1-1:0.0: can't add hid device: -71
[  181.013896][   T47] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  181.195497][   T47] usb 1-1: USB disconnect, device number 2
[  184.719715][ T5636] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  184.728828][ T5636] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  184.738668][ T5636] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  184.762605][ T5636] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  184.786887][ T5636] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  185.524717][ T6512] loop3: detected capacity change from 0 to 512
[  185.600080][ T6512] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  185.700171][ T6512] EXT4-fs (loop3): 1 truncate cleaned up
[  185.720610][ T6512] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.888702][ T5626] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.754707][ T6525] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  187.803517][ T5636] Bluetooth: hci6: command tx timeout
[  188.271268][   T47] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  188.322453][   T49] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.474901][   T47] usb 7-1: Using ep0 maxpacket: 8
[  188.513006][   T47] usb 7-1: unable to get BOS descriptor or descriptor too short
[  188.591993][   T47] usb 7-1: New USB device found, idVendor=2b73, idProduct=000a, bcdDevice= 0.40
[  188.612812][   T47] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.643296][   T47] usb 7-1: Product: syz
[  188.658531][   T47] usb 7-1: Manufacturer: syz
[  188.680075][   T47] usb 7-1: SerialNumber: syz
[  189.063104][   T49] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.072321][   T47] usb 7-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  189.462812][ T6539] loop0: detected capacity change from 0 to 8
[  189.860419][ T5636] Bluetooth: hci6: command tx timeout
[  190.105974][   T47] snd-usb-audio 7-1:1.0: probe with driver snd-usb-audio failed with error -71
[  190.158044][   T47] usb 7-1: USB disconnect, device number 2
[  190.241492][   T49] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.940139][ T4937] Bluetooth: hci6: command tx timeout
[  192.123270][ T6274] udevd[6274]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  192.282148][   T49] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.669961][   T47] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  192.870080][   T47] usb 1-1: Using ep0 maxpacket: 32
[  192.919336][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.990224][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  193.046442][   T47] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  193.094965][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.162377][   T47] usb 1-1: config 0 descriptor??
[  193.175135][   T49] bridge_slave_1: left allmulticast mode
[  193.210276][   T49] bridge_slave_1: left promiscuous mode
[  193.221108][   T47] hub 1-1:0.0: USB hub found
[  193.254846][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.321067][   T49] bridge_slave_0: left allmulticast mode
[  193.348320][   T49] bridge_slave_0: left promiscuous mode
[  193.383400][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.515871][ T5636] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  194.522181][ T4937] Bluetooth: hci0: command 0x1407 tx timeout
[  194.522200][ T5624] Bluetooth: hci6: command tx timeout
[  194.530034][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  194.555465][   T47] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[  194.559565][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[  194.568478][   T47] usbhid 1-1:0.0: can't add hid device: -71
[  194.578829][   T47] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  194.610570][   T47] usb 1-1: USB disconnect, device number 3
[  194.737242][ T6563] loop3: detected capacity change from 0 to 2048
[  194.783395][ T6563] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  197.568046][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  197.646347][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  197.695598][   T49] bond0 (unregistering): Released all slaves
[  201.937537][ T6500] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.967719][ T6500] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.023658][ T6500] bridge_slave_0: entered allmulticast mode
[  202.066082][ T6500] bridge_slave_0: entered promiscuous mode
[  202.147613][ T5283] 8021q: adding VLAN 0 to HW filter on device eth5
[  202.273438][   T49] hsr_slave_0: left promiscuous mode
[  202.310373][   T49] hsr_slave_1: left promiscuous mode
[  202.343950][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  202.385482][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  202.470252][ T5624] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  202.479089][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  202.491546][ T5624] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  202.502183][ T5624] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  202.515560][ T5624] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  202.518377][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  202.530743][ T5624] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  202.722538][   T49] veth1_macvtap: left promiscuous mode
[  202.757063][   T49] veth0_macvtap: left promiscuous mode
[  202.796069][   T49] veth1_vlan: left promiscuous mode
[  202.826805][   T49] veth0_vlan: left promiscuous mode
[  204.580455][ T5629] Bluetooth: hci5: command tx timeout
[  205.850852][ T6615] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  206.917215][ T5629] Bluetooth: hci0: command 0x1407 tx timeout
[  206.917320][ T5629] Bluetooth: hci4: command 0x0406 tx timeout
[  206.929485][ T5634] Bluetooth: hci1: command 0x0406 tx timeout
[  206.929574][ T5640] Bluetooth: hci5: command tx timeout
[  206.944598][ T5645] Bluetooth: hci3: command 0x0406 tx timeout
[  207.900600][ T6622] xt_addrtype: ipv6 BLACKHOLE matching not supported
[  208.981583][   T51] Bluetooth: hci5: command tx timeout
[  209.197216][   T49] team0 (unregistering): Port device team_slave_1 removed
[  209.229311][ T6624] input: syz1 as /devices/virtual/input/input8
[  209.237651][ T6624] input: failed to attach handler leds to device input8, error: -6
[  209.257810][   T49] team0 (unregistering): Port device team_slave_0 removed
[  210.402026][ T6500] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.418249][ T6500] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.461088][ T6500] bridge_slave_1: entered allmulticast mode
[  210.502667][ T6500] bridge_slave_1: entered promiscuous mode
[  210.921538][ T6500] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  211.008428][ T6500] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  211.070591][   T51] Bluetooth: hci5: command tx timeout
[  211.270127][ T6500] team0: Port device team_slave_0 added
[  211.344304][ T6500] team0: Port device team_slave_1 added
[  213.378092][ T6500] batman_adv: batadv0: Adding interface: batadv_slave_0
[  213.425574][ T6500] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  213.541450][ T6500] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  213.612829][ T6500] batman_adv: batadv0: Adding interface: batadv_slave_1
[  213.654022][ T6500] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  213.769756][ T6500] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  214.313417][ T6500] hsr_slave_0: entered promiscuous mode
[  214.371238][ T6500] hsr_slave_1: entered promiscuous mode
[  214.411416][ T6500] debugfs: 'hsr0' already exists in 'hsr'
[  214.445436][ T6500] Cannot create hsr debugfs directory
[  216.991155][   T51] Bluetooth: hci4: Malformed Event: 0x02
[  217.198217][   T49] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.826016][   T49] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.082291][ T5283] 8021q: adding VLAN 0 to HW filter on device eth6
[  218.265152][   T49] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.061869][ T5632] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  220.291048][ T5632] usb 1-1: Using ep0 maxpacket: 32
[  220.317917][ T5632] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  220.381309][   T49] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.394056][ T5632] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  220.435714][ T5632] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  220.489171][ T5632] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.543688][ T5632] usb 1-1: config 0 descriptor??
[  220.602265][ T5632] hub 1-1:0.0: USB hub found
[  222.515314][ T5632] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[  222.607097][ T5632] usbhid 1-1:0.0: can't add hid device: -71
[  222.634130][ T5632] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  222.830555][ T5632] usb 1-1: USB disconnect, device number 4
[  223.703007][ T6500] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  223.779809][ T6500] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  223.987495][ T6500] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  224.069194][ T6500] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  224.104690][ T6500] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  224.174925][ T6500] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  224.383625][   T49] bridge_slave_1: left allmulticast mode
[  224.406814][   T49] bridge_slave_1: left promiscuous mode
[  224.421403][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.499522][   T49] bridge_slave_0: left allmulticast mode
[  224.521798][   T49] bridge_slave_0: left promiscuous mode
[  224.552447][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.433788][ T6703] usb usb8: usbfs: process 6703 (syz.3.159) did not claim interface 0 before use
[  226.404654][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  226.436510][ T6708] loop3: detected capacity change from 0 to 732
[  226.451211][ T6710] loop4: detected capacity change from 0 to 8
[  226.463270][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  226.489639][ T6708] isofs_fill_super: get root inode failed
[  226.512212][ T6710] SQUASHFS error: Failed to read block 0x4de: -5
[  226.519060][ T6710] SQUASHFS error: Failed to read block 0x4de: -5
[  226.533593][   T49] bond0 (unregistering): Released all slaves
[  226.583345][   T30] audit: type=1800 audit(1779611423.095:6): pid=6710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.163" name="file1" dev="loop4" ino=5 res=0 errno=0
[  226.634254][ T6500] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  226.642642][ T6710] SQUASHFS error: Failed to read block 0x4de: -5
[  227.618245][ T6712] input: syz1 as /devices/virtual/input/input9
[  227.911366][ T6712] input: failed to attach handler leds to device input9, error: -6
[  228.063981][ T6710] SQUASHFS error: Failed to read block 0x4de: -5
[  228.099137][ T6500] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  228.106756][ T6717] loop6: detected capacity change from 0 to 8
[  228.175060][ T5283] 8021q: adding VLAN 0 to HW filter on device eth7
[  228.216810][ T6717] SQUASHFS error: lzo decompression failed, data probably corrupt
[  228.289160][ T6717] SQUASHFS error: Failed to read block 0x1c6: -5
[  228.368068][ T6717] SQUASHFS error: Unable to read metadata cache entry [1c4]
[  228.454706][ T6717] SQUASHFS error: Unable to read inode 0x11f
[  230.427689][ T6596] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.437438][ T4937] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  230.450715][ T4937] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  230.458540][ T4937] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  230.466921][ T4937] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  230.477983][ T4937] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  230.490682][ T6596] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.497932][ T6596] bridge_slave_0: entered allmulticast mode
[  230.507245][ T6596] bridge_slave_0: entered promiscuous mode
[  230.525193][ T6596] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.541681][ T6596] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.548900][ T6596] bridge_slave_1: entered allmulticast mode
[  230.557117][ T6596] bridge_slave_1: entered promiscuous mode
[  231.038868][ T6596] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  231.079994][ T5832] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  231.113168][ T6596] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  231.269297][   T49] hsr_slave_0: left promiscuous mode
[  231.284298][ T5832] usb 5-1: Using ep0 maxpacket: 32
[  231.304923][   T49] hsr_slave_1: left promiscuous mode
[  231.312577][ T5832] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  231.325278][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  231.359949][ T5832] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  231.361589][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  231.416821][ T5832] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  231.434766][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  231.459389][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  231.478343][ T5832] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.517343][   T49] veth1_macvtap: left promiscuous mode
[  231.521889][ T5832] usb 5-1: config 0 descriptor??
[  231.541505][   T49] veth0_macvtap: left promiscuous mode
[  231.562377][   T49] veth1_vlan: left promiscuous mode
[  231.584299][ T5832] hub 5-1:0.0: USB hub found
[  231.591741][   T49] veth0_vlan: left promiscuous mode
[  231.620892][ T4937] Bluetooth: hci2: command 0x0401 tx timeout
[  232.883585][   T51] Bluetooth: hci1: command tx timeout
[  233.328582][ T5832] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  233.359604][ T5832] usbhid 5-1:0.0: can't add hid device: -71
[  233.380336][ T5832] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  233.420781][ T5832] usb 5-1: USB disconnect, device number 4
[  234.950250][   T51] Bluetooth: hci1: command tx timeout
[  236.106470][ T6765] 9pnet_virtio: no channels available for device 127.0.0.1
[  236.508790][ T6767] netlink: 20 bytes leftover after parsing attributes in process `syz.3.172'.
[  237.068727][   T51] Bluetooth: hci1: command tx timeout
[  238.069645][   T49] team0 (unregistering): Port device team_slave_1 removed
[  238.123494][   T49] team0 (unregistering): Port device team_slave_0 removed
[  238.349007][ T6773] loop0: detected capacity change from 0 to 256
[  238.676603][ T6775] loop0: detected capacity change from 0 to 128
[  238.946572][ T5283] 8021q: adding VLAN 0 to HW filter on device eth8
[  239.134519][ T6596] team0: Port device team_slave_0 added
[  239.141413][   T51] Bluetooth: hci1: command tx timeout
[  239.204439][ T6596] team0: Port device team_slave_1 added
[  240.434471][ T6596] batman_adv: batadv0: Adding interface: batadv_slave_0
[  240.442399][ T6596] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  240.912177][ T6596] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  240.998732][ T6596] batman_adv: batadv0: Adding interface: batadv_slave_1
[  241.024655][ T6596] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  241.090002][ T6596] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  241.388416][ T6596] hsr_slave_0: entered promiscuous mode
[  241.412301][ T6596] hsr_slave_1: entered promiscuous mode
[  243.152198][ T6596] debugfs: 'hsr0' already exists in 'hsr'
[  243.185873][ T6596] Cannot create hsr debugfs directory
[  244.294684][ T4937] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  244.310631][ T4937] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  244.323609][ T4937] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  244.334718][ T4937] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  244.342487][ T4937] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  244.400031][ T5765] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  244.560174][ T5765] usb 4-1: Using ep0 maxpacket: 32
[  244.575735][ T5765] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  244.609973][ T5765] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  244.615642][   T49] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.645553][ T5765] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  244.689495][ T5765] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.736966][ T5765] usb 4-1: config 0 descriptor??
[  244.769169][ T5765] hub 4-1:0.0: USB hub found
[  247.291981][ T4937] Bluetooth: hci2: command tx timeout
[  248.394681][ T5765] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  248.484716][ T5765] usbhid 4-1:0.0: can't add hid device: -71
[  248.498318][ T5765] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  250.120643][ T4937] Bluetooth: hci2: command tx timeout
[  250.278570][ T5765] usb 4-1: USB disconnect, device number 4
[  250.377266][   T49] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.126195][ T5283] 8021q: adding VLAN 0 to HW filter on device eth9
[  252.180052][   T51] Bluetooth: hci2: command tx timeout
[  252.395223][   T49] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.644445][   T49] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.829712][ T6849] loop3: detected capacity change from 0 to 512
[  252.863898][ T6849] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  252.951297][ T6849] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1148: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  252.987344][ T6849] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.184: bg 0: block 248: padding at end of block bitmap is not set
[  253.021788][ T6849] loop3: lost filesystem error report for type 5 error -117
[  253.029926][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  253.043704][    C1] EXT4-fs (loop3): last error at time 1779611449: ext4_validate_block_bitmap:441
[  253.054730][ T6849] Quota error (device loop3): write_blk: dquota write failed
[  253.099256][ T6849] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  253.140196][ T6849] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.184: Failed to acquire dquot type 1
[  253.170197][ T6849] loop3: lost filesystem error report for type 5 error -28
[  253.174178][ T6849] EXT4-fs (loop3): 1 truncate cleaned up
[  253.199265][ T6849] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  253.316589][ T6596] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  253.593422][ T6596] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  253.635600][ T6857] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 2
[  253.650775][ T6857] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 131074
[  253.662634][ T6857] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.184: Failed to acquire dquot type 1
[  254.068485][ T6596] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  254.134583][ T6596] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  254.233988][ T5626] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  254.262253][   T51] Bluetooth: hci2: command tx timeout
[  254.355360][ T6596] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  254.382790][ T6596] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  255.683352][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  255.691529][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[  256.295741][ T6596] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  256.307619][ T6596] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  256.383655][ T6881] loop4: detected capacity change from 0 to 2048
[  256.400537][   T49] bridge_slave_1: left allmulticast mode
[  256.556249][ T6881] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  256.670200][ T5878] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  257.097995][   T49] bridge_slave_1: left promiscuous mode
[  257.104189][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.116307][ T5878] usb 4-1: too many endpoints for config 0 interface 0 altsetting 4: 129, using maximum allowed: 30
[  257.206047][ T5878] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  257.218928][ T5878] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  257.238487][ T5878] usb 4-1: config 0 interface 0 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 129
[  257.251989][ T5878] usb 4-1: config 0 interface 0 has no altsetting 0
[  257.258706][ T5878] usb 4-1: New USB device found, idVendor=056a, idProduct=0725, bcdDevice= 0.00
[  257.268369][ T5878] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.335410][ T5878] usb 4-1: config 0 descriptor??
[  257.412664][   T49] bridge_slave_0: left allmulticast mode
[  257.479776][   T49] bridge_slave_0: left promiscuous mode
[  257.547555][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  258.107859][ T5832] usb 4-1: USB disconnect, device number 5
[  261.187953][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  261.249262][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  261.291331][   T49] bond0 (unregistering): Released all slaves
[  261.381363][ T6735] bridge0: port 1(bridge_slave_0) entered blocking state
[  261.388679][ T6735] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.396201][ T6735] bridge_slave_0: entered allmulticast mode
[  261.404810][ T6735] bridge_slave_0: entered promiscuous mode
[  261.461231][ T5283] 8021q: adding VLAN 0 to HW filter on device eth10
[  261.470547][ T6735] bridge0: port 2(bridge_slave_1) entered blocking state
[  261.516116][ T6735] bridge0: port 2(bridge_slave_1) entered disabled state
[  261.545733][ T6735] bridge_slave_1: entered allmulticast mode
[  261.562487][ T5832] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  261.596895][ T6735] bridge_slave_1: entered promiscuous mode
[  261.773361][ T5832] usb 4-1: Using ep0 maxpacket: 32
[  261.790943][ T5832] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  261.805248][ T5832] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  261.846028][ T5832] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  261.885413][ T5832] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.950786][ T6735] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  261.963201][ T5832] usb 4-1: config 0 descriptor??
[  262.004938][ T5832] hub 4-1:0.0: USB hub found
[  262.166966][ T6735] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  262.768459][ T5832] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  262.789525][ T5832] usbhid 4-1:0.0: can't add hid device: -71
[  262.803163][ T5832] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  262.861948][ T5832] usb 4-1: USB disconnect, device number 6
[  263.007999][   T49] hsr_slave_0: left promiscuous mode
[  263.052711][   T49] hsr_slave_1: left promiscuous mode
[  263.072042][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.089282][ T4937] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  263.105196][ T4937] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  263.119013][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.119679][ T4937] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  263.137300][ T4937] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  263.146420][ T4937] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  263.180336][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.229405][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.474550][   T49] veth1_macvtap: left promiscuous mode
[  263.519669][   T49] veth0_macvtap: left promiscuous mode
[  263.545891][   T49] veth1_vlan: left promiscuous mode
[  263.565893][   T49] veth0_vlan: left promiscuous mode
[  264.200756][ T6937] loop3: detected capacity change from 0 to 128
[  265.219967][ T4937] Bluetooth: hci6: command tx timeout
[  265.496405][ T6958] loop4: detected capacity change from 0 to 2048
[  265.547723][ T6958] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  267.935654][ T4937] Bluetooth: hci6: command tx timeout
[  268.520555][   T49] team0 (unregistering): Port device team_slave_1 removed
[  268.606670][   T49] team0 (unregistering): Port device team_slave_0 removed
[  268.929020][ T6735] team0: Port device team_slave_0 added
[  268.984699][ T5283] 8021q: adding VLAN 0 to HW filter on device eth11
[  269.050309][ T6971] gretap0: entered promiscuous mode
[  269.060931][ T6735] team0: Port device team_slave_1 added
[  269.224667][ T6735] batman_adv: batadv0: Adding interface: batadv_slave_0
[  269.429976][ T5040] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  269.611216][ T5040] usb 4-1: Using ep0 maxpacket: 32
[  269.712181][ T5040] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  269.782953][ T5040] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  269.844639][ T5040] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  269.908405][ T5040] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  270.020601][ T4937] Bluetooth: hci6: command tx timeout
[  270.223627][ T6735] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  270.231221][ T5040] usb 4-1: config 0 descriptor??
[  270.250114][ T6735] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  270.268195][ T6735] batman_adv: batadv0: Adding interface: batadv_slave_1
[  270.275154][ T6735] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  270.301052][ T6735] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  270.342216][ T6986] loop0: detected capacity change from 0 to 256
[  270.351511][ T5040] hub 4-1:0.0: USB hub found
[  270.416260][ T6986] FAT-fs (loop0): Directory bread(block 64) failed
[  270.427129][ T6986] FAT-fs (loop0): Directory bread(block 65) failed
[  270.440221][ T6986] FAT-fs (loop0): Directory bread(block 66) failed
[  270.480163][ T6986] FAT-fs (loop0): Directory bread(block 67) failed
[  270.486762][ T6986] FAT-fs (loop0): Directory bread(block 68) failed
[  270.527425][ T6986] FAT-fs (loop0): Directory bread(block 69) failed
[  271.241126][ T5040] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  271.243276][ T6986] FAT-fs (loop0): Directory bread(block 70) failed
[  271.260412][ T5040] usbhid 4-1:0.0: can't add hid device: -71
[  271.275089][ T5040] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  271.306758][ T6986] FAT-fs (loop0): Directory bread(block 71) failed
[  271.313788][ T6986] FAT-fs (loop0): Directory bread(block 72) failed
[  271.323346][ T6986] FAT-fs (loop0): Directory bread(block 73) failed
[  271.381145][ T5040] usb 4-1: USB disconnect, device number 7
[  271.424368][ T6735] hsr_slave_0: entered promiscuous mode
[  271.446172][ T6735] hsr_slave_1: entered promiscuous mode
[  271.461728][ T6735] debugfs: 'hsr0' already exists in 'hsr'
[  271.474830][ T6735] Cannot create hsr debugfs directory
[  271.568613][ T6806] bridge0: port 1(bridge_slave_0) entered blocking state
[  271.593103][ T6806] bridge0: port 1(bridge_slave_0) entered disabled state
[  271.789675][ T6806] bridge_slave_0: entered allmulticast mode
[  271.818590][ T6806] bridge_slave_0: entered promiscuous mode
[  271.851007][ T6806] bridge0: port 2(bridge_slave_1) entered blocking state
[  271.862815][ T6806] bridge0: port 2(bridge_slave_1) entered disabled state
[  271.962261][ T6806] bridge_slave_1: entered allmulticast mode
[  271.978956][ T6806] bridge_slave_1: entered promiscuous mode
[  272.101903][ T4937] Bluetooth: hci6: command tx timeout
[  272.668742][ T7011] netlink: 'syz.3.211': attribute type 12 has an invalid length.
[  275.035400][ T6806] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  275.149204][ T6806] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  275.595223][ T7027] loop3: detected capacity change from 0 to 2048
[  275.603824][ T6806] team0: Port device team_slave_0 added
[  275.646962][ T7027] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  276.001635][ T6806] team0: Port device team_slave_1 added
[  276.113180][ T7043] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  278.448149][ T6806] batman_adv: batadv0: Adding interface: batadv_slave_0
[  278.480747][ T6806] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  278.576330][ T6806] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  278.669041][ T6806] batman_adv: batadv0: Adding interface: batadv_slave_1
[  278.694819][ T6806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  278.776293][ T6806] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  278.915029][ T5283] 8021q: adding VLAN 0 to HW filter on device eth12
[  279.350166][ T5786] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  279.520831][ T5786] usb 1-1: Using ep0 maxpacket: 32
[  279.559720][ T5786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  279.589580][ T5786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  279.610393][ T5786] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  279.631236][ T5786] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.644964][ T5786] usb 1-1: config 0 descriptor??
[  279.661048][ T5786] hub 1-1:0.0: USB hub found
[  279.691912][ T6806] hsr_slave_0: entered promiscuous mode
[  279.702944][ T6806] hsr_slave_1: entered promiscuous mode
[  279.710120][ T6806] debugfs: 'hsr0' already exists in 'hsr'
[  279.718853][ T6806] Cannot create hsr debugfs directory
[  280.464125][ T5786] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[  280.543090][ T5786] usbhid 1-1:0.0: can't add hid device: -71
[  280.570504][ T5786] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  280.603153][ T6735] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  280.630586][ T5786] usb 1-1: USB disconnect, device number 5
[  280.677231][ T6735] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  280.787003][ T6735] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  280.837916][ T6735] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  280.883034][ T6735] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  280.954418][ T6735] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  281.132472][ T7067] syz.3.219 uses obsolete (PF_INET,SOCK_PACKET)
[  281.416154][ T6735] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  282.195371][ T6735] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  284.623167][ T7095] loop3: detected capacity change from 0 to 32768
[  284.653983][ T7095] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  284.744040][ T7095] XFS (loop3): Ending clean mount
[  284.757196][ T7095] XFS (loop3): Quotacheck needed: Please wait.
[  284.897843][ T7095] XFS (loop3): Quotacheck: Done.
[  285.667057][ T5626] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  285.893836][ T7111] netlink: 'syz.3.225': attribute type 12 has an invalid length.
[  286.030135][ T5283] 8021q: adding VLAN 0 to HW filter on device eth13
[  286.106108][ T6926] bridge0: port 1(bridge_slave_0) entered blocking state
[  286.129380][ T6926] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.146713][ T6926] bridge_slave_0: entered allmulticast mode
[  286.310045][ T6926] bridge_slave_0: entered promiscuous mode
[  286.318642][ T6926] bridge0: port 2(bridge_slave_1) entered blocking state
[  286.338714][ T6926] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.356859][ T6926] bridge_slave_1: entered allmulticast mode
[  286.379127][ T6926] bridge_slave_1: entered promiscuous mode
[  287.311332][ T6926] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  287.353520][ T6926] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  287.502296][ T7119] loop3: detected capacity change from 0 to 256
[  287.594209][ T7119] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d)
[  287.594362][ T6926] team0: Port device team_slave_0 added
[  287.671441][ T6926] team0: Port device team_slave_1 added
[  287.703457][   T30] audit: type=1800 audit(1779611740.230:7): pid=7119 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.228" name="file2" dev="loop3" ino=1048649 res=0 errno=0
[  287.714243][ T7113] loop4: detected capacity change from 0 to 32768
[  287.824804][ T7113] 
[  287.824804][ T7113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  287.824804][ T7113] 
[  287.903157][ T7119] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[  287.939843][ T7119] exFAT-fs (loop3): Filesystem has been set read-only
[  287.949789][ T7113] ERROR: (device loop4): xtTruncate_pmap: xt_getpage: xtree page corrupt
[  287.949789][ T7113] 
[  289.758633][ T6926] batman_adv: batadv0: Adding interface: batadv_slave_0
[  289.789939][ T6926] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  289.789977][ T7113] ERROR: (device loop4): jfs_rename: 
[  289.789977][ T7113] 
[  289.885153][ T5625] ERROR: (device loop4): xtTruncate: xt_getpage: xtree page corrupt
[  289.885153][ T5625] 
[  289.924900][ T5943] ERROR: (device loop4): diWrite: ixpxd invalid
[  289.924900][ T5943] 
[  289.936672][ T5943] ERROR: (device loop4): txCommit: 
[  289.936672][ T5943] 
[  289.953604][ T6926] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  289.960809][ T5943] jfs_write_inode: jfs_commit_inode failed!
[  289.989462][ T5625] 
[  289.989462][ T5625]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  289.989462][ T5625] 
[  290.044648][ T5625] 
[  290.044648][ T5625]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  290.044648][ T5625] 
[  290.066176][ T6926] batman_adv: batadv0: Adding interface: batadv_slave_1
[  290.099067][ T6926] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  290.231737][ T6926] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  290.402123][   T51] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  290.413187][   T51] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  290.426550][   T51] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  290.436545][   T51] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  290.447514][   T51] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  290.652065][ T6926] hsr_slave_0: entered promiscuous mode
[  290.691935][ T6926] hsr_slave_1: entered promiscuous mode
[  290.724085][ T6926] debugfs: 'hsr0' already exists in 'hsr'
[  290.754812][ T6926] Cannot create hsr debugfs directory
[  291.647577][ T5283] 8021q: adding VLAN 0 to HW filter on device eth14
[  291.882629][   T49] bridge_slave_1: left allmulticast mode
[  291.957293][ T7160] capability: warning: `syz.4.234' uses deprecated v2 capabilities in a way that may be insecure
[  292.322361][   T49] bridge_slave_1: left promiscuous mode
[  292.334854][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  292.374444][   T49] bridge_slave_0: left allmulticast mode
[  292.400523][   T49] bridge_slave_0: left promiscuous mode
[  292.429355][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  292.499193][   T49] bridge_slave_1: left allmulticast mode
[  292.510438][   T51] Bluetooth: hci5: command tx timeout
[  292.519926][   T49] bridge_slave_1: left promiscuous mode
[  292.556109][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  292.610622][   T49] bridge_slave_0: left allmulticast mode
[  292.626890][   T49] bridge_slave_0: left promiscuous mode
[  292.670201][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  294.117005][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  294.169094][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  294.208223][   T49] bond0 (unregistering): Released all slaves
[  294.590439][ T4937] Bluetooth: hci5: command tx timeout
[  294.710920][ T7168] loop4: detected capacity change from 0 to 32768
[  294.779168][ T7168] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  294.839038][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  294.933930][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  294.975090][ T7168] XFS (loop4): Ending clean mount
[  295.012799][   T49] bond0 (unregistering): Released all slaves
[  295.298481][ T5625] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  295.626464][   T49] hsr_slave_0: left promiscuous mode
[  295.684700][   T49] hsr_slave_1: left promiscuous mode
[  295.710857][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  295.758407][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  295.925955][   T49] hsr_slave_0: left promiscuous mode
[  295.961528][   T49] hsr_slave_1: left promiscuous mode
[  295.997942][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  296.039033][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  296.302677][ T7191] loop4: detected capacity change from 0 to 16
[  296.367430][ T7191] erofs (device loop4): mounted with root inode @ nid 36.
[  296.438867][ T7191] erofs (device loop4): invalid h_shared_count 83 @ nid 46
[  296.660175][   T51] Bluetooth: hci5: command tx timeout
[  296.682904][ T5625] erofs (device loop4): invalid h_shared_count 83 @ nid 46
[  296.922535][   T49] team0 (unregistering): Port device team_slave_1 removed
[  297.024055][   T49] team0 (unregistering): Port device team_slave_0 removed
[  299.249997][   T51] Bluetooth: hci5: command tx timeout
[  299.452035][   T49] team0 (unregistering): Port device team_slave_1 removed
[  299.512799][   T49] team0 (unregistering): Port device team_slave_0 removed
[  301.271360][ T7217] Bluetooth: MGMT ver 1.23
[  301.667513][ T6806] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  301.732543][ T6806] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  301.745209][ T6806] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  303.457523][   T51] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  303.460080][ T5636] Bluetooth: hci2: command 0x0401 tx timeout
[  303.523272][ T6806] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  303.567108][ T6806] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  303.641942][ T6806] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  304.366933][ T5636] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  304.381953][ T5636] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  304.397672][ T5636] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  304.409671][ T5636] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  304.420443][ T5636] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  304.586932][ T4937] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  304.600244][ T4937] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  304.610106][ T4937] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  304.623282][ T4937] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  304.634174][ T4937] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  304.703307][ T7228] sysfs: cannot create duplicate filename '/class/ieee80211/1ùà^!'
[  304.745606][ T7228] CPU: 0 UID: 0 PID: 7228 Comm: syz.3.246 Not tainted syzkaller #0 PREEMPT(full) 
[  304.745628][ T7228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  304.745649][ T7228] Call Trace:
[  304.745656][ T7228]  <TASK>
[  304.745664][ T7228]  dump_stack_lvl+0xe8/0x150
[  304.745693][ T7228]  sysfs_warn_dup+0x8e/0xa0
[  304.745717][ T7228]  sysfs_do_create_link_sd+0xc0/0x110
[  304.745747][ T7228]  device_add_class_symlinks+0x1cf/0x240
[  304.745778][ T7228]  device_add+0x475/0xbb0
[  304.745805][ T7228]  wiphy_register+0x1dc5/0x2dc0
[  304.745839][ T7228]  ? __pfx_wiphy_register+0x10/0x10
[  304.745859][ T7228]  ? __pfx_netdev_run_todo+0x10/0x10
[  304.745878][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.745907][ T7228]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  304.745938][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.745959][ T7228]  ? ieee80211_init_rate_ctrl_alg+0x55d/0x5d0
[  304.745995][ T7228]  ieee80211_register_hw+0x3d82/0x4a70
[  304.746030][ T7228]  ? ieee80211_register_hw+0x1931/0x4a70
[  304.746073][ T7228]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  304.746097][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746118][ T7228]  ? __asan_memset+0x22/0x50
[  304.746141][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746162][ T7228]  ? __hrtimer_setup+0x1b7/0x260
[  304.746186][ T7228]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  304.746216][ T7228]  mac80211_hwsim_new_radio+0x3335/0x5aa0
[  304.746267][ T7228]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  304.746289][ T7228]  ? kstrndup+0xbf/0x160
[  304.746308][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746332][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746357][ T7228]  hwsim_new_radio_nl+0xf6a/0x1c00
[  304.746413][ T7228]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  304.746457][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746482][ T7228]  ? rcu_is_watching+0x15/0xb0
[  304.746506][ T7228]  ? trace_kmalloc+0x2a/0xf0
[  304.746537][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746558][ T7228]  ? __nla_parse+0x40/0x60
[  304.746590][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746611][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746632][ T7228]  ? genl_family_rcv_msg_attrs_parse+0x265/0x2f0
[  304.746673][ T7228]  genl_family_rcv_msg_doit+0x22a/0x330
[  304.746703][ T7228]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  304.746737][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746759][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.746780][ T7228]  ? security_capable+0x7e/0x2c0
[  304.746811][ T7228]  genl_rcv_msg+0x61c/0x7a0
[  304.746839][ T7228]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.746861][ T7228]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  304.746886][ T7228]  ? __pfx_ref_tracker_free+0x10/0x10
[  304.746916][ T7228]  ? __asan_memcpy+0x40/0x70
[  304.746938][ T7228]  ? __skb_clone+0x63/0x7a0
[  304.746964][ T7228]  netlink_rcv_skb+0x232/0x4b0
[  304.746994][ T7228]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.747017][ T7228]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  304.747060][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747081][ T7228]  ? down_read+0x270/0x2e0
[  304.747101][ T7228]  ? genl_rcv+0xd/0x40
[  304.747123][ T7228]  genl_rcv+0x28/0x40
[  304.747143][ T7228]  netlink_unicast+0x75c/0x8e0
[  304.747180][ T7228]  netlink_sendmsg+0x813/0xb40
[  304.747218][ T7228]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.747250][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747271][ T7228]  ? aa_sock_msg_perm+0xf1/0x1b0
[  304.747298][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747319][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747345][ T7228]  ____sys_sendmsg+0x972/0x9f0
[  304.747375][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747406][ T7228]  ? __pfx_____sys_sendmsg+0x10/0x10
[  304.747447][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747469][ T7228]  ? import_iovec+0x73/0xa0
[  304.747505][ T7228]  ___sys_sendmsg+0x2a5/0x360
[  304.747543][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747573][ T7228]  ? __lock_acquire+0x6b5/0x2cf0
[  304.747599][ T7228]  ? __pfx____sys_sendmsg+0x10/0x10
[  304.747627][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747677][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747698][ T7228]  ? futex_wait+0x2a2/0x390
[  304.747750][ T7228]  ? __fget_files+0x2a/0x420
[  304.747771][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747793][ T7228]  ? __fget_files+0x3a0/0x420
[  304.747825][ T7228]  __x64_sys_sendmsg+0x1bd/0x2a0
[  304.747846][ T7228]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  304.747885][ T7228]  ? rcu_is_watching+0x15/0xb0
[  304.747912][ T7228]  ? srso_alias_return_thunk+0x5/0xfbef5
[  304.747942][ T7228]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.747966][ T7228]  do_syscall_64+0x15f/0xf80
[  304.747983][ T7228]  ? trace_irq_disable+0x3b/0x140
[  304.748017][ T7228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.748036][ T7228] RIP: 0033:0x7fe872d9ce59
[  304.748053][ T7228] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  304.748067][ T7228] RSP: 002b:00007fe873c6b028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  304.748085][ T7228] RAX: ffffffffffffffda RBX: 00007fe873016090 RCX: 00007fe872d9ce59
[  304.748098][ T7228] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000003
[  304.748110][ T7228] RBP: 00007fe872e32d6f R08: 0000000000000000 R09: 0000000000000000
[  304.748121][ T7228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  304.748131][ T7228] R13: 00007fe873016128 R14: 00007fe873016090 R15: 00007ffd929dc7c8
[  304.748161][ T7228]  </TASK>
[  305.501834][ T5283] 8021q: adding VLAN 0 to HW filter on device eth15
[  307.211867][ T4937] Bluetooth: hci1: command tx timeout
[  307.211892][ T5636] Bluetooth: hci3: command tx timeout
[  307.400780][ T5986] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.466140][ T7139] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.498006][ T7139] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.525101][ T7139] bridge_slave_0: entered allmulticast mode
[  307.555074][ T7139] bridge_slave_0: entered promiscuous mode
[  307.593935][ T7139] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.623948][ T7139] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.650303][ T7139] bridge_slave_1: entered allmulticast mode
[  307.681589][ T7139] bridge_slave_1: entered promiscuous mode
[  307.905170][ T5986] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.153648][ T7139] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  308.204009][ T7139] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  308.337805][ T5986] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.715894][ T5986] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.765311][ T7139] team0: Port device team_slave_0 added
[  308.864025][ T7139] team0: Port device team_slave_1 added
[  309.136922][ T7286] netlink: 'syz.3.250': attribute type 1 has an invalid length.
[  309.147142][ T7286] netlink: 288 bytes leftover after parsing attributes in process `syz.3.250'.
[  309.220372][ T4937] Bluetooth: hci3: command tx timeout
[  309.221032][ T5283] 8021q: adding VLAN 0 to HW filter on device eth16
[  309.289019][ T7139] batman_adv: batadv0: Adding interface: batadv_slave_0
[  309.300331][ T4937] Bluetooth: hci1: command tx timeout
[  309.326805][ T7289] netlink: 277 bytes leftover after parsing attributes in process `syz.3.251'.
[  309.328054][ T7139] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  309.364159][ T7139] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  309.475116][ T7139] batman_adv: batadv0: Adding interface: batadv_slave_1
[  309.483223][ T7139] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  309.511468][ T7139] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  312.800319][ T4937] Bluetooth: hci3: command tx timeout
[  312.800654][ T5636] Bluetooth: hci1: command tx timeout
[  313.156556][ T6926] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  313.178590][ T6926] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  313.191887][ T6926] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  313.218255][ T6926] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  313.358424][ T6926] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  313.398291][ T6926] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  313.407619][ T6926] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  313.422827][ T6926] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  313.458095][ T7139] hsr_slave_0: entered promiscuous mode
[  313.476816][ T7139] hsr_slave_1: entered promiscuous mode
[  313.551833][ T7139] debugfs: 'hsr0' already exists in 'hsr'
[  313.559116][ T7139] Cannot create hsr debugfs directory
[  314.831714][ T4937] Bluetooth: hci3: command tx timeout
[  314.838124][ T5636] Bluetooth: hci1: command tx timeout
[  314.940140][ T5644] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  315.113493][ T5644] usb 4-1: Using ep0 maxpacket: 8
[  315.128917][ T5644] usb 4-1: config 0 has no interfaces?
[  315.135504][ T5644] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  315.144848][ T5644] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.177151][ T5644] usb 4-1: config 0 descriptor??
[  315.470869][ T7313] netlink: 8 bytes leftover after parsing attributes in process `syz.3.254'.
[  315.923484][ T7239] bridge0: port 1(bridge_slave_0) entered blocking state
[  315.932184][ T7239] bridge0: port 1(bridge_slave_0) entered disabled state
[  315.954908][ T7239] bridge_slave_0: entered allmulticast mode
[  316.017258][ T7239] bridge_slave_0: entered promiscuous mode
[  316.028312][ T7239] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.044525][ T7239] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.060930][ T7239] bridge_slave_1: entered allmulticast mode
[  316.071533][ T7239] bridge_slave_1: entered promiscuous mode
[  316.160241][ T5632] usb 4-1: USB disconnect, device number 8
[  316.345979][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  316.352851][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[  317.619661][ T7239] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  317.663692][ T7239] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  317.940915][ T7239] team0: Port device team_slave_0 added
[  317.977034][ T7239] team0: Port device team_slave_1 added
[  319.817673][ T7239] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.847874][ T7239] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  319.920031][ T7239] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.961603][ T7239] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.968830][ T7239] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  320.235759][ T7239] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  320.595239][ T5283] 8021q: adding VLAN 0 to HW filter on device eth17
[  320.654385][ T7239] hsr_slave_0: entered promiscuous mode
[  320.662073][ T7239] hsr_slave_1: entered promiscuous mode
[  320.675506][ T7239] debugfs: 'hsr0' already exists in 'hsr'
[  320.683147][ T7239] Cannot create hsr debugfs directory
[  321.001994][ T7243] bridge0: port 1(bridge_slave_0) entered blocking state
[  321.020093][ T7243] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.027344][ T7243] bridge_slave_0: entered allmulticast mode
[  321.056444][ T7243] bridge_slave_0: entered promiscuous mode
[  321.133554][ T7243] bridge0: port 2(bridge_slave_1) entered blocking state
[  321.152631][ T7243] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.190356][ T7243] bridge_slave_1: entered allmulticast mode
[  321.208374][ T7243] bridge_slave_1: entered promiscuous mode
[  321.341972][ T7364] loop0: detected capacity change from 0 to 128
[  321.348518][ T5986] bridge_slave_1: left allmulticast mode
[  321.356003][ T7364] FAT-fs (loop0): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  321.365433][ T5986] bridge_slave_1: left promiscuous mode
[  321.375628][ T5986] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.399548][   T30] audit: type=1800 audit(1779611773.920:8): pid=7364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.259" name="file2" dev="loop0" ino=1048651 res=0 errno=0
[  321.424128][ T7364] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  321.439211][ T7364] FAT-fs (loop0): Filesystem has been set read-only
[  321.450747][ T7364] syz.0.259: attempt to access beyond end of device
[  321.450747][ T7364] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  321.451876][ T5986] bridge_slave_0: left allmulticast mode
[  321.473370][ T5986] bridge_slave_0: left promiscuous mode
[  321.480765][ T5986] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.503165][ T5986] bridge_slave_1: left allmulticast mode
[  321.508791][ T5986] bridge_slave_1: left promiscuous mode
[  321.522664][ T5986] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.546482][ T5986] bridge_slave_0: left allmulticast mode
[  321.573790][ T5986] bridge_slave_0: left promiscuous mode
[  321.582627][ T5986] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.685106][ T7366] loop0: detected capacity change from 0 to 64
[  321.747100][ T7366] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  322.431526][ T5986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  322.460276][ T4937] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  322.468230][ T7375] loop0: detected capacity change from 0 to 1024
[  322.475357][ T5986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.485992][ T4937] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  322.494615][ T4937] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  322.503131][ T4937] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  322.514663][ T4937] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  322.537103][ T5986] bond0 (unregistering): Released all slaves
[  322.558260][ T7375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  322.892180][ T5986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  322.913226][ T5986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.929299][ T5986] bond0 (unregistering): Released all slaves
[  323.208813][ T5621] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.447515][ T7243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  324.643702][ T4937] Bluetooth: hci2: command tx timeout
[  324.818540][ T7243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  325.078252][ T7243] team0: Port device team_slave_0 added
[  325.253001][ T7243] team0: Port device team_slave_1 added
[  325.505898][ T7243] batman_adv: batadv0: Adding interface: batadv_slave_0
[  325.522240][ T7243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  325.577612][ T7243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  325.627926][ T5986] hsr_slave_0: left promiscuous mode
[  325.643985][ T5986] hsr_slave_1: left promiscuous mode
[  325.662088][ T5986] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  325.669599][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  325.688332][ T5986] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  325.706515][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  325.741111][ T5986] hsr_slave_0: left promiscuous mode
[  325.757775][ T5986] hsr_slave_1: left promiscuous mode
[  325.772908][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  325.786068][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  325.823597][ T5986] veth1_macvtap: left promiscuous mode
[  325.836767][ T5986] veth0_macvtap: left promiscuous mode
[  325.848935][ T5986] veth1_vlan: left promiscuous mode
[  325.861092][ T5986] veth0_vlan: left promiscuous mode
[  326.354804][ T5986] team0 (unregistering): Port device team_slave_1 removed
[  326.394047][ T5986] team0 (unregistering): Port device team_slave_0 removed
[  326.660261][ T4937] Bluetooth: hci2: command tx timeout
[  326.982634][ T5986] team0 (unregistering): Port device team_slave_1 removed
[  327.007092][ T5986] team0 (unregistering): Port device team_slave_0 removed
[  327.315490][ T7243] batman_adv: batadv0: Adding interface: batadv_slave_1
[  327.322808][ T7243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  327.353685][ T7243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  327.472853][ T7395] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  328.872599][ T4937] Bluetooth: hci2: command tx timeout
[  328.912568][ T7243] hsr_slave_0: entered promiscuous mode
[  328.926117][ T7243] hsr_slave_1: entered promiscuous mode
[  329.476906][ T7243] debugfs: 'hsr0' already exists in 'hsr'
[  329.482752][ T7243] Cannot create hsr debugfs directory
[  330.596255][ T7139] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  330.629169][ T7139] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  330.901937][ T7139] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  330.909974][ T5636] Bluetooth: hci2: command tx timeout
[  330.946509][ T7139] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  330.969510][ T7139] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  331.008401][ T7139] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  331.068483][ T7139] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  331.136252][ T7139] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  333.002877][ T5283] 8021q: adding VLAN 0 to HW filter on device eth19
[  336.416378][ T7376] bridge0: port 1(bridge_slave_0) entered blocking state
[  336.441922][ T7376] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.477609][ T7376] bridge_slave_0: entered allmulticast mode
[  336.500754][ T7376] bridge_slave_0: entered promiscuous mode
[  336.532899][ T7376] bridge0: port 2(bridge_slave_1) entered blocking state
[  336.553354][ T7376] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.577304][ T7376] bridge_slave_1: entered allmulticast mode
[  336.603874][ T7376] bridge_slave_1: entered promiscuous mode
[  337.092737][ T7376] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  337.125640][ T7376] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  337.240289][ T7376] team0: Port device team_slave_0 added
[  337.309311][ T7376] team0: Port device team_slave_1 added
[  337.485200][ T7376] batman_adv: batadv0: Adding interface: batadv_slave_0
[  337.503051][ T7376] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  337.579933][ T7376] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  337.778200][ T7376] batman_adv: batadv0: Adding interface: batadv_slave_1
[  337.807894][ T7376] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  337.840218][ T7376] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  337.911998][ T5283] 8021q: adding VLAN 0 to HW filter on device eth20
[  338.100627][ T7477] netlink: 20 bytes leftover after parsing attributes in process `syz.0.278'.
[  338.121292][ T7477] netlink: 8 bytes leftover after parsing attributes in process `syz.0.278'.
[  338.487839][ T7239] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  338.615843][ T7239] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  338.966171][ T7139] 8021q: adding VLAN 0 to HW filter on device bond0
[  339.068827][ T7239] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  340.626566][ T7239] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  340.715780][ T7376] hsr_slave_0: entered promiscuous mode
[  341.538173][ T7376] hsr_slave_1: entered promiscuous mode
[  341.567548][ T7376] debugfs: 'hsr0' already exists in 'hsr'
[  341.573645][ T7376] Cannot create hsr debugfs directory
[  341.627732][ T7239] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  341.815247][ T7239] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  341.846876][ T7239] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  341.916752][ T7239] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  342.802015][ T7139] 8021q: adding VLAN 0 to HW filter on device team0
[  343.017276][ T5874] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.024463][ T5874] bridge0: port 1(bridge_slave_0) entered forwarding state
[  343.297147][ T6051] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.304300][ T6051] bridge0: port 2(bridge_slave_1) entered forwarding state
[  343.465834][ T5986] bridge_slave_1: left allmulticast mode
[  343.485231][ T5986] bridge_slave_1: left promiscuous mode
[  343.505627][ T5986] bridge0: port 2(bridge_slave_1) entered disabled state
[  343.534690][ T5986] bridge_slave_0: left allmulticast mode
[  343.558322][ T5986] bridge_slave_0: left promiscuous mode
[  343.572865][ T5986] bridge0: port 1(bridge_slave_0) entered disabled state
[  344.835694][ T5986] bridge_slave_1: left allmulticast mode
[  344.866479][ T5986] bridge_slave_1: left promiscuous mode
[  344.881658][ T5986] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.903522][ T5986] bridge_slave_0: left allmulticast mode
[  344.920088][ T5986] bridge_slave_0: left promiscuous mode
[  344.927594][ T5986] bridge0: port 1(bridge_slave_0) entered disabled state
[  345.287086][ T5986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  345.330099][ T5986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  345.353988][ T5986] bond0 (unregistering): Released all slaves
[  345.619810][ T5986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  345.679622][ T5986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  345.709821][ T5986] bond0 (unregistering): Released all slaves
[  346.579661][ T7139] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  346.590476][ T7139] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  349.342937][ T5636] Bluetooth: Frame is too long (len 18, expected len 4)
[  349.359452][ T5986] hsr_slave_0: left promiscuous mode
[  349.378258][ T5986] hsr_slave_1: left promiscuous mode
[  349.385868][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  349.397545][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  349.422388][ T5986] hsr_slave_0: left promiscuous mode
[  349.432230][ T5986] hsr_slave_1: left promiscuous mode
[  349.438404][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  349.449480][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  349.654081][ T5986] team0 (unregistering): Port device team_slave_1 removed
[  349.671257][ T5986] team0 (unregistering): Port device team_slave_0 removed
[  349.720103][ T5643] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  349.786056][ T5786] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  349.889959][ T5643] usb 1-1: Using ep0 maxpacket: 8
[  349.897080][ T5643] usb 1-1: config 0 has an invalid interface number: 55 but max is 0
[  349.908224][ T5643] usb 1-1: config 0 has no interface number 0
[  349.914406][ T5643] usb 1-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  349.926205][ T5643] usb 1-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  349.938039][ T5643] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  349.950114][ T5643] usb 1-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  349.963423][ T5643] usb 1-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  349.972797][ T5786] usb 4-1: Using ep0 maxpacket: 16
[  349.979568][ T5643] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.992847][ T5786] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  350.004156][ T5786] usb 4-1: config 0 interface 0 has no altsetting 0
[  350.012539][ T5786] usb 4-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  350.022449][ T5786] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.043578][ T5986] team0 (unregistering): Port device team_slave_1 removed
[  350.053540][ T5643] usb 1-1: config 0 descriptor??
[  350.062878][ T5786] usb 4-1: config 0 descriptor??
[  350.094698][ T5986] team0 (unregistering): Port device team_slave_0 removed
[  350.109485][ T5643] ldusb 1-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  350.310260][ T7243] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  350.382547][ T7243] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  350.447569][ T5632] usb 1-1: USB disconnect, device number 6
[  350.447607][    C0] ldusb 1-1:0.55: usb_submit_urb failed (-19)
[  350.467367][ T7243] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  350.488792][ T4937] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  350.502450][ T4937] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  350.517434][ T4937] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  350.523767][ T7243] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  350.534673][ T4937] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  350.554621][ T4937] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  350.585406][ T7243] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  350.620786][ T7541] ldusb: No device or device unplugged -19
[  350.620790][ T5632] ldusb 1-1:0.55: LD USB Device #0 now disconnected
[  350.668189][ T7243] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  350.709226][ T5786] nzxt-smart2 0003:1E71:2009.0002: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.3-1/input0
[  350.864977][ T7243] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  350.941414][ T7243] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  350.949524][ T5632] usb 4-1: USB disconnect, device number 9
[  351.249630][ T7239] 8021q: adding VLAN 0 to HW filter on device bond0
[  351.319001][ T7568] loop0: detected capacity change from 0 to 4096
[  351.378037][ T7568] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  351.464832][ T7239] 8021q: adding VLAN 0 to HW filter on device team0
[  351.548412][ T5983] bridge0: port 1(bridge_slave_0) entered blocking state
[  351.555648][ T5983] bridge0: port 1(bridge_slave_0) entered forwarding state
[  351.588856][ T7568] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  352.983124][ T5636] Bluetooth: hci6: command tx timeout
[  353.047905][  T146] bridge0: port 2(bridge_slave_1) entered blocking state
[  353.055063][  T146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  355.159999][ T5636] Bluetooth: hci6: command tx timeout
[  355.667762][ T7243] 8021q: adding VLAN 0 to HW filter on device bond0
[  356.577073][ T7376] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  356.632193][ T7376] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  356.666648][ T7376] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  356.717033][ T7376] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  356.827678][ T7376] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  356.861913][ T7376] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  356.895507][ T7376] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  356.926818][ T7376] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  356.944559][ T7243] 8021q: adding VLAN 0 to HW filter on device team0
[  357.144067][ T3355] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.151234][ T3355] bridge0: port 1(bridge_slave_0) entered forwarding state
[  357.193658][ T3355] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.200790][ T3355] bridge0: port 2(bridge_slave_1) entered forwarding state
[  357.220054][ T5636] Bluetooth: hci6: command tx timeout
[  359.355679][ T5636] Bluetooth: hci6: command tx timeout
[  362.266741][ T5986] bridge_slave_1: left allmulticast mode
[  362.320967][ T5986] bridge_slave_1: left promiscuous mode
[  362.343690][ T5986] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.440015][ T5986] bridge_slave_0: left allmulticast mode
[  362.457098][ T5986] bridge_slave_0: left promiscuous mode
[  362.495582][ T5986] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.722089][ T4937] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  362.732874][ T4937] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  362.742728][ T4937] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  362.752073][ T4937] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  362.760408][ T4937] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  363.353331][ T5986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  363.405440][ T5986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  363.452753][ T5986] bond0 (unregistering): Released all slaves
[  363.589607][ T7549] bridge0: port 1(bridge_slave_0) entered blocking state
[  363.608438][ T7549] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.622626][ T7549] bridge_slave_0: entered allmulticast mode
[  363.639390][ T7549] bridge_slave_0: entered promiscuous mode
[  363.657804][ T7549] bridge0: port 2(bridge_slave_1) entered blocking state
[  363.675269][ T7549] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.691713][ T7549] bridge_slave_1: entered allmulticast mode
[  363.711515][ T7549] bridge_slave_1: entered promiscuous mode
[  364.062898][ T7549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  364.134411][ T5986] hsr_slave_0: left promiscuous mode
[  364.173446][ T5986] hsr_slave_1: left promiscuous mode
[  364.195776][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  364.250830][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  364.292001][ T4937] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  364.301222][ T4937] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  364.321722][ T4937] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  364.331851][ T4937] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  364.346520][ T4937] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  364.820243][ T4937] Bluetooth: hci5: command tx timeout
[  364.964983][ T5986] team0 (unregistering): Port device team_slave_1 removed
[  365.015357][ T5986] team0 (unregistering): Port device team_slave_0 removed
[  365.522513][ T7549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.420237][ T4937] Bluetooth: hci1: command tx timeout
[  366.503652][ T7549] team0: Port device team_slave_0 added
[  366.532232][ T7549] team0: Port device team_slave_1 added
[  366.659137][ T7376] 8021q: adding VLAN 0 to HW filter on device bond0
[  366.750766][ T7549] batman_adv: batadv0: Adding interface: batadv_slave_0
[  366.773684][ T7549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  366.853881][ T7549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  366.900905][ T4937] Bluetooth: hci5: command tx timeout
[  366.923207][ T7549] batman_adv: batadv0: Adding interface: batadv_slave_1
[  366.967468][ T7549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  367.016813][ T7549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  368.444879][ T7376] 8021q: adding VLAN 0 to HW filter on device team0
[  368.499947][ T4937] Bluetooth: hci1: command tx timeout
[  368.526506][ T7549] hsr_slave_0: entered promiscuous mode
[  368.533270][ T7549] hsr_slave_1: entered promiscuous mode
[  368.540284][ T7549] debugfs: 'hsr0' already exists in 'hsr'
[  368.546138][ T7549] Cannot create hsr debugfs directory
[  368.627137][ T3355] bridge0: port 1(bridge_slave_0) entered blocking state
[  368.634272][ T3355] bridge0: port 1(bridge_slave_0) entered forwarding state
[  368.756451][ T5988] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.763636][ T5988] bridge0: port 2(bridge_slave_1) entered forwarding state
[  368.980073][ T4937] Bluetooth: hci5: command tx timeout
[  370.736839][ T4937] Bluetooth: hci1: command tx timeout
[  371.061307][ T4937] Bluetooth: hci5: command tx timeout
[  372.376510][ T7668] bridge0: port 1(bridge_slave_0) entered blocking state
[  372.394545][ T7668] bridge0: port 1(bridge_slave_0) entered disabled state
[  372.415501][ T7668] bridge_slave_0: entered allmulticast mode
[  372.441925][ T7668] bridge_slave_0: entered promiscuous mode
[  372.531042][ T7668] bridge0: port 2(bridge_slave_1) entered blocking state
[  372.553951][ T7668] bridge0: port 2(bridge_slave_1) entered disabled state
[  372.573309][ T7668] bridge_slave_1: entered allmulticast mode
[  374.115176][ T4937] Bluetooth: hci1: command tx timeout
[  374.143717][ T7668] bridge_slave_1: entered promiscuous mode
[  374.320362][ T7690] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.336528][ T7690] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.354966][ T7690] bridge_slave_0: entered allmulticast mode
[  374.373388][ T7690] bridge_slave_0: entered promiscuous mode
[  374.451512][ T7668] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  374.656847][ T7690] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.677809][ T7690] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.693102][ T7690] bridge_slave_1: entered allmulticast mode
[  374.708521][ T7690] bridge_slave_1: entered promiscuous mode
[  374.759684][ T7668] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  375.132943][ T7690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  375.164782][ T7668] team0: Port device team_slave_0 added
[  375.184918][ T7376] 8021q: adding VLAN 0 to HW filter on device batadv0
[  375.211432][ T7690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  375.319586][ T7668] team0: Port device team_slave_1 added
[  375.481068][ T7549] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  375.493960][ T7549] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  375.530637][ T7690] team0: Port device team_slave_0 added
[  375.539786][ T7690] team0: Port device team_slave_1 added
[  375.563972][ T7549] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  375.581682][ T7549] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  375.670435][ T7668] batman_adv: batadv0: Adding interface: batadv_slave_0
[  375.677777][ T7668] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  375.704021][ T7668] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  375.716197][ T7549] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  375.738884][ T7549] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  375.766749][ T7668] batman_adv: batadv0: Adding interface: batadv_slave_1
[  375.774705][ T7668] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  375.802732][ T7668] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  375.827730][ T7549] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  375.841990][ T7549] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  375.850593][ T7690] batman_adv: batadv0: Adding interface: batadv_slave_0
[  375.857934][ T7690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  375.891160][ T7690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  375.967365][ T7690] batman_adv: batadv0: Adding interface: batadv_slave_1
[  375.975234][ T7690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  376.002220][ T7690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  376.053043][ T4937] Bluetooth: hci4: Malformed MSFT vendor event: 0x02
[  376.091231][ T7668] hsr_slave_0: entered promiscuous mode
[  376.102099][ T7668] hsr_slave_1: entered promiscuous mode
[  376.118875][ T7668] debugfs: 'hsr0' already exists in 'hsr'
[  376.125805][ T7668] Cannot create hsr debugfs directory
[  376.436213][ T7690] hsr_slave_0: entered promiscuous mode
[  376.437151][ T7690] hsr_slave_1: entered promiscuous mode
[  376.437799][ T7690] debugfs: 'hsr0' already exists in 'hsr'
[  376.437819][ T7690] Cannot create hsr debugfs directory
[  378.227144][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  378.227208][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[  378.534454][ T5986] bridge_slave_1: left allmulticast mode
[  378.540942][ T5986] bridge_slave_1: left promiscuous mode
[  378.546769][ T5986] bridge0: port 2(bridge_slave_1) entered disabled state
[  378.764924][ T5986] bridge_slave_0: left allmulticast mode
[  378.771584][ T5986] bridge_slave_0: left promiscuous mode
[  378.777383][ T5986] bridge0: port 1(bridge_slave_0) entered disabled state
[  378.795850][ T5986] bridge_slave_1: left allmulticast mode
[  378.803580][ T5986] bridge_slave_1: left promiscuous mode
[  378.809366][ T5986] bridge0: port 2(bridge_slave_1) entered disabled state
[  379.062159][ T5986] bridge_slave_0: left allmulticast mode
[  379.092705][ T5986] bridge_slave_0: left promiscuous mode
[  379.139117][ T5986] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.508677][ T5986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  380.553130][ T5986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  380.571028][ T5986] bond0 (unregistering): Released all slaves
[  381.709214][ T5986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  381.740093][ T5986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  381.773476][ T5986] bond0 (unregistering): Released all slaves
[  382.070621][ T5986] hsr_slave_0: left promiscuous mode
[  382.082273][ T5986] hsr_slave_1: left promiscuous mode
[  382.091733][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  382.106449][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  382.154931][ T5986] hsr_slave_0: left promiscuous mode
[  382.182926][ T5986] hsr_slave_1: left promiscuous mode
[  382.191089][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  382.226987][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  382.779461][ T5636] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  382.794589][ T5636] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  382.802447][ T5636] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  382.815212][ T5636] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  382.823449][ T5636] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  382.998186][ T5986] team0 (unregistering): Port device team_slave_1 removed
[  383.051599][ T5986] team0 (unregistering): Port device team_slave_0 removed
[  383.687160][ T5986] team0 (unregistering): Port device team_slave_1 removed
[  383.724633][ T5986] team0 (unregistering): Port device team_slave_0 removed
[  384.164920][ T7814] macvtap1: entered promiscuous mode
[  384.187696][ T7814] macvtap1: entered allmulticast mode
[  384.210113][ T7814] veth1_vlan: entered allmulticast mode
[  384.237553][ T7815] macvtap2: entered promiscuous mode
[  384.252517][ T7815] macvtap2: entered allmulticast mode
[  384.900002][ T4937] Bluetooth: hci3: command tx timeout
[  387.714132][ T4937] Bluetooth: hci3: command tx timeout
[  388.193232][ T7549] 8021q: adding VLAN 0 to HW filter on device bond0
[  388.366727][ T7549] 8021q: adding VLAN 0 to HW filter on device team0
[  388.498466][ T1037] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.505673][ T1037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  388.571474][ T1037] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.578674][ T1037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  389.068470][ T7549] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  389.373048][ T7833] loop3: detected capacity change from 0 to 32768
[  389.479414][ T7833] (syz.3.333,7833,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  389.589131][ T7833] (syz.3.333,7833,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  389.697624][ T7833] workqueue: Failed to create a rescuer kthread for wq "ocfs2_wq": -EINTR
[  389.710949][ T7833] (syz.3.333,7833,1):ocfs2_initialize_super:2229 ERROR: status = -12
[  389.759016][ T7833] (syz.3.333,7833,1):ocfs2_fill_super:1177 ERROR: status = -12
[  389.780220][ T5636] Bluetooth: hci3: command tx timeout
[  390.019763][ T7860] netlink: 'syz.3.335': attribute type 1 has an invalid length.
[  390.258777][ T7863] ip6gretap1: entered promiscuous mode
[  390.264792][ T7863] ip6gretap1: entered allmulticast mode
[  390.279779][ T7863] bond1: (slave ip6gretap1): making interface the new active one
[  390.293823][ T7863] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  390.303437][ T7863] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  390.322274][ T7863] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  390.585616][ T7668] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  390.623096][ T7668] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  390.637096][ T7668] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  390.698572][ T7668] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  391.062044][ T7668] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  391.114780][ T7668] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  391.250982][ T7668] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  391.294320][ T7668] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  391.860111][ T5636] Bluetooth: hci3: command tx timeout
[  391.893315][ T7816] bridge0: port 1(bridge_slave_0) entered blocking state
[  391.930811][ T7816] bridge0: port 1(bridge_slave_0) entered disabled state
[  391.964130][ T7816] bridge_slave_0: entered allmulticast mode
[  392.000839][ T7816] bridge_slave_0: entered promiscuous mode
[  392.054239][ T7816] bridge0: port 2(bridge_slave_1) entered blocking state
[  392.082018][ T7816] bridge0: port 2(bridge_slave_1) entered disabled state
[  392.105562][ T7816] bridge_slave_1: entered allmulticast mode
[  392.134688][ T7816] bridge_slave_1: entered promiscuous mode
[  392.421292][ T7816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  392.531028][ T7549] 8021q: adding VLAN 0 to HW filter on device batadv0
[  392.569758][ T7816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  392.844740][ T5986] bridge_slave_1: left allmulticast mode
[  392.862116][ T5986] bridge_slave_1: left promiscuous mode
[  392.882108][ T5986] bridge0: port 2(bridge_slave_1) entered disabled state
[  392.915446][ T5986] bridge_slave_0: left allmulticast mode
[  392.933153][ T5986] bridge_slave_0: left promiscuous mode
[  393.031245][ T7919] hub 8-0:1.0: USB hub found
[  393.037820][ T7919] hub 8-0:1.0: 1 port detected
[  393.675588][ T5986] bridge0: port 1(bridge_slave_0) entered disabled state
[  393.995258][ T7923] loop0: detected capacity change from 0 to 1024
[  394.475241][ T5986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  394.541037][ T5986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  394.587820][ T5986] bond0 (unregistering): Released all slaves
[  394.648636][ T7816] team0: Port device team_slave_0 added
[  394.678992][ T7816] team0: Port device team_slave_1 added
[  394.772747][ T7935] netlink: 'syz.0.339': attribute type 12 has an invalid length.
[  394.976355][ T5986] hsr_slave_0: left promiscuous mode
[  394.990681][ T5986] hsr_slave_1: left promiscuous mode
[  394.997819][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  395.009988][ T5986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  395.375421][ T5986] team0 (unregistering): Port device team_slave_1 removed
[  395.407120][ T5986] team0 (unregistering): Port device team_slave_0 removed
[  395.606643][ T7816] batman_adv: batadv0: Adding interface: batadv_slave_0
[  395.615673][ T7816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  395.647320][ T7816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  395.673180][ T7816] batman_adv: batadv0: Adding interface: batadv_slave_1
[  395.680605][ T7816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  395.709053][ T7816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  395.927601][ T7816] hsr_slave_0: entered promiscuous mode
[  395.945198][ T7816] hsr_slave_1: entered promiscuous mode
[  395.953886][ T7952] loop0: detected capacity change from 0 to 8192
[  395.961097][ T7816] debugfs: 'hsr0' already exists in 'hsr'
[  395.968408][ T7816] Cannot create hsr debugfs directory
[  398.322812][ T7690] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  398.362113][ T7690] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  398.401213][ T7690] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  398.425696][ T7690] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  398.495227][ T7690] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  398.512080][ T7690] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  398.513918][ T7930] infiniband syz2: set down
[  398.521364][ T7690] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  398.530967][ T7930] infiniband syz2: added ipvlan1
[  398.548214][ T7690] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  398.608823][ T7930] smbdirect: ib_dev[syz2]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000
[  398.632077][ T7966] loop0: detected capacity change from 0 to 2048
[  398.661455][ T7930] smbdirect: ib_dev[syz2]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32
[  398.676934][ T7668] 8021q: adding VLAN 0 to HW filter on device bond0
[  398.714008][ T7930] smbdirect: ib_dev[syz2]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005
[  398.728489][ T7966] Alternate GPT is invalid, using primary GPT.
[  398.738056][ T7966]  loop0: p1 p2 p3
[  398.795172][ T7930] RDS/IB: syz2: added
[  398.803568][ T7930] smc: adding ib device syz2 with port count 1
[  398.820621][ T7930] smc:    ib device syz2 port 1 has no pnetid
[  399.146342][ T7668] 8021q: adding VLAN 0 to HW filter on device team0
[  399.196648][ T7549] veth0_vlan: entered promiscuous mode
[  399.294127][ T5987] bridge0: port 1(bridge_slave_0) entered blocking state
[  399.301303][ T5987] bridge0: port 1(bridge_slave_0) entered forwarding state
[  399.451516][ T7549] veth1_vlan: entered promiscuous mode
[  399.479738][  T146] bridge0: port 2(bridge_slave_1) entered blocking state
[  399.486971][  T146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  399.845692][ T7549] veth0_macvtap: entered promiscuous mode
[  399.979605][ T7549] veth1_macvtap: entered promiscuous mode
[  400.206850][ T7690] 8021q: adding VLAN 0 to HW filter on device bond0
[  400.279692][ T7816] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  400.328263][ T7816] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  400.350885][ T7816] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  400.387089][ T7816] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  400.427852][ T7549] batman_adv: batadv0: Interface activated: batadv_slave_0
[  400.470594][ T7816] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  400.514034][ T7816] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  400.522321][ T7816] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  400.646698][ T7816] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  400.671244][ T7549] batman_adv: batadv0: Interface activated: batadv_slave_1
[  400.715343][ T7690] 8021q: adding VLAN 0 to HW filter on device team0
[  401.445676][ T5987] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  401.479265][ T5987] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  401.556923][ T5987] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  401.601461][ T3355] bridge0: port 1(bridge_slave_0) entered blocking state
[  401.608595][ T3355] bridge0: port 1(bridge_slave_0) entered forwarding state
[  401.645641][ T8005] loop0: detected capacity change from 0 to 1024
[  401.672424][ T5987] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  401.724162][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[  401.731325][ T5943] bridge0: port 2(bridge_slave_1) entered forwarding state
[  402.565710][ T3355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  402.565730][ T3355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  402.708808][ T6051] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  402.756330][ T6051] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  402.957496][ T7816] 8021q: adding VLAN 0 to HW filter on device bond0
[  403.007495][ T7668] 8021q: adding VLAN 0 to HW filter on device batadv0
[  403.069719][ T7816] 8021q: adding VLAN 0 to HW filter on device team0
[  403.127688][  T146] bridge0: port 1(bridge_slave_0) entered blocking state
[  403.134954][  T146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  403.224087][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.231275][ T5839] bridge0: port 2(bridge_slave_1) entered forwarding state
[  405.162653][ T7668] veth0_vlan: entered promiscuous mode
[  405.207057][ T8042] netlink: 92 bytes leftover after parsing attributes in process `syz.9.352'.
[  405.279776][ T7668] veth1_vlan: entered promiscuous mode
[  405.458827][ T7668] veth0_macvtap: entered promiscuous mode
[  405.498114][ T7668] veth1_macvtap: entered promiscuous mode
[  405.655812][ T7668] batman_adv: batadv0: Interface activated: batadv_slave_0
[  405.706676][ T7668] batman_adv: batadv0: Interface activated: batadv_slave_1
[  405.777490][ T5943] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  405.820033][ T5943] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  405.902203][ T5943] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  405.927963][ T5943] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  405.958417][ T5283] 8021q: adding VLAN 0 to HW filter on device eth18
[  406.172489][ T5986] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  406.222686][ T5986] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  406.249495][ T8033] loop0: detected capacity change from 0 to 32768
[  406.968708][ T7690] 8021q: adding VLAN 0 to HW filter on device batadv0
[  407.006798][ T5943] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  407.048619][ T5943] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  410.623584][ T7816] 8021q: adding VLAN 0 to HW filter on device batadv0
[  411.005602][ T7690] veth0_vlan: entered promiscuous mode
[  411.043740][ T7690] veth1_vlan: entered promiscuous mode
[  411.150883][ T7690] veth0_macvtap: entered promiscuous mode
[  411.188617][ T7690] veth1_macvtap: entered promiscuous mode
[  411.279165][ T7690] batman_adv: batadv0: Interface activated: batadv_slave_0
[  411.352764][ T7690] batman_adv: batadv0: Interface activated: batadv_slave_1
[  411.370516][ T4937] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  411.394364][ T4937] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  411.402124][ T5943] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  411.413251][ T4937] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  411.423064][ T4937] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  411.437587][ T4937] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  411.482975][ T5943] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  411.812604][ T5943] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  412.059628][ T5943] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  413.437325][ T5874] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  413.490996][ T5874] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  413.541302][ T4937] Bluetooth: hci2: command tx timeout
[  413.548277][ T8144] loop0: detected capacity change from 0 to 1024
[  413.641164][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  413.657217][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  413.811931][ T7816] veth0_vlan: entered promiscuous mode
[  413.892882][ T7816] veth1_vlan: entered promiscuous mode
[  414.096916][ T7816] veth0_macvtap: entered promiscuous mode
[  414.361942][ T7816] veth1_macvtap: entered promiscuous mode
[  414.399669][ T7816] batman_adv: batadv0: Interface activated: batadv_slave_0
[  415.317148][ T7816] batman_adv: batadv0: Interface activated: batadv_slave_1
[  415.367591][   T24] libceph: connect (1)[c::]:6789 error -101
[  415.383513][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  415.398897][   T24] libceph: connect (1)[c::]:6789 error -101
[  415.407325][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  415.430122][ T8171] ceph: No mds server is up or the cluster is laggy
[  415.446627][ T5983] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  415.462181][ T5983] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  415.498220][ T5983] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  415.529023][  T146] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  415.621182][ T4937] Bluetooth: hci2: command tx timeout
[  415.661125][ T8169] loop7: detected capacity change from 0 to 4096
[  415.785135][ T8169] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  415.802300][ T3355] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  415.867477][ T8169] ntfs3(loop7): Failed to load $Extend (-22).
[  415.899370][ T8169] ntfs3(loop7): Failed to initialize $Extend.
[  416.992423][ T8192] netlink: 'syz.9.377': attribute type 1 has an invalid length.
[  417.026227][ T8192] netlink: 'syz.9.377': attribute type 2 has an invalid length.
[  417.055473][ T8192] netlink: 12 bytes leftover after parsing attributes in process `syz.9.377'.
[  417.057961][ T3355] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  417.113287][ T8194] netlink: 14 bytes leftover after parsing attributes in process `syz.9.377'.
[  417.287736][ T8194] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  417.335250][ T8194] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  417.355433][ T8199] bad cache= option: none80
[  417.355433][ T8199] nr_mlock 0
[  417.355433][ T8199] nr_zspages 0
[  417.355433][ T8199] nr_free_cma 0
[  417.355433][ T8199] numa_hit 2858406
[  417.355433][ T8199] numa_miss 1
[  417.355433][ T8199] numa_foreign 1
[  417.355433][ T8199] numa_interleave 6645
[  417.355433][ T8199] numa_local 2854984
[  417.355433][ T8199] numa_other 3423
[  417.355433][ T8199] nr_inactive_anon 0
[  417.355433][ T8199] nr_active_anon 12444
[  417.355433][ T8199] nr_inactive_file 40171
[  417.355433][ T8199] nr_active_file 24519
[  417.355433][ T8199] nr_unevictable 768
[  417.355433][ T8199] nr_slab_reclaimable 11562
[  417.355433][ T8199] nr_slab_unreclaimable 103641
[  417.355433][ T8199] nr_isolated_anon 0
[  417.355433][ T8199] nr_isolated_file 0
[  417.355433][ T8199] workingset_nodes 0
[  417.355433][ T8199] workingset_refault_anon 0
[  417.355433][ T8199] workingset_refault_file 0
[  417.355433][ T8199] workingset_activate_anon 0
[  417.355433][ T8199] workingset_activate_file 0
[  417.355433][ T8199] workingset_restore_anon 0
[  417.355433][ T8199] workingset_restore_file 0
[  417.355433][ T8199] workingset_nodereclaim 0
[  417.355433][ T8199] nr_anon_pages 6842
[  417.355433][ T8199] nr_mapped 35151
[  417.355433][ T8199] nr_file_pages 71092
[  417.355433][ T8199] nr_dirty 184
[  417.355433][ T8199] nr_writeback 0
[  417.355433][ T8199] nr_shmem 6443
[  417.355433][ T8199] nr_shmem_hugepages 0
[  417.355433][ T8199] nr_shmem_pmdmapped 0
[  417.355433][ T8199] nr_file_hugepages 0
[  417.355433][ T8199] nr_file_pmdmapped 0
[  417.355433][ T8199] nr_anon_transparent_hugepages 0
[  417.355433][ T8199] nr_vmscan_write 0
[  417.355433][ T8199] nr_vmscan_immediate_reclaim 0
[  417.355433][ T8199] nr_dirtied 4068
[  417.355433][ T8199] nr_written 3743
[  417.355433][ T8199] nr_throttled_written 0
[  417.355433][ T8199] nr_kernel_misc_reclaimable 0
[  417.355433][ T8199] nr_foll_pin_acquired 625
[  417.355433][ T8199] nr_foll_pin_released 629
[  417.356018][ T8199] CIFS: VFS: bad cache= option: none80
[  417.356018][ T8199] nr_mlock 0
[  417.356018][ T8199] nr_zspages 0
[  417.356018][ T8199] nr_free_cma 0
[  417.356018][ T8199] numa_hit 2858406
[  417.356018][ T8199] numa_miss 1
[  417.356018][ T8199] numa_foreign 1
[  417.356018][ T8199] numa_interleave 6645
[  417.356018][ T8199] numa_local 2854984
[  417.356018][ T8199] numa_other 3423
[  417.356018][ T8199] nr_inactive_anon 0
[  417.356018][ T8199] nr_active_anon 12444
[  417.356018][ T8199] nr_inactive_file 40171
[  417.356018][ T8199] nr_active_file 24519
[  417.356018][ T8199] nr_unevictable 768
[  417.356018][ T8199] nr_slab_reclaimable 11562
[  417.356018][ T8199] nr_slab_unreclaimable 103641
[  417.356018][ T8199] nr_isolated_anon 0
[  417.356018][ T8199] nr_isolated_file 0
[  417.356018][ T8199] workingset_nodes 0
[  417.356018][ T8199] workingset_refault_anon 0
[  417.356018][ T8199] workingset_refault_file 0
[  417.356018][ T8199] workingset_activate_anon 0
[  417.356018][ T8199] workingset_activate_file 0
[  417.356018][ T8199] workingset_restore_anon 0
[  417.356018][ T8199] workingset_restore_file 0
[  417.356018][ T8199] workingset_nodereclaim 0
[  417.356018][ T8199] nr_anon_pages 6842
[  417.356018][ T8199] nr_mapped 35151
[  417.356018][ T8199] nr_file_pages 71092
[  417.356018][ T8199] nr_dirty 184
[  417.356018][ T8199] nr_writeback 0
[  417.356018][ T8199] nr_shmem 6443
[  417.356018][ T8199] nr_shmem_hugepages 0
[  417.356018][ T8199] nr_shmem_pmdmapped 0
[  417.356018][ T8199] nr_file_hugepages 0
[  417.356018][ T8199] nr_file_pmdmapped 0
[  417.356018][ T8199] nr_anon_transparent_hugepages 0
[  417.356018][ T8199] nr_vmscan_write 0
[  417.356018][ T8199] nr_vmscan_immediate_reclaim 0
[  417.356018][ T8199] nr_dirtied 4068
[  417.356018][ T8199] nr_written 3743
[  417.356018][ T8199] nr_throttled_written 0
[  417.356018][ T8199] nr_kernel_misc_reclaimable 0
[  417.356018][ T8199] nr_foll_pin_acquired 625
[  417.356018][ T8199] nr_foll_pin_released 629
[  417.560024][ T8164] loop0: detected capacity change from 0 to 40427
[  417.787952][ T8164] F2FS-fs (loop0): invalid crc value
[  417.793756][ T4937] Bluetooth: hci2: command tx timeout
[  417.831174][ T8194] bond0 (unregistering): Released all slaves
[  418.095726][ T3355] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  418.161660][ T8164] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  418.192069][ T8164] F2FS-fs (loop0): Start checkpoint disabled!
[  418.237887][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  418.237917][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  418.260530][ T8164] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[  418.401453][ T3355] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  419.485935][  T146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  419.494158][  T146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  419.600006][ T5643] usb 8-1: new low-speed USB device number 2 using dummy_hcd
[  419.803853][ T5643] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  419.864203][ T5643] usb 8-1: config 0 has no interface number 0
[  419.871025][ T4937] Bluetooth: hci2: command tx timeout
[  419.922926][ T5643] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  419.942040][ T5643] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  419.953057][ T5643] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  419.963959][ T5643] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.383400][ T5643] usb 8-1: config 0 descriptor??
[  420.533110][ T8224] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  420.637408][ T5643] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  420.788069][ T8221] loop9: detected capacity change from 0 to 32768
[  420.881687][ T8221] XFS (loop9): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  420.905564][ T8047] usb 8-1: USB disconnect, device number 2
[  420.931503][ T3355] bridge_slave_1: left allmulticast mode
[  420.956578][ T3355] bridge_slave_1: left promiscuous mode
[  420.978607][ T3355] bridge0: port 2(bridge_slave_1) entered disabled state
[  421.001413][ T8221] XFS (loop9): Ending clean mount
[  421.243038][ T3355] bridge_slave_0: left allmulticast mode
[  421.276102][ T8255] process 'syz.1.389' launched './file0' with NULL argv: empty string added
[  421.548300][ T3355] bridge_slave_0: left promiscuous mode
[  421.564458][ T8221] XFS (loop9): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xe0, xfs_bnobt block 0x4 
[  421.577500][ T3355] bridge0: port 1(bridge_slave_0) entered disabled state
[  421.792779][ T8221] XFS (loop9): Unmount and run xfs_repair
[  423.027092][ T8221] XFS (loop9): First 128 bytes of corrupted metadata buffer:
[  423.691323][ T8221] 00000000: 41 42 33 42 00 00 00 03 ff ff ff ff ff ff ff ff  AB3B............
[  423.723987][ T8221] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 10  ................
[  423.791924][ T8221] 00000020: ed 37 bf 6e 74 ea 4e 01 f8 ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  423.896953][ T8221] 00000030: 00 00 00 00 f6 3b 25 b5 00 00 00 07 00 00 00 01  .....;%.........
[  424.006209][ T8221] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0  ........... ....
[  424.047641][ T8221] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  424.108496][ T8221] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  424.146595][ T8221] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  424.179426][ T8221] XFS (loop9): metadata I/O error in "xfs_btree_read_buf_block+0x2b0/0x490" at daddr 0x4 len 4 error 74
[  424.207582][ T8221] XFS (loop9): page discard on page ffffea00011a4ac0, inode 0x180a, pos 0.
[  424.324688][ T3355] bond1 (unregistering): (slave ip6gretap1): Releasing active interface
[  424.376336][ T7549] XFS (loop9): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  424.397874][ T7549] XFS (loop9): Uncorrected metadata errors detected; please run xfs_repair.
[  424.936361][ T3355] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  424.991223][ T3355] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  425.021857][ T3355] bond0 (unregistering): Released all slaves
[  425.063417][ T3355] bond1 (unregistering): Released all slaves
[  426.169418][ T8281] loop8: detected capacity change from 0 to 32768
[  426.569619][ T8281] ocfs2: Slot 0 on device (7,8) was already allocated to this node!
[  428.354627][ T8281] JBD2: Ignoring recovery information on journal
[  428.610366][ T8281] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  430.085255][ T8335] netlink: 12 bytes leftover after parsing attributes in process `syz.1.405'.
[  430.130145][ T5643] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  430.175112][ T7816] ocfs2: Unmounting device (7,8) on (node local)
[  430.217634][ T8118] bridge0: port 1(bridge_slave_0) entered blocking state
[  430.239438][ T8118] bridge0: port 1(bridge_slave_0) entered disabled state
[  430.273864][ T8118] bridge_slave_0: entered allmulticast mode
[  430.307203][ T8118] bridge_slave_0: entered promiscuous mode
[  430.313507][ T5643] usb 1-1: Using ep0 maxpacket: 8
[  430.327330][ T5643] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  430.346391][ T8118] bridge0: port 2(bridge_slave_1) entered blocking state
[  430.362492][ T5643] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  430.386120][ T8118] bridge0: port 2(bridge_slave_1) entered disabled state
[  430.410153][ T8118] bridge_slave_1: entered allmulticast mode
[  430.417615][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  430.444696][ T8118] bridge_slave_1: entered promiscuous mode
[  430.454159][ T5643] usb 1-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  430.507493][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  430.548748][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  430.587310][ T5643] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  430.622716][ T5643] usb 1-1: config 168 interface 0 has no altsetting 0
[  430.656760][ T5643] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  430.675525][ T5643] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  430.717789][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  430.749326][ T8118] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  430.763677][ T5643] usb 1-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  430.794149][ T8118] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  430.811613][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  430.855513][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  430.917444][ T5643] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  430.968765][ T5643] usb 1-1: config 168 interface 0 has no altsetting 0
[  430.991711][ T5643] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  431.009659][ T5643] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  431.041958][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  431.071726][ T5643] usb 1-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  431.105841][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  431.161657][ T5643] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  431.195467][ T5643] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  431.258118][ T5643] usb 1-1: config 168 interface 0 has no altsetting 0
[  431.307437][ T5643] usb 1-1: string descriptor 0 read error: -22
[  431.319717][ T8118] team0: Port device team_slave_0 added
[  431.998217][ T5643] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  432.015626][ T8118] team0: Port device team_slave_1 added
[  432.021288][ T5643] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  432.072255][ T5643] usb 1-1: can't set config #168, error -71
[  432.111511][ T5643] usb 1-1: USB disconnect, device number 7
[  432.867589][ T8118] batman_adv: batadv0: Adding interface: batadv_slave_0
[  432.876704][ T8118] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  432.951120][ T8118] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  433.078995][ T8118] batman_adv: batadv0: Adding interface: batadv_slave_1
[  434.733612][ T8118] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  434.885670][ T8118] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  437.801678][ T3355] hsr_slave_0: left promiscuous mode
[  437.848633][ T3355] hsr_slave_1: left promiscuous mode
[  437.876193][ T3355] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  437.916850][ T3355] batman_adv: batadv0: Removing interface: batadv_slave_0
[  437.959800][ T3355] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  437.997017][ T3355] batman_adv: batadv0: Removing interface: batadv_slave_1
[  438.067960][ T3355] veth1_vlan: left allmulticast mode
[  438.089790][ T3355] veth1_macvtap: left promiscuous mode
[  438.114611][ T3355] veth0_macvtap: left promiscuous mode
[  438.146110][ T3355] veth1_vlan: left promiscuous mode
[  438.171510][ T3355] veth0_vlan: left promiscuous mode
[  438.677399][ T8430] Bluetooth: hci0: invalid length 0, exp 2 for type 14
[  439.898011][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  439.904438][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[  441.155675][ T5839] smc: removing ib device syz2
[  441.940640][ T4937] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  441.966961][ T4937] Bluetooth: hci0: command 0x1407 tx timeout
[  442.256761][ T3355] team0 (unregistering): Port device team_slave_1 removed
[  442.370488][ T3355] team0 (unregistering): Port device team_slave_0 removed
[  442.853869][ T8453] loop7: detected capacity change from 0 to 32768
[  442.883612][ T8453] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.432 (8453)
[  443.037332][ T8453] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  443.064344][ T8453] BTRFS info (device loop7): using sha256 checksum algorithm
[  443.339039][ T8118] hsr_slave_0: entered promiscuous mode
[  443.387383][ T8118] hsr_slave_1: entered promiscuous mode
[  443.632386][ T8118] debugfs: 'hsr0' already exists in 'hsr'
[  443.635087][ T8453] BTRFS info (device loop7): enabling ssd optimizations
[  443.646020][ T8118] Cannot create hsr debugfs directory
[  443.859503][ T8453] BTRFS info (device loop7): turning on async discard
[  444.091338][ T8453] BTRFS info (device loop7): enabling free space tree
[  444.147800][ T5643] ==================================================================
[  444.155870][ T5643] BUG: KASAN: slab-use-after-free in __ethtool_get_link_ksettings+0x5e/0x170
[  444.164639][ T5643] Read of size 8 at addr ffff8880122da2f0 by task kworker/0:3/5643
[  444.172508][ T5643] 
[  444.174814][ T5643] CPU: 0 UID: 0 PID: 5643 Comm: kworker/0:3 Not tainted syzkaller #0 PREEMPT(full) 
[  444.174835][ T5643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  444.174847][ T5643] Workqueue: events smc_ib_port_event_work
[  444.174876][ T5643] Call Trace:
[  444.174883][ T5643]  <TASK>
[  444.174891][ T5643]  dump_stack_lvl+0xe8/0x150
[  444.174912][ T5643]  print_address_description+0x55/0x1e0
[  444.174931][ T5643]  ? __ethtool_get_link_ksettings+0x5e/0x170
[  444.174953][ T5643]  print_report+0x58/0x70
[  444.174969][ T5643]  kasan_report+0x117/0x150
[  444.174999][ T5643]  ? __ethtool_get_link_ksettings+0x5e/0x170
[  444.175023][ T5643]  __ethtool_get_link_ksettings+0x5e/0x170
[  444.175046][ T5643]  ib_get_eth_speed+0x180/0x7f0
[  444.175073][ T5643]  ? __pfx_ib_get_eth_speed+0x10/0x10
[  444.175101][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  444.175123][ T5643]  ? do_raw_spin_unlock+0xf5/0x210
[  444.175155][ T5643]  rxe_query_port+0x93/0x3d0
[  444.175180][ T5643]  ib_query_port+0x170/0x830
[  444.175209][ T5643]  smc_ib_port_event_work+0x15a/0x940
[  444.175239][ T5643]  ? process_scheduled_works+0xa70/0x1860
[  444.175258][ T5643]  ? process_scheduled_works+0xa70/0x1860
[  444.175278][ T5643]  process_scheduled_works+0xb5d/0x1860
[  444.175296][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  444.175331][ T5643]  ? __pfx_process_scheduled_works+0x10/0x10
[  444.175353][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  444.175374][ T5643]  ? assign_work+0x3d5/0x5e0
[  444.175394][ T5643]  worker_thread+0xa53/0xfc0
[  444.175425][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  444.175451][ T5643]  kthread+0x389/0x470
[  444.175475][ T5643]  ? __pfx_worker_thread+0x10/0x10
[  444.175493][ T5643]  ? __pfx_kthread+0x10/0x10
[  444.175517][ T5643]  ret_from_fork+0x514/0xb70
[  444.175538][ T5643]  ? __pfx_ret_from_fork+0x10/0x10
[  444.175556][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  444.175577][ T5643]  ? __switch_to+0xc79/0x1410
[  444.175605][ T5643]  ? __pfx_kthread+0x10/0x10
[  444.175629][ T5643]  ret_from_fork_asm+0x1a/0x30
[  444.175659][ T5643]  </TASK>
[  444.175665][ T5643] 
[  444.375309][ T5643] Allocated by task 5626:
[  444.379610][ T5643]  kasan_save_track+0x3e/0x80
[  444.384295][ T5643]  __kasan_kmalloc+0x93/0xb0
[  444.388873][ T5643]  __kvmalloc_node_noprof+0x528/0x8a0
[  444.394252][ T5643]  alloc_netdev_mqs+0xa8/0x1210
[  444.399088][ T5643]  rtnl_create_link+0x31f/0xd70
[  444.403930][ T5643]  rtnl_newlink_create+0x277/0xb70
[  444.409033][ T5643]  rtnl_newlink+0x166a/0x1bb0
[  444.413694][ T5643]  rtnetlink_rcv_msg+0x7d5/0xbe0
[  444.418615][ T5643]  netlink_rcv_skb+0x232/0x4b0
[  444.423365][ T5643]  netlink_unicast+0x75c/0x8e0
[  444.428116][ T5643]  netlink_sendmsg+0x813/0xb40
[  444.432868][ T5643]  __sys_sendto+0x672/0x710
[  444.437357][ T5643]  __x64_sys_sendto+0xde/0x100
[  444.442104][ T5643]  do_syscall_64+0x15f/0xf80
[  444.446672][ T5643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.452541][ T5643] 
[  444.454838][ T5643] Freed by task 3355:
[  444.458788][ T5643]  kasan_save_track+0x3e/0x80
[  444.463450][ T5643]  kasan_save_free_info+0x46/0x50
[  444.468456][ T5643]  __kasan_slab_free+0x5c/0x80
[  444.473205][ T5643]  kfree+0x1c5/0x640
[  444.477082][ T5643]  device_release+0xc4/0x1f0
[  444.481659][ T5643]  kobject_put+0x228/0x560
[  444.486057][ T5643]  netdev_run_todo+0xc75/0xde0
[  444.490823][ T5643]  default_device_exit_batch+0x967/0x9e0
[  444.496446][ T5643]  ops_undo_list+0x52b/0x940
[  444.501022][ T5643]  cleanup_net+0x56b/0x800
[  444.505427][ T5643]  process_scheduled_works+0xb5d/0x1860
[  444.510979][ T5643]  worker_thread+0xa53/0xfc0
[  444.515550][ T5643]  kthread+0x389/0x470
[  444.519601][ T5643]  ret_from_fork+0x514/0xb70
[  444.524168][ T5643]  ret_from_fork_asm+0x1a/0x30
[  444.528914][ T5643] 
[  444.531212][ T5643] The buggy address belongs to the object at ffff8880122da000
[  444.531212][ T5643]  which belongs to the cache kmalloc-cg-4k of size 4096
[  444.545502][ T5643] The buggy address is located 752 bytes inside of
[  444.545502][ T5643]  freed 4096-byte region [ffff8880122da000, ffff8880122db000)
[  444.559380][ T5643] 
[  444.561706][ T5643] The buggy address belongs to the physical page:
[  444.568089][ T5643] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x122d8
[  444.576824][ T5643] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  444.585296][ T5643] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  444.592815][ T5643] page_type: f5(slab)
[  444.596776][ T5643] raw: 00fff00000000040 ffff88813fe36500 dead000000000100 dead000000000122
[  444.605335][ T5643] raw: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000
[  444.613899][ T5643] head: 00fff00000000040 ffff88813fe36500 dead000000000100 dead000000000122
[  444.622548][ T5643] head: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000
[  444.631216][ T5643] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff
[  444.639863][ T5643] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  444.648516][ T5643] page dumped because: kasan: bad access detected
[  444.654902][ T5643] page_owner tracks the page as allocated
[  444.660591][ T5643] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5000, tgid 5000 (udevd), ts 46155166122, free_ts 26318171877
[  444.681372][ T5643]  post_alloc_hook+0x22d/0x280
[  444.686134][ T5643]  get_page_from_freelist+0x24ba/0x2540
[  444.691669][ T5643]  __alloc_frozen_pages_noprof+0x18d/0x380
[  444.697464][ T5643]  allocate_slab+0x77/0x660
[  444.701945][ T5643]  refill_objects+0x339/0x3d0
[  444.706600][ T5643]  __pcs_replace_empty_main+0x321/0x720
[  444.712239][ T5643]  __kvmalloc_node_noprof+0x657/0x8a0
[  444.717599][ T5643]  seq_read_iter+0x202/0xe10
[  444.722166][ T5643]  vfs_read+0x582/0xa70
[  444.726308][ T5643]  ksys_read+0x150/0x270
[  444.730534][ T5643]  do_syscall_64+0x15f/0xf80
[  444.735101][ T5643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.740978][ T5643] page last free pid 1 tgid 1 stack trace:
[  444.746759][ T5643]  __free_frozen_pages+0xbc7/0xd30
[  444.751857][ T5643]  free_reserved_page+0xce/0x120
[  444.756771][ T5643]  free_reserved_area+0x202/0x2e0
[  444.761778][ T5643]  free_kernel_image_pages+0xa2/0x100
[  444.767137][ T5643]  kernel_init+0x31/0x1d0
[  444.771447][ T5643]  ret_from_fork+0x514/0xb70
[  444.776015][ T5643]  ret_from_fork_asm+0x1a/0x30
[  444.780760][ T5643] 
[  444.783066][ T5643] Memory state around the buggy address:
[  444.788671][ T5643]  ffff8880122da180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  444.796711][ T5643]  ffff8880122da200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  444.804747][ T5643] >ffff8880122da280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  444.812802][ T5643]                                                              ^
[  444.820492][ T5643]  ffff8880122da300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  444.828528][ T5643]  ffff8880122da380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  444.836560][ T5643] ==================================================================
[  444.898409][ T7690] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  445.658762][ T5643] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  445.665981][ T5643] CPU: 0 UID: 0 PID: 5643 Comm: kworker/0:3 Not tainted syzkaller #0 PREEMPT(full) 
[  445.675348][ T5643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  445.685411][ T5643] Workqueue: events smc_ib_port_event_work
[  445.691215][ T5643] Call Trace:
[  445.694482][ T5643]  <TASK>
[  445.697394][ T5643]  vpanic+0x56c/0xa60
[  445.701373][ T5643]  ? __pfx_vpanic+0x10/0x10
[  445.705878][ T5643]  ? __pfx___schedule+0x10/0x10
[  445.710733][ T5643]  panic+0xc5/0xd0
[  445.714438][ T5643]  ? __pfx_panic+0x10/0x10
[  445.718837][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.724455][ T5643]  ? preempt_schedule_common+0x82/0xd0
[  445.729918][ T5643]  ? __ethtool_get_link_ksettings+0x5e/0x170
[  445.735883][ T5643]  check_panic_on_warn+0x89/0xb0
[  445.740825][ T5643]  ? __ethtool_get_link_ksettings+0x5e/0x170
[  445.746787][ T5643]  end_report+0x73/0x170
[  445.751020][ T5643]  ? __ethtool_get_link_ksettings+0x5e/0x170
[  445.756987][ T5643]  kasan_report+0x128/0x150
[  445.761483][ T5643]  ? __ethtool_get_link_ksettings+0x5e/0x170
[  445.767469][ T5643]  __ethtool_get_link_ksettings+0x5e/0x170
[  445.773262][ T5643]  ib_get_eth_speed+0x180/0x7f0
[  445.778103][ T5643]  ? __pfx_ib_get_eth_speed+0x10/0x10
[  445.783468][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.789084][ T5643]  ? do_raw_spin_unlock+0xf5/0x210
[  445.794221][ T5643]  rxe_query_port+0x93/0x3d0
[  445.798818][ T5643]  ib_query_port+0x170/0x830
[  445.803398][ T5643]  smc_ib_port_event_work+0x15a/0x940
[  445.808791][ T5643]  ? process_scheduled_works+0xa70/0x1860
[  445.814490][ T5643]  ? process_scheduled_works+0xa70/0x1860
[  445.820193][ T5643]  process_scheduled_works+0xb5d/0x1860
[  445.825732][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.831402][ T5643]  ? __pfx_process_scheduled_works+0x10/0x10
[  445.837366][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.842985][ T5643]  ? assign_work+0x3d5/0x5e0
[  445.847558][ T5643]  worker_thread+0xa53/0xfc0
[  445.852137][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.857759][ T5643]  kthread+0x389/0x470
[  445.861834][ T5643]  ? __pfx_worker_thread+0x10/0x10
[  445.866926][ T5643]  ? __pfx_kthread+0x10/0x10
[  445.871503][ T5643]  ret_from_fork+0x514/0xb70
[  445.876076][ T5643]  ? __pfx_ret_from_fork+0x10/0x10
[  445.881169][ T5643]  ? srso_alias_return_thunk+0x5/0xfbef5
[  445.886785][ T5643]  ? __switch_to+0xc79/0x1410
[  445.891452][ T5643]  ? __pfx_kthread+0x10/0x10
[  445.896038][ T5643]  ret_from_fork_asm+0x1a/0x30
[  445.900794][ T5643]  </TASK>
[  445.904016][ T5643] Kernel Offset: disabled
[  445.908340][ T5643] Rebooting in 86400 seconds..